$ rpki-client -vvf rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft File: Lz71uQE3FOMXTGcArgSCTi8FwjA.mft (raw, json) Hash identifier: BHeqs8CBuFq9lTjcEDLLsPbXUE74AzzX/Q6GNBnkvNo= Subject key identifier: 6F:0F:0E:60:EA:0D:0F:B6:37:31:E9:F6:71:77:C1:81:05:4B:54:F4 Authority key identifier: 2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 Certificate issuer: /CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Certificate serial: 03EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft Manifest number: 03BC Signing time: Fri 17 Apr 2026 00:34:30 +0000 Manifest this update: Fri 17 Apr 2026 00:34:30 +0000 Manifest next update: Fri 24 Apr 2026 00:34:30 +0000 Files and hashes: 1: Lz71uQE3FOMXTGcArgSCTi8FwjA.crl (hash: 12/qSe77w6c3eK7g0nJRHPo6F44NzEtpKMpXVUXqnOg=) 2: 1BC3E9F8D0F711EC8673072FC4F9AE02.roa (hash: TSL+MTPK8EgRMcMjr6qrtFpszOvhkzRM0QdAHqJaU40=) 3: 19E46D60D0F711EC8673072FC4F9AE02.roa (hash: yi7NYs8PxhwuWWuOtg4OuRxpExkIea04i2z4LtVyM0w=) 4: 6920E4D8D0F411EC8DAD6D11C4F9AE02.roa (hash: c2lo54QcjHvK6TZ8I450zd6helgARdymi5j3sxVLHME=) 5: 69C96612D0F411EC8DAD6D11C4F9AE02.roa (hash: HgcggV8BxU3DsnfnAjE7D8jFk5D0BasQaQRqwA0EAKs=) 6: 196C52A8D0F711EC8673072FC4F9AE02.roa (hash: 9isDfhzAiD/lHOxq4r19J9IhtSqgH/VDgO9RTET6Oqo=) 7: 6A430D5AD0F411EC8DAD6D11C4F9AE02.roa (hash: vSHf1X3O2nMKh82RanHECAwvzlkFPBFjzTmLD8chpCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1002 (0x3ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91346B1, serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Validity Not Before: Apr 17 00:34:30 2026 GMT Not After : Apr 24 00:34:30 2026 GMT Subject: CN=69e18016-e677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8d:02:60:d4:35:93:f3:9d:a5:28:85:7a:e5: d9:56:84:c9:54:90:23:44:db:a4:6d:1b:02:1c:7a: 8c:ed:93:83:68:61:f4:49:ad:1d:bb:88:13:cb:78: 6d:6f:92:07:8d:fc:1b:05:85:dd:a1:87:77:69:c4: 9e:42:1b:39:09:55:13:35:01:88:e6:f7:0f:70:e3: a4:24:59:b7:cf:8d:14:f2:cd:d7:1f:35:81:a0:5e: bc:2b:7c:24:df:d3:62:b3:db:93:9f:35:1e:fd:66: 02:d4:7a:99:e6:7e:1f:10:b5:2b:ab:00:aa:8d:38: b8:d2:9a:07:8f:6e:68:85:52:a2:0e:3a:fa:f5:af: b4:bf:1b:97:ce:a0:2f:57:09:a5:3f:80:ad:75:5a: a4:61:db:6e:33:d4:0e:af:26:29:0d:41:7e:f0:68: 6c:20:c8:ea:35:e2:74:5f:74:f8:49:77:70:73:5e: 7b:b3:fa:8f:c4:4d:79:4b:e9:e4:25:8e:18:14:b9: 27:4f:67:44:0e:cd:a7:29:a2:93:ce:68:85:65:fb: cf:54:8b:11:e8:7a:b2:f6:10:b0:9e:6b:59:fc:25: f3:83:13:21:0f:de:d1:16:b4:46:2e:4b:47:88:6d: 3a:e8:29:51:0f:b9:72:75:8c:2c:c8:47:59:cb:37: cf:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:0F:0E:60:EA:0D:0F:B6:37:31:E9:F6:71:77:C1:81:05:4B:54:F4 