$ rpki-client -vvf rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft File: L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft (raw, json) Hash identifier: b/LK82D4bXBGRWWAVlmwoovsTkGBtEuz3L3ABZp2sfo= Subject key identifier: 71:52:D0:3E:88:02:61:A0:7F:F2:87:52:15:D6:F5:D6:6E:C9:BE:6F Authority key identifier: 2F:C4:60:19:EE:52:D1:E9:1B:B1:D1:D8:E1:7E:99:8A:71:5B:72:44 Certificate issuer: /CN=A9152D1E/serialNumber=2FC46019EE52D1E91BB1D1D8E17E998A715B7244 Certificate serial: 048F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft Manifest number: 048B Signing time: Thu 16 Apr 2026 23:53:31 +0000 Manifest this update: Thu 16 Apr 2026 23:53:31 +0000 Manifest next update: Thu 23 Apr 2026 23:53:31 +0000 Files and hashes: 1: L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl (hash: G8jLzm9+2SLti4DvwM5Z2hJMcX8BFN594zPCAOnjb3w=) 2: 74D78D2AB28F11EFB915BB1BC4F9AE02.roa (hash: N+WDRVK1GCgpC7/SSOzfsvjQlOUQfUPMZGxcGp5tWsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1167 (0x48f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152D1E, serialNumber=2FC46019EE52D1E91BB1D1D8E17E998A715B7244 Validity Not Before: Apr 16 23:53:31 2026 GMT Not After : Apr 23 23:53:31 2026 GMT Subject: CN=69e1767b-93eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e4:c9:31:3f:94:b1:3a:fc:95:c6:e1:84:2a: af:11:ee:f7:29:54:bb:b7:f0:6a:11:88:b1:05:94: aa:40:ab:ac:e3:0a:2f:5b:8f:d7:38:e1:88:85:0d: 84:ae:21:aa:77:86:26:25:61:9f:3c:9e:3a:d8:d1: 04:4c:3c:a6:bf:07:14:ad:df:dd:f0:a3:9d:53:fa: f8:2b:3f:c3:7e:76:e4:f5:d3:8b:78:17:f2:a9:c1: b0:3c:00:c2:db:de:e6:cb:05:f6:4b:4a:d8:7a:f3: 18:d7:8c:1b:79:04:95:a4:b6:50:f7:4c:92:ef:a7: d1:9e:32:5c:17:c5:67:eb:34:77:f1:92:94:d2:97: e5:bb:5e:70:25:47:df:df:03:9e:0b:67:02:14:30: 1e:df:15:63:b6:79:5d:d4:e8:35:b8:7f:08:40:8c: 2a:9d:69:2d:f9:1a:85:2f:b7:6f:f2:dc:6d:b4:ac: d9:83:6c:8a:2d:76:47:04:6c:eb:d2:1c:89:0d:d9: f8:21:21:b2:60:21:a8:e0:44:da:a0:f6:3c:8f:e0: 2b:02:a5:74:ac:8c:71:41:13:a2:4c:35:cb:45:37: 8f:2a:8f:00:5c:e8:38:85:85:88:ba:c6:34:92:6a: 9a:82:e5:d8:96:68:5f:07:e4:24:42:dc:7e:ec:cb: c0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:52:D0:3E:88:02:61:A0:7F:F2:87:52:15:D6:F5:D6:6E:C9:BE:6F X509v3 Authority Key Identifier: keyid:2F:C4:60:19:EE:52:D1:E9:1B:B1:D1:D8:E1:7E:99:8A:71:5B:72:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:b2:fa:ec:09:f3:c9:51:31:84:72:07:fe:2f:da:d3:1d:fd: