$ rpki-client -vvf rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft File: lSpNx8TWEJWYvu5awKIG0nuFxWo.mft (raw, json) Hash identifier: aYlOQeHH/M4FLmc2nhjnCl1q+3+BVHmOI7h6ZczgiUk= Subject key identifier: 1B:45:DB:C0:0C:6D:21:E8:7E:0A:9F:C0:76:65:14:BB:98:7C:A3:BD Authority key identifier: 95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A Certificate issuer: /CN=A912D71D/serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft Manifest number: AB Signing time: Fri 17 Apr 2026 06:54:08 +0000 Manifest this update: Fri 17 Apr 2026 06:54:07 +0000 Manifest next update: Fri 24 Apr 2026 06:54:07 +0000 Files and hashes: 1: lSpNx8TWEJWYvu5awKIG0nuFxWo.crl (hash: XklBoMYmAdS/Vm7fUqR+5MvXIpMh2aFh8U1J/Wvo+I0=) 2: 4002AE6236CF11F0AA705D26C4F9AE02.roa (hash: PYLDscz39D9VfGo8zcZSUWDhN0EWb8SMMJ0oBjb9APU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D71D, serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Validity Not Before: Apr 17 06:54:07 2026 GMT Not After : Apr 24 06:54:07 2026 GMT Subject: CN=69e1d910-8489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:38:bf:34:66:7d:90:84:e9:31:6d:7c:97:3d: b2:78:89:fa:68:2e:35:fd:7b:33:56:5b:58:dd:e9: 77:ac:b2:40:0c:e9:e7:fa:fc:df:9a:fa:d5:7a:2b: 19:22:31:d4:7d:62:8e:f9:0d:8e:36:49:ba:a9:00: a3:44:56:5d:dd:bb:c8:63:94:81:5c:44:a3:0c:0e: 05:23:00:33:5c:fc:c9:af:0e:05:db:b0:5b:63:0a: bf:dc:cb:20:0a:55:2f:b1:0e:79:67:7b:4a:42:e5: 4d:15:dc:a2:9a:3f:61:55:e8:f4:d1:a8:4d:a1:54: a4:29:d3:be:e4:12:1a:ac:3d:0e:bc:aa:b9:3b:2e: 4f:5b:93:5f:9e:5a:68:39:3a:9f:b5:5e:53:24:9f: c9:d8:86:d4:2c:27:8c:e8:4e:77:7e:ce:6d:cd:22: 1f:d1:80:e6:e8:d8:7e:86:d6:79:26:e7:f9:55:dd: 6c:4f:bb:26:ac:91:ad:7b:bd:97:bb:91:e6:4b:e8: 68:8d:f8:43:40:f3:17:05:55:c0:bf:55:38:a9:21: 48:fa:8b:95:be:cd:6f:19:13:0c:63:2b:d0:59:ec: 3d:64:24:23:c7:76:15:26:27:c8:f7:4c:6d:9d:02: ab:a6:bd:e8:b3:54:8d:72:dc:68:ff:ff:39:e1:90: 0c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:45:DB:C0:0C:6D:21:E8:7E:0A:9F:C0:76:65:14:BB:98:7C:A3:BD X509v3 Authority Key Identifier: keyid:95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:71:31:4f:3f:a0:94:a9:dc:75:b9:b1:a6:c6:43:76:7e:cc: 21:82:a5:7a:0a:94:e3:15:02:98:e4:22:ce:1e:e9:77:2d:48: e0:57:b8:e5:4e:9c:5e:5f:65:2e:f7:5d:d5:7c:35:ef:42:4e: 