$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft File: ldziG17K3rBp3IG5JAXUdN5BwgY.mft (raw, json) Hash identifier: S7PDEWXtyCElfLnDnAy9yYG1SN4tZoa+jzXHt5RFssk= Subject key identifier: 22:D6:C5:39:38:BE:68:8F:F1:D9:99:D4:70:D3:C6:E9:F4:70:28:4A Authority key identifier: 95:DC:E2:1B:5E:CA:DE:B0:69:DC:81:B9:24:05:D4:74:DE:41:C2:06 Certificate issuer: /CN=A91CD174/serialNumber=95DCE21B5ECADEB069DC81B92405D474DE41C206 Certificate serial: 0CDD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft Manifest number: 0CCF Signing time: Thu 16 Apr 2026 18:18:42 +0000 Manifest this update: Thu 16 Apr 2026 18:18:42 +0000 Manifest next update: Thu 23 Apr 2026 18:18:42 +0000 Files and hashes: 1: ldziG17K3rBp3IG5JAXUdN5BwgY.crl (hash: NDvKR6EPXcgNPJ0vSa+tVNj9RjJXP6eeZhCig5XwKFY=) 2: 54AD60AE0C2E11EABBBFA158C4F9AE02.roa (hash: T91CehV6Kilx5jipNUIxpW+jqQ75yMZ3U6hoSABekhI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.crl rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:18:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3293 (0xcdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD174, serialNumber=95DCE21B5ECADEB069DC81B92405D474DE41C206 Validity Not Before: Apr 16 18:18:42 2026 GMT Not After : Apr 23 18:18:42 2026 GMT Subject: CN=69e12802-8930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:83:0c:2d:a8:9d:17:43:a0:4e:60:0a:e4:e5: 2a:15:88:ee:fd:fd:d5:67:63:8f:59:33:0c:86:01: 39:be:3d:22:15:1b:28:c7:4a:e0:c1:26:d9:83:ed: 5b:24:bd:b1:2c:a0:b2:96:e6:1d:bc:b6:3b:aa:2f: 9c:ac:c3:95:e6:55:47:a1:ae:60:b3:01:eb:5a:cb: de:40:3f:34:b4:e9:c7:33:a8:70:29:ed:e5:6d:04: 34:2f:9c:ef:39:2c:a7:1f:94:b4:3c:7e:43:35:49: 4c:fe:c4:f7:c2:1f:24:31:17:27:16:2e:b2:8d:9c: 70:d8:1e:73:34:ee:c8:ca:8e:a3:ab:fc:c5:a6:d2: 4a:27:2a:c5:38:40:90:8a:f3:8f:b1:76:3e:9b:a2: 40:b3:65:f6:18:2c:2b:7a:cc:e6:2f:f6:2e:f7:c5: 6e:1c:69:e6:18:53:59:10:e9:b1:c2:ac:07:5e:2e: dd:b6:08:c4:21:0c:53:02:d6:21:36:89:ff:47:b7: ba:07:a0:36:8e:ed:d4:e2:a2:bd:7b:f2:5e:9c:42: c6:cc:13:1c:4b:46:c1:97:a6:fc:f9:6d:80:59:d2: 3a:e9:32:87:a0:a6:d0:bc:8a:ad:71:c8:96:c7:4d: 30:58:e0:ea:31:cb:1d:97:9f:08:31:8a:12:d2:67: 8a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:D6:C5:39:38:BE:68:8F:F1:D9:99:D4:70:D3:C6:E9:F4:70:28:4A X509v3 Authority Key Identifier: keyid:95:DC:E2:1B:5E:CA:DE:B0:69:DC:81:B9:24:05:D4:74:DE:41:C2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:a3:af:07:3d:87:6c:bf:8f:7d:b0:ea:13:57:46:d5:d3:dd: 