$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: Sazw9qBpfvpz/FUrZmzW1kJHEr54qRRrwUDz0jt3eIU= Subject key identifier: 1C:8E:BC:5E:59:76:40:F7:BE:B8:46:11:24:A4:C2:3F:E6:4B:30:59 Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 10C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 10BF Signing time: Tue 24 Mar 2026 17:12:53 +0000 Manifest this update: Tue 24 Mar 2026 17:12:53 +0000 Manifest next update: Tue 31 Mar 2026 17:12:53 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: snqo5522G2FBu4gPN4HrBQ+bDdzi15xolTZTBR69Jts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4290 (0x10c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21, serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: Mar 24 17:12:53 2026 GMT Not After : Mar 31 17:12:53 2026 GMT Subject: CN=69c2c615-1eac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b3:7a:f0:11:84:7d:8c:5d:9b:09:95:48:bb: 86:46:c9:54:df:5b:97:99:97:80:4e:5e:89:50:04: be:0e:94:c8:2a:5c:24:66:9b:59:44:de:4f:8a:dd: d3:03:98:38:ad:21:61:cd:e2:a5:0d:ac:43:aa:3c: ab:37:f4:ad:7b:33:e5:05:b4:33:f0:52:1d:5c:da: e5:08:91:6d:b0:6e:7f:c3:50:36:d1:16:6d:57:73: 02:9f:31:16:95:a0:ef:c9:9c:cb:8e:41:c4:30:16: f8:08:01:67:fc:1f:09:ad:23:b8:d4:64:28:0f:c2: b2:9e:d0:92:3b:3b:c0:85:0b:be:f4:6c:e4:6e:86: 27:1d:3c:88:4b:9b:d4:33:b9:e4:7e:56:55:23:aa: 67:4c:33:5c:4a:a0:06:a7:81:dd:86:33:af:f2:1b: 45:02:d9:81:bc:dc:34:8f:71:05:4a:4a:15:6b:60: 95:f3:d4:52:a6:26:ee:42:75:8a:8a:72:b5:3b:ff: e0:40:a7:bd:f0:3b:7b:75:3a:01:db:75:d5:8a:10: 12:57:2f:1e:6f:32:3f:a2:20:47:61:76:8f:73:6b: b0:31:d5:ab:09:f5:8a:6d:28:b0:83:67:a7:3a:42: a9:7e:47:9d:7b:9e:ed:e2:16:e3:b7:19:e5:ea:53: a4:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:8E:BC:5E:59:76:40:F7:BE:B8:46:11:24:A4:C2:3F:E6:4B:30:59 X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:29:6f:39:2d:7c:f9:81:c8:9f:f6:6b:a2:16:9d:eb:7c:28: 4b:2e:01:e2:46:86:cf:8e:ab:97:b4:28:ea:b8:ce:4d:7f:96: 2c:20:e6:e4:42:17:80:73:38:8c:07:d9:db:7b:03:02:6c:80: b7:af:3c:68:69:42:7d:20:be:ec:2a:61:a8:51:e4:76:cc:50: 92:06:4d:2f:68:8c:6b:94:36:cd:85:cf:e7:31:0f:95:bc:b1: a4:f7:dc:d8:82:c2:64:3d:3d:af:33:88:b8:76:24:b7:93:d4: a9:92:a1:9f:64:30:ff:26:df:58:77:a1:81:0f:93:04:0e:13: 9a:cc:2f:10:f7:4a:5a:db:46:79:e1:70:f5:b7:58:30:94:db: 62:ba:35:af:a9:32:e7:5c:e7:d4:47:62:36:ea:32:08:c9:2f: af:14:4a:09:00:22:4f:7e:56:0f:63:2b:2f:06:bd:38:af:0d: d1:59:f7:a7:cd:78:94:cd:30:4c:cd:e3:b2:53:15:2d:66:da: 16:37:db:2e:61:53:2d:86:0e:e1:0b:34:20:e1:75:c2:5a:d4: 91:88:7c:dd:c1:1f:19:61:79:6c:b3:2b:17:23:5c:b8:b2:f3: e4:42:41:dd:3d:23:a9:b0:0e:a8:79:de:5c:5c:9d:30:0a:82: ad:b7:c9:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjYwMzI0MTcxMjUzWhcNMjYwMzMxMTcxMjUzWjAYMRYwFAYD VQQDEw02OWMyYzYxNS0xZWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbN68BGEfYxdmwmVSLuGRslU31uXmZeATl6JUAS+DpTIKlwkZptZRN5Pit3T A5g4rSFhzeKlDaxDqjyrN/StezPlBbQz8FIdXNrlCJFtsG5/w1A20RZtV3MCnzEW laDvyZzLjkHEMBb4CAFn/B8JrSO41GQoD8KyntCSOzvAhQu+9GzkboYnHTyIS5vU M7nkflZVI6pnTDNcSqAGp4HdhjOv8htFAtmBvNw0j3EFSkoVa2CV89RSpibuQnWK inK1O//gQKe98Dt7dToB23XVihASVy8ebzI/oiBHYXaPc2uwMdWrCfWKbSiwg2en OkKpfkede57t4hbjtxnl6lOkEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFByOvF5Z dkD3vrhGESSkwj/mSzBZMB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADSlvOS18+YHIn/Zrohad63woSy4B4kaGz46rl7Qo6rjOTX+WLCDm5EIXgHM4 jAfZ23sDAmyAt688aGlCfSC+7CphqFHkdsxQkgZNL2iMa5Q2zYXP5zEPlbyxpPfc 2ILCZD09rzOIuHYkt5PUqZKhn2Qw/ybfWHehgQ+TBA4TmswvEPdKWttGeeFw9bdY MJTbYro1r6ky51zn1EdiNuoyCMkvrxRKCQAiT35WD2MrLwa9OK8N0Vn3p814lM0w TM3jslMVLWbaFjfbLmFTLYYO4Qs0IOF1wlrUkYh83cEfGWF5bLMrFyNcuLLz5EJB 3T0jqbAOqHneXFydMAqCrbfJeA== -----END CERTIFICATE-----Generated at Thu Mar 26 04:45:44 2026 by rpki-client