$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft File: L8Qw8eIVy9fgjyZDiDcDUALeMak.mft (raw, json) Hash identifier: UMvyiBIfNjAcr/Aw0Yw6+aM626Scjl8XTzT/BG3Fmgk= Subject key identifier: 7C:88:27:CD:7F:E4:53:10:8C:CB:62:91:93:6F:1C:DE:1F:94:E6:98 Authority key identifier: 2F:C4:30:F1:E2:15:CB:D7:E0:8F:26:43:88:37:03:50:02:DE:31:A9 Certificate issuer: /CN=A91CB8A3/serialNumber=2FC430F1E215CBD7E08F26438837035002DE31A9 Certificate serial: 0361 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft Manifest number: 034F Signing time: Fri 17 Apr 2026 00:52:02 +0000 Manifest this update: Fri 17 Apr 2026 00:52:02 +0000 Manifest next update: Fri 24 Apr 2026 00:52:02 +0000 Files and hashes: 1: L8Qw8eIVy9fgjyZDiDcDUALeMak.crl (hash: bUS1CgfP+4MFrgTAIYcwdEZm7ODbc9qiPmpJIwTvn24=) 2: 36B29DDC841711F0AB46F416C4F9AE02.roa (hash: wgip0DQGeaZ0QNSC6Osjp3LdtBXVxXRo5X2o3r8AIKo=) 3: CC1ACE7A6BC711F098C3B76CC4F9AE02.roa (hash: BahbEschYMgJrMF0BLS9CUwIvpM5/L/G8tn8FPtp9ik=) 4: 5E616E44841711F0B7A8C63CC4F9AE02.roa (hash: 2bSuW/W2EAJDExuMn72UQi0Hj4wXVmW13H/TPfYijPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.crl rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 865 (0x361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8A3, serialNumber=2FC430F1E215CBD7E08F26438837035002DE31A9 Validity Not Before: Apr 17 00:52:02 2026 GMT Not After : Apr 24 00:52:02 2026 GMT Subject: CN=69e18432-a564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0d:a9:09:a1:03:b5:2e:b5:ea:60:84:00:60: 66:c6:f3:63:d7:82:34:64:20:b7:67:c9:b3:50:01: a6:d2:9d:5f:08:df:a0:56:93:29:6e:64:20:51:9c: 21:9a:08:96:a0:3e:6b:70:c6:7d:12:e5:f3:ca:d2: 99:28:5b:42:6f:5e:e9:22:d7:92:5c:c7:45:87:bd: e0:d3:5e:78:d7:14:b9:05:8e:f2:b2:ca:92:03:93: b3:11:a5:f9:fd:7a:ec:98:0a:67:7f:0d:c1:a4:ea: 80:54:0f:05:bb:58:de:65:64:5e:ac:1a:6c:ff:db: b1:0c:e4:65:b7:46:a0:95:74:96:25:2b:e4:13:09: c1:8b:fb:61:1e:13:2e:d7:27:bd:f2:40:77:87:a4: 6f:98:15:21:2f:71:8f:a2:9e:b3:83:b9:da:ed:68: a3:98:25:ee:f2:94:33:92:ff:9c:f3:31:21:8f:ed: 1a:11:a9:34:da:80:b8:2d:49:c0:c9:c0:ec:7c:ed: 5c:88:d5:6f:1e:e2:75:e8:02:42:1d:95:32:d7:49: c1:10:e7:81:7c:89:b7:41:4a:1d:83:c4:8c:bf:19: 84:7e:c8:2a:49:4d:d0:50:35:38:b2:18:e3:23:04: e9:e7:99:1d:bb:32:c6:8f:21:70:e3:75:8a:19:24: 19:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:88:27:CD:7F:E4:53:10:8C:CB:62:91:93:6F:1C:DE:1F:94:E6:98 X509v3 Authority Key Identifier: