$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft File: L2sefhQB3gCsju23qFkNA9xUD3g.mft (raw, json) Hash identifier: pWxlEoG1RT2dsbXRUSjC8vwVHKAcBCM+0doRQG7SXNQ= Subject key identifier: B1:A6:0C:B3:B2:42:0F:BE:34:B6:F4:E0:A7:24:B2:EB:0E:EB:AC:E8 Authority key identifier: 2F:6B:1E:7E:14:01:DE:00:AC:8E:ED:B7:A8:59:0D:03:DC:54:0F:78 Certificate issuer: /CN=A91DD38B/serialNumber=2F6B1E7E1401DE00AC8EEDB7A8590D03DC540F78 Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft Manifest number: FD Signing time: Fri 17 Apr 2026 05:55:31 +0000 Manifest this update: Fri 17 Apr 2026 05:55:31 +0000 Manifest next update: Fri 24 Apr 2026 05:55:31 +0000 Files and hashes: 1: L2sefhQB3gCsju23qFkNA9xUD3g.crl (hash: uZvxCat+9yiXRUhJBuINpsH9pVKf0SCAqHEd1XdMo0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.crl rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:55:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD38B, serialNumber=2F6B1E7E1401DE00AC8EEDB7A8590D03DC540F78 Validity Not Before: Apr 17 05:55:31 2026 GMT Not After : Apr 24 05:55:31 2026 GMT Subject: CN=69e1cb53-1dc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:86:57:0c:4d:f8:df:37:1d:42:39:4c:d6:f7: 4d:be:22:52:8b:b0:f4:e4:f5:fc:50:aa:dc:af:05: ed:07:73:88:27:7a:49:b6:d1:ec:8c:bf:bb:a3:47: cf:b3:3c:8c:13:69:e2:4a:dc:47:9a:e9:b3:d3:00: 7b:ca:6a:e0:bb:e0:b2:3e:61:ef:09:c7:d9:2d:f2: 11:bc:d5:d3:86:96:81:df:fd:cb:87:67:cf:3c:83: 70:2f:72:05:51:97:ff:8a:dc:20:19:c3:d3:5b:a0: 2c:98:5b:34:bf:59:2d:36:4d:fd:6e:32:52:7f:71: d3:76:4c:33:4d:94:bf:d4:ef:83:f3:4c:80:38:1d: be:40:f5:31:e0:5b:8d:b5:af:49:d7:9c:18:d6:78: 2c:6a:00:2f:a9:4d:ee:1d:98:69:88:04:19:e4:89: 7c:56:7d:fa:46:97:cc:a8:2c:3b:aa:da:e0:fb:77: 36:9a:13:ef:b9:90:10:bf:16:67:d2:8a:35:e6:6c: 2b:ee:dc:b9:51:0f:78:07:27:68:b4:a2:5e:25:db: c3:b0:1b:50:99:3f:de:32:09:3b:41:45:86:ce:90: 68:5a:32:cd:20:2c:fc:b9:c9:ba:7d:07:db:ad:97: 1d:98:75:61:8d:7f:53:4b:8c:f4:64:b2:4e:67:56: e8:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:A6:0C:B3:B2:42:0F:BE:34:B6:F4:E0:A7:24:B2:EB:0E:EB:AC:E8 X509v3 Authority Key Identifier: keyid:2F:6B:1E:7E:14:01:DE:00:AC:8E:ED:B7:A8:59:0D:03:DC:54:0F:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:ef:bf:10:03:6d:0f:55:8d:aa:79:2e:95:01:79:a7:ee:65: a1:8f:7c:9c:1d:a9:75:ef:bd:11:66:2a:a5:ba:18:d1:2d:5c: