$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft File: ldQuwvRot-OPlYyPupMYARfcJuA.mft (raw, json) Hash identifier: Tm109k9tRh20RzZZFQyhfnO9GDwCHKuooSpTmFa/7Fo= Subject key identifier: EE:E1:E6:3A:12:07:95:67:9A:CF:AA:10:F5:31:FB:8B:AB:CB:15:E6 Authority key identifier: 95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 Certificate issuer: /CN=A91A7F6A/serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft Manifest number: D0 Signing time: Wed 15 Apr 2026 06:28:08 +0000 Manifest this update: Wed 15 Apr 2026 06:28:08 +0000 Manifest next update: Wed 22 Apr 2026 06:28:08 +0000 Files and hashes: 1: ldQuwvRot-OPlYyPupMYARfcJuA.crl (hash: C0arUJ6AT7qiNXFL4ZhVb34jBQJJtEiEXfBM6hp4DmQ=) 2: 4210D4508CD711F0A2DFAA45C4F9AE02.roa (hash: 3NSD584QPTE2VoYUm/1Xe+49n3Loa2OiOqOtqQcrZ6c=) 3: B3849A9A359311F09B54926FC4F9AE02.roa (hash: 0kw+dyxUcDqZZm6WujoT9zGmaeGJaX2gm6HPIvvdWZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 06:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F6A, serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Validity Not Before: Apr 15 06:28:08 2026 GMT Not After : Apr 22 06:28:08 2026 GMT Subject: CN=69df2ff8-d77d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8f:bb:99:e3:d2:72:09:68:bf:8b:ce:38:20: bb:1e:2e:4f:3a:01:1d:c4:55:e4:58:6b:40:05:e3: d9:6b:ca:0b:ff:0a:dc:dd:c5:4a:e3:5d:34:15:7a: 19:a9:b5:8f:42:c3:4c:35:ba:32:73:7a:69:ed:c1: 12:b5:53:53:6b:f9:e7:fb:f9:35:8c:80:21:74:3d: e8:b6:cf:92:2f:f8:b1:3c:fb:d9:c1:a8:66:4a:02: 82:d8:74:ea:17:87:a6:8b:c0:ef:99:7a:9e:d9:46: 23:95:2d:1a:18:7a:e8:24:d7:f2:c9:c3:81:fd:7d: 63:54:84:17:35:49:ad:c6:b8:25:2a:b6:ef:f2:95: 7d:a1:6e:18:f4:67:c3:5a:b3:a6:20:81:65:fb:b2: a3:11:e6:ff:90:c0:25:56:9b:d6:89:68:f0:a7:52: 6d:01:71:65:00:4e:16:b7:45:db:f1:a6:76:76:f6: 34:16:d5:99:a4:b8:0e:3e:9c:d1:57:e4:5c:d3:00: 2d:0f:0f:d4:bc:bf:e7:fa:e4:e1:e9:8b:f0:22:cf: 3b:6c:96:86:ab:e0:f8:68:3e:8a:95:7c:1e:48:1e: 6f:7d:d1:09:57:59:66:26:c1:80:f0:f3:92:5e:1a: 78:a1:c5:b4:c1:d9:b8:29:89:a1:47:38:6e:3b:97: 6e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:E1:E6:3A:12:07:95:67:9A:CF:AA:10:F5:31:FB:8B:AB:CB:15:E6 X509v3 Authority Key Identifier: keyid:95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:b6:31:a1:04:9d:27:09:80:d1:e6:86:36:a3:32:3f:03:b8: