$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft File: LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft (raw, json) Hash identifier: hBy0RmM8AiveWjDW7bkTcC2DG0kM0dpQTs8rN2/YrBc= Subject key identifier: AE:41:94:03:4E:A9:D8:7A:35:CF:4D:F3:42:3C:FF:69:F3:89:F6:0C Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 0604 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft Manifest number: 05AE Signing time: Thu 16 Apr 2026 23:14:03 +0000 Manifest this update: Thu 16 Apr 2026 23:14:03 +0000 Manifest next update: Thu 23 Apr 2026 23:14:03 +0000 Files and hashes: 1: LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl (hash: tt/8RRxIlKplSJMiegmYz0600SrJn9qRbVXAVhP1rw0=) 2: 74CECB38FBF711F0B6045B12716F56BC.roa (hash: DQhYrefFOI4w+qsMMTRGiZB2qVxuQnH+mEqRGikTB98=) 3: F88F642285E411EEB951413BC4F9AE02.roa (hash: krziyxJjj3W5faMkTkdh3jS0gXk+dMCMIxlaoN+oOhU=) 4: BD4E85B09E6311ECA6EC8071C4F9AE02.roa (hash: 7BVtLLotMLGpAMIjNPPakQoOlPGO61uSEIii5dgYdzo=) 5: 1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa (hash: PGfOZ8aur6eFpfgp1qb3p6zkq3ccsWlLdh66JdofFDY=) 6: CD7FBD2CFDE711F08E6C9BDB726F56BC.roa (hash: HOjKKUKfVkEJkpJ5kP3nNLtaEubz2MLWdl6U7WuE38A=) 7: D6C060C27E1811EEB9B4FE4AC4F9AE02.roa (hash: bTmhZaAypt5r6H6ei3QiJe1JRpUEf1NlmVzAJrVmPHM=) 8: CE988D80FB7311EC97CD7F85C4F9AE02.roa (hash: loULOkxTyFtV5eU4JwAnNk7SaUEpMQGahUv+OEZBH2g=) 9: 74489676FBF711F0B6045B12716F56BC.roa (hash: PtmrY+a/4HZCqPq48R9VOsgkvL+9qoLlfHRXIydqoPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:14:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1540 (0x604) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72, serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Apr 16 23:14:03 2026 GMT Not After : Apr 23 23:14:03 2026 GMT Subject: CN=69e16d3b-8868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:53:4f:d6:16:8a:de:f7:fd:63:79:50:79:d0: 3f:7b:dc:01:24:a5:66:2f:f6:b3:94:c8:14:ab:f3: b7:18:6d:53:ac:86:43:72:51:50:9b:d7:c5:b0:e1: ef:f2:6a:5d:ad:4c:9e:5a:be:b6:94:0f:d8:0a:4c: de:cd:cd:65:02:82:a7:2b:0b:66:e0:23:97:44:2d: 97:90:d7:96:d1:a9:88:6d:9c:78:1e:b1:f4:54:66: 85:96:d4:f3:a9:7c:7e:82:64:cd:e2:d6:ac:5e:3d: 77:a2:1d:c6:d8:2c:83:55:9c:14:42:00:6c:c1:49: 6a:0d:37:42:c5:8e:77:5b:a4:30:18:bc:34:d6:ee: 4b:bc:c9:d2:84:e0:8d:16:5f:21:12:47:6a:d7:ed: 07:5f:60:48:8e:57:44:f1:27:e4:21:55:67:17:65: e6:5b:15:eb:86:97:dc:53:4d:b8:7a:7c:82:5f:53: 