$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft File: lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft (raw, json) Hash identifier: 5Iog/Ugr7fTnFhWD4f1jmg94o8mMVNrBDAuFBrSxAEk= Subject key identifier: F8:B7:C7:D2:D2:D8:DF:5A:13:E4:29:CB:05:64:55:61:CA:97:49:EE Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 3542 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft Manifest number: 353A Signing time: Thu 16 Apr 2026 14:37:01 +0000 Manifest this update: Thu 16 Apr 2026 14:37:00 +0000 Manifest next update: Thu 23 Apr 2026 14:37:00 +0000 Files and hashes: 1: lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl (hash: L5E2nc+69In0u27VtUnR/RbrsbsTGsqVRslOnHf/gAs=) 2: 35FC192C272C11ED9E64C718C4F9AE02.roa (hash: 5gb2IR3RmAQfetfMD3Cf2kp33anqtncaV+qXbOqkB4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:37:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13634 (0x3542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Apr 16 14:37:00 2026 GMT Not After : Apr 23 14:37:00 2026 GMT Subject: CN=69e0f40d-940a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6f:97:37:d2:29:78:b5:de:28:85:d6:fa:0a: aa:f8:8a:5e:03:b9:54:6d:e1:53:a1:53:ea:87:7b: f8:14:4c:fb:5f:92:12:0c:13:7f:20:37:72:6b:5d: 2a:c0:19:a4:42:a1:58:fd:8d:ac:87:42:e2:38:37: 73:f4:61:d5:25:14:c2:c2:8c:3d:9e:2e:27:e7:be: b1:ea:e7:43:5d:66:30:fb:bd:be:2d:c8:45:c1:8c: 21:1d:03:69:e5:6b:bc:1f:f3:ee:1a:c0:47:43:48: ab:c7:1f:53:bb:be:f7:5c:75:94:35:b1:af:bd:e2: 6b:11:6d:56:1c:94:49:a4:88:27:ef:b1:9f:b4:86: 72:fe:a1:20:9b:e0:99:16:00:95:4e:68:dc:65:2b: 2b:78:cc:3b:d9:fb:ce:9e:4e:26:00:25:43:9c:23: 13:eb:bc:6b:d8:ff:eb:67:1a:c9:21:3b:93:1d:90: 8f:e7:66:d4:49:bd:11:d9:19:d7:c4:4e:96:18:70: 44:f2:04:00:bd:2e:b9:ca:d7:ca:0c:51:6d:97:94: 1b:7e:6f:e1:b0:c3:45:8f:5c:67:c3:5f:07:e9:91: 60:4f:d6:ce:9d:76:10:7a:8e:e2:fd:da:e0:10:90: 18:08:2a:2e:dd:67:03:19:b9:6c:a8:49:fe:74:db: 22:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:B7:C7:D2:D2:D8:DF:5A:13:E4:29:CB:05:64:55:61:CA:97:49:EE X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:06:0c:46:b3:4d:ce:a6:d2:7e:01:e5:de:9d:c5:2a:f8:41: 23:61:a5:04:a8:10:31:10:7c:d5:b6:41:77:ed:f8:61:2f:dd: c3:c6:6b:60:c7:61:cf:01:1e:1c:1f:cf:9b:88:07:8f:2c:ef: 79:83:2c:0d:96:cf:21:b4:eb:44:bc:eb:30:0f:6b:c7:61:76: 0e:1c:35:22:d1:6b:3d:26:6b:23:ea:ad:15:0e:84:af:64:72: a8:4b:ae:2b:b7:5f:ad:ea:ca:0b:a7:60:65:80:84:21:58:02: 7f:05:c6:9d:a8:e9:a4:51:71:3c:e2:01:ab:ab:5b:04:ab:fe: 26:12:c6:eb:9e:7f:53:00:8e:5f:26:0e:3f:c7:81:27:1d:8c: ba:4f:b6:08:69:c4:1b:b3:c2:37:ea:bb:c6:d0:9a:11:e1:b4: a6:c5:c6:28:52:a3:4e:a1:1a:31:64:08:d7:a9:41:4d:4b:95: 90:b3:c0:61:e8:78:fc:c9:df:72:92:f8:c1:0f:53:12:6c:63: a1:ca:06:e1:ab:1b:f0:4c:f1:39:ba:9c:b3:21:bb:0f:03:7f: 93:fb:5e:86:f0:fd:83:92:57:91:bc:e6:2f:17:4c:10:cd:dc: 72:64:87:78:ec:51:d5:8e:f1:8f:e0:7a:cd:e4:e2:1a:6e:a0: b6:59:0b:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjYwNDE2MTQzNzAwWhcNMjYwNDIzMTQzNzAwWjAYMRYwFAYD VQQDEw02OWUwZjQwZC05NDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1m+XN9IpeLXeKIXW+gqq+IpeA7lUbeFToVPqh3v4FEz7X5ISDBN/IDdya10q wBmkQqFY/Y2sh0LiODdz9GHVJRTCwow9ni4n576x6udDXWYw+72+LchFwYwhHQNp 5Wu8H/PuGsBHQ0irxx9Tu773XHWUNbGvveJrEW1WHJRJpIgn77GftIZy/qEgm+CZ FgCVTmjcZSsreMw72fvOnk4mACVDnCMT67xr2P/rZxrJITuTHZCP52bUSb0R2RnX xE6WGHBE8gQAvS65ytfKDFFtl5Qbfm/hsMNFj1xnw18H6ZFgT9bOnXYQeo7i/drg EJAYCCou3WcDGblsqEn+dNsiewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPi3x9LS 2N9aE+QpywVkVWHKl0nuMB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDdGMi9GMDI4OTAzQzFEOEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2 YmdIbXZNbDIzQXk0UVU2RGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMwYMRrNNzqbSfgHl3p3FKvhBI2GlBKgQMRB81bZBd+34YS/dw8ZrYMdhzwEe HB/Pm4gHjyzveYMsDZbPIbTrRLzrMA9rx2F2Dhw1ItFrPSZrI+qtFQ6Er2RyqEuu K7dfrerKC6dgZYCEIVgCfwXGnajppFFxPOIBq6tbBKv+JhLG655/UwCOXyYOP8eB Jx2Muk+2CGnEG7PCN+q7xtCaEeG0psXGKFKjTqEaMWQI16lBTUuVkLPAYeh4/Mnf cpL4wQ9TEmxjocoG4asb8EzxObqcsyG7DwN/k/tehvD9g5JXkbzmLxdMEM3ccmSH eOxR1Y7xj+B6zeTiGm6gtlkL8g== -----END CERTIFICATE-----Generated at Fri Apr 17 18:08:26 2026 by rpki-client