keyid:2F:C4:30:F1:E2:15:CB:D7:E0:8F:26:43:88:37:03:50:02:DE:31:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:aa:2c:f7:f7:e7:8d:a4:c0:7a:8b:b9:3c:89:d5:2d:04:ce: 2f:5c:9d:58:1a:c8:30:f4:0d:00:64:5e:c7:2d:8f:84:97:53: 6b:f6:5e:db:3b:1a:4b:31:7f:a0:ef:1f:50:54:a2:9b:6c:c1: 87:1a:98:90:e9:73:dd:10:70:a7:82:b4:60:3e:64:41:d6:76: 86:be:c6:c2:d2:10:b7:3f:2c:eb:b9:3e:8a:ce:9a:09:6a:d3: a6:33:ec:87:fd:66:1c:8d:65:a9:01:3d:29:e3:8a:dd:a5:fa: bd:81:9b:2c:0f:64:3c:51:88:e6:80:31:fc:f0:2b:9d:34:c3: 4a:26:f1:8f:be:33:00:04:e5:82:59:76:07:d8:8d:03:e4:4a: 07:5d:60:d2:b4:df:b9:40:80:c9:dc:6a:a9:e5:71:d4:47:92: 35:56:ca:ba:49:7d:ed:6f:4b:33:0c:d4:cb:3f:d1:64:d5:ce: f2:a5:3c:ff:7b:d7:a8:0c:08:e9:d0:33:6c:3e:dd:94:18:ff: 27:dc:c0:91:47:cc:e9:5f:ec:a2:f9:d1:b0:ba:46:38:89:b9: a2:4d:68:89:52:24:09:e9:6e:a8:d7:2d:b8:26:98:bd:0c:b4: a4:a0:11:0c:e7:5c:47:81:d0:39:d5:f6:be:6e:94:b8:0f:01: de:70:0c:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QTMxMTAvBgNVBAUTKDJGQzQzMEYxRTIxNUNCRDdFMDhGMjY0Mzg4MzcwMzUw MDJERTMxQTkwHhcNMjYwNDE3MDA1MjAyWhcNMjYwNDI0MDA1MjAyWjAYMRYwFAYD VQQDEw02OWUxODQzMi1hNTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmg2pCaEDtS616mCEAGBmxvNj14I0ZCC3Z8mzUAGm0p1fCN+gVpMpbmQgUZwh mgiWoD5rcMZ9EuXzytKZKFtCb17pIteSXMdFh73g01541xS5BY7yssqSA5OzEaX5 /XrsmApnfw3BpOqAVA8Fu1jeZWRerBps/9uxDORlt0aglXSWJSvkEwnBi/thHhMu 1ye98kB3h6RvmBUhL3GPop6zg7na7WijmCXu8pQzkv+c8zEhj+0aEak02oC4LUnA ycDsfO1ciNVvHuJ16AJCHZUy10nBEOeBfIm3QUodg8SMvxmEfsgqSU3QUDU4shjj IwTp55kduzLGjyFw43WKGSQZSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHyIJ81/ 5FMQjMtikZNvHN4flOaYMB8GA1UdIwQYMBaAFC/EMPHiFcvX4I8mQ4g3A1AC3jGp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhBMy85NjY1MEYzOEZE MTcxMUVDODI4OTgzNjVDNEY5QUUwMi9MOFF3OGVJVnk5ZmdqeVpEaURjRFVBTGVN YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4UXc4ZUlWeTlmZ2p5WkRpRGNEVUFMZU1hay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhBMy85NjY1MEYzOEZEMTcxMUVDODI4OTgzNjVDNEY5QUUwMi9MOFF3OGVJVnk5 ZmdqeVpEaURjRFVBTGVNYWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfqos9/fnjaTAeou5PInVLQTOL1ydWBrIMPQNAGRexy2PhJdTa/Ze2zsaSzF/ oO8fUFSim2zBhxqYkOlz3RBwp4K0YD5kQdZ2hr7GwtIQtz8s67k+is6aCWrTpjPs h/1mHI1lqQE9KeOK3aX6vYGbLA9kPFGI5oAx/PArnTTDSibxj74zAATlgll2B9iN A+RKB11g0rTfuUCAydxqqeVx1EeSNVbKukl97W9LMwzUyz/RZNXO8qU8/3vXqAwI 6dAzbD7dlBj/J9zAkUfM6V/sovnRsLpGOIm5ok1oiVIkCeluqNctuCaYvQy0pKAR DOdcR4HQOdX2vm6UuA8B3nAMkA== -----END CERTIFICATE-----Generated at Fri Apr 17 07:09:55 2026 by rpki-client