$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft File: lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft (raw, json) Hash identifier: VJ3kr288n5pGFUHl9sfKJxMV+i2fgTC8Tu1Ji2a6McI= Subject key identifier: 40:4A:4C:01:12:E2:39:50:C4:73:0E:4A:F7:83:44:FA:C6:45:5E:C1 Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 0932 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft Manifest number: 098A Signing time: Thu 16 Apr 2026 20:08:43 +0000 Manifest this update: Thu 16 Apr 2026 20:08:42 +0000 Manifest next update: Thu 23 Apr 2026 20:08:42 +0000 Files and hashes: 1: lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl (hash: 9KEw3x/lEa1v0xoX0kqFxIUT68uEesha3Dk1uW14hQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2354 (0x932) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9, serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: Apr 16 20:08:42 2026 GMT Not After : Apr 23 20:08:42 2026 GMT Subject: CN=69e141cb-04a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:59:95:1d:00:ce:fc:47:82:83:a2:ed:08:69: f9:cf:c2:a9:94:85:58:a5:30:5a:de:61:c9:f9:74: 1d:50:9c:b1:04:9b:07:a4:0d:c5:e3:0e:11:47:d4: 65:82:27:79:74:a3:e3:00:d4:7a:84:1d:8f:05:eb: 1c:c6:33:92:68:5b:4c:62:61:6f:6c:07:d8:ba:3c: 01:b7:c4:82:cb:94:1c:8f:12:46:de:ac:d3:9b:80: 7e:25:76:23:19:dc:b5:c3:8a:f3:aa:76:0a:1a:06: f8:e4:06:0e:d1:b7:db:b6:63:ca:29:b8:d5:5c:9f: de:08:29:66:5a:2c:15:e1:b3:8d:3f:45:4c:c0:01: 74:a4:80:03:92:0f:05:66:5e:1a:13:ad:da:95:8b: aa:b2:14:d0:2c:a5:b8:de:24:f5:1d:80:96:f0:75: 96:8c:38:8a:c7:12:e8:42:af:88:85:ad:b4:0b:ee: 2b:7b:07:d9:be:a6:b5:29:2b:ff:23:7d:66:94:d9: e6:6b:79:e4:29:eb:80:f5:bf:36:3e:1a:84:d1:9a: d6:70:16:a9:07:2d:68:e0:1a:6a:11:75:7a:dd:ae: 53:6a:4f:9e:28:37:60:48:f2:4e:a7:ac:ca:e8:79: 4e:19:1c:3a:6d:96:00:07:be:96:3c:40:cb:b1:48: 8f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4A:4C:01:12:E2:39:50:C4:73:0E:4A:F7:83:44:FA:C6:45:5E:C1 X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:d8:a1:0b:44:df:66:0f:b0:cd:9e:a6:0d:0f:a2:d8:70:13: 42:ec:25:a5:11:38:2f:6c:21:ad:f6:02:e3:83:dd:a2:64:87: fe:49:ee:30:43:b0:be:07:95:13:33:58:f7:fe:76:d8:95:dd: 22:dd:cd:b1:ac:24:dd:22:e8:c6:fa:e1:bc:af:53:45:5c:e8: 34:1a:78:c8:e5:8c:d3:89:f1:42:2b:0a:68:8f:dd:87:53:3e: e7:a3:4d:3d:71:b6:fd:13:df:ad:02:dc:2f:ff:6e:af:26:3c: 08:3f:28:74:42:45:50:9a:3d:14:05:86:21:95:84:d2:3e:b4: 24:b0:16:77:f6:a0:2c:67:c1:51:d5:eb:b7:ca:7c:61:69:6a: c7:43:8a:90:9c:fb:2e:46:05:cb:18:34:53:12:1a:bb:2a:5f: 67:e5:80:3a:62:ca:3c:54:60:70:72:f6:b6:69:a6:1c:f9:1f: 14:5a:52:20:ad:f6:f7:4e:d0:22:5e:83:49:f6:ad:79:51:b3: 91:b3:3e:03:00:64:2e:55:b6:77:5d:46:d5:ac:69:67:50:99: 45:13:68:f4:a8:e8:42:61:05:73:10:8a:fe:d0:87:43:86:bf: 85:91:d3:fd:42:07:ba:21:bd:4f:e6:c4:3f:2b:a2:32:36:a4: a3:9c:f3:63 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjYwNDE2MjAwODQyWhcNMjYwNDIzMjAwODQyWjAYMRYwFAYD VQQDEw02OWUxNDFjYi0wNGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlmVHQDO/EeCg6LtCGn5z8KplIVYpTBa3mHJ+XQdUJyxBJsHpA3F4w4RR9Rl gid5dKPjANR6hB2PBescxjOSaFtMYmFvbAfYujwBt8SCy5QcjxJG3qzTm4B+JXYj Gdy1w4rzqnYKGgb45AYO0bfbtmPKKbjVXJ/eCClmWiwV4bONP0VMwAF0pIADkg8F Zl4aE63alYuqshTQLKW43iT1HYCW8HWWjDiKxxLoQq+Iha20C+4rewfZvqa1KSv/ I31mlNnma3nkKeuA9b82PhqE0ZrWcBapBy1o4BpqEXV63a5Tak+eKDdgSPJOp6zK 6HlOGRw6bZYAB76WPEDLsUiPbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEBKTAES 4jlQxHMOSveDRPrGRV7BMB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDFDOS80OUJEOURBNkMwRjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1Br OThaSzFEMEhhOEVhNGYyMTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVtihC0TfZg+wzZ6mDQ+i2HATQuwlpRE4L2whrfYC44PdomSH/knuMEOwvgeV EzNY9/522JXdIt3Nsawk3SLoxvrhvK9TRVzoNBp4yOWM04nxQisKaI/dh1M+56NN PXG2/RPfrQLcL/9uryY8CD8odEJFUJo9FAWGIZWE0j60JLAWd/agLGfBUdXrt8p8 YWlqx0OKkJz7LkYFyxg0UxIauypfZ+WAOmLKPFRgcHL2tmmmHPkfFFpSIK32907Q Il6DSfateVGzkbM+AwBkLlW2d11G1axpZ1CZRRNo9KjoQmEFcxCK/tCHQ4a/hZHT /UIHuiG9T+bEPyuiMjako5zzYw== -----END CERTIFICATE-----Generated at Fri Apr 17 12:35:06 2026 by rpki-client