7e:43:31:f2:1d:7c:4e:82:98:7b:35:33:b0:ac:01:65:1d:d0: 68:5f:59:d5:c6:05:ca:7c:bc:b8:a3:c6:fb:3f:93:bc:e2:7f: ed:68:53:6e:c1:13:16:42:23:20:83:69:f9:3c:bc:cb:58:5f: 0c:2f:1f:7c:54:11:65:d1:7c:9b:cc:a3:43:78:56:67:f6:45: b4:df:a8:c6:1a:7e:86:07:53:f2:41:ac:c2:58:a8:d9:c0:4d: 1c:8e:7e:00:4c:76:5e:07:0d:18:28:9e:57:67:c4:5f:df:5c: 70:d0:3e:c2:2d:8c:05:5e:1e:21:6a:78:9c:95:13:d3:2d:b7: 9c:c0:3c:2e:9d:e2:fc:94:3a:28:58:2b:48:2e:bb:a2:05:8e: 9e:29:60:08:37:e6:2f:e7:12:74:2f:a4:5c:5f:28:f6:09:39: dc:9c:43:e5:ae:af:38:d8:0a:82:d8:7c:06:2c:6a:ca:4f:4b: 98:83:ba:ae:6e:8b:1c:fc:fb:da:54:b2:be:ab:83:f9:9b:2b: 1a:dc:64:9f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ3MUQxMTAvBgNVBAUTKDk1MkE0REM3QzRENjEwOTU5OEJFRUU1QUMwQTIwNkQy N0I4NUM1NkEwHhcNMjYwNDE3MDY1NDA3WhcNMjYwNDI0MDY1NDA3WjAYMRYwFAYD VQQDEw02OWUxZDkxMC04NDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Ti/NGZ9kITpMW18lz2yeIn6aC41/XszVltY3el3rLJADOnn+vzfmvrVeisZ IjHUfWKO+Q2ONkm6qQCjRFZd3bvIY5SBXESjDA4FIwAzXPzJrw4F27BbYwq/3Msg ClUvsQ55Z3tKQuVNFdyimj9hVej00ahNoVSkKdO+5BIarD0OvKq5Oy5PW5Nfnlpo OTqftV5TJJ/J2IbULCeM6E53fs5tzSIf0YDm6Nh+htZ5Juf5Vd1sT7smrJGte72X u5HmS+hojfhDQPMXBVXAv1U4qSFI+ouVvs1vGRMMYyvQWew9ZCQjx3YVJifI90xt nQKrpr3os1SNctxo//854ZAMWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBtF28AM bSHofgqfwHZlFLuYfKO9MB8GA1UdIwQYMBaAFJUqTcfE1hCVmL7uWsCiBtJ7hcVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDcxRC8xRTBGOTkyRTM2 Q0UxMUYwQTJBNjlDMUZDNEY5QUUwMi9sU3BOeDhUV0VKV1l2dTVhd0tJRzBudUZ4 V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTcE54OFRXRUpXWXZ1NWF3S0lHMG51RnhXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDcxRC8xRTBGOTkyRTM2Q0UxMUYwQTJBNjlDMUZDNEY5QUUwMi9sU3BOeDhUV0VK V1l2dTVhd0tJRzBudUZ4V28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXXExTz+glKncdbmxpsZDdn7MIYKlegqU4xUCmOQizh7pdy1I4Fe45U6cXl9l Lvdd1Xw170JOfkMx8h18ToKYezUzsKwBZR3QaF9Z1cYFyny8uKPG+z+TvOJ/7WhT bsETFkIjIINp+Ty8y1hfDC8ffFQRZdF8m8yjQ3hWZ/ZFtN+oxhp+hgdT8kGswlio 2cBNHI5+AEx2XgcNGCieV2fEX99ccNA+wi2MBV4eIWp4nJUT0y23nMA8Lp3i/JQ6 KFgrSC67ogWOnilgCDfmL+cSdC+kXF8o9gk53JxD5a6vONgKgth8Bixqyk9LmIO6 rm6LHPz72lSyvquD+ZsrGtxknw== -----END CERTIFICATE-----Generated at Fri Apr 17 15:29:12 2026 by rpki-client