$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: XaUxF/4zEjX/8wKAsEuLxW4677tlHhUhxTU3OEVOkpw= Subject key identifier: 49:76:B3:95:78:52:51:8E:C0:83:9A:EA:83:1E:70:24:A4:A9:D6:9D Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 10CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 10CB Signing time: Thu 16 Apr 2026 17:15:08 +0000 Manifest this update: Thu 16 Apr 2026 17:15:08 +0000 Manifest next update: Thu 23 Apr 2026 17:15:08 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: KMaQ2YBa+tYsasKAvkZrM+ICSPjLYa7yropPw+05R/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:15:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4302 (0x10ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21, serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: Apr 16 17:15:08 2026 GMT Not After : Apr 23 17:15:08 2026 GMT Subject: CN=69e1191c-e319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:16:21:1f:31:66:d5:b3:7a:66:09:40:7c:14: 62:48:18:f8:38:24:57:79:58:85:24:0f:f5:a9:c9: 6f:f3:d9:bd:63:3d:8f:94:ea:aa:7f:f7:8d:b5:e6: c5:04:d9:1c:a7:e1:e8:82:24:ec:97:dd:e5:a8:6a: 26:e3:7d:da:dc:1d:0c:24:7f:0a:f0:55:57:37:f8: 39:85:0e:ee:2f:2a:1f:01:39:03:e2:41:66:e3:b3: a2:cb:4a:c5:b9:c4:82:05:bd:4d:47:1d:99:9e:53: 29:bf:6d:32:09:69:54:26:c5:da:b3:c1:91:63:4a: 32:65:df:12:cd:95:03:97:8a:de:77:a6:ab:96:3b: ef:52:09:61:61:31:63:ce:37:21:81:ed:a6:c0:bc: 7e:63:1c:4b:31:ec:79:aa:32:6f:26:4b:38:98:f3: ba:df:e4:05:82:74:e3:df:ca:16:2b:76:ec:48:5e: 06:01:3c:43:66:16:06:d2:33:53:53:47:b9:bd:23: 8b:97:71:e5:66:96:46:24:8f:12:d8:9f:8a:c7:b5: f9:78:96:4f:47:39:ea:29:6f:fa:b3:c0:f6:31:68: d5:2f:ce:c7:7e:18:d3:94:55:ce:2a:44:1b:b1:a7: 04:d8:db:61:87:47:ea:32:b9:b6:56:93:2e:6e:64: 03:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:76:B3:95:78:52:51:8E:C0:83:9A:EA:83:1E:70:24:A4:A9:D6:9D X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:1f:58:a2:37:72:4b:6c:b1:eb:97:47:47:39:ba:31:d9:ba: cf:9e:fb:48:34:92:a5:e3:fb:c9:20:6d:ef:f3:ab:b8:bf:17: 91:f8:b2:36:10:cf:53:6f:18:38:2f:f2:31:37:cf:bf:0a:b9: 4f:ad:78:cc:e2:11:54:09:09:e9:69:26:e2:87:c3:96:85:71: 0f:8e:68:d6:f3:dc:a3:f2:7d:69:78:ee:c6:37:92:c4:d7:a6: 58:43:81:2e:ce:31:d9:c6:e1:aa:13:86:49:d2:7e:b4:52:ea: 56:7e:57:45:ac:9d:d7:aa:2f:c5:b7:56:e1:09:e9:69:47:ca: 03:38:33:8e:0a:a8:bb:e3:ec:66:97:30:2a:76:bc:0b:8d:20: 96:c8:72:0d:be:fe:e2:d3:cf:0a:23:23:ce:86:f0:4d:e9:b4: 24:9f:cb:19:7c:72:d5:0d:c1:fa:8c:72:f4:57:36:27:83:7a: 88:38:eb:b0:ce:68:d8:9d:82:6f:2f:61:97:a4:ac:ed:aa:7b: 0d:8b:a4:89:80:64:8e:d9:7a:05:b0:2d:e6:f8:88:6b:71:51: e8:0e:f2:a7:db:34:f8:af:68:fb:a2:27:c2:c5:f1:2e:0e:65: 4f:97:a6:e8:96:a2:67:b9:c5:47:70:92:3f:46:6e:4b:0c:5f: a0:6b:39:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjYwNDE2MTcxNTA4WhcNMjYwNDIzMTcxNTA4WjAYMRYwFAYD VQQDEw02OWUxMTkxYy1lMzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjRYhHzFm1bN6ZglAfBRiSBj4OCRXeViFJA/1qclv89m9Yz2PlOqqf/eNtebF BNkcp+HogiTsl93lqGom433a3B0MJH8K8FVXN/g5hQ7uLyofATkD4kFm47Oiy0rF ucSCBb1NRx2ZnlMpv20yCWlUJsXas8GRY0oyZd8SzZUDl4red6arljvvUglhYTFj zjchge2mwLx+YxxLMex5qjJvJks4mPO63+QFgnTj38oWK3bsSF4GATxDZhYG0jNT U0e5vSOLl3HlZpZGJI8S2J+Kx7X5eJZPRznqKW/6s8D2MWjVL87HfhjTlFXOKkQb sacE2Nthh0fqMrm2VpMubmQDvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEl2s5V4 UlGOwIOa6oMecCSkqdadMB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjx9YojdyS2yx65dHRzm6Mdm6z577SDSSpeP7ySBt7/OruL8XkfiyNhDPU28Y OC/yMTfPvwq5T614zOIRVAkJ6Wkm4ofDloVxD45o1vPco/J9aXjuxjeSxNemWEOB Ls4x2cbhqhOGSdJ+tFLqVn5XRayd16ovxbdW4QnpaUfKAzgzjgqou+PsZpcwKna8 C40glshyDb7+4tPPCiMjzobwTem0JJ/LGXxy1Q3B+oxy9Fc2J4N6iDjrsM5o2J2C by9hl6Ss7ap7DYukiYBkjtl6BbAt5viIa3FR6A7yp9s0+K9o+6InwsXxLg5lT5em 6JaiZ7nFR3CSP0ZuSwxfoGs5kw== -----END CERTIFICATE-----Generated at Fri Apr 17 14:48:46 2026 by rpki-client