$ rpki-client -vvf rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft File: LGfSFpazocG8LOSfy-CnpTo306Y.mft (raw, json) Hash identifier: AZd8k/0F1+dzE98XiCvpWsBr+mW+uLHUT+MrB4HRXzg= Subject key identifier: 02:CB:A1:B7:5F:14:31:04:2F:4A:B5:AA:7E:B0:C6:A0:7F:F9:77:A6 Authority key identifier: 2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 Certificate issuer: /CN=A9168221/serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft Manifest number: 9A Signing time: Wed 15 Apr 2026 07:08:47 +0000 Manifest this update: Wed 15 Apr 2026 07:08:46 +0000 Manifest next update: Wed 22 Apr 2026 07:08:46 +0000 Files and hashes: 1: LGfSFpazocG8LOSfy-CnpTo306Y.crl (hash: C7KqrPIbyAfyu2c4OSDxRslFgUtIdFNytFcLNUGJ/T4=) 2: 7EB9D336E88D11F09C95F79A506F56BC.roa (hash: Ezl0n+OgzlnEpdFqgpF6c3qxbrKC+MfFQzWPPXiHzdM=) 3: DD2F3D28E8A311F0962A42EF556F56BC.roa (hash: kn7qtlgTYPVCEmu4KEqD1zs/ovHOIIn/wazhWoTHlJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 07:08:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168221, serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Validity Not Before: Apr 15 07:08:46 2026 GMT Not After : Apr 22 07:08:46 2026 GMT Subject: CN=69df397f-0c8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5a:66:cd:cc:20:21:1a:32:01:47:6a:28:15: f5:b8:07:f4:ff:5f:4f:90:aa:ae:f8:24:df:76:96: 6e:c3:cb:a7:6b:1b:9b:3b:bf:65:f6:90:98:9d:7f: df:22:e9:f6:70:b9:ec:03:93:80:d1:3b:21:ef:2f: b7:e3:68:e4:bf:f9:be:fe:1c:d7:bd:26:8d:ef:55: 87:09:21:fe:38:28:3b:a6:f8:97:f5:5b:15:d1:f0: a9:ff:39:4b:3b:fe:1b:5f:45:06:ef:4f:f5:16:0f: 4e:9f:69:d8:f7:d9:03:3c:88:1b:21:b9:ac:42:58: 09:a2:bd:94:70:ca:10:4d:59:39:cb:c8:ac:89:6c: 35:10:e6:42:74:a2:af:02:37:06:b1:45:7d:28:4b: 6f:64:3e:63:04:d1:d3:7a:81:94:4a:c3:05:36:7a: 42:be:27:1d:0a:b7:86:57:a6:77:6d:55:52:b7:9e: a7:28:82:33:3f:ae:7d:4a:1e:e8:f5:a8:e4:5a:0e: 70:61:e6:ce:d7:fc:ec:2a:a2:bf:db:b6:c1:e9:da: 6d:e8:98:d2:5c:b0:02:c7:ba:ff:70:89:62:96:4a: d2:fe:ac:74:93:03:78:7e:b2:41:84:35:21:6d:52: 08:dd:36:ed:ab:08:aa:7a:79:d7:d7:ba:e9:bc:6b: 3d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:CB:A1:B7:5F:14:31:04:2F:4A:B5:AA:7E:B0:C6:A0:7F:F9:77:A6 X509v3 Authority Key Identifier: keyid:2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:5b:18:b8:d2:f5:cd:ac:52:07:49:11:79:d0:6e:8f:83:b7: 