18:3a:a1:b2:55:73:20:48:32:9f:73:a1:26:5b:6b:6c:fc:85: 68:fc:f9:e3:d8:53:58:c8:74:3f:72:34:2a:f3:c3:66:17:17: fa:b0:ec:77:fb:39:62:9c:92:cb:83:5a:02:4d:a0:5c:db:59: 21:be:61:0d:20:11:f8:49:e5:cb:80:96:13:89:5a:8c:37:05: eb:75:b0:d8:82:fc:33:70:23:75:9e:40:0b:85:bf:2e:a3:96: 42:e6:30:75:6b:4c:02:f5:b4:cb:18:90:d7:1e:0f:42:8c:ad: 2f:de:66:47:e2:43:c9:79:4d:b8:8c:76:6c:4a:a7:1a:b0:69: 7b:72:d4:da:44:fd:62:e1:4a:04:88:b1:90:a9:de:c0:c8:2c: 77:86:e7:eb:cf:fb:49:14:2e:bc:90:71:a1:b0:c9:fe:eb:22: e0:49:5b:d4:94:82:94:15:9d:90:fc:73:20:39:1f:1c:b2:44: 26:5d:76:0b:e3:0a:87:f1:c2:43:24:9b:30:1c:50:81:ab:f3: 68:eb:bf:12:2a:9e:04:22:6d:e1:88:f8:a2:eb:d1:3c:35:39: 2a:e8:88:bc:b9:f7:0f:83:f1:14:35:ce:1d:0c:cf:58:3b:0a: 33:88:42:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QxNzQxMTAvBgNVBAUTKDk1RENFMjFCNUVDQURFQjA2OURDODFCOTI0MDVENDc0 REU0MUMyMDYwHhcNMjYwNDE2MTgxODQyWhcNMjYwNDIzMTgxODQyWjAYMRYwFAYD VQQDEw02OWUxMjgwMi04OTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14MMLaidF0OgTmAK5OUqFYju/f3VZ2OPWTMMhgE5vj0iFRsox0rgwSbZg+1b JL2xLKCyluYdvLY7qi+crMOV5lVHoa5gswHrWsveQD80tOnHM6hwKe3lbQQ0L5zv OSynH5S0PH5DNUlM/sT3wh8kMRcnFi6yjZxw2B5zNO7Iyo6jq/zFptJKJyrFOECQ ivOPsXY+m6JAs2X2GCwreszmL/Yu98VuHGnmGFNZEOmxwqwHXi7dtgjEIQxTAtYh Non/R7e6B6A2ju3U4qK9e/JenELGzBMcS0bBl6b8+W2AWdI66TKHoKbQvIqtcciW x00wWODqMcsdl58IMYoS0meKowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCLWxTk4 vmiP8dmZ1HDTxun0cChKMB8GA1UdIwQYMBaAFJXc4hteyt6wadyBuSQF1HTeQcIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDE3NC81MUMzRTU0ODBC NEQxMUVBOTJDMjhGMjBDNEY5QUUwMi9sZHppRzE3SzNyQnAzSUc1SkFYVWRONUJ3 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkemlHMTdLM3JCcDNJRzVKQVhVZE41QndnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDE3NC81MUMzRTU0ODBCNEQxMUVBOTJDMjhGMjBDNEY5QUUwMi9sZHppRzE3SzNy QnAzSUc1SkFYVWRONUJ3Z1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKKOvBz2HbL+PfbDqE1dG1dPdGDqhslVzIEgyn3OhJltrbPyFaPz549hTWMh0 P3I0KvPDZhcX+rDsd/s5YpySy4NaAk2gXNtZIb5hDSAR+Enly4CWE4lajDcF63Ww 2IL8M3AjdZ5AC4W/LqOWQuYwdWtMAvW0yxiQ1x4PQoytL95mR+JDyXlNuIx2bEqn GrBpe3LU2kT9YuFKBIixkKnewMgsd4bn68/7SRQuvJBxobDJ/usi4Elb1JSClBWd kPxzIDkfHLJEJl12C+MKh/HCQySbMBxQgavzaOu/EiqeBCJt4Yj4ouvRPDU5KuiI vLn3D4PxFDXOHQzPWDsKM4hCWw== -----END CERTIFICATE-----Generated at Fri Apr 17 12:50:35 2026 by rpki-client