$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json) Hash identifier: hCt0Kkq/ItawOKiE96eiGHCmD6q11i3sJy67Dhx0cC0= Subject key identifier: 84:E8:4B:D3:92:F7:2B:79:F4:5B:1E:06:E2:98:24:95:A2:D9:27:63 Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft Manifest number: 0192 Signing time: Fri 17 Apr 2026 04:14:03 +0000 Manifest this update: Fri 17 Apr 2026 04:14:03 +0000 Manifest next update: Fri 24 Apr 2026 04:14:03 +0000 Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: 4lUsxJlw5zL5nt1sxrY3svVlB0Q6Wiggp3lHbM5N490=) 2: 10771E5497C211F0A9D40817C4F9AE02.roa (hash: Ih6CUVzbaPRdHejVQvZNcYEMy1tnq4yUXbGOoq+u3g0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:14:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD2D, serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Validity Not Before: Apr 17 04:14:03 2026 GMT Not After : Apr 24 04:14:03 2026 GMT Subject: CN=69e1b38b-9f95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fd:d4:25:f4:dd:44:e5:4e:b9:0f:8c:bf:fa: a9:67:ec:34:d8:2a:5d:d3:58:b2:ee:a4:4e:55:93: d1:f8:dd:1f:ca:2f:ee:0b:16:bc:a6:62:e0:7d:77: f8:3f:69:af:d5:36:a7:eb:12:ea:d1:7e:40:7f:54: 9b:59:9b:d3:02:ec:32:80:82:93:a5:a8:7a:bb:d5: fd:0f:76:e6:e9:fc:72:54:4c:30:44:22:26:68:88: e3:22:ed:de:e7:e8:82:4a:77:2f:49:97:de:b7:82: 32:2d:1d:71:dc:96:d4:3c:e0:e4:90:8f:f2:3d:97: 99:f1:5d:ee:f7:b4:f8:97:44:69:59:c7:40:b9:16: 5b:87:ed:d2:47:95:33:46:c6:35:c1:09:57:1e:01: 55:05:79:ca:87:d3:e5:4e:0f:b8:4a:7b:c3:3d:d8: a4:bf:23:9c:6c:54:e2:31:56:c0:b4:e8:d7:f5:83: 50:a4:b4:d9:01:d8:5f:09:b3:d0:a4:e7:9a:ce:95: c2:59:c0:fb:4a:33:d2:89:f8:02:df:8f:69:37:95: b7:2d:dd:f8:f5:b1:98:91:96:2c:66:4b:89:de:f5: 85:53:51:49:00:41:b6:1e:d6:d3:31:49:03:5a:bc: 00:1b:7d:27:58:d6:1f:76:e6:d9:15:56:d6:4d:0c: 12:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:E8:4B:D3:92:F7:2B:79:F4:5B:1E:06:E2:98:24:95:A2:D9:27:63 X509v3 Authority Key Identifier: keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:73:3e:20:9f:79:8a:1e:8e:fe:c0:57:e4:5d:6c:9b:d3:d0: 31:c9:e8:14:e7:e8:a2:53:c9:5f:86:b4:73:56:d5:4d:66:04: a3:d3:7f:44:5c:75:f3:25:dd:05:e2:cb:a6:50:50:3f:70:71: 35:54:ce:85:50:62:d1:7a:64:b1:c1:a4:c3:74:a3:37:c6:c1: 00:79:3c:72:8d:7e:9f:39:cc:cd:51:16:9b:ab:41:8c:19:8f: 48:c3:cd:1f:a8:68:cc:b7:4a:71:9f:d3:5a:db:91:bb:d9:cc: f3:d8:3a:06:50:a9:3a:1d:87:f5:33:f3:9b:e0:d2:ba:96:81: 3e:5a:4e:a0:69:8b:06:23:94:e4:f0:29:1d:ce:39:6a:84:fb: 14:fc:2e:e1:0d:b3:99:9e:38:24:d5:d7:af:9d:f9:26:7b:b0: 5f:0a:7a:72:f5:27:9b:c4:d8:82:06:b0:e5:d0:dd:92:4f:35: ca:da:39:17:b3:b9:3d:72:17:1e:ca:b3:7a:ad:c0:83:e2:dd: b4:5e:1c:2a:6d:bb:4c:1c:0d:87:89:14:da:8c:ea:05:3f:b9: 18:41:ab:5e:c3:54:9f:37:b0:cd:b0:c4:6d:12:e5:d2:69:18: 46:c5:c4:e9:01:e9:a1:ed:01:5e:77:9f:d3:c2:fd:6f:79:e7: 37:7c:b1:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEMkQxMTAvBgNVBAUTKDk0QTk1MEIzMDNCNDY5MDBERDVBMzA2MTAzMEM4OUE0 ODk2ODAzQUYwHhcNMjYwNDE3MDQxNDAzWhcNMjYwNDI0MDQxNDAzWjAYMRYwFAYD VQQDEw02OWUxYjM4Yi05Zjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAof3UJfTdROVOuQ+Mv/qpZ+w02Cpd01iy7qROVZPR+N0fyi/uCxa8pmLgfXf4 P2mv1Tan6xLq0X5Af1SbWZvTAuwygIKTpah6u9X9D3bm6fxyVEwwRCImaIjjIu3e 5+iCSncvSZfet4IyLR1x3JbUPODkkI/yPZeZ8V3u97T4l0RpWcdAuRZbh+3SR5Uz RsY1wQlXHgFVBXnKh9PlTg+4SnvDPdikvyOcbFTiMVbAtOjX9YNQpLTZAdhfCbPQ pOeazpXCWcD7SjPSifgC349pN5W3Ld349bGYkZYsZkuJ3vWFU1FJAEG2HtbTMUkD WrwAG30nWNYfdubZFVbWTQwSjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIToS9OS 9yt59FseBuKYJJWi2SdjMB8GA1UdIwQYMBaAFJSpULMDtGkA3VowYQMMiaSJaAOv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQyRC85MDg4RUU1QUU4 MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFRRGRXakJoQXd5SnBJbG9B NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLbFFzd08wYVFEZFdqQmhBd3lKcElsb0E2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQyRC85MDg4RUU1QUU4MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFR RGRXakJoQXd5SnBJbG9BNjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHXM+IJ95ih6O/sBX5F1sm9PQMcnoFOfoolPJX4a0c1bVTWYEo9N/RFx18yXd BeLLplBQP3BxNVTOhVBi0XpkscGkw3SjN8bBAHk8co1+nznMzVEWm6tBjBmPSMPN H6hozLdKcZ/TWtuRu9nM89g6BlCpOh2H9TPzm+DSupaBPlpOoGmLBiOU5PApHc45 aoT7FPwu4Q2zmZ44JNXXr535JnuwXwp6cvUnm8TYggaw5dDdkk81yto5F7O5PXIX Hsqzeq3Ag+LdtF4cKm27TBwNh4kU2ozqBT+5GEGrXsNUnzewzbDEbRLl0mkYRsXE 6QHpoe0BXnef08L9b3nnN3yxOA== -----END CERTIFICATE-----Generated at Sat Apr 18 00:06:13 2026 by rpki-client