$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft File: LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft (raw, json) Hash identifier: Vi8D3gMfpJx2jX46q9MOTObWVN373yBdRBgYWAdRB88= Subject key identifier: DD:CF:8E:F7:DA:2F:44:82:96:22:50:DF:21:0F:F9:D9:11:30:32:26 Authority key identifier: 2E:16:4D:B4:5B:84:6B:BA:E6:8C:27:7D:43:F8:82:F6:40:92:28:1E Certificate issuer: /CN=A91A9467/serialNumber=2E164DB45B846BBAE68C277D43F882F64092281E Certificate serial: 1990 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft Manifest number: 1979 Signing time: Thu 16 Apr 2026 16:21:44 +0000 Manifest this update: Thu 16 Apr 2026 16:21:43 +0000 Manifest next update: Thu 23 Apr 2026 16:21:43 +0000 Files and hashes: 1: LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl (hash: 5TUaSHo4qKrfdwsTUKM6wKk80I2lVpHYzII5snKoqAY=) 2: 0EDA10A4A9A011EE96DCBB4FC4F9AE02.roa (hash: DzKmtYCdBRynloESEDJ88OdtBxNoXDc9M+RZzPAZ8/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:21:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6544 (0x1990) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9467, serialNumber=2E164DB45B846BBAE68C277D43F882F64092281E Validity Not Before: Apr 16 16:21:43 2026 GMT Not After : Apr 23 16:21:43 2026 GMT Subject: CN=69e10c98-7b34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a7:ef:72:92:4e:58:a6:1b:af:0d:71:75:ca: d1:69:1a:8f:db:3d:6a:4c:55:69:02:38:19:ad:5b: 0f:07:dd:bf:77:15:89:97:d9:30:4a:01:d6:6a:34: 6c:82:18:40:17:b5:fd:99:f0:7e:ca:ac:5b:ec:e9: 72:2c:c9:1b:bd:19:64:8f:d5:87:84:89:4a:b0:af: 4d:24:0b:1e:00:ee:1a:23:ab:7b:72:56:ca:6f:41: 05:18:46:09:cc:41:0b:2a:62:3b:e6:f5:d0:0a:24: 8d:1f:92:6e:5b:41:f1:15:df:a3:fe:6f:7e:73:2c: 0d:94:17:9a:9d:d6:f9:1b:26:30:2e:e0:b2:44:65: 51:74:9d:bd:2b:14:fa:fa:17:f5:32:2c:c0:19:ed: 41:7b:69:74:77:5b:71:58:5a:6a:7d:ad:1c:c1:16: 06:7e:a4:36:37:46:f4:45:d4:d7:f6:5c:46:5a:77: 35:11:62:03:d8:d2:71:28:5c:73:fb:f3:d0:2b:41: 8b:2c:aa:8c:01:7b:87:bd:58:18:ff:b1:46:69:31: 67:e3:30:0e:4f:91:64:a5:66:6f:b9:39:e9:d5:8d: 88:ef:80:56:2f:91:13:2e:5a:33:de:32:64:4a:eb: 2d:c5:b2:a9:8e:2b:ea:4b:d2:3a:d6:be:2a:68:8a: 99:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:CF:8E:F7:DA:2F:44:82:96:22:50:DF:21:0F:F9:D9:11:30:32:26 X509v3 Authority Key Identifier: keyid:2E:16:4D:B4:5B:84:6B:BA:E6:8C:27:7D:43:F8:82:F6:40:92:28:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:cd:eb:c8:95:be:09:ca:6f:ac:b8:95:f4:6e:32:db:28:40: 