$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft File: lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft (raw, json) Hash identifier: lAEv3svT9K/BCkCF6KnWbTGJ2zESdM6Si+YApcdndt0= Subject key identifier: A0:78:79:EA:0B:FF:DC:9A:E2:A8:73:7D:79:22:60:00:7D:10:82:62 Authority key identifier: 96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 Certificate issuer: /CN=A915FDD9/serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft Manifest number: 0119 Signing time: Fri 17 Apr 2026 06:08:31 +0000 Manifest this update: Fri 17 Apr 2026 06:08:30 +0000 Manifest next update: Fri 24 Apr 2026 06:08:30 +0000 Files and hashes: 1: lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl (hash: JIQscL5StiKe9g2We6SxfBCtQT9dl64BW4z1xWnCHN8=) 2: 45322DB8BF9111F0B4CD4C4FC4F9AE02.roa (hash: rv9K2z3jLDHYayjuD/ofwi0jQtAT/5qT98rJ5cSCRIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:08:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Validity Not Before: Apr 17 06:08:30 2026 GMT Not After : Apr 24 06:08:30 2026 GMT Subject: CN=69e1ce5f-e132 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ed:bd:74:d5:2a:2d:12:62:af:38:bd:8e:50: 88:90:18:96:9e:c1:5a:8e:5b:bb:9e:0f:01:5c:a3: f4:36:d5:a3:2c:02:60:cd:95:3a:b8:ba:31:e0:4c: 64:12:ac:b6:76:62:5a:cb:f8:cc:31:15:4d:e6:25: df:46:0c:14:a7:ab:5d:ab:80:05:4a:89:66:aa:64: f7:bb:95:10:42:9a:34:74:8c:cd:97:d9:c6:f3:0e: 7b:64:34:f0:99:55:db:d1:18:1e:36:b7:79:8d:27: ac:76:4d:ca:9c:d7:ab:ae:d5:7f:be:6f:4d:80:50: 35:bf:3e:1e:d3:35:47:6d:9f:3f:66:ac:e8:65:b8: 90:d2:fa:6f:1f:1b:26:5c:7a:3f:09:87:b7:a9:7f: 80:a5:42:5a:ba:1f:d4:60:65:f8:b1:f8:69:f7:4e: a7:60:51:0f:81:09:d1:3a:3a:7c:00:df:3e:70:2b: 6f:97:7f:aa:67:62:92:b6:56:6e:3f:90:d8:0c:58: dc:7b:a5:e2:c2:f2:76:60:ec:20:98:c6:c1:62:1a: 00:3f:c5:ed:af:44:32:b5:31:26:1b:c1:d6:21:60: 2a:5e:74:64:6e:cc:4a:f8:ae:bb:9f:98:99:0d:3c: 2e:b2:f8:0d:39:d4:25:b9:ad:a4:db:a2:80:53:75: 54:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:78:79:EA:0B:FF:DC:9A:E2:A8:73:7D:79:22:60:00:7D:10:82:62 X509v3 Authority Key Identifier: keyid:96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:e8:8f:97:93:8a:87:1c:8b:49:70:15:8d:9f:f2:5d:54:f1: 81:3f:08:a5:37:16:b8:af:12:b9:51:ee:c6:a8:b5:00:18:4c: 2d:e7:96:95:8c:a8:49:e7:98:ee:06:52:8b:a4:33:cb:12:e4: 29:f9:96:6b:bc:e9:c0:da:f2:5e:d5:9d:43:b3:02:46:7f:42: d6:07:c6:45:39:6b:e7:f9:85:2e:4f:07:f8:79:1c:84:4f:69: dc:f0:e1:96:cb:a5:23:70:51:94:2a:32:c5:d5:60:4e:ea:bf: 94:53:28:8b:87:56:c6:66:fb:02:fa:12:6d:5e:49:dc:75:5f: 29:8d:49:ee:30:f0:44:0f:09:05:8b:7e:d7:21:27:f9:74:73: 04:f1:71:76:0f:ee:6f:27:76:68:d6:31:1f:4c:9e:4c:5e:5e: 7d:31:42:34:07:d8:8a:f1:a9:47:f0:36:f2:69:d9:37:0b:8f: 6f:bc:4c:c8:eb:1c:de:62:b2:94:83:09:98:f4:2d:e1:03:12: f6:04:42:de:c5:3f:cd:8c:36:51:c7:60:26:a4:b2:fa:0a:ae: f7:cf:25:94:53:b9:19:08:6d:e3:7d:ff:9a:b9:96:d5:13:41: 56:2a:70:5b:15:ec:30:f5:c9:b3:8c:ca:68:58:54:a8:6c:a5: ba:94:b7:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZERDkxMTAvBgNVBAUTKDk2N0I5N0Q5RTMxMTI1MEQ4Mjk0MkQyN0U0QzVGOTBE OTgxMzgwNTgwHhcNMjYwNDE3MDYwODMwWhcNMjYwNDI0MDYwODMwWjAYMRYwFAYD VQQDEw02OWUxY2U1Zi1lMTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsO29dNUqLRJirzi9jlCIkBiWnsFajlu7ng8BXKP0NtWjLAJgzZU6uLox4Exk Eqy2dmJay/jMMRVN5iXfRgwUp6tdq4AFSolmqmT3u5UQQpo0dIzNl9nG8w57ZDTw mVXb0RgeNrd5jSesdk3KnNerrtV/vm9NgFA1vz4e0zVHbZ8/ZqzoZbiQ0vpvHxsm XHo/CYe3qX+ApUJauh/UYGX4sfhp906nYFEPgQnROjp8AN8+cCtvl3+qZ2KStlZu P5DYDFjce6XiwvJ2YOwgmMbBYhoAP8Xtr0QytTEmG8HWIWAqXnRkbsxK+K67n5iZ DTwusvgNOdQlua2k26KAU3VUhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKB4eeoL /9ya4qhzfXkiYAB9EIJiMB8GA1UdIwQYMBaAFJZ7l9njESUNgpQtJ+TF+Q2YE4BY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkREOS9CNjIyRkE4QUQ2 REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9sbnVYMmVNUkpRMkNsQzBuNU1YNURaZ1Rn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xudVgyZU1SSlEyQ2xDMG41TVg1RFpnVGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkREOS9CNjIyRkE4QUQ2REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9sbnVYMmVNUkpR MkNsQzBuNU1YNURaZ1RnRmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFeiPl5OKhxyLSXAVjZ/yXVTxgT8IpTcWuK8SuVHuxqi1ABhMLeeWlYyoSeeY 7gZSi6QzyxLkKfmWa7zpwNryXtWdQ7MCRn9C1gfGRTlr5/mFLk8H+HkchE9p3PDh lsulI3BRlCoyxdVgTuq/lFMoi4dWxmb7AvoSbV5J3HVfKY1J7jDwRA8JBYt+1yEn +XRzBPFxdg/ubyd2aNYxH0yeTF5efTFCNAfYivGpR/A28mnZNwuPb7xMyOsc3mKy lIMJmPQt4QMS9gRC3sU/zYw2UcdgJqSy+gqu988llFO5GQht433/mrmW1RNBVipw WxXsMPXJs4zKaFhUqGylupS3xg== -----END CERTIFICATE-----Generated at Sat Apr 18 08:54:56 2026 by rpki-client