X509v3 Authority Key Identifier: keyid:2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:d5:49:05:7f:d1:6b:b7:88:4a:81:ba:22:e2:bd:c2:32:09: 50:ba:22:3f:ff:d6:6d:70:9f:ae:b3:8a:f5:cd:51:45:61:44: 1f:54:05:a3:8c:6a:bd:b1:92:8a:ee:35:7c:8f:8e:7b:fd:55: 0d:bf:72:4c:db:95:c3:06:64:a0:7d:f7:36:db:d0:e8:df:19: 8d:60:61:5a:e7:43:f0:07:52:82:de:39:09:5c:c4:fe:d4:93: 59:40:72:df:6b:59:83:64:a7:87:8d:9b:73:9d:f0:e5:f6:07: d9:32:fe:f7:45:99:92:ce:e9:f8:32:7c:32:1e:db:87:2b:c1: 94:21:f4:43:ad:cc:57:d9:56:ed:1a:a4:d1:22:65:2e:e7:d5: f0:93:cf:f0:b9:26:43:7d:de:31:cf:cd:62:87:77:ba:a2:32: fd:fa:cb:87:2d:5a:fb:35:5c:2a:39:4b:f8:4e:a5:28:3e:d1: 71:9c:58:02:30:60:25:2f:36:c4:06:36:cd:38:4f:da:96:19: b0:e6:4e:1a:88:83:5a:d3:3a:89:48:ce:3b:5f:0d:d1:e5:21: e3:29:e9:3d:a3:94:32:b8:4d:4b:be:10:0f:a1:34:da:8e:b6: d3:8c:df:a3:0a:a3:fd:b2:84:23:74:af:8e:53:75:6c:47:06: f2:71:e6:b7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ2QjExMTAvBgNVBAUTKDJGM0VGNUI5MDEzNzE0RTMxNzRDNjcwMEFFMDQ4MjRF MkYwNUMyMzAwHhcNMjYwNDE3MDAzNDMwWhcNMjYwNDI0MDAzNDMwWjAYMRYwFAYD VQQDEw02OWUxODAxNi1lNjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu40CYNQ1k/OdpSiFeuXZVoTJVJAjRNukbRsCHHqM7ZODaGH0Sa0du4gTy3ht b5IHjfwbBYXdoYd3acSeQhs5CVUTNQGI5vcPcOOkJFm3z40U8s3XHzWBoF68K3wk 39Nis9uTnzUe/WYC1HqZ5n4fELUrqwCqjTi40poHj25ohVKiDjr69a+0vxuXzqAv VwmlP4CtdVqkYdtuM9QOryYpDUF+8GhsIMjqNeJ0X3T4SXdwc157s/qPxE15S+nk JY4YFLknT2dEDs2nKaKTzmiFZfvPVIsR6Hqy9hCwnmtZ/CXzgxMhD97RFrRGLktH iG066ClRD7lydYwsyEdZyzfPuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG8PDmDq DQ+2NzHp9nF3wYEFS1T0MB8GA1UdIwQYMBaAFC8+9bkBNxTjF0xnAK4Egk4vBcIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDZCMS85QTBFQ0UxMEQw RjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZPTVhUR2NBcmdTQ1RpOEZ3 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6NzF1UUUzRk9NWFRHY0FyZ1NDVGk4RndqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDZCMS85QTBFQ0UxMEQwRjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZP TVhUR2NBcmdTQ1RpOEZ3akEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANtVJBX/Ra7eISoG6IuK9wjIJULoiP//WbXCfrrOK9c1RRWFEH1QFo4xqvbGS iu41fI+Oe/1VDb9yTNuVwwZkoH33NtvQ6N8ZjWBhWudD8AdSgt45CVzE/tSTWUBy 32tZg2Snh42bc53w5fYH2TL+90WZks7p+DJ8Mh7bhyvBlCH0Q63MV9lW7Rqk0SJl LufV8JPP8LkmQ33eMc/NYod3uqIy/frLhy1a+zVcKjlL+E6lKD7RcZxYAjBgJS82 xAY2zThP2pYZsOZOGoiDWtM6iUjOO18N0eUh4ynpPaOUMrhNS74QD6E02o6204zf owqj/bKEI3SvjlN1bEcG8nHmtw== -----END CERTIFICATE-----Generated at Fri Apr 17 05:23:25 2026 by rpki-client