$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft File: lC8l1zULID6onvLRzBULBbF7K4c.mft (raw, json) Hash identifier: 6M57PY+djKfw7h9N1lxjiA6Rt6k5kXNA8mNf/NsIRYE= Subject key identifier: 96:6B:34:D7:9C:7F:CB:E9:FE:65:EE:2E:45:93:C1:46:ED:FF:A8:A6 Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 Certificate issuer: /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Certificate serial: 355C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft Manifest number: 3540 Signing time: Thu 16 Apr 2026 15:16:55 +0000 Manifest this update: Thu 16 Apr 2026 15:16:54 +0000 Manifest next update: Thu 23 Apr 2026 15:16:54 +0000 Files and hashes: 1: lC8l1zULID6onvLRzBULBbF7K4c.crl (hash: LdnaYb5s1PCJXQVkC7FhImLIsG1ExJqY+rqQrTnG/H0=) 2: C098D762675111E9A0C4BB36C4F9AE02.roa (hash: naU1L3sA/vwcpXLmBU/QE/974IoqN32UsdXdqlCcaP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:16:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13660 (0x355c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FB1D, serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Validity Not Before: Apr 16 15:16:54 2026 GMT Not After : Apr 23 15:16:54 2026 GMT Subject: CN=69e0fd67-3972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:06:34:cd:d9:42:ac:73:af:21:f7:ed:d0:f1: 0c:b4:4d:70:96:21:e6:81:61:9a:47:c9:90:2b:f1: 16:5d:71:ad:7f:32:fe:cc:5d:34:8d:6c:39:6d:37: be:0a:60:17:58:1b:be:f4:de:ed:cb:52:c6:30:9f: e9:a3:27:35:00:9e:04:e9:7a:19:e1:c1:87:d8:19: d5:54:56:11:d3:83:55:cb:f2:70:d3:b6:52:f3:d6: dd:ca:d1:a6:3d:54:20:68:4b:d6:bb:38:d7:11:4f: dc:d5:69:e6:dc:4c:17:71:ce:1f:60:60:a4:e0:87: e6:f1:a1:bb:a6:0b:9c:59:39:46:fb:b5:63:fa:fd: 2f:15:10:34:66:82:49:1c:0c:95:8b:f9:88:b8:7f: 70:82:33:fb:98:b2:11:46:2f:06:f1:4b:27:9c:5a: 4e:88:8f:95:da:17:81:0c:94:68:cb:7e:cf:5d:52: bb:7d:31:08:4e:0f:d0:eb:d0:ce:b7:aa:7b:ff:c1: 9a:f9:c2:0f:e3:e4:a3:34:5d:a5:e9:96:11:77:39: cd:b6:82:83:29:7e:f1:40:4a:4c:15:01:ab:55:2c: 48:be:b1:4c:03:d5:1e:16:42:fe:8e:fb:59:b3:62: 51:f1:43:ae:7c:03:72:6e:a7:da:c7:5c:85:cc:9a: e6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:6B:34:D7:9C:7F:CB:E9:FE:65:EE:2E:45:93:C1:46:ED:FF:A8:A6 X509v3 Authority Key Identifier: keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:bd:ca:8f:4a:6a:a6:96:17:43:b9:c7:8d:6c:0b:80:c0:8c: 25:a6:3a:4e:7b:5d:7a:b2:21:14:18:5a:44:9f:35:7b:c6:30: c7:fe:08:f7:7e:fe:24:6b:13:19:75:37:b4:fc:09:3b:fe:80: 16:3e:57:93:a0:80:09:13:8d:bc:31:eb:b6:b3:03:13:25:14: b9:64:5f:b3:19:b3:c5:01:54:75:d8:0d:27:21:20:25:f0:d0: 12:0f:28:32:77:88:78:f2:de:3b:69:ec:5f:24:65:d6:cd:9a: b5:9e:36:46:3d:ea:00:13:d8:2b:f6:95:bb:43:7b:a6:e0:c2: b4:99:51:9b:3a:c3:12:fb:3f:38:8c:b9:12:ec:3d:30:fc:19: 51:28:eb:ab:52:4c:c0:05:6d:e1:d2:0d:dc:ca:ab:d9:be:b4: fe:32:9b:aa:0a:fd:51:ac:15:9c:34:66:e0:13:7e:4a:36:a6: 54:ea:34:29:cd:08:5a:0e:89:1e:49:f6:bc:b4:46:d8:83:7c: 91:7b:60:1d:34:eb:e1:48:57:89:03:a9:aa:ef:c3:80:4f:d0: 7c:83:1f:02:c9:f6:6f:43:f2:6c:ba:7a:f5:96:71:48:ce:30: 20:4c:9f:06:03:f0:9b:1e:c0:19:4b:05:59:8c:46:c1:d9:ee: 33:a3:b1:ff -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1 QjE3QjJCODcwHhcNMjYwNDE2MTUxNjU0WhcNMjYwNDIzMTUxNjU0WjAYMRYwFAYD VQQDEw02OWUwZmQ2Ny0zOTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgY0zdlCrHOvIfft0PEMtE1wliHmgWGaR8mQK/EWXXGtfzL+zF00jWw5bTe+ CmAXWBu+9N7ty1LGMJ/poyc1AJ4E6XoZ4cGH2BnVVFYR04NVy/Jw07ZS89bdytGm PVQgaEvWuzjXEU/c1Wnm3EwXcc4fYGCk4Ifm8aG7pgucWTlG+7Vj+v0vFRA0ZoJJ HAyVi/mIuH9wgjP7mLIRRi8G8UsnnFpOiI+V2heBDJRoy37PXVK7fTEITg/Q69DO t6p7/8Ga+cIP4+SjNF2l6ZYRdznNtoKDKX7xQEpMFQGrVSxIvrFMA9UeFkL+jvtZ s2JR8UOufANybqfax1yFzJrmLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJZrNNec f8vp/mXuLkWTwUbt/6imMB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkIxRC9DNjg0Q0E5QzFEQUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElE Nm9udkxSekJVTEJiRjdLNGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPr3Kj0pqppYXQ7nHjWwLgMCMJaY6TntderIhFBhaRJ81e8Ywx/4I937+JGsT GXU3tPwJO/6AFj5Xk6CACRONvDHrtrMDEyUUuWRfsxmzxQFUddgNJyEgJfDQEg8o MneIePLeO2nsXyRl1s2atZ42Rj3qABPYK/aVu0N7puDCtJlRmzrDEvs/OIy5Euw9 MPwZUSjrq1JMwAVt4dIN3Mqr2b60/jKbqgr9UawVnDRm4BN+SjamVOo0Kc0IWg6J Hkn2vLRG2IN8kXtgHTTr4UhXiQOpqu/DgE/QfIMfAsn2b0PybLp69ZZxSM4wIEyf BgPwmx7AGUsFWYxGwdnuM6Ox/w== -----END CERTIFICATE-----Generated at Fri Apr 17 07:23:59 2026 by rpki-client