$ rpki-client -vvf rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft File: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft (raw, json) Hash identifier: JpYehxuKSSJqPOIBqh6tZD3uVFLZpltH6IOdl2yi6DM= Subject key identifier: 73:7D:2E:1B:66:C4:6A:28:74:41:DF:E6:20:AE:D2:1C:78:8B:71:32 Authority key identifier: 2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD Certificate issuer: /CN=A9131ABD/serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Certificate serial: 0D14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft Manifest number: 0CF5 Signing time: Thu 16 Apr 2026 18:08:01 +0000 Manifest this update: Thu 16 Apr 2026 18:08:01 +0000 Manifest next update: Thu 23 Apr 2026 18:08:01 +0000 Files and hashes: 1: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl (hash: 1DFG8NFZ6Qq+KtkW3+nTnSIUl0EGO+4ym5MEn7eq7sY=) 2: 3726AAFA0C0011EAA414FC4AC4F9AE02.roa (hash: AZJ9Ikn6w4HKM1tU6KflkZ7ElKv1SQQyJlfS833ElRI=) 3: 99191AA404E911EAA9C20A60C4F9AE02.roa (hash: OGh3gB84SgLrNeV+oSTQFAGbvx7CV+eo340xHFNcHRk=) 4: 37FE0B120C0011EAA414FC4AC4F9AE02.roa (hash: pMrtGOs7uT1vXLuw6dCiCU+QFLRT1Z3tUfJSisugmVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:08:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3348 (0xd14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131ABD, serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Validity Not Before: Apr 16 18:08:01 2026 GMT Not After : Apr 23 18:08:01 2026 GMT Subject: CN=69e12581-03c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:40:aa:32:cd:88:e4:3f:18:d3:be:7f:88:b1: 35:e3:6c:a2:aa:2a:f3:d2:92:19:16:ff:8d:4d:37: d4:ef:19:b1:e2:fb:a8:6c:92:29:87:7e:c5:b5:40: 44:ef:6f:ec:f8:23:54:24:c2:43:80:c3:d9:5e:de: 28:e5:8d:8b:32:e0:31:18:46:c4:16:14:da:78:cc: 06:54:f4:c0:c4:eb:1c:5d:30:45:e6:ab:e5:bc:42: 2c:8a:38:ba:78:2e:c0:2d:30:79:09:1f:f2:f7:34: 52:0e:22:13:db:d5:df:6b:58:a4:d3:e4:d4:34:5c: 39:79:b6:37:ef:97:96:45:53:6a:0d:78:58:a9:55: 08:64:55:a1:3e:f1:13:0a:c3:04:e0:01:51:62:f1: 97:87:03:a4:87:cb:1d:8c:76:4b:6a:a4:53:9b:3e: 74:c2:b9:6c:5b:62:81:a7:c7:ce:6a:89:bb:37:48: 4f:84:fd:c4:85:8c:7e:c5:23:6a:33:37:a3:2a:e3: 59:64:48:71:6f:ac:c4:fe:4a:58:87:35:ed:6f:47: 3c:94:63:6d:de:4d:c0:01:7d:a8:9c:03:7b:03:8e: 23:66:34:a4:ea:50:6c:ea:d7:b5:6b:5c:cf:ad:86: 1f:ec:70:7b:3f:11:39:14:73:cb:c6:76:24:af:d1: 34:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:7D:2E:1B:66:C4:6A:28:74:41:DF:E6:20:AE:D2:1C:78:8B:71:32 X509v3 Authority Key Identifier: