$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft File: lSamckeK-nVEXY0H3MV8BYlm7-I.mft (raw, json) Hash identifier: JdogEp+puBJSQ4RAge2fOXsoIBzDfzY/ADE+hnt3FKQ= Subject key identifier: 61:27:67:23:A2:33:FC:6B:7F:67:CE:C7:89:E8:2C:F3:8D:BF:C7:CE Authority key identifier: 95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 Certificate issuer: /CN=A91FA1BE/serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Certificate serial: 02D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft Manifest number: 02CC Signing time: Fri 17 Apr 2026 01:17:16 +0000 Manifest this update: Fri 17 Apr 2026 01:17:16 +0000 Manifest next update: Fri 24 Apr 2026 01:17:16 +0000 Files and hashes: 1: lSamckeK-nVEXY0H3MV8BYlm7-I.crl (hash: +/LZPRhf4M4PyrsGu9ebq+64d28eOy2XHODIg0BDc0w=) 2: 6F46908C2D3411ED92165562C4F9AE02.roa (hash: UPDUd4t5zx8UFYbNLzFGnvRhyMjEHl7Tb9rUHZFXp40=) 3: 6E98B3182D3411ED92165562C4F9AE02.roa (hash: 7/ANmUusyhHaIQ0U3dh4piILL1EQvQjyTLSsoXWQ5XU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 728 (0x2d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA1BE, serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Validity Not Before: Apr 17 01:17:16 2026 GMT Not After : Apr 24 01:17:16 2026 GMT Subject: CN=69e18a1c-0112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:9f:0d:79:77:b6:3e:a5:18:87:d6:e0:2a:a6: d7:66:1f:72:69:cc:b4:56:78:ce:85:c9:3c:6e:a0: 5c:0c:10:41:56:2a:61:ec:70:8f:f3:63:75:0e:29: 3b:5a:69:46:44:8d:f8:4f:24:2c:3a:2f:57:af:1e: 5f:9b:1e:22:8a:98:07:cc:c4:bc:49:d8:ed:15:11: 05:17:94:9e:37:71:4a:f8:03:66:a2:0e:2f:f4:32: 30:b7:dc:9d:a9:9a:bc:2a:6c:34:ad:87:df:ac:bc: 78:07:99:cb:85:e3:38:f2:65:e9:6f:2f:59:a6:19: f1:21:8c:e6:7d:51:f3:8d:7f:f8:10:fb:dd:9f:ac: fd:4e:5b:3f:cb:8d:a2:34:53:32:9a:86:2c:48:3f: 83:39:15:c8:3f:0b:25:0a:45:df:e6:06:85:60:52: ac:b0:4f:db:66:2b:fa:ac:a0:9f:3c:f2:1e:54:f7: b5:05:4f:84:05:9e:36:c5:f2:fc:59:fd:47:5a:ba: 85:0a:a1:4f:e9:e6:b2:21:3e:ec:27:16:17:c6:1f: 8d:a0:34:2a:1b:4d:c0:53:8f:3f:35:cc:fc:33:63: e8:d8:69:cd:49:55:35:62:8e:c5:56:03:d2:66:9d: 19:a1:0b:19:78:35:b3:08:19:0b:6a:e9:09:d4:ca: 82:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:27:67:23:A2:33:FC:6B:7F:67:CE:C7:89:E8:2C:F3:8D:BF:C7:CE X509v3 Authority Key Identifier: keyid:95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:3a:c9:d8:53:bf:57:7e:3c:a3:d5:29:04:41:2a:35:89:20: 