63:f6:5c:78:f8:d0:5d:67:a1:1f:27:00:08:7d:01: d3:c9:14:98:f7:79:40:32:2b:8d:ec:2b:fb:e6:36: d4:55:07:94:7f:24:0b:7b:b6:66:a8:c8:62:5f:0c: 3a:7f:18:ea:4e:43:f0:f2:e3:bb:3e:c9:81:0d:b4: 53:90:c4:de:c9:be:8b:bf:89:09:28:12:ca:bd:5a: 7c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:41:94:03:4E:A9:D8:7A:35:CF:4D:F3:42:3C:FF:69:F3:89:F6:0C X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:7f:f1:27:4c:97:65:af:1b:28:7f:dc:d8:11:10:a4:72:37: d8:37:d8:d3:22:3b:b4:75:86:b0:d6:5b:f2:3d:2d:9e:79:5d: 7d:05:39:ff:02:20:68:64:cf:b6:1c:92:8e:93:19:65:41:6f: 95:5f:49:ad:84:0a:90:51:16:55:f8:2b:68:1f:94:bd:c8:d0: e7:1b:de:68:86:cf:51:97:7e:e3:2b:23:b7:1a:01:84:09:c8: b0:f9:d6:19:97:58:ba:31:63:06:b0:4e:6d:78:19:46:20:7b: f2:f2:21:3e:f1:0b:6b:e7:69:9d:71:8f:dc:e4:03:12:c1:f6: d6:94:7d:17:c4:1f:dd:00:70:78:96:52:ed:ec:e0:e4:f9:3e: 0e:de:39:b8:e3:c5:4f:6f:75:05:22:67:6a:ba:2a:17:a4:ef: 25:44:3f:c4:9b:e5:0f:63:68:9b:bd:5d:00:26:81:79:db:67: be:e3:b0:be:b2:99:10:ea:0b:c7:02:32:66:ba:d2:47:9b:6b: 0f:59:9f:06:7b:4c:69:90:22:ce:88:58:ac:42:4a:09:b7:93: e7:f6:7f:4d:4d:aa:db:61:9c:1f:bf:65:54:db:65:f9:c6:37: 40:7f:b2:7a:68:d4:2d:14:ef:66:e7:c0:d5:be:03:82:8e:f8: 3f:ef:ed:c0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjYwNDE2MjMxNDAzWhcNMjYwNDIzMjMxNDAzWjAYMRYwFAYD VQQDEw02OWUxNmQzYi04ODY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAklNP1haK3vf9Y3lQedA/e9wBJKVmL/azlMgUq/O3GG1TrIZDclFQm9fFsOHv 8mpdrUyeWr62lA/YCkzezc1lAoKnKwtm4COXRC2XkNeW0amIbZx4HrH0VGaFltTz qXx+gmTN4tasXj13oh3G2CyDVZwUQgBswUlqDTdCxY53W6QwGLw01u5LvMnShOCN Fl8hEkdq1+0HX2BIjldE8SfkIVVnF2XmWxXrhpfcU024enyCX1Nj9lx4+NBdZ6Ef JwAIfQHTyRSY93lAMiuN7Cv75jbUVQeUfyQLe7ZmqMhiXww6fxjqTkPw8uO7PsmB DbRTkMTeyb6Lv4kJKBLKvVp8HQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK5BlANO qdh6Nc9N80I8/2nzifYMMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q3Mi80NTc2QTY3MjI2MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgy d0x0WS1TRVo1bGdneVAxWHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFn/xJ0yXZa8bKH/c2BEQpHI32DfY0yI7tHWGsNZb8j0tnnldfQU5/wIgaGTP thySjpMZZUFvlV9JrYQKkFEWVfgraB+UvcjQ5xveaIbPUZd+4ysjtxoBhAnIsPnW GZdYujFjBrBObXgZRiB78vIhPvELa+dpnXGP3OQDEsH21pR9F8Qf3QBweJZS7ezg 5Pk+Dt45uOPFT291BSJnaroqF6TvJUQ/xJvlD2Nom71dACaBedtnvuOwvrKZEOoL xwIyZrrSR5trD1mfBntMaZAizohYrEJKCbeT5/Z/TU2q22GcH79lVNtl+cY3QH+y emjULRTvZufA1b4Dgo74P+/twA== -----END CERTIFICATE-----Generated at Fri Apr 17 17:55:18 2026 by rpki-client