$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft File: lGqi80z6-eS9bjRboJqd6bnC0U0.mft (raw, json) Hash identifier: kVkWTKSdPhuURC6I6lmz2uPnfM02+MpWCLvtsXm+yEI= Subject key identifier: 8A:69:83:DA:6B:28:11:C3:70:7D:71:23:59:FA:07:56:23:68:53:9A Authority key identifier: 94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D Certificate issuer: /CN=A91CAA69/serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Certificate serial: 0F0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft Manifest number: 0EF5 Signing time: Thu 16 Apr 2026 18:22:01 +0000 Manifest this update: Thu 16 Apr 2026 18:22:00 +0000 Manifest next update: Thu 23 Apr 2026 18:22:00 +0000 Files and hashes: 1: lGqi80z6-eS9bjRboJqd6bnC0U0.crl (hash: fxLDTFJetDdh/35AkReGQCRFCroMJRcT9kFUGL8C2aM=) 2: 1FAB60EE9EB111E99ED10D84C4F9AE02.roa (hash: JoDyF1+0/uHXUe4b6JwZuFvOHh5ZoEWfFz+rLvuX/DE=) 3: DF5D49F6985611ECBE7ED328C4F9AE02.roa (hash: iGmNhe2U/JgHU115UXZMlUMKdd/xk6VCuDolUguecP8=) 4: DECBB040985611ECBE7ED328C4F9AE02.roa (hash: idv/2IXVQV4s0FcPaBXiyKtcotl1AiWEqCu1Wl2Gwy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3852 (0xf0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA69, serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Validity Not Before: Apr 16 18:22:00 2026 GMT Not After : Apr 23 18:22:00 2026 GMT Subject: CN=69e128c8-6f9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8e:bd:4a:4c:48:fb:45:0b:f3:19:94:97:77: e5:5a:48:a1:e1:e5:0d:7a:8f:0a:b7:37:69:31:d7: ca:f2:64:f0:92:b5:78:8c:74:3a:aa:09:10:d8:3a: 31:8f:0a:53:90:a6:75:32:44:cb:09:a3:c3:18:a9: aa:46:40:93:db:57:9a:b8:20:0d:ee:66:07:aa:41: 1d:11:2e:7c:8b:fc:06:b8:2e:39:15:da:92:e3:9c: b7:2e:41:7b:43:df:c6:30:2b:90:45:ff:c5:87:71: 74:28:92:84:67:b3:24:73:2f:12:0b:39:da:83:11: 05:f3:4a:d8:a8:63:c9:e3:6f:6e:04:17:5b:66:af: 7c:e8:62:24:c3:49:6e:2c:f8:80:3e:f0:4c:97:c4: 4a:2d:0e:57:3a:b4:0c:4f:4e:20:c4:0e:e8:07:d0: b8:45:64:27:c7:72:60:e1:b1:77:34:2e:fc:0a:c3: fe:9d:18:fc:1d:1e:36:ad:8d:a5:aa:b7:bf:64:65: cb:22:20:c8:cc:66:61:28:7c:d6:2b:b2:69:f6:84: 38:98:f1:cd:33:2f:f7:ac:9b:2a:e0:40:b4:f9:ed: 2e:60:cd:d7:2c:dc:c3:38:a8:94:11:4e:2e:75:77: 6f:7a:13:7c:e1:1c:de:fc:1a:c2:40:03:cc:03:94: 77:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:69:83:DA:6B:28:11:C3:70:7D:71:23:59:FA:07:56:23:68:53:9A X509v3 Authority Key Identifier: