$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft File: lufMd6OOPhgL91JrodlTIYBONeY.mft (raw, json) Hash identifier: Pu8emfG9uYEV2XtGKaBJg7S8yi2LgSMqI+zI3Be6my0= Subject key identifier: 3E:98:FA:8D:9A:36:65:BA:EB:C8:6F:01:54:94:28:F4:49:E7:2A:F3 Authority key identifier: 96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 Certificate issuer: /CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Certificate serial: 025D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft Manifest number: 0650 Signing time: Fri 17 Apr 2026 00:23:31 +0000 Manifest this update: Fri 17 Apr 2026 00:23:31 +0000 Manifest next update: Fri 24 Apr 2026 00:23:31 +0000 Files and hashes: 1: lufMd6OOPhgL91JrodlTIYBONeY.crl (hash: IRPShgpGAIzbjfTbIYMYvewNsOxep+u/RReqUA4v/+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:23:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 605 (0x25d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA, serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Validity Not Before: Apr 17 00:23:31 2026 GMT Not After : Apr 24 00:23:31 2026 GMT Subject: CN=69e17d83-5d0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ec:d7:46:91:fe:80:f1:e4:88:29:1d:32:45: 25:c3:c1:9a:a5:3d:3e:cc:29:dc:fd:f9:99:31:0e: 27:61:f9:4e:fc:ff:4b:00:2e:d9:8d:41:32:65:d3: 36:3b:ce:23:72:d7:f4:b8:6a:4b:a2:3a:e0:2b:d3: ba:1f:41:15:b2:fd:f6:2c:35:15:41:72:80:ae:32: 39:b3:f7:56:fa:b4:7b:61:27:b1:e5:ac:40:76:60: 86:a3:83:d2:c9:fd:ee:98:f9:ce:a6:fa:c9:8b:86: 1f:c4:2a:14:7e:a6:09:e3:62:0e:39:fb:ed:e9:ad: 20:52:f8:eb:4b:7e:f7:f3:97:1a:65:6f:5e:73:df: 82:d5:db:e5:08:67:9e:28:12:1b:4d:e7:6e:42:6b: ab:d8:49:5c:bc:f0:f1:1f:f4:3d:54:15:bd:5e:ed: 2b:52:18:1c:2b:00:8d:a5:5d:38:d4:52:0e:90:6b: 3e:a1:33:65:de:52:2c:6e:33:ea:10:08:12:a1:50: 4b:0a:1d:c6:55:41:50:ab:53:96:c0:4e:e2:04:87: 02:db:ab:6a:2b:42:84:e5:fa:8f:38:5b:19:63:b9: 31:45:43:62:de:2f:ea:f2:07:60:aa:29:c3:0e:ef: af:94:19:cb:68:40:e2:12:e8:48:21:c2:40:0f:54: 30:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:98:FA:8D:9A:36:65:BA:EB:C8:6F:01:54:94:28:F4:49:E7:2A:F3 X509v3 Authority Key Identifier: keyid:96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:9b:42:56:12:95:52:0b:4c:d0:b4:cd:24:9b:49:bf:72:a4: 63:b1:21:ed:cd:cb:dc:ea:0d:40:5c:e2:30:95:0b:72:08:a1: a4:f7:c4:05:c4:f2:f0:d7:14:2c:75:71:4e:2a:9b:c3:e2:51: 8e:6a:fe:bf:00:3b:87:7f:e3:78:a5:dc:c6:fe:48:be:da:26: 01:da:da:10:c8:7a:af:4b:aa:93:a9:ae:2f:b5:1e:4b:7c:28: 0c:27:7d:6f:c2:d6:31:37:03:3b:46:d6:ce:b4:80:2b:19:b7: c2:1e:ec:21:4b:a9:3c:e6:b6:b6:e0:74:a2:a0:ec:9e:f6:b0: d7:08:c3:7a:ee:e9:df:aa:14:14:42:6e:02:2b:ef:ae:b9:75: f4:fc:84:5e:d0:3e:22:73:05:d4:b0:ad:eb:5b:5a:13:d7:ca: 76:dc:2a:bc:f7:93:42:e7:98:2f:3a:4e:b8:17:3c:33:a8:4e: 30:98:91:dc:0e:ce:b0:7a:57:f3:c3:78:e6:db:ee:aa:ff:9c: 1a:c4:2f:56:a1:fa:bc:52:5a:53:13:38:51:e8:43:2b:cd:dd: 20:6e:d7:b8:c3:29:a2:52:cb:2f:ce:18:a5:4b:1e:4c:c6:9b: ac:01:58:04:7a:ad:8e:2c:54:0a:7a:23:ba:7a:4a:9a:cc:61: 83:e1:8a:1d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0RkExMTAvBgNVBAUTKDk2RTdDQzc3QTM4RTNFMTgwQkY3NTI2QkExRDk1MzIx ODA0RTM1RTYwHhcNMjYwNDE3MDAyMzMxWhcNMjYwNDI0MDAyMzMxWjAYMRYwFAYD VQQDEw02OWUxN2Q4My01ZDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+zXRpH+gPHkiCkdMkUlw8GapT0+zCnc/fmZMQ4nYflO/P9LAC7ZjUEyZdM2 O84jctf0uGpLojrgK9O6H0EVsv32LDUVQXKArjI5s/dW+rR7YSex5axAdmCGo4PS yf3umPnOpvrJi4YfxCoUfqYJ42IOOfvt6a0gUvjrS37385caZW9ec9+C1dvlCGee KBIbTeduQmur2ElcvPDxH/Q9VBW9Xu0rUhgcKwCNpV041FIOkGs+oTNl3lIsbjPq EAgSoVBLCh3GVUFQq1OWwE7iBIcC26tqK0KE5fqPOFsZY7kxRUNi3i/q8gdgqinD Du+vlBnLaEDiEuhIIcJAD1QwOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD6Y+o2a NmW668hvAVSUKPRJ5yrzMB8GA1UdIwQYMBaAFJbnzHejjj4YC/dSa6HZUyGATjXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1BoZ0w5MUpyb2RsVElZQk9O ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1Zk1kNk9PUGhnTDkxSnJvZGxUSVlCT05lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1Bo Z0w5MUpyb2RsVElZQk9OZVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKZtCVhKVUgtM0LTNJJtJv3KkY7Eh7c3L3OoNQFziMJULcgihpPfEBcTy8NcU LHVxTiqbw+JRjmr+vwA7h3/jeKXcxv5IvtomAdraEMh6r0uqk6muL7UeS3woDCd9 b8LWMTcDO0bWzrSAKxm3wh7sIUupPOa2tuB0oqDsnvaw1wjDeu7p36oUFEJuAivv rrl19PyEXtA+InMF1LCt61taE9fKdtwqvPeTQueYLzpOuBc8M6hOMJiR3A7OsHpX 88N45tvuqv+cGsQvVqH6vFJaUxM4UehDK83dIG7XuMMpolLLL84YpUseTMabrAFY BHqtjixUCnojunpKmsxhg+GKHQ== -----END CERTIFICATE-----Generated at Fri Apr 17 15:15:49 2026 by rpki-client