$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft File: l_PsEBRVjghHCgOpR4yE8j5FADo.mft (raw, json) Hash identifier: jKLbPklf55zEvg3c2QMxDEOjUe1JmAY0/sAGNhczhZ0= Subject key identifier: 30:FE:8A:2D:F9:C8:6F:C0:09:FE:B5:30:22:4F:5B:B2:B5:93:D6:43 Authority key identifier: 97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A Certificate issuer: /CN=A91E2E92/serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft Manifest number: 0229 Signing time: Fri 17 Apr 2026 02:36:18 +0000 Manifest this update: Fri 17 Apr 2026 02:36:18 +0000 Manifest next update: Fri 24 Apr 2026 02:36:18 +0000 Files and hashes: 1: l_PsEBRVjghHCgOpR4yE8j5FADo.crl (hash: risch78psglOzTL4Lq5W79aappn7zA+QKPBiGRgoWzc=) 2: B7D34CC444ED11EE8D931624C4F9AE02.roa (hash: ikN5tRwLqDlsCqslEfbzVnOUPYHIszI42NOtjTWTVog=) 3: D78EA2DE44ED11EEA6685324C4F9AE02.roa (hash: l+wLTHIqrekcKTj0QKuQF0Rx57+DsEFBlDvziPYrkC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:36:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2E92, serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Validity Not Before: Apr 17 02:36:18 2026 GMT Not After : Apr 24 02:36:18 2026 GMT Subject: CN=69e19ca2-72fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:97:6b:08:c4:0f:d2:1a:7a:96:dd:93:35:de: c9:b9:dc:b9:77:7c:10:89:33:d8:fe:6e:c9:7a:79: f4:fd:b8:fc:33:8d:4b:df:af:f1:3c:9d:1c:78:e9: 36:7e:08:01:81:28:db:f6:ca:3c:60:fc:c7:3b:be: 0c:00:e8:0a:16:a0:fb:98:2e:a2:2c:37:dd:14:2a: 15:68:e2:bb:c7:af:1a:67:46:76:35:15:b5:56:4a: 80:75:03:a4:d4:14:56:1f:6a:76:ae:67:98:17:08: 24:b2:28:fd:e1:88:40:24:11:a3:dd:da:1e:72:04: ac:ac:df:76:60:4f:80:6b:09:7a:99:61:d5:b8:51: 65:ab:84:88:c7:38:3d:dd:3d:ee:9b:1c:16:65:85: 90:b6:84:72:c6:74:6f:fc:57:99:5c:d2:7e:b7:4b: f2:e6:f3:13:55:c3:03:d0:97:cf:c1:a2:cb:b8:c7: 09:61:b1:e0:12:ee:e1:49:15:b7:ab:29:f7:86:3c: ea:00:75:74:eb:b9:e5:04:eb:88:ef:34:b6:fb:e6: f4:cf:69:f6:67:cc:d4:e3:47:21:42:de:5a:8a:0e: 97:fa:af:5c:01:3b:3d:34:28:7e:4a:a3:08:32:ff: 25:9b:b8:cf:bc:56:8e:d1:db:8c:9f:c3:d1:e9:81: d1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:FE:8A:2D:F9:C8:6F:C0:09:FE:B5:30:22:4F:5B:B2:B5:93:D6:43 X509v3 Authority Key Identifier: keyid:97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:34:09:cc:22:9a:8e:be:16:11:72:e1:15:ef:d0:ec:02:d7: 