d5:73:eb:70:8f:8e:7d:4e:ab:42:72:fb:31:26:b8:c6:d3:95: 5a:e2:54:d9:b4:87:5a:07:ee:c3:e5:50:72:36:68:b1:70:d5: ad:23:d1:7f:c6:b5:d9:fd:b0:a4:15:57:f5:55:8f:2f:2a:41: ef:ea:b3:f9:9b:6d:f2:bb:18:1c:d6:c7:95:a7:2f:5a:c0:8d: cf:bd:26:03:87:de:ec:12:ef:89:ef:df:c6:7f:d8:ba:24:ac: d8:75:2d:86:33:fe:78:76:19:cb:18:db:1b:ff:78:e0:ca:d6: dc:15:08:38:44:bb:fa:eb:5f:73:60:78:5f:a5:b7:30:b4:46: 55:b1:16:f1:07:f6:e2:de:cf:f0:12:85:99:9e:f9:24:02:e3: 46:0b:3d:a9:29:59:b8:5c:33:aa:ce:41:d8:98:e8:e8:59:c4: ac:c2:9e:b1:42:14:8e:1b:42:f4:54:25:d7:28:2b:68:a7:7e: 4b:9d:86:ec:ca:b5:98:04:35:84:98:8b:de:4e:ae:90:e2:70: 17:c4:d8:6f:2f:40:19:bb:9c:48:c8:af:94:ea:6b:61:8a:4c: f8:dc:b3:1f:7b:3e:1d:46:4b:1c:21:d5:e1:d7:e5:e5:36:33: 94:c2:df:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJEMUUxMTAvBgNVBAUTKDJGQzQ2MDE5RUU1MkQxRTkxQkIxRDFEOEUxN0U5OThB NzE1QjcyNDQwHhcNMjYwNDE2MjM1MzMxWhcNMjYwNDIzMjM1MzMxWjAYMRYwFAYD VQQDEw02OWUxNzY3Yi05M2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOTJMT+UsTr8lcbhhCqvEe73KVS7t/BqEYixBZSqQKus4wovW4/XOOGIhQ2E riGqd4YmJWGfPJ462NEETDymvwcUrd/d8KOdU/r4Kz/Dfnbk9dOLeBfyqcGwPADC 297mywX2S0rYevMY14wbeQSVpLZQ90yS76fRnjJcF8Vn6zR38ZKU0pflu15wJUff 3wOeC2cCFDAe3xVjtnld1Og1uH8IQIwqnWkt+RqFL7dv8txttKzZg2yKLXZHBGzr 0hyJDdn4ISGyYCGo4ETaoPY8j+ArAqV0rIxxQROiTDXLRTePKo8AXOg4hYWIusY0 kmqaguXYlmhfB+QkQtx+7MvAzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHFS0D6I AmGgf/KHUhXW9dZuyb5vMB8GA1UdIwQYMBaAFC/EYBnuUtHpG7HR2OF+mYpxW3JE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkQxRS9DN0MwQzFEQTdE NjAxMUVDQUQ5NjUwMzBDNEY5QUUwMi9MOFJnR2U1UzBla2JzZEhZNFg2WmluRmJj a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4UmdHZTVTMGVrYnNkSFk0WDZaaW5GYmNrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkQxRS9DN0MwQzFEQTdENjAxMUVDQUQ5NjUwMzBDNEY5QUUwMi9MOFJnR2U1UzBl a2JzZEhZNFg2WmluRmJja1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQrL67AnzyVExhHIH/i/a0x391XPrcI+OfU6rQnL7MSa4xtOVWuJU2bSHWgfu w+VQcjZosXDVrSPRf8a12f2wpBVX9VWPLypB7+qz+Ztt8rsYHNbHlacvWsCNz70m A4fe7BLvie/fxn/YuiSs2HUthjP+eHYZyxjbG/944MrW3BUIOES7+utfc2B4X6W3 MLRGVbEW8Qf24t7P8BKFmZ75JALjRgs9qSlZuFwzqs5B2Jjo6FnErMKesUIUjhtC 9FQl1ygraKd+S52G7Mq1mAQ1hJiL3k6ukOJwF8TYby9AGbucSMivlOprYYpM+Nyz H3s+HUZLHCHV4dfl5TYzlMLfAw== -----END CERTIFICATE-----Generated at Fri Apr 17 07:59:48 2026 by rpki-client