ce:ee:fc:28:c0:09:93:bf:8f:ef:70:13:b8:18:c8:ed:8f:53: 74:a2:e1:24:83:6b:d0:be:1d:9e:79:f9:0d:81:0f:63:3f:4e: eb:28:9e:cb:5d:d9:28:e8:29:62:e2:87:8f:dc:09:06:e7:0b: 4a:5e:4e:3a:4e:46:62:a5:ea:95:f1:43:88:9f:26:be:a0:62: df:85:db:b6:23:19:8d:63:7a:fc:bd:a2:f2:4e:be:9c:4f:d9: b8:e8:c4:f0:91:99:8f:86:90:0a:fd:0f:d0:fb:d7:cb:8c:ae: ef:6f:90:c3:7c:05:27:c3:2b:66:b6:48:dd:96:3c:26:d2:67: 2c:e6:f7:29:d1:af:1e:80:a2:a2:e9:04:5d:53:26:d7:a3:ec: 3d:3c:55:40:7b:1f:34:e4:bd:51:2a:68:37:6f:0b:70:01:32: ac:70:93:a8:d3:16:11:39:12:9f:d7:31:a6:51:61:38:aa:fe: 33:52:80:b9:1b:47:60:33:e0:7c:a3:22:79:be:3e:f9:ed:c6: 58:37:d0:a4:95:0c:78:ea:16:67:dc:24:11:f5:f6:52:6d:92: e0:0e:8d:e5:92:69:22:7e:f7:c8:eb:b6:9f:6c:cd:7a:74:fb: a7:37:04:bb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNkExMTAvBgNVBAUTKDk1RDQyRUMyRjQ2OEI3RTM4Rjk1OEM4RkJBOTMxODAx MTdEQzI2RTAwHhcNMjYwNDE1MDYyODA4WhcNMjYwNDIyMDYyODA4WjAYMRYwFAYD VQQDEw02OWRmMmZmOC1kNzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqI+7mePScglov4vOOCC7Hi5POgEdxFXkWGtABePZa8oL/wrc3cVK4100FXoZ qbWPQsNMNboyc3pp7cEStVNTa/nn+/k1jIAhdD3ots+SL/ixPPvZwahmSgKC2HTq F4emi8DvmXqe2UYjlS0aGHroJNfyycOB/X1jVIQXNUmtxrglKrbv8pV9oW4Y9GfD WrOmIIFl+7KjEeb/kMAlVpvWiWjwp1JtAXFlAE4Wt0Xb8aZ2dvY0FtWZpLgOPpzR V+Rc0wAtDw/UvL/n+uTh6YvwIs87bJaGq+D4aD6KlXweSB5vfdEJV1lmJsGA8POS Xhp4ocW0wdm4KYmhRzhuO5duuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO7h5joS B5Vnms+qEPUx+4uryxXmMB8GA1UdIwQYMBaAFJXULsL0aLfjj5WMj7qTGAEX3Cbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y2QS83QTUyOTg3NjBB RjAxMUYwODUzMUQ0M0NDNEY5QUUwMi9sZFF1d3ZSb3QtT1BsWXlQdXBNWUFSZmNK dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkUXV3dlJvdC1PUGxZeVB1cE1ZQVJmY0p1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y2QS83QTUyOTg3NjBBRjAxMUYwODUzMUQ0M0NDNEY5QUUwMi9sZFF1d3ZSb3Qt T1BsWXlQdXBNWUFSZmNKdUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXrYxoQSdJwmA0eaGNqMyPwO4zu78KMAJk7+P73ATuBjI7Y9TdKLhJINr0L4d nnn5DYEPYz9O6yiey13ZKOgpYuKHj9wJBucLSl5OOk5GYqXqlfFDiJ8mvqBi34Xb tiMZjWN6/L2i8k6+nE/ZuOjE8JGZj4aQCv0P0PvXy4yu72+Qw3wFJ8MrZrZI3ZY8 JtJnLOb3KdGvHoCioukEXVMm16PsPTxVQHsfNOS9USpoN28LcAEyrHCTqNMWETkS n9cxplFhOKr+M1KAuRtHYDPgfKMieb4++e3GWDfQpJUMeOoWZ9wkEfX2Um2S4A6N 5ZJpIn73yOu2n2zNenT7pzcEuw== -----END CERTIFICATE-----Generated at Fri Apr 17 07:59:10 2026 by rpki-client