$ rpki-client -vvf rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft File: ldG-85ALQWWEFku3RjF3EwIpFog.mft (raw, json) Hash identifier: EINDFqTWZjQA6U45nluhjSE8r9sPTSinrqR65JeJPxg= Subject key identifier: 29:01:30:9A:93:64:21:0A:29:50:EB:8C:47:08:19:E0:74:6D:3B:E5 Authority key identifier: 95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 Certificate issuer: /CN=A91577DD/serialNumber=95D1BEF3900B416584164BB74631771302291688 Certificate serial: 3550 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft Manifest number: 3541 Signing time: Thu 16 Apr 2026 14:50:23 +0000 Manifest this update: Thu 16 Apr 2026 14:50:22 +0000 Manifest next update: Thu 23 Apr 2026 14:50:22 +0000 Files and hashes: 1: ldG-85ALQWWEFku3RjF3EwIpFog.crl (hash: zERW0CVi9wYN7xq5J1lixQDYvq6ny4DlAc+AfmsBHDM=) 2: C2F7AE40C03111EA9777314AC4F9AE02.roa (hash: JsmcN/iHNKGrr5+UdOJwBNNsYsjaqRo1Qt07Gdc3xmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13648 (0x3550) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577DD, serialNumber=95D1BEF3900B416584164BB74631771302291688 Validity Not Before: Apr 16 14:50:22 2026 GMT Not After : Apr 23 14:50:22 2026 GMT Subject: CN=69e0f72e-8b31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ad:37:d6:80:98:8f:6d:14:10:a1:27:3c:94: 3c:83:15:91:7d:0a:40:41:ac:43:89:5b:ee:d6:3b: 0b:de:87:99:fd:4c:21:6c:59:2d:76:15:f6:f3:21: d6:42:40:af:35:74:8d:99:86:0a:cb:22:9a:78:04: 78:e6:0e:9c:ed:d6:7e:8f:3e:6b:ef:65:66:9e:01: 73:ef:a2:99:49:4e:2e:29:2e:58:7d:96:5c:21:f6: f1:5e:d4:77:f7:ad:08:a3:6d:c7:00:a7:3c:07:26: 30:ad:c7:95:46:7b:2c:47:27:11:df:a2:c9:b4:9a: 5d:68:a1:6c:9a:80:68:f5:22:f0:df:17:ea:04:88: ea:cf:61:a3:ef:23:42:43:f8:14:02:37:d0:f0:e8: 0c:2d:23:c2:e9:ad:32:94:71:47:c9:a2:30:bd:8a: a7:b9:d4:7c:e0:5f:1f:1d:42:a1:f8:2a:fa:ac:be: e9:d6:88:26:2a:c6:fa:f8:6b:05:29:b7:5d:60:61: ef:08:e7:7d:1b:5c:d2:11:01:e9:d3:4b:82:1e:dc: cf:04:88:43:15:62:df:2a:bc:06:d7:47:a7:b1:dd: 16:87:d1:52:5b:09:2a:91:87:38:50:a7:66:93:39: b4:b7:77:c7:a7:1a:0e:c5:aa:31:3d:b7:a8:c0:92: 45:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:01:30:9A:93:64:21:0A:29:50:EB:8C:47:08:19:E0:74:6D:3B:E5 X509v3 Authority Key Identifier: keyid:95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:3b:f3:61:50:3e:c0:dd:71:9c:8b:bb:6a:81:10:c6:6f:17: 00:99:29:37:de:78:ef:d8:3d:78:5c:ea:1f:39:0d:ea:7f:71: c0:53:da:fe:ea:b9:d3:b9:6b:40:e4:45:c7:f0:2e:47:9f:97: 58:a5:1f:88:ce:5e:e3:37:2b:d1:14:b7:98:94:32:d8:a5:90: 27:b6:f5:d9:bc:c3:b8:2f:bb:10:b4:5c:b4:58:ee:8c:92:3f: 4b:68:7d:4c:db:51:ea:4d:2d:0a:2d:aa:96:ef:56:d0:6a:ae: 12:4a:78:c3:fa:5b:d6:08:b3:8f:d2:d4:0c:3e:bb:9f:6c:37: 38:a6:d3:79:af:31:9b:c6:ae:85:e4:4d:10:41:ac:7c:3d:0d: 57:17:4a:bc:97:53:58:f2:11:8f:2d:ec:ef:e3:fb:0e:1e:20: 71:fe:58:81:11:60:c4:b1:3b:88:19:29:48:0f:f1:24:ab:71: 76:20:66:d4:70:7e:d7:cc:4a:92:87:00:b9:0a:7f:2d:74:9c: c3:b6:51:62:75:ac:7c:b8:92:be:0e:0c:18:b4:0d:2d:7e:c6: ce:a7:8e:90:96:4f:4d:b5:53:d0:09:26:b4:63:77:85:df:e9: eb:cb:ea:f0:94:50:7f:bd:41:a7:46:96:c0:e7:1e:2e:06:df: e1:4b:1f:10 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3REQxMTAvBgNVBAUTKDk1RDFCRUYzOTAwQjQxNjU4NDE2NEJCNzQ2MzE3NzEz MDIyOTE2ODgwHhcNMjYwNDE2MTQ1MDIyWhcNMjYwNDIzMTQ1MDIyWjAYMRYwFAYD VQQDEw02OWUwZjcyZS04YjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAua031oCYj20UEKEnPJQ8gxWRfQpAQaxDiVvu1jsL3oeZ/UwhbFktdhX28yHW QkCvNXSNmYYKyyKaeAR45g6c7dZ+jz5r72VmngFz76KZSU4uKS5YfZZcIfbxXtR3 960Io23HAKc8ByYwrceVRnssRycR36LJtJpdaKFsmoBo9SLw3xfqBIjqz2Gj7yNC Q/gUAjfQ8OgMLSPC6a0ylHFHyaIwvYqnudR84F8fHUKh+Cr6rL7p1ogmKsb6+GsF KbddYGHvCOd9G1zSEQHp00uCHtzPBIhDFWLfKrwG10ensd0Wh9FSWwkqkYc4UKdm kzm0t3fHpxoOxaoxPbeowJJFpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCkBMJqT ZCEKKVDrjEcIGeB0bTvlMB8GA1UdIwQYMBaAFJXRvvOQC0FlhBZLt0YxdxMCKRaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdERC9EMUM1QjAyQTFE OTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFXV0VGa3UzUmpGM0V3SXBG b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkRy04NUFMUVdXRUZrdTNSakYzRXdJcEZvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdERC9EMUM1QjAyQTFEOTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFX V0VGa3UzUmpGM0V3SXBGb2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArDvzYVA+wN1xnIu7aoEQxm8XAJkpN95479g9eFzqHzkN6n9xwFPa/uq507lr QORFx/AuR5+XWKUfiM5e4zcr0RS3mJQy2KWQJ7b12bzDuC+7ELRctFjujJI/S2h9 TNtR6k0tCi2qlu9W0GquEkp4w/pb1gizj9LUDD67n2w3OKbTea8xm8auheRNEEGs fD0NVxdKvJdTWPIRjy3s7+P7Dh4gcf5YgRFgxLE7iBkpSA/xJKtxdiBm1HB+18xK kocAuQp/LXScw7ZRYnWsfLiSvg4MGLQNLX7GzqeOkJZPTbVT0AkmtGN3hd/p68vq 8JRQf71Bp0aWwOceLgbf4UsfEA== -----END CERTIFICATE-----Generated at Fri Apr 17 12:30:21 2026 by rpki-client