04:55:bd:d9:0c:63:56:6d:a0:07:09:b8:bf:d3:48:ba:e0:ca: 5b:f7:7c:fb:0b:16:2b:2c:5f:10:3e:73:70:bd:7e:b4:9d:24: 90:19:83:5f:df:73:b8:02:fb:08:c4:39:c2:8e:1d:4a:7a:25: 81:1e:c3:47:02:42:e1:75:5b:e8:11:bd:53:1a:e4:0f:5a:ee: fc:39:c7:76:45:6c:6f:1c:6b:d1:f1:b2:9b:9b:53:60:36:fb: 56:2f:8d:75:66:0b:6b:05:94:d3:16:de:9a:50:03:0f:eb:37: 72:89:42:bd:93:3e:1f:ac:35:7a:c9:a5:9a:0e:a5:1a:2d:dd: ee:56:c9:53:c2:83:eb:e6:39:61:fa:ce:d1:5e:80:1f:75:3c: 0e:b9:e9:f1:96:8a:37:99:be:75:b1:5a:28:60:72:3a:d2:dd: dd:9a:2f:9d:ec:41:19:f4:80:38:7d:a6:0b:e9:af:47:dd:b8: 2b:3f:05:fd:28:de:63:38:2f:c1:e6:49:e9:1b:ad:f5:f3:f1: 12:9c:f8:d4:4a:88:2b:42:71:dc:9a:d2:3d:20:2e:f8:6a:36: e3:00:d6:06:fe:8f:11:a8:21:c5:c6:b5:65:e4:45:04:8e:65: 60:1f:54:05 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkExQkUxMTAvBgNVBAUTKDk1MjZBNjcyNDc4QUZBNzU0NDVEOEQwN0RDQzU3QzA1 ODk2NkVGRTIwHhcNMjYwNDE3MDExNzE2WhcNMjYwNDI0MDExNzE2WjAYMRYwFAYD VQQDEw02OWUxOGExYy0wMTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZ8NeXe2PqUYh9bgKqbXZh9yacy0VnjOhck8bqBcDBBBViph7HCP82N1Dik7 WmlGRI34TyQsOi9Xrx5fmx4iipgHzMS8SdjtFREFF5SeN3FK+ANmog4v9DIwt9yd qZq8Kmw0rYffrLx4B5nLheM48mXpby9ZphnxIYzmfVHzjX/4EPvdn6z9Tls/y42i NFMymoYsSD+DORXIPwslCkXf5gaFYFKssE/bZiv6rKCfPPIeVPe1BU+EBZ42xfL8 Wf1HWrqFCqFP6eayIT7sJxYXxh+NoDQqG03AU48/Ncz8M2Po2GnNSVU1Yo7FVgPS Zp0ZoQsZeDWzCBkLaukJ1MqCuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGEnZyOi M/xrf2fOx4noLPONv8fOMB8GA1UdIwQYMBaAFJUmpnJHivp1RF2NB9zFfAWJZu/i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTFCRS80MTY4RkY3NjJE MzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1uVkVYWTBIM01WOEJZbG03 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTYW1ja2VLLW5WRVhZMEgzTVY4QllsbTctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTFCRS80MTY4RkY3NjJEMzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1u VkVYWTBIM01WOEJZbG03LUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACTrJ2FO/V348o9UpBEEqNYkgBFW92QxjVm2gBwm4v9NIuuDKW/d8+wsWKyxf ED5zcL1+tJ0kkBmDX99zuAL7CMQ5wo4dSnolgR7DRwJC4XVb6BG9UxrkD1ru/DnH dkVsbxxr0fGym5tTYDb7Vi+NdWYLawWU0xbemlADD+s3colCvZM+H6w1esmlmg6l Gi3d7lbJU8KD6+Y5YfrO0V6AH3U8Drnp8ZaKN5m+dbFaKGByOtLd3ZovnexBGfSA OH2mC+mvR924Kz8F/SjeYzgvweZJ6Rut9fPxEpz41EqIK0Jx3JrSPSAu+Go24wDW Bv6PEaghxca1ZeRFBI5lYB9UBQ== -----END CERTIFICATE-----Generated at Fri Apr 17 13:50:26 2026 by rpki-client