keyid:94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:19:53:6b:2b:5d:de:05:b6:fd:eb:5e:f2:96:3d:d8:6d:12: ab:59:91:08:0e:2a:2c:96:ce:d5:ea:d7:36:b8:ea:00:40:a5: 9f:af:10:2d:33:ea:50:5b:e1:e1:1c:58:3a:af:b3:db:f6:be: ab:5d:75:dd:bf:32:88:af:0f:12:37:ce:e1:f7:e3:42:3f:ec: 75:1b:15:a7:41:a8:af:13:15:97:55:11:50:6d:a1:13:81:84: 52:9e:42:ce:b1:53:5f:55:14:1d:ff:05:ba:76:a5:48:25:48: 8e:38:f4:7b:d8:7a:39:ce:e2:a2:29:ba:98:cf:fb:e9:cb:b7: f5:ad:79:36:9d:f4:e6:5e:ce:b2:c8:94:a0:c1:22:b3:f1:85: a2:49:95:e2:96:42:89:10:f8:3e:53:14:b0:3f:06:13:84:06: f2:6d:56:14:55:3a:bb:af:c2:e4:7e:e6:03:fa:59:8f:92:36: 88:ea:9b:12:97:74:80:6c:89:c0:75:a2:6b:6a:3f:8e:4d:12: a0:e2:c9:b9:27:fe:09:1b:09:34:6a:e3:fb:d2:ce:92:7c:57: a6:ac:e6:d7:79:c8:d1:b2:c7:96:d9:72:33:8b:d6:ed:59:5d: 88:8f:25:6b:2d:d7:4c:f8:b9:9d:16:82:56:10:2f:d0:8e:7b: 2e:c5:a6:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNjkxMTAvBgNVBAUTKDk0NkFBMkYzNENGQUY5RTRCRDZFMzQ1QkEwOUE5REU5 QjlDMkQxNEQwHhcNMjYwNDE2MTgyMjAwWhcNMjYwNDIzMTgyMjAwWjAYMRYwFAYD VQQDEw02OWUxMjhjOC02ZjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtY69SkxI+0UL8xmUl3flWkih4eUNeo8KtzdpMdfK8mTwkrV4jHQ6qgkQ2Dox jwpTkKZ1MkTLCaPDGKmqRkCT21eauCAN7mYHqkEdES58i/wGuC45FdqS45y3LkF7 Q9/GMCuQRf/Fh3F0KJKEZ7Mkcy8SCznagxEF80rYqGPJ429uBBdbZq986GIkw0lu LPiAPvBMl8RKLQ5XOrQMT04gxA7oB9C4RWQnx3Jg4bF3NC78CsP+nRj8HR42rY2l qre/ZGXLIiDIzGZhKHzWK7Jp9oQ4mPHNMy/3rJsq4EC0+e0uYM3XLNzDOKiUEU4u dXdvehN84Rze/BrCQAPMA5R3wwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIppg9pr KBHDcH1xI1n6B1YjaFOaMB8GA1UdIwQYMBaAFJRqovNM+vnkvW40W6Canem5wtFN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE2OS80MEUxRkM5QzlF QjAxMUU5QjA3RTdBODJDNEY5QUUwMi9sR3FpODB6Ni1lUzlialJib0pxZDZibkMw VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xHcWk4MHo2LWVTOWJqUmJvSnFkNmJuQzBVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE2OS80MEUxRkM5QzlFQjAxMUU5QjA3RTdBODJDNEY5QUUwMi9sR3FpODB6Ni1l UzlialJib0pxZDZibkMwVTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAixlTaytd3gW2/ete8pY92G0Sq1mRCA4qLJbO1erXNrjqAECln68QLTPqUFvh 4RxYOq+z2/a+q1113b8yiK8PEjfO4ffjQj/sdRsVp0GorxMVl1URUG2hE4GEUp5C zrFTX1UUHf8FunalSCVIjjj0e9h6Oc7ioim6mM/76cu39a15Np305l7OssiUoMEi s/GFokmV4pZCiRD4PlMUsD8GE4QG8m1WFFU6u6/C5H7mA/pZj5I2iOqbEpd0gGyJ wHWia2o/jk0SoOLJuSf+CRsJNGrj+9LOknxXpqzm13nI0bLHltlyM4vW7VldiI8l ay3XTPi5nRaCVhAv0I57LsWmKA== -----END CERTIFICATE-----Generated at Fri Apr 17 13:39:38 2026 by rpki-client