$ rpki-client -vvf rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft File: lqeZovSzCLIlIrzkXjGNanAmKSs.mft (raw, json) Hash identifier: eWAiL/M+fBvoDw+NNJOEqQ8lQkycGWWO/mqxDVxnt+s= Subject key identifier: 47:77:9D:2A:2F:4F:12:DA:25:43:D7:7D:2B:6F:87:80:15:90:57:0B Authority key identifier: 96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B Certificate issuer: /CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Certificate serial: 123C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft Manifest number: 122C Signing time: Thu 16 Apr 2026 17:04:22 +0000 Manifest this update: Thu 16 Apr 2026 17:04:22 +0000 Manifest next update: Thu 23 Apr 2026 17:04:22 +0000 Files and hashes: 1: lqeZovSzCLIlIrzkXjGNanAmKSs.crl (hash: cz4FQtr1PPXzUaQMq82okGYOU2UkxevH+KrajDWhVYM=) 2: 318BC266FEA911E8BF138B59C4F9AE02.roa (hash: S+enzldOi/Tk8VhBxK9J1PD1ALiMccvtC2k5b2Y8TNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4668 (0x123c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BA4B, serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Validity Not Before: Apr 16 17:04:22 2026 GMT Not After : Apr 23 17:04:22 2026 GMT Subject: CN=69e11696-6327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:27:04:2e:d8:a4:f7:dc:86:00:cd:4a:83:d7: 3e:48:16:1e:ef:fe:a9:cd:a7:d4:b9:1c:ae:f0:b4: a7:fb:fd:13:a4:74:62:0c:bd:b8:50:fb:b8:73:2a: c0:32:94:a3:dc:b8:7b:75:41:5e:6b:c8:f1:2f:12: b0:7a:e6:e0:f9:4a:59:d0:a8:5a:26:26:6d:27:57: d1:0a:68:f6:1e:b9:87:9b:73:89:ef:21:ee:bb:71: 03:6c:5c:7a:6a:a0:fe:28:97:8d:31:5b:3b:8f:61: 7a:7d:37:87:5c:7c:c3:78:3c:ab:a2:f0:2f:4d:a3: 2d:97:6b:63:d3:d7:23:8e:49:75:12:67:e2:43:28: bb:ca:48:c0:0c:2e:b6:3e:58:60:b0:54:fe:24:43: c2:f7:7d:60:3f:ef:5b:6a:0e:b1:a4:54:d0:ef:b1: 08:08:bf:10:02:21:73:04:c8:b8:8a:20:55:53:c5: 2d:e9:85:22:b7:d6:25:ec:5d:37:a6:56:67:70:6a: 5c:92:e3:c6:50:1f:33:e5:e7:e2:89:21:e9:5d:3f: db:0f:c6:bc:b3:77:f4:53:e3:73:f0:eb:35:a9:8a: e0:06:03:77:34:07:7f:dd:83:cc:76:96:61:bd:6c: aa:54:b5:aa:d5:ed:00:11:d5:ea:b6:32:4e:fd:ec: 52:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:77:9D:2A:2F:4F:12:DA:25:43:D7:7D:2B:6F:87:80:15:90:57:0B X509v3 Authority Key Identifier: keyid:96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:40:f1:c2:4d:12:d5:38:fc:fe:6c:ce:46:d0:93:75:b5:87: 1d:c6:2a:77:99:28:ee:bb:ef:cd:13:7b:64:cf:53:65:29:35: 8e:81:69:8c:ab:45:fc:70:ab:2c:38:d8:49:2a:bf:c5:d2:32: 72:fe:6a:9f:c6:c9:b6:82:7e:9b:1e:28:13:d9:20:97:cf:a3: 3e:9d:cf:49:37:39:00:2e:00:eb:f6:76:eb:0d:a7:13:a5:2f: 8a:ec:ab:30:c7:bd:39:9c:10:a1:50:bd:56:f3:98:c4:b5:0c: dc:da:62:40:6b:d4:52:ef:91:bb:f2:ef:af:c1:a0:41:ab:b8: 15:3a:76:76:ae:69:b7:36:be:aa:cb:d3:a1:f2:d1:be:e4:bf: 28:9e:5f:1c:4d:18:54:3e:f7:f5:dc:c9:f7:40:20:1f:45:02: 47:7b:4f:7c:3b:80:01:75:5c:d4:13:02:ec:81:a3:09:81:3b: 1d:e6:e1:9b:b1:5b:6e:17:56:84:32:da:f3:c1:9e:68:aa:76: 8c:37:58:af:65:4a:7c:c2:d8:04:9f:00:66:89:ae:cb:0c:4d: b4:e0:3c:a5:92:b2:72:d1:7f:6f:17:f9:6c:d2:f4:3f:31:8b: f1:8d:85:0d:6d:8f:01:9e:6a:36:43:9b:7d:94:24:92:0f:75: 8c:df:86:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBNEIxMTAvBgNVBAUTKDk2QTc5OUEyRjRCMzA4QjIyNTIyQkNFNDVFMzE4RDZB NzAyNjI5MkIwHhcNMjYwNDE2MTcwNDIyWhcNMjYwNDIzMTcwNDIyWjAYMRYwFAYD VQQDEw02OWUxMTY5Ni02MzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ScELtik99yGAM1Kg9c+SBYe7/6pzafUuRyu8LSn+/0TpHRiDL24UPu4cyrA MpSj3Lh7dUFea8jxLxKweubg+UpZ0KhaJiZtJ1fRCmj2HrmHm3OJ7yHuu3EDbFx6 aqD+KJeNMVs7j2F6fTeHXHzDeDyrovAvTaMtl2tj09cjjkl1EmfiQyi7ykjADC62 PlhgsFT+JEPC931gP+9bag6xpFTQ77EICL8QAiFzBMi4iiBVU8Ut6YUit9Yl7F03 plZncGpckuPGUB8z5efiiSHpXT/bD8a8s3f0U+Nz8Os1qYrgBgN3NAd/3YPMdpZh vWyqVLWq1e0AEdXqtjJO/exSswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEd3nSov TxLaJUPXfStvh4AVkFcLMB8GA1UdIwQYMBaAFJanmaL0swiyJSK85F4xjWpwJikr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkE0Qi9FMzc3RkQ3QUZF QTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNMSWxJcnprWGpHTmFuQW1L U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xxZVpvdlN6Q0xJbElyemtYakdOYW5BbUtTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkE0Qi9FMzc3RkQ3QUZFQTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNM SWxJcnprWGpHTmFuQW1LU3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFEDxwk0S1Tj8/mzORtCTdbWHHcYqd5ko7rvvzRN7ZM9TZSk1joFpjKtF/HCr LDjYSSq/xdIycv5qn8bJtoJ+mx4oE9kgl8+jPp3PSTc5AC4A6/Z26w2nE6Uviuyr MMe9OZwQoVC9VvOYxLUM3NpiQGvUUu+Ru/Lvr8GgQau4FTp2dq5ptza+qsvTofLR vuS/KJ5fHE0YVD739dzJ90AgH0UCR3tPfDuAAXVc1BMC7IGjCYE7Hebhm7FbbhdW hDLa88GeaKp2jDdYr2VKfMLYBJ8AZomuywxNtOA8pZKyctF/bxf5bNL0PzGL8Y2F DW2PAZ5qNkObfZQkkg91jN+GhA== -----END CERTIFICATE-----Generated at Fri Apr 17 06:18:47 2026 by rpki-client