$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft File: R-lr-DG7PMQ7TweEJj5ylYddVRY.mft (raw, json) Hash identifier: LsyublTgUbDzL8BYwqqKsyfgpzGmsOn47UhDqeBbYxY= Subject key identifier: F4:97:FD:17:3F:D9:20:BD:69:07:58:6B:F4:43:BC:00:F4:8D:8B:E6 Authority key identifier: 47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 Certificate issuer: /CN=A91C4204/serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft Manifest number: AF Signing time: Fri 17 Apr 2026 06:50:24 +0000 Manifest this update: Fri 17 Apr 2026 06:50:24 +0000 Manifest next update: Fri 24 Apr 2026 06:50:24 +0000 Files and hashes: 1: R-lr-DG7PMQ7TweEJj5ylYddVRY.crl (hash: BgS/Lq00TEGhUk1yYMFU3ygpInjxLCXQmKj81E9I+1g=) 2: CA2D4952300911F0AB675D3EC4F9AE02.roa (hash: oMWjSrq7UBr0grnE1BuEzNLinF6a33GQ38fOzOclHV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4204, serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Validity Not Before: Apr 17 06:50:24 2026 GMT Not After : Apr 24 06:50:24 2026 GMT Subject: CN=69e1d830-68a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9a:66:14:ce:f4:36:27:83:34:02:3e:78:a2: 53:94:2e:ba:7d:d5:ed:3e:3b:b4:03:41:51:6c:7e: 04:8f:50:29:99:00:bc:0d:9b:7b:4b:ca:0e:b2:be: c2:3a:87:04:02:48:39:9a:fe:94:ee:ba:86:59:ad: f0:87:6e:bb:68:29:50:ea:c7:1f:24:06:cc:6f:84: 92:77:d1:c8:60:0c:3c:59:f8:33:ae:b9:3d:51:8c: 4c:68:16:5c:d3:0a:19:7d:d9:93:9d:db:67:6c:5a: 17:51:d6:e6:9d:fe:91:74:2e:e0:34:59:df:18:8f: 6c:2c:5e:a0:75:f8:8c:38:8f:6d:08:87:93:e1:d2: 85:67:cb:6a:f6:68:fc:2d:28:9c:e0:27:a2:b0:55: 8b:7f:d5:38:b5:0e:65:d8:30:25:6f:fd:74:c1:21: 84:5e:00:71:33:49:a0:97:95:a3:1e:6a:40:50:0b: 4a:4e:e9:d5:ab:78:db:9d:a0:42:7f:93:f5:cd:6b: ad:b5:ba:54:42:2a:d4:1a:2f:ac:2f:42:6f:5e:11: e8:48:13:6d:ca:56:d0:23:ef:18:9d:2c:bb:c8:e8: 57:a2:12:32:45:13:20:93:d8:a9:36:81:ce:aa:9d: d0:61:18:d7:c9:bc:cc:6c:b8:c4:0a:8c:76:90:70: e8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:97:FD:17:3F:D9:20:BD:69:07:58:6B:F4:43:BC:00:F4:8D:8B:E6 X509v3 Authority Key Identifier: keyid:47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:c7:43:92:6c:5b:5a:bd:2d:e7:66:5e:ea:8a:06:d2:18:d7: a7:bc:df:aa:dd:e6:7d:e1:ab:19:df:f0:44:16:f5:0a:8d:03: ea:c8:8e:0e:2f:0a:b3:af:f8:a2:d3:49:63:c5:82:26:15:98: 4c:12:71:dc:bc:89:a4:86:6c:f8:38:d8:cd:24:7d:4d:43:90: 9b:f8:50:fe:fc:1f:17:4f:77:00:a6:4a:f5:ad:7f:d8:02:71: d3:71:0d:35:e8:2a:df:b4:f8:d8:84:43:b6:bd:df:f8:23:30: 73:51:c6:b1:b9:39:04:46:f7:3b:28:72:38:96:85:45:3f:db: a7:15:ba:cf:62:7b:32:eb:0b:d6:73:59:32:8a:16:9a:ae:2b: 0f:b8:25:f7:16:be:b7:52:af:cf:27:b4:f5:08:ce:70:36:7e: 3f:77:59:e0:1a:ed:7b:56:cf:56:5f:9a:fd:af:80:2c:b2:7b: ca:35:a7:cb:55:b9:42:d8:ba:20:16:22:46:b2:52:60:e1:45: 47:52:6b:57:51:08:cf:2c:45:5c:e4:89:34:2c:13:b3:78:c8: 3f:10:e4:16:e6:5b:5d:c7:3c:ac:6f:0e:b8:70:e0:56:45:b5: 3e:ff:c3:39:b8:cf:ab:3d:04:f8:af:3d:15:53:35:8b:d2:34: 20:47:b3:b9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQyMDQxMTAvBgNVBAUTKDQ3RTk2QkY4MzFCQjNDQzQzQjRGMDc4NDI2M0U3Mjk1 ODc1RDU1MTYwHhcNMjYwNDE3MDY1MDI0WhcNMjYwNDI0MDY1MDI0WjAYMRYwFAYD VQQDEw02OWUxZDgzMC02OGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5pmFM70NieDNAI+eKJTlC66fdXtPju0A0FRbH4Ej1ApmQC8DZt7S8oOsr7C OocEAkg5mv6U7rqGWa3wh267aClQ6scfJAbMb4SSd9HIYAw8Wfgzrrk9UYxMaBZc 0woZfdmTndtnbFoXUdbmnf6RdC7gNFnfGI9sLF6gdfiMOI9tCIeT4dKFZ8tq9mj8 LSic4CeisFWLf9U4tQ5l2DAlb/10wSGEXgBxM0mgl5WjHmpAUAtKTunVq3jbnaBC f5P1zWuttbpUQirUGi+sL0JvXhHoSBNtylbQI+8YnSy7yOhXohIyRRMgk9ipNoHO qp3QYRjXybzMbLjECox2kHDoLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPSX/Rc/ 2SC9aQdYa/RDvAD0jYvmMB8GA1UdIwQYMBaAFEfpa/gxuzzEO08HhCY+cpWHXVUW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDIwNC80NDFCNTA1MjMw MDkxMUYwQTBBQTdEM0RDNEY5QUUwMi9SLWxyLURHN1BNUTdUd2VFSmo1eWxZZGRW UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1ItbHItREc3UE1RN1R3ZUVKajV5bFlkZFZSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDIwNC80NDFCNTA1MjMwMDkxMUYwQTBBQTdEM0RDNEY5QUUwMi9SLWxyLURHN1BN UTdUd2VFSmo1eWxZZGRWUlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtcdDkmxbWr0t52Ze6ooG0hjXp7zfqt3mfeGrGd/wRBb1Co0D6siODi8Ks6/4 otNJY8WCJhWYTBJx3LyJpIZs+DjYzSR9TUOQm/hQ/vwfF093AKZK9a1/2AJx03EN Negq37T42IRDtr3f+CMwc1HGsbk5BEb3OyhyOJaFRT/bpxW6z2J7MusL1nNZMooW mq4rD7gl9xa+t1Kvzye09QjOcDZ+P3dZ4Brte1bPVl+a/a+ALLJ7yjWny1W5Qti6 IBYiRrJSYOFFR1JrV1EIzyxFXOSJNCwTs3jIPxDkFuZbXcc8rG8OuHDgVkW1Pv/D ObjPqz0E+K89FVM1i9I0IEezuQ== -----END CERTIFICATE-----Generated at Fri Apr 17 10:05:29 2026 by rpki-client