$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft File: lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft (raw, json) Hash identifier: vw7tni9V0I2cXd85t4by9Uhn5BvuYXoPN18vvIeJWvg= Subject key identifier: 4F:EB:4E:56:2E:AD:47:85:64:74:F3:68:50:BF:12:7D:C6:EB:07:8C Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 092C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft Manifest number: 097E Signing time: Sat 04 Apr 2026 20:02:41 +0000 Manifest this update: Sat 04 Apr 2026 20:02:41 +0000 Manifest next update: Sat 11 Apr 2026 20:02:41 +0000 Files and hashes: 1: lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl (hash: nV75MEwulrvtE0MmFaZdEluQlLiHkC6fWkUEgwj/lTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2348 (0x92c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9, serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: Apr 4 20:02:41 2026 GMT Not After : Apr 11 20:02:41 2026 GMT Subject: CN=69d16e61-2ec3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:85:c4:3f:ce:21:47:7e:a6:d6:bd:97:8f:04: f3:9b:50:4b:e8:14:5d:d4:3e:da:86:5e:f1:ec:20: 10:e9:fe:53:c7:88:87:7f:6b:c9:01:6c:ba:5f:4f: 9d:20:24:d9:68:a1:a1:40:36:dd:06:f3:92:11:ba: b8:42:3c:74:84:72:14:c1:dc:65:70:b2:37:f7:ff: 04:da:d6:54:2b:25:a4:6a:a2:5b:03:1d:ba:a7:16: d8:0e:99:38:08:6a:b2:ff:d2:af:86:01:29:ea:55: 4e:3a:2f:47:8c:33:38:ac:72:57:75:95:3b:00:be: 2e:52:c4:ca:84:45:eb:3c:dc:55:33:37:68:ed:60: 3e:53:ca:d2:7f:6b:58:bd:8a:9b:ee:60:61:be:cd: 37:df:23:3e:99:67:ef:96:1f:36:8b:a5:fe:49:58: b7:85:cc:56:18:78:1f:ec:e2:4e:c4:09:64:12:16: 1b:f9:5e:b4:7e:a3:b5:5b:02:7f:98:6e:8f:72:5c: 42:ac:e7:75:77:9c:7e:0f:76:93:e8:e8:e7:a6:57: f8:ce:38:b1:30:da:9e:e7:2c:c1:90:aa:11:d0:b3: 64:96:b0:6e:71:16:4a:df:8d:16:d8:22:4a:75:60: ae:c2:31:ff:6f:fa:81:6d:fa:7e:80:e6:a6:ee:25: 25:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:EB:4E:56:2E:AD:47:85:64:74:F3:68:50:BF:12:7D:C6:EB:07:8C X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:dd:78:c9:f3:a5:62:64:7d:9c:64:16:3a:81:5e:d9:77:45: ed:5c:4d:f2:85:44:e0:50:91:d7:6c:69:53:c7:12:2a:14:8c: 3d:31:f9:b2:b4:41:8c:a2:9f:43:91:d7:19:57:a4:0b:06:77: 05:fc:d7:b5:7b:a0:34:1b:f9:17:73:05:06:2f:a5:ce:ad:b2: 0d:98:b2:c1:0e:9d:be:c3:6c:6f:0a:c9:be:ac:fd:6b:ec:a8: 30:5b:4d:95:ad:e9:a9:e1:b5:95:fb:73:6e:2a:e2:b7:7f:7f: a7:90:43:09:6c:ab:c7:ef:f7:7d:27:f7:a0:63:9c:04:7b:fb: bf:7d:4c:6a:b3:bc:9d:90:22:e7:56:14:83:21:e1:2e:97:e0: ee:b1:b8:20:da:75:71:de:19:8a:ab:10:8e:fd:98:49:01:fe: 3d:dc:43:ef:bf:90:32:2c:57:88:d6:12:f9:9c:c3:44:db:3e: 4a:52:5c:c9:06:38:8e:ee:93:30:88:ef:6a:ff:30:6a:22:66: 49:72:2a:fe:70:5d:f9:ca:b9:57:b1:17:45:d3:83:5d:17:ec: 29:41:03:74:71:63:a0:aa:1e:64:8b:1a:f4:30:a2:8f:32:26: be:66:b7:5f:f6:b6:5b:ff:e7:53:ba:22:43:42:7f:65:ab:a2: 18:d9:35:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjYwNDA0MjAwMjQxWhcNMjYwNDExMjAwMjQxWjAYMRYwFAYD VQQDEw02OWQxNmU2MS0yZWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4XEP84hR36m1r2XjwTzm1BL6BRd1D7ahl7x7CAQ6f5Tx4iHf2vJAWy6X0+d ICTZaKGhQDbdBvOSEbq4Qjx0hHIUwdxlcLI39/8E2tZUKyWkaqJbAx26pxbYDpk4 CGqy/9KvhgEp6lVOOi9HjDM4rHJXdZU7AL4uUsTKhEXrPNxVMzdo7WA+U8rSf2tY vYqb7mBhvs033yM+mWfvlh82i6X+SVi3hcxWGHgf7OJOxAlkEhYb+V60fqO1WwJ/ mG6PclxCrOd1d5x+D3aT6Ojnplf4zjixMNqe5yzBkKoR0LNklrBucRZK340W2CJK dWCuwjH/b/qBbfp+gOam7iUl8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE/rTlYu rUeFZHTzaFC/En3G6weMMB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDFDOS80OUJEOURBNkMwRjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1Br OThaSzFEMEhhOEVhNGYyMTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsN14yfOlYmR9nGQWOoFe2XdF7VxN8oVE4FCR12xpU8cSKhSMPTH5srRBjKKf Q5HXGVekCwZ3BfzXtXugNBv5F3MFBi+lzq2yDZiywQ6dvsNsbwrJvqz9a+yoMFtN la3pqeG1lftzbirit39/p5BDCWyrx+/3fSf3oGOcBHv7v31MarO8nZAi51YUgyHh Lpfg7rG4INp1cd4ZiqsQjv2YSQH+PdxD77+QMixXiNYS+ZzDRNs+SlJcyQY4ju6T MIjvav8waiJmSXIq/nBd+cq5V7EXRdODXRfsKUEDdHFjoKoeZIsa9DCijzImvma3 X/a2W//nU7oiQ0J/ZauiGNk1Sg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:29:07 2026 by rpki-client