$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft File: lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft (raw, json) Hash identifier: xp/74+eqQRNZ/3PAonS2hsrvPgnmn0grr1dEFji6Ceo= Subject key identifier: F3:39:CB:EB:B4:4F:40:59:F5:F5:A7:37:A8:98:66:4D:1F:A7:BC:61 Authority key identifier: 95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 Certificate issuer: /CN=A91E9DF8/serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Certificate serial: 0689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft Manifest number: 0680 Signing time: Sat 04 Apr 2026 22:17:45 +0000 Manifest this update: Sat 04 Apr 2026 22:17:44 +0000 Manifest next update: Sat 11 Apr 2026 22:17:44 +0000 Files and hashes: 1: lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl (hash: feOQ8zhc81MOZqTwUsTIv9QJhMo8Db0v6vWn6NFimec=) 2: A8086732B6DA11EBB7B67954C4F9AE02.roa (hash: 9cNeCzppQ/e103+t/5bNmmQB3XDS/R3mXfxCBYG3Y9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:17:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9DF8, serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Validity Not Before: Apr 4 22:17:44 2026 GMT Not After : Apr 11 22:17:44 2026 GMT Subject: CN=69d18e08-244a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:4b:10:6c:48:8e:5d:f2:30:e2:22:12:92:f4: f1:15:eb:57:52:ce:54:9b:c4:47:ed:20:7d:2e:4c: ce:49:2b:b0:8e:fd:e5:39:64:23:be:68:5a:b0:57: 17:f9:05:f8:c9:01:5b:4e:37:f1:92:98:98:ef:c8: 3c:c1:51:0d:8c:6f:82:7f:36:31:c1:aa:55:4c:54: f1:56:f6:24:4c:45:b3:d0:93:9a:9a:d3:7d:32:4c: 84:3a:9a:07:dc:ef:73:9e:0c:1e:68:82:9c:42:92: 7a:2b:68:e9:a5:5e:51:6c:7e:96:e8:30:44:09:21: 2f:1b:65:5d:16:89:38:eb:f1:06:40:46:e6:3d:a3: 55:26:76:33:7e:be:03:7c:27:20:e3:02:f2:44:0f: 5a:c5:86:83:71:2d:f0:43:c2:da:fc:a3:c9:e0:2a: 71:92:2e:31:2a:9b:74:dc:ea:b2:81:83:4b:f0:06: 56:2a:e4:8e:e2:1f:d1:7c:fb:10:cf:2a:0f:98:72: 38:97:0b:6d:ad:94:30:ff:9b:73:b9:e8:50:b4:e5: a6:98:3c:9a:9b:5a:a0:d5:14:07:cc:80:9d:81:b3: 21:8f:2d:bf:b2:7b:cd:e2:3b:c9:e8:88:00:6a:c6: 68:bd:b9:ee:7a:68:81:2d:50:71:3b:92:16:88:7c: 60:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:39:CB:EB:B4:4F:40:59:F5:F5:A7:37:A8:98:66:4D:1F:A7:BC:61 X509v3 Authority Key Identifier: keyid:95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:b9:74:26:65:90:af:74:31:3a:9d:42:af:d5:1c:98:68:ab: 40:5e:e1:10:cc:cc:27:d0:07:bc:3a:f8:cb:61:e7:35:be:84: af:0c:ba:4c:78:1a:7a:73:07:42:3b:7b:88:60:68:7c:d2:72: 8d:24:fd:db:5b:63:59:77:da:5b:28:cd:0d:46:bf:62:12:28: 01:c6:41:b4:a4:db:e6:60:02:23:23:9a:f4:1b:dd:b3:31:99: be:53:d0:31:e8:8c:fb:53:d0:7c:26:cc:63:a0:dc:2a:f2:44: 3e:5d:bd:59:4c:93:7f:59:1a:7b:ab:e8:d4:db:f1:6a:7c:b5: 42:b0:6b:6a:85:d6:fe:32:58:e8:15:fd:3b:ab:ff:e8:21:1b: f0:9b:06:7c:19:21:f7:43:41:ae:98:c6:b0:8c:83:96:84:61: c2:c2:01:39:27:e1:9e:c1:91:95:32:15:0b:06:fc:e8:94:20: 35:fd:88:2f:0f:54:88:3f:2d:52:b6:23:9d:ef:f4:04:5d:1f: 3d:85:3c:62:4d:85:8d:0d:54:87:04:21:66:26:bb:8e:17:6c: e6:2b:e3:e6:44:b5:8e:5d:5a:9d:5c:e5:68:d8:5b:e4:b9:02: 56:73:fb:d7:1d:65:94:8b:4b:23:5f:20:0a:b2:27:88:fe:d7: 87:f1:f7:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlERjgxMTAvBgNVBAUTKDk1MDY4QkIzMEFCQzdFMDA3RkQ4Mzg3RTRERTBBODNF RkFBREQ0NzIwHhcNMjYwNDA0MjIxNzQ0WhcNMjYwNDExMjIxNzQ0WjAYMRYwFAYD VQQDEw02OWQxOGUwOC0yNDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAg0sQbEiOXfIw4iISkvTxFetXUs5Um8RH7SB9LkzOSSuwjv3lOWQjvmhasFcX +QX4yQFbTjfxkpiY78g8wVENjG+CfzYxwapVTFTxVvYkTEWz0JOamtN9MkyEOpoH 3O9zngweaIKcQpJ6K2jppV5RbH6W6DBECSEvG2VdFok46/EGQEbmPaNVJnYzfr4D fCcg4wLyRA9axYaDcS3wQ8La/KPJ4Cpxki4xKpt03OqygYNL8AZWKuSO4h/RfPsQ zyoPmHI4lwttrZQw/5tzuehQtOWmmDyam1qg1RQHzICdgbMhjy2/snvN4jvJ6IgA asZovbnuemiBLVBxO5IWiHxgmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPM5y+u0 T0BZ9fWnN6iYZk0fp7xhMB8GA1UdIwQYMBaAFJUGi7MKvH4Af9g4fk3gqD76rdRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOURGOC80QjNCODgxRUI2 RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZnQl8yRGgtVGVDb1B2cXQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRYUxzd3E4ZmdCXzJEaC1UZUNvUHZxdDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OURGOC80QjNCODgxRUI2RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZn Ql8yRGgtVGVDb1B2cXQxSEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVLl0JmWQr3QxOp1Cr9UcmGirQF7hEMzMJ9AHvDr4y2HnNb6Erwy6THgaenMH Qjt7iGBofNJyjST921tjWXfaWyjNDUa/YhIoAcZBtKTb5mACIyOa9BvdszGZvlPQ MeiM+1PQfCbMY6DcKvJEPl29WUyTf1kae6vo1Nvxany1QrBraoXW/jJY6BX9O6v/ 6CEb8JsGfBkh90NBrpjGsIyDloRhwsIBOSfhnsGRlTIVCwb86JQgNf2ILw9UiD8t UrYjne/0BF0fPYU8Yk2FjQ1UhwQhZia7jhds5ivj5kS1jl1anVzlaNhb5LkCVnP7 1x1llItLI18gCrIniP7Xh/H3xw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:46 2026 by rpki-client