keyid:2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:8e:b0:5b:1d:1e:fd:07:ce:ac:8f:a5:7e:34:7f:ee:7a:0c: 66:02:be:23:5a:95:d7:78:db:82:87:20:c1:9f:a5:7f:d3:f5: 17:b0:33:6b:15:e4:0b:f4:f7:6f:6d:88:08:bb:13:fc:49:f2: 01:5f:4f:93:df:d2:56:08:b9:0f:17:d1:19:35:29:97:4b:9c: 10:51:d3:80:57:5c:14:fe:71:72:b2:4c:48:9b:92:71:93:1b: 33:ef:4a:ca:2d:56:2d:d7:48:bb:d1:ad:d2:00:9b:8f:d5:8b: fb:55:fd:c5:58:ad:d7:72:cb:c1:0e:f7:48:eb:6a:a0:0f:c2: 3c:b4:c5:45:d2:70:d6:5f:4e:78:17:0d:89:07:5b:2a:f6:8a: bd:c5:1b:17:1b:20:fd:b1:da:80:8c:1e:f2:0d:d5:c4:25:05: 86:0a:0b:8c:63:c0:f2:1c:1f:64:26:82:fa:c0:b4:89:72:b8: 28:e7:13:54:f1:d1:67:ff:f4:5c:e9:b5:c9:07:b6:35:13:2c: 9a:75:0c:59:37:ec:13:a0:be:75:c1:c2:62:58:0f:28:b9:b8: 1f:22:37:36:4f:a6:fa:83:1d:98:45:44:99:ba:67:52:1c:76: 85:d1:db:20:8e:83:1d:12:8f:5f:f5:58:38:ac:67:46:af:2d: 02:45:dd:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBQkQxMTAvBgNVBAUTKDJFOUM5MUY0RTM5NEE0QUZBOTc2RDZCQzNGNjVERjJE OUYwNzlFQkQwHhcNMjYwNDE2MTgwODAxWhcNMjYwNDIzMTgwODAxWjAYMRYwFAYD VQQDEw02OWUxMjU4MS0wM2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0CqMs2I5D8Y075/iLE142yiqirz0pIZFv+NTTfU7xmx4vuobJIph37FtUBE 72/s+CNUJMJDgMPZXt4o5Y2LMuAxGEbEFhTaeMwGVPTAxOscXTBF5qvlvEIsiji6 eC7ALTB5CR/y9zRSDiIT29Xfa1ik0+TUNFw5ebY375eWRVNqDXhYqVUIZFWhPvET CsME4AFRYvGXhwOkh8sdjHZLaqRTmz50wrlsW2KBp8fOaom7N0hPhP3EhYx+xSNq MzejKuNZZEhxb6zE/kpYhzXtb0c8lGNt3k3AAX2onAN7A44jZjSk6lBs6te1a1zP rYYf7HB7PxE5FHPLxnYkr9E0OwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHN9Lhtm xGoodEHf5iCu0hx4i3EyMB8GA1UdIwQYMBaAFC6ckfTjlKSvqXbWvD9l3y2fB569 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUFCRC8yMEU4RjlBMDA0 RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBLLXBkdGE4UDJYZkxaOEhu cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xweVI5T09VcEstcGR0YThQMlhmTFo4SG5yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUFCRC8yMEU4RjlBMDA0RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBL LXBkdGE4UDJYZkxaOEhucjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAI6wWx0e/QfOrI+lfjR/7noMZgK+I1qV13jbgocgwZ+lf9P1F7AzaxXkC/T3 b22ICLsT/EnyAV9Pk9/SVgi5DxfRGTUpl0ucEFHTgFdcFP5xcrJMSJuScZMbM+9K yi1WLddIu9Gt0gCbj9WL+1X9xVit13LLwQ73SOtqoA/CPLTFRdJw1l9OeBcNiQdb KvaKvcUbFxsg/bHagIwe8g3VxCUFhgoLjGPA8hwfZCaC+sC0iXK4KOcTVPHRZ//0 XOm1yQe2NRMsmnUMWTfsE6C+dcHCYlgPKLm4HyI3Nk+m+oMdmEVEmbpnUhx2hdHb II6DHRKPX/VYOKxnRq8tAkXdFQ== -----END CERTIFICATE-----Generated at Fri Apr 17 10:27:00 2026 by rpki-client