33:be:77:c1:38:89:7b:65:68:0e:69:f9:a2:c5:ae:51:7d:6f: 01:1a:06:c4:37:a6:46:ac:f9:f0:dc:90:11:d4:7e:4d:f2:bb: 67:99:98:91:9f:7d:33:6b:9d:8e:a9:08:17:fe:15:56:eb:4e: 24:cb:a7:35:ad:ad:9c:ff:7b:f2:8e:38:a0:32:68:59:df:25: 86:e9:ec:1e:8e:0a:ca:b7:7d:9c:55:56:68:0b:b9:46:0a:ac: 55:d7:50:cf:a3:22:a8:e2:ab:d9:a7:56:12:20:66:9a:d4:19: 2b:b2:5a:2f:62:14:c0:39:7b:aa:06:70:76:56:15:23:7b:41: 0f:b5:f5:b7:86:56:c5:07:80:68:fd:5a:ca:b5:9b:14:8b:0e: 18:b3:e4:ba:39:79:9a:b0:ed:7a:16:e7:8e:09:c1:1c:06:eb: df:25:38:80:9b:e6:3e:3e:9e:96:d7:71:a9:eb:a8:ab:c1:ad: a1:55:5d:e1:fd:f8:13:d5:7a:9d:4e:54:da:5f:84:6b:aa:5b: ac:7a:01:ae:ea:c4:28:84:52:97:5d:a4:67:f2:0c:ce:1a:98: 39:06:28:99:22:4a:a7:30:61:bd:44:1d:3e:69:56:9f:6d:4b: eb:71:eb:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFOTIxMTAvBgNVBAUTKDk3RjNFQzEwMTQ1NThFMDg0NzBBMDNBOTQ3OEM4NEYy M0U0NTAwM0EwHhcNMjYwNDE3MDIzNjE4WhcNMjYwNDI0MDIzNjE4WjAYMRYwFAYD VQQDEw02OWUxOWNhMi03MmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpdrCMQP0hp6lt2TNd7Judy5d3wQiTPY/m7Jenn0/bj8M41L36/xPJ0ceOk2 fggBgSjb9so8YPzHO74MAOgKFqD7mC6iLDfdFCoVaOK7x68aZ0Z2NRW1VkqAdQOk 1BRWH2p2rmeYFwgksij94YhAJBGj3doecgSsrN92YE+Aawl6mWHVuFFlq4SIxzg9 3T3umxwWZYWQtoRyxnRv/FeZXNJ+t0vy5vMTVcMD0JfPwaLLuMcJYbHgEu7hSRW3 qyn3hjzqAHV067nlBOuI7zS2++b0z2n2Z8zU40chQt5aig6X+q9cATs9NCh+SqMI Mv8lm7jPvFaO0duMn8PR6YHRUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDD+ii35 yG/ACf61MCJPW7K1k9ZDMB8GA1UdIwQYMBaAFJfz7BAUVY4IRwoDqUeMhPI+RQA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkU5Mi8xODg1QTZEMjA2 Q0YxMUVFOUM5NzEyN0JDNEY5QUUwMi9sX1BzRUJSVmpnaEhDZ09wUjR5RThqNUZB RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfUHNFQlJWamdoSENnT3BSNHlFOGo1RkFEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkU5Mi8xODg1QTZEMjA2Q0YxMUVFOUM5NzEyN0JDNEY5QUUwMi9sX1BzRUJSVmpn aEhDZ09wUjR5RThqNUZBRG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHzQJzCKajr4WEXLhFe/Q7ALXM753wTiJe2VoDmn5osWuUX1vARoGxDemRqz5 8NyQEdR+TfK7Z5mYkZ99M2udjqkIF/4VVutOJMunNa2tnP978o44oDJoWd8lhuns Ho4Kyrd9nFVWaAu5RgqsVddQz6MiqOKr2adWEiBmmtQZK7JaL2IUwDl7qgZwdlYV I3tBD7X1t4ZWxQeAaP1ayrWbFIsOGLPkujl5mrDtehbnjgnBHAbr3yU4gJvmPj6e ltdxqeuoq8GtoVVd4f34E9V6nU5U2l+Ea6pbrHoBrurEKIRSl12kZ/IMzhqYOQYo mSJKpzBhvUQdPmlWn21L63Hr0g== -----END CERTIFICATE-----Generated at Fri Apr 17 14:18:00 2026 by rpki-client