d2:a7:0b:12:c7:28:8c:01:2e:e9:8e:70:d8:86:23:36:19:6e: 55:80:3e:e2:63:2d:6f:f4:49:9e:ce:e5:cd:7e:c2:d2:97:36: aa:83:bf:c2:4c:33:a8:ac:f9:19:d3:ec:71:f7:d8:50:b9:fc: ce:22:df:a3:6a:ea:a6:80:e4:05:e9:cb:68:3f:a7:a7:64:b3: 8c:a5:ad:41:f0:b3:0f:51:7d:f7:d5:b4:0e:32:e5:4d:75:80: f8:88:e0:76:c9:36:82:70:6d:ef:b6:f4:e5:10:ca:07:0e:f0: e9:18:df:ec:10:37:c6:a1:88:9d:7d:ba:fc:91:5f:2e:e9:78: 90:07:1f:6a:7b:0c:53:5e:0a:66:51:b7:68:dc:b3:0d:38:a0: 67:14:fd:31:22:d9:9a:e0:39:35:e1:45:f2:2a:71:f5:fa:90: 09:be:15:20:a7:b3:70:a1:3f:5f:54:2d:cf:63:17:10:10:ef: 4d:8a:34:d1:06:6f:f3:f3:dc:10:53:2d:83:19:b6:2b:6d:37: c7:9e:3e:c7:41:d4:ab:36:2f:5c:df:27:55:2d:27:8b:dc:68: 3e:7d:43:60 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQzOEIxMTAvBgNVBAUTKDJGNkIxRTdFMTQwMURFMDBBQzhFRURCN0E4NTkwRDAz REM1NDBGNzgwHhcNMjYwNDE3MDU1NTMxWhcNMjYwNDI0MDU1NTMxWjAYMRYwFAYD VQQDEw02OWUxY2I1My0xZGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn4ZXDE343zcdQjlM1vdNviJSi7D05PX8UKrcrwXtB3OIJ3pJttHsjL+7o0fP szyME2niStxHmumz0wB7ymrgu+CyPmHvCcfZLfIRvNXThpaB3/3Lh2fPPINwL3IF UZf/itwgGcPTW6AsmFs0v1ktNk39bjJSf3HTdkwzTZS/1O+D80yAOB2+QPUx4FuN ta9J15wY1ngsagAvqU3uHZhpiAQZ5Il8Vn36RpfMqCw7qtrg+3c2mhPvuZAQvxZn 0oo15mwr7ty5UQ94BydotKJeJdvDsBtQmT/eMgk7QUWGzpBoWjLNICz8ucm6fQfb rZcdmHVhjX9TS4z0ZLJOZ1bo3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLGmDLOy Qg++NLb04KcksusO66zoMB8GA1UdIwQYMBaAFC9rHn4UAd4ArI7tt6hZDQPcVA94 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDM4Qi9BMUFCMkFCQ0JB ODkxMUVGOUIzMzg1MTJDNEY5QUUwMi9MMnNlZmhRQjNnQ3NqdTIzcUZrTkE5eFVE M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wyc2VmaFFCM2dDc2p1MjNxRmtOQTl4VUQzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDM4Qi9BMUFCMkFCQ0JBODkxMUVGOUIzMzg1MTJDNEY5QUUwMi9MMnNlZmhRQjNn Q3NqdTIzcUZrTkE5eFVEM2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAku+/EANtD1WNqnkulQF5p+5loY98nB2pde+9EWYqpboY0S1c0qcLEscojAEu 6Y5w2IYjNhluVYA+4mMtb/RJns7lzX7C0pc2qoO/wkwzqKz5GdPscffYULn8ziLf o2rqpoDkBenLaD+np2SzjKWtQfCzD1F999W0DjLlTXWA+Ijgdsk2gnBt77b05RDK Bw7w6Rjf7BA3xqGInX26/JFfLul4kAcfansMU14KZlG3aNyzDTigZxT9MSLZmuA5 NeFF8ipx9fqQCb4VIKezcKE/X1Qtz2MXEBDvTYo00QZv8/PcEFMtgxm2K203x54+ x0HUqzYvXN8nVS0ni9xoPn1DYA== -----END CERTIFICATE-----Generated at Fri Apr 17 17:07:09 2026 by rpki-client