87:07:2c:6b:69:c3:84:9a:2f:92:6b:09:7c:7b:df:5d:29:cf: da:18:eb:fe:30:53:29:0f:ce:5f:34:96:97:9f:c9:a1:21:6a: 46:b9:02:6f:53:3a:b0:bd:07:e6:8b:c8:ef:64:87:81:62:2c: 9b:b1:c5:fc:d4:79:a7:88:e4:ee:3c:86:e7:15:b9:9f:4c:5a: 92:89:d7:49:40:af:03:77:45:f4:ef:af:da:0c:4b:ff:93:09: 63:72:dc:a3:02:79:f4:3b:5f:7e:85:4d:0b:bb:fb:4c:d5:5e: d8:b1:2d:a5:6c:89:2d:60:7c:50:31:9a:19:71:ee:e9:49:31: b0:e7:90:f6:2a:97:99:bb:f4:14:65:3c:08:c8:a9:1f:b1:ea: 5d:8b:b4:ba:73:24:e5:b8:80:f0:ea:7d:2e:80:1a:a1:7c:66: f3:6a:44:e7:a0:c0:cd:41:a5:df:9f:7a:ad:6d:d5:ae:5e:57: 10:4b:16:f3:7e:c1:31:46:44:a1:5d:df:9b:b6:fc:76:96:57: 44:b6:13:7f:41:5f:88:04:08:62:43:88:d0:d1:5b:2f:fb:62: ea:ba:63:4d:3d:3f:8b:7c:48:ef:0c:ec:66:99:e5:9a:9b:59: 0a:c8:ca:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk0NjcxMTAvBgNVBAUTKDJFMTY0REI0NUI4NDZCQkFFNjhDMjc3RDQzRjg4MkY2 NDA5MjI4MUUwHhcNMjYwNDE2MTYyMTQzWhcNMjYwNDIzMTYyMTQzWjAYMRYwFAYD VQQDEw02OWUxMGM5OC03YjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtafvcpJOWKYbrw1xdcrRaRqP2z1qTFVpAjgZrVsPB92/dxWJl9kwSgHWajRs ghhAF7X9mfB+yqxb7OlyLMkbvRlkj9WHhIlKsK9NJAseAO4aI6t7clbKb0EFGEYJ zEELKmI75vXQCiSNH5JuW0HxFd+j/m9+cywNlBeandb5GyYwLuCyRGVRdJ29KxT6 +hf1MizAGe1Be2l0d1txWFpqfa0cwRYGfqQ2N0b0RdTX9lxGWnc1EWID2NJxKFxz +/PQK0GLLKqMAXuHvVgY/7FGaTFn4zAOT5FkpWZvuTnp1Y2I74BWL5ETLloz3jJk SustxbKpjivqS9I61r4qaIqZIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN3Pjvfa L0SCliJQ3yEP+dkRMDImMB8GA1UdIwQYMBaAFC4WTbRbhGu65ownfUP4gvZAkige MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTQ2Ny85MTVDMDdFNjkx RUExMUU3OUQwRDBBMkJDNEY5QUUwMi9MaFpOdEZ1RWE3cm1qQ2Q5UV9pQzlrQ1NL QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xoWk50RnVFYTdybWpDZDlRX2lDOWtDU0tCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTQ2Ny85MTVDMDdFNjkxRUExMUU3OUQwRDBBMkJDNEY5QUUwMi9MaFpOdEZ1RWE3 cm1qQ2Q5UV9pQzlrQ1NLQjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXM3ryJW+CcpvrLiV9G4y2yhAhwcsa2nDhJovkmsJfHvfXSnP2hjr/jBTKQ/O XzSWl5/JoSFqRrkCb1M6sL0H5ovI72SHgWIsm7HF/NR5p4jk7jyG5xW5n0xakonX SUCvA3dF9O+v2gxL/5MJY3LcowJ59DtffoVNC7v7TNVe2LEtpWyJLWB8UDGaGXHu 6UkxsOeQ9iqXmbv0FGU8CMipH7HqXYu0unMk5biA8Op9LoAaoXxm82pE56DAzUGl 3596rW3Vrl5XEEsW837BMUZEoV3fm7b8dpZXRLYTf0FfiAQIYkOI0NFbL/ti6rpj TT0/i3xI7wzsZpnlmptZCsjKkg== -----END CERTIFICATE-----Generated at Fri Apr 17 14:58:23 2026 by rpki-client