$ rpki-client -vvf rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft File: lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft (raw, json) Hash identifier: Uld/T9Y6pYF258liDZ2TEyTys10KFCtitV+qOFHzhAM= Subject key identifier: BB:77:5D:9C:1E:27:EC:EA:A6:76:16:9A:0D:36:20:B6:A1:FF:EC:CA Authority key identifier: 96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 Certificate issuer: /CN=A91211D4/serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Certificate serial: 074C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft Manifest number: 0724 Signing time: Thu 16 Apr 2026 21:56:12 +0000 Manifest this update: Thu 16 Apr 2026 21:56:11 +0000 Manifest next update: Thu 23 Apr 2026 21:56:11 +0000 Files and hashes: 1: lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl (hash: D6znJ+n/AWx/AgbV5CLIj1EV71jNiZlKMyvgX3R8C7M=) 2: 1C9DA52E9BD011F0AE2D7868C4F9AE02.roa (hash: unK4fP/mkr9XKljBtil4C9237fSyrnmBB7OSNRMBDDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:56:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1868 (0x74c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91211D4, serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Validity Not Before: Apr 16 21:56:11 2026 GMT Not After : Apr 23 21:56:11 2026 GMT Subject: CN=69e15afc-5f77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7b:b7:c3:f7:0e:16:b4:ec:ed:09:6a:27:4c: 50:e2:db:e0:25:03:3a:00:88:67:56:dd:ac:86:86: 20:16:cd:35:df:36:be:0d:ee:d3:c7:64:e1:bf:92: 97:6e:69:ea:64:4b:47:a0:c7:81:4d:95:ea:ad:71: e8:21:60:99:29:2d:57:a8:cd:36:1e:29:e0:9a:24: f8:f2:dd:8e:4e:98:4c:6c:40:66:84:8a:ed:c7:20: ca:e8:c3:50:8a:e6:27:c3:ea:7d:94:60:80:0e:8f: ab:c0:e7:8a:18:22:95:5f:e0:8f:cc:03:6c:e3:29: 15:98:6e:48:13:bb:dd:6e:fb:4c:7e:d2:84:d4:09: 02:cf:eb:94:62:df:2e:db:54:65:87:17:5e:19:fe: bd:c7:b9:ad:dc:27:4e:c7:52:27:de:d1:a2:2c:e3: 81:a9:67:c4:bf:59:a0:6c:d5:3a:e7:10:88:de:c3: bd:25:1d:d9:19:32:26:55:aa:b9:69:77:c6:67:0b: f2:33:8b:8f:e7:5c:d4:41:8d:71:16:72:a6:65:e3: 79:8b:54:e2:7d:34:08:33:93:f5:53:62:4a:d8:d3: 7d:96:6c:01:6c:fe:83:c7:33:62:0c:e9:f3:83:17: 55:4e:37:41:c7:7c:e0:bc:64:eb:c8:e3:09:eb:1a: ba:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:77:5D:9C:1E:27:EC:EA:A6:76:16:9A:0D:36:20:B6:A1:FF:EC:CA X509v3 Authority Key Identifier: keyid:96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:18:e1:7a:b7:e8:df:36:fc:77:18:8c:27:80:37:07:82:b9: b9:9a:3d:bc:87:9e:c2:06:2c:f2:d9:63:37:73:57:fb:54:e0: 3c:2a:9c:f0:95:44:cf:9a:41:cc:30:76:a8:52:28:8a:de:9b: 2b:bf:fd:e1:68:f2:d4:85:3c:c1:87:ae:ec:21:fb:60:e6:c5: 4f:de:e8:f2:5a:5b:31:cf:98:d7:50:34:14:6f:37:7f:1e:34: 10:8a:bb:e6:8c:72:43:44:09:ee:f1:12:09:ad:b1:02:ec:ae: b2:a9:68:06:e9:3b:0e:86:40:e8:b2:aa:f5:1d:24:fa:07:7c: e9:0c:b6:15:c1:39:f4:57:ec:46:79:26:ea:19:3a:fc:1b:0b: 3d:bd:f3:31:e3:f4:f8:b3:87:a0:bd:f9:b1:e0:92:5a:d8:4a: 7f:87:94:72:6d:f5:ed:54:06:69:a4:7a:49:62:5c:b4:fa:d8: a6:b8:28:2a:1d:02:16:0a:9a:05:9e:a5:42:12:d9:f9:75:4e: 46:b9:19:01:0f:fd:55:b6:45:17:87:a6:a1:3e:db:ea:72:29: b2:7b:70:c0:de:3a:17:1c:b6:b9:b4:9e:88:71:ff:42:ab:f5: 9f:78:9f:74:1e:1a:23:98:8e:f4:38:33:00:e2:8b:63:3a:70: 58:9c:2c:5e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjExRDQxMTAvBgNVBAUTKDk2OEQyQUFBNjE2OENCNDk2OTQ0QTcyNzAxOEFGQjQy QTI2RTMxRTEwHhcNMjYwNDE2MjE1NjExWhcNMjYwNDIzMjE1NjExWjAYMRYwFAYD VQQDEw02OWUxNWFmYy01Zjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHu3w/cOFrTs7QlqJ0xQ4tvgJQM6AIhnVt2shoYgFs013za+De7Tx2Thv5KX bmnqZEtHoMeBTZXqrXHoIWCZKS1XqM02HingmiT48t2OTphMbEBmhIrtxyDK6MNQ iuYnw+p9lGCADo+rwOeKGCKVX+CPzANs4ykVmG5IE7vdbvtMftKE1AkCz+uUYt8u 21RlhxdeGf69x7mt3CdOx1In3tGiLOOBqWfEv1mgbNU65xCI3sO9JR3ZGTImVaq5 aXfGZwvyM4uP51zUQY1xFnKmZeN5i1TifTQIM5P1U2JK2NN9lmwBbP6DxzNiDOnz gxdVTjdBx3zgvGTryOMJ6xq6nwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLt3XZwe J+zqpnYWmg02ILah/+zKMB8GA1UdIwQYMBaAFJaNKqphaMtJaUSnJwGK+0KibjHh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTFENC9BOUY0OTY1Mjg2 Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kwbHBSS2NuQVlyN1FxSnVN ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvMHFxbUZveTBscFJLY25BWXI3UXFKdU1lRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTFENC9BOUY0OTY1Mjg2Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kw bHBSS2NuQVlyN1FxSnVNZUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApxjherfo3zb8dxiMJ4A3B4K5uZo9vIeewgYs8tljN3NX+1TgPCqc8JVEz5pB zDB2qFIoit6bK7/94Wjy1IU8wYeu7CH7YObFT97o8lpbMc+Y11A0FG83fx40EIq7 5oxyQ0QJ7vESCa2xAuyusqloBuk7DoZA6LKq9R0k+gd86Qy2FcE59FfsRnkm6hk6 /BsLPb3zMeP0+LOHoL35seCSWthKf4eUcm317VQGaaR6SWJctPrYprgoKh0CFgqa BZ6lQhLZ+XVORrkZAQ/9VbZFF4emoT7b6nIpsntwwN46Fxy2ubSeiHH/Qqv1n3if dB4aI5iO9DgzAOKLYzpwWJwsXg== -----END CERTIFICATE-----Generated at Fri Apr 17 11:58:44 2026 by rpki-client