$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: ioPKDkyXXtSzty/kNe6iccvHNnA9FBLpYj7DieR+WKc= Subject key identifier: BB:6C:2A:F7:36:6D:85:59:60:1D:79:BF:59:F4:24:11:62:58:2F:B2 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 048D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 0480 Signing time: Thu 16 Apr 2026 23:59:23 +0000 Manifest this update: Thu 16 Apr 2026 23:59:23 +0000 Manifest next update: Thu 23 Apr 2026 23:59:23 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: CHJZ8lh66T7nq0Yi1cB2OpaJG4mdRR4CPGBNjqBbYd0=) 2: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: 1pV5x+wzFKlIURLdK4W0ATECc1pPeoL8XQh/coLs8yw=) 3: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: 89nb39WeO+2Ub6Nf3O9bYYBJxsIA87zSaSarp1B+j1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1165 (0x48d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Apr 16 23:59:23 2026 GMT Not After : Apr 23 23:59:23 2026 GMT Subject: CN=69e177db-2090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:49:d5:8e:79:1e:dd:b8:71:7c:ca:23:50:c5: d2:fb:c3:ac:4a:64:26:b8:1b:b8:33:48:f4:d5:df: cf:6a:5e:7d:66:f0:f3:53:ad:e3:7d:27:3d:d1:a8: 74:b1:a8:3c:ad:51:b1:e3:a9:5c:7e:b1:21:2c:f8: 8f:48:d2:fa:ee:92:c2:17:a7:97:c4:81:bc:a0:b1: 22:40:70:0b:7f:81:8f:2d:7e:08:48:d8:45:72:03: 16:b5:2a:0a:02:da:0a:c4:4b:35:75:aa:03:34:45: 43:32:c5:b9:68:0b:1b:a2:3e:03:3c:60:2e:9b:a8: 64:0d:a4:ae:8b:92:58:c1:cf:c2:6c:63:68:05:6e: bc:65:45:44:a7:b9:ce:50:fb:3e:21:ab:de:3b:e5: 2b:ea:a8:38:76:38:e6:bf:f1:cd:b8:8f:0b:cc:ed: 9f:e4:e7:37:8e:ff:5b:a5:95:80:9f:bd:7f:ed:a0: 82:1b:06:c0:41:77:7a:14:3c:d2:e4:62:c0:51:c5: 39:c3:92:e3:01:5e:fb:88:f4:63:47:ce:22:3c:2d: c6:35:06:62:51:af:b0:45:b3:f1:d2:55:b1:f3:2f: ce:f4:60:0c:44:93:88:45:f2:6f:9c:11:be:f2:f1: 8d:cd:fa:20:25:a1:58:61:94:1f:e4:23:85:5a:7c: 8f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:6C:2A:F7:36:6D:85:59:60:1D:79:BF:59:F4:24:11:62:58:2F:B2 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:96:01:a9:87:9a:f6:12:7c:b6:58:06:0b:bd:c3:3b:2b:14: 7c:74:87:1e:7f:bb:a6:fa:fa:f7:85:69:d0:71:0b:81:c8:0a: fb:85:38:ad:9e:e5:c5:54:38:da:a5:61:6a:12:53:21:25:f3: f0:ac:c1:5a:13:b8:df:a4:51:69:3f:99:89:9f:81:1e:7f:3d: a0:8d:96:61:e0:aa:61:6a:91:73:67:9e:60:d4:f4:07:57:ef: 2f:b4:df:43:55:e9:67:27:2f:22:d7:30:e3:86:81:ea:bc:37: 0c:6f:9c:de:f4:bc:89:2c:45:9d:32:3b:6e:f4:64:1c:d6:5e: 15:12:f8:b1:6a:0b:32:85:20:9e:21:95:ac:e4:84:59:6a:07: 10:29:b1:18:71:11:04:0b:8c:33:5c:77:b6:5d:2b:94:e1:c6: c1:f3:33:54:a6:d9:af:e9:61:d4:e2:a8:e3:de:27:97:79:ec: 6d:04:94:e7:f4:10:74:9e:6f:a6:23:15:7b:0b:db:ef:7d:a4: 4f:2f:4f:ad:43:d0:8c:05:08:63:79:42:14:d5:b1:62:47:d2: 02:1c:0d:d2:a0:a7:8a:d4:e3:8a:15:5b:21:f0:18:5e:28:45: be:01:2f:0b:a3:61:ea:05:98:a6:e9:9c:d7:7f:f0:c6:f3:2a: 9f:6d:97:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjYwNDE2MjM1OTIzWhcNMjYwNDIzMjM1OTIzWjAYMRYwFAYD VQQDEw02OWUxNzdkYi0yMDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10nVjnke3bhxfMojUMXS+8OsSmQmuBu4M0j01d/Pal59ZvDzU63jfSc90ah0 sag8rVGx46lcfrEhLPiPSNL67pLCF6eXxIG8oLEiQHALf4GPLX4ISNhFcgMWtSoK AtoKxEs1daoDNEVDMsW5aAsboj4DPGAum6hkDaSui5JYwc/CbGNoBW68ZUVEp7nO UPs+IaveO+Ur6qg4djjmv/HNuI8LzO2f5Oc3jv9bpZWAn71/7aCCGwbAQXd6FDzS 5GLAUcU5w5LjAV77iPRjR84iPC3GNQZiUa+wRbPx0lWx8y/O9GAMRJOIRfJvnBG+ 8vGNzfogJaFYYZQf5COFWnyPOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLtsKvc2 bYVZYB15v1n0JBFiWC+yMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwpYBqYea9hJ8tlgGC73DOysUfHSHHn+7pvr694Vp0HELgcgK+4U4rZ7lxVQ4 2qVhahJTISXz8KzBWhO436RRaT+ZiZ+BHn89oI2WYeCqYWqRc2eeYNT0B1fvL7Tf Q1XpZycvItcw44aB6rw3DG+c3vS8iSxFnTI7bvRkHNZeFRL4sWoLMoUgniGVrOSE WWoHECmxGHERBAuMM1x3tl0rlOHGwfMzVKbZr+lh1OKo494nl3nsbQSU5/QQdJ5v piMVewvb732kTy9PrUPQjAUIY3lCFNWxYkfSAhwN0qCnitTjihVbIfAYXihFvgEv C6Nh6gWYpumc13/wxvMqn22XSQ== -----END CERTIFICATE-----Generated at Fri Apr 17 04:08:39 2026 by rpki-client