$ rpki-client -vvf rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft File: lFCLKqsDKqM_mgAoJYI_mrhccBI.mft (raw, json) Hash identifier: 4ooFeC6qrgzJoHTu6L8hNzzsvu+pEroRhtJHGZS9PaU= Subject key identifier: D2:15:8B:E1:72:22:B0:3F:23:55:74:12:84:95:0D:39:87:4A:E1:61 Authority key identifier: 94:50:8B:2A:AB:03:2A:A3:3F:9A:00:28:25:82:3F:9A:B8:5C:70:12 Certificate issuer: /CN=A9125532/serialNumber=94508B2AAB032AA33F9A002825823F9AB85C7012 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft Manifest number: B4 Signing time: Wed 25 Mar 2026 06:19:57 +0000 Manifest this update: Wed 25 Mar 2026 06:19:56 +0000 Manifest next update: Wed 01 Apr 2026 06:19:56 +0000 Files and hashes: 1: lFCLKqsDKqM_mgAoJYI_mrhccBI.crl (hash: UHTbQxt1pzTYAHC47PqobJqJ4VwBbfVABbeBUNA8d4w=) 2: CB08B0C019C811F0958CB24EC4F9AE02.roa (hash: oU1YzucoXB7KyIdRvg/07TuDKK4MCzNm2V2SoNLMLi0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.crl rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125532, serialNumber=94508B2AAB032AA33F9A002825823F9AB85C7012 Validity Not Before: Mar 25 06:19:56 2026 GMT Not After : Apr 1 06:19:56 2026 GMT Subject: CN=69c37e8d-97a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f1:9b:38:65:24:21:67:0b:97:a3:05:4f:ab: 73:7c:4f:67:6c:3b:7c:ba:25:4c:07:96:51:aa:49: c2:a3:e2:cb:10:fc:f9:cd:2c:d9:1c:b5:df:0f:4e: d2:bb:14:24:d2:f0:2a:07:6b:bd:5d:bf:8b:04:8d: 39:1e:be:99:40:ae:ee:df:8d:b0:a5:34:49:77:b6: bc:e5:ba:96:92:ef:c2:f3:e4:4e:e8:39:ad:71:d5: 8e:b2:76:94:98:be:01:66:0d:0c:95:d5:df:1f:9f: 7c:eb:28:e2:d9:d4:9b:8f:63:d1:da:c3:02:d3:bd: ac:33:9c:ea:46:b2:c1:f1:06:d6:8e:b9:c1:c7:ef: f6:47:3c:bf:de:c0:51:d3:5e:69:e4:aa:1c:2d:a8: 2b:9a:89:49:51:9f:b9:fd:0a:70:76:23:5d:e0:80: d1:6d:ab:32:44:9b:fd:d2:b1:62:b2:75:88:f8:ac: 42:fd:22:c1:fe:5a:c7:e6:83:2c:68:22:a5:70:ae: 5e:f5:79:c8:19:13:bc:a8:71:1f:e7:ab:3e:64:27: fe:60:28:c9:77:65:f2:99:c1:53:75:e7:dc:81:e6: 24:91:e0:ea:51:3f:88:bb:e0:95:67:5f:a5:2c:88: b6:86:48:a7:d1:cd:69:06:82:e5:26:17:88:b3:27: 21:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:15:8B:E1:72:22:B0:3F:23:55:74:12:84:95:0D:39:87:4A:E1:61 X509v3 Authority Key Identifier: keyid:94:50:8B:2A:AB:03:2A:A3:3F:9A:00:28:25:82:3F:9A:B8:5C:70:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:53:cd:ea:3a:69:1c:53:ff:f8:0a:69:05:f7:7b:e4:1d:02: f4:62:20:31:1f:af:1d:11:d6:8e:98