3a:d2:fc:f7:e2:e8:b5:b1:67:e2:1e:56:63:84:f1:46:94:4d: c2:11:b9:4a:df:49:84:87:03:36:47:f4:a3:45:4f:ad:9f:99: 5a:14:2d:79:18:cb:66:35:fb:d3:29:31:d6:9f:f5:64:5c:c3: 22:ca:69:45:f9:f1:9d:73:8c:22:71:f0:d2:0e:91:00:17:6e: 98:2a:5e:38:e5:be:49:b4:89:ea:27:9c:e2:f7:3f:f2:d3:15: b4:f9:85:b9:c1:ea:58:6f:70:78:ca:51:7f:5f:3c:a1:ec:26: c0:52:ca:93:42:cb:27:19:cc:73:15:42:1d:cd:f3:94:0d:d0: 85:52:56:3d:4c:8a:51:4d:66:a6:3e:28:6b:c7:77:49:46:5e: 19:e5:89:8a:ed:d5:e3:0b:33:86:1c:c8:57:59:c7:16:c2:4c: 88:30:40:77:bc:63:d8:ea:42:2b:e4:32:f7:84:cb:bc:46:8e: 75:e7:b2:8a:e2:bb:89:fb:54:d6:44:a7:d2:3d:89:2d:2d:3d: 40:c5:9a:eb:e8:3c:2f:ad:85:82:61:3b:5a:e5:77:ee:12:03: 44:8b:28:b8:81:88:2c:31:03:26:e7:5e:c9:88:ef:e3:9b:67: 74:e1:90:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgyMjExMTAvBgNVBAUTKDJDNjdEMjE2OTZCM0ExQzFCQzJDRTQ5RkNCRTBBN0E1 M0EzN0QzQTYwHhcNMjYwNDE1MDcwODQ2WhcNMjYwNDIyMDcwODQ2WjAYMRYwFAYD VQQDEw02OWRmMzk3Zi0wYzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFpmzcwgIRoyAUdqKBX1uAf0/19PkKqu+CTfdpZuw8unaxubO79l9pCYnX/f Iun2cLnsA5OA0Tsh7y+342jkv/m+/hzXvSaN71WHCSH+OCg7pviX9VsV0fCp/zlL O/4bX0UG70/1Fg9On2nY99kDPIgbIbmsQlgJor2UcMoQTVk5y8isiWw1EOZCdKKv AjcGsUV9KEtvZD5jBNHTeoGUSsMFNnpCvicdCreGV6Z3bVVSt56nKIIzP659Sh7o 9ajkWg5wYebO1/zsKqK/27bB6dpt6JjSXLACx7r/cIlilkrS/qx0kwN4frJBhDUh bVII3TbtqwiqennX17rpvGs9LQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFALLobdf FDEEL0q1qn6wxqB/+XemMB8GA1UdIwQYMBaAFCxn0haWs6HBvCzkn8vgp6U6N9Om MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODIyMS8zMzUzNUNCMDY1 NEMxMUYwOEIzOUU3MUNDNEY5QUUwMi9MR2ZTRnBhem9jRzhMT1NmeS1DbnBUbzMw NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xHZlNGcGF6b2NHOExPU2Z5LUNucFRvMzA2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODIyMS8zMzUzNUNCMDY1NEMxMUYwOEIzOUU3MUNDNEY5QUUwMi9MR2ZTRnBhem9j RzhMT1NmeS1DbnBUbzMwNlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoVsYuNL1zaxSB0kRedBuj4O3OtL89+LotbFn4h5WY4TxRpRNwhG5St9JhIcD Nkf0o0VPrZ+ZWhQteRjLZjX70ykx1p/1ZFzDIsppRfnxnXOMInHw0g6RABdumCpe OOW+SbSJ6iec4vc/8tMVtPmFucHqWG9weMpRf188oewmwFLKk0LLJxnMcxVCHc3z lA3QhVJWPUyKUU1mpj4oa8d3SUZeGeWJiu3V4wszhhzIV1nHFsJMiDBAd7xj2OpC K+Qy94TLvEaOdeeyiuK7iftU1kSn0j2JLS09QMWa6+g8L62FgmE7WuV37hIDRIso uIGILDEDJudeyYjv45tndOGQ6A== -----END CERTIFICATE-----Generated at Fri Apr 17 08:10:03 2026 by rpki-client