$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json) Hash identifier: 9hijDSBHcBc8ppTSFFKcl2lfzfZlJ2/SPj/uj9sVCgU= Subject key identifier: 20:68:2F:C9:A6:61:25:AA:07:18:14:FD:B2:DE:1C:0E:16:05:B6:47 Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0EF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft Manifest number: 0EF7 Signing time: Thu 16 Apr 2026 17:34:51 +0000 Manifest this update: Thu 16 Apr 2026 17:34:51 +0000 Manifest next update: Thu 23 Apr 2026 17:34:51 +0000 Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: zfKYEjceMky/1Tq2ztthWLYLHtcsVoFG+2WmkfVJTsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3826 (0xef2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F, serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: Apr 16 17:34:51 2026 GMT Not After : Apr 23 17:34:51 2026 GMT Subject: CN=69e11dbb-c112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d1:27:b4:95:8a:6e:0c:29:58:84:82:d2:11: ff:09:96:5a:2f:7f:28:1f:dd:5c:82:bd:23:b5:2f: 96:c4:be:67:57:bf:74:cf:ca:b2:ba:a0:5b:06:28: 56:91:f2:42:19:a5:2c:af:df:13:b1:31:7f:79:dc: df:2f:ac:6f:12:2c:70:c8:cf:9a:a1:f3:3f:8c:7b: 91:79:3f:0d:2c:1b:b2:0d:c2:6e:b2:84:c1:9a:23: 47:59:de:7b:65:5a:95:73:ad:a1:be:b6:32:2a:ad: f6:29:68:18:66:87:7a:14:37:c5:17:92:87:9f:83: 4a:98:0d:c8:9f:12:4f:03:c4:c0:96:e5:17:c0:f3: 89:50:a0:09:3c:57:27:da:5a:e3:2e:a4:61:8b:5d: a5:c9:b7:1b:cf:fb:b4:76:c5:95:c1:7f:23:84:1b: 66:76:a2:95:ac:f9:42:ba:9b:36:c4:0f:84:0e:7b: 9a:fa:82:44:44:52:9d:d9:f9:13:4f:2b:5f:36:91: 33:67:4c:89:97:bb:9d:84:f3:e3:06:90:d7:74:36: a9:e8:1c:7d:43:18:8f:08:ee:af:de:70:ff:e7:2d: 6c:b2:18:a9:73:50:00:b7:b5:47:b2:11:ef:d2:e8: 7b:93:b8:d2:f5:f5:97:9d:f8:6d:84:08:a1:21:62: f6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:68:2F:C9:A6:61:25:AA:07:18:14:FD:B2:DE:1C:0E:16:05:B6:47 X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:d9:78:3d:ca:79:ba:1b:64:b5:07:fc:be:98:ea:2e:8d:fa: e8:af:d6:56:61:18:cf:36:95:7c:29:4a:d7:14:49:dc:da:c7: 96:58:a0:f8:fa:90:22:f0:35:bc:d9:2c:ac:91:84:8e:c5:d4: 97:12:33:dd:1a:9c:e9:ef:5a:30:2a:2b:9f:ee:41:c8:87:b9: 80:b5:d1:82:02:06:1d:49:64:1e:3d:6e:2e:4d:07:75:5c:e9: 64:97:92:07:d8:e6:e1:0d:83:da:ed:68:77:fc:2d:43:0b:6c: 50:2f:ac:da:e9:a9:a7:eb:61:07:91:03:48:c2:6e:ac:ba:8c: dd:a4:58:a8:c0:68:33:45:4b:79:ad:d5:a8:ec:ad:70:5e:4a: 8f:03:da:03:39:f9:15:46:21:56:f7:2d:55:06:b6:86:39:85: 30:c3:28:7a:7c:c3:5b:c7:30:bc:b9:ec:38:c4:5a:3b:78:89: 15:25:9b:0d:b9:10:dc:e7:c8:d5:20:18:e8:47:fb:04:cc:1a: bc:c8:ab:84:6e:7a:0c:75:f8:78:e3:e2:44:26:3a:17:53:4c: 3b:1a:98:27:cf:fb:aa:ca:f8:b1:8a:8e:27:fa:47:aa:98:d6: a6:28:52:67:c9:b0:77:ff:81:0f:c1:51:7d:49:6c:ab:b0:0c: 70:5b:95:b9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjYwNDE2MTczNDUxWhcNMjYwNDIzMTczNDUxWjAYMRYwFAYD VQQDEw02OWUxMWRiYi1jMTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytEntJWKbgwpWISC0hH/CZZaL38oH91cgr0jtS+WxL5nV790z8qyuqBbBihW kfJCGaUsr98TsTF/edzfL6xvEixwyM+aofM/jHuReT8NLBuyDcJusoTBmiNHWd57 ZVqVc62hvrYyKq32KWgYZod6FDfFF5KHn4NKmA3InxJPA8TAluUXwPOJUKAJPFcn 2lrjLqRhi12lybcbz/u0dsWVwX8jhBtmdqKVrPlCups2xA+EDnua+oJERFKd2fkT TytfNpEzZ0yJl7udhPPjBpDXdDap6Bx9QxiPCO6v3nD/5y1sshipc1AAt7VHshHv 0uh7k7jS9fWXnfhthAihIWL2FwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCBoL8mm YSWqBxgU/bLeHA4WBbZHMB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlI V3U0Y1NidHBxblE4ODJZUnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXNl4Pcp5uhtktQf8vpjqLo366K/WVmEYzzaVfClK1xRJ3NrHllig+PqQIvA1 vNksrJGEjsXUlxIz3Rqc6e9aMCorn+5ByIe5gLXRggIGHUlkHj1uLk0HdVzpZJeS B9jm4Q2D2u1od/wtQwtsUC+s2umpp+thB5EDSMJurLqM3aRYqMBoM0VLea3VqOyt cF5KjwPaAzn5FUYhVvctVQa2hjmFMMMoenzDW8cwvLnsOMRaO3iJFSWbDbkQ3OfI 1SAY6Ef7BMwavMirhG56DHX4eOPiRCY6F1NMOxqYJ8/7qsr4sYqOJ/pHqpjWpihS Z8mwd/+BD8FRfUlsq7AMcFuVuQ== -----END CERTIFICATE-----Generated at Fri Apr 17 22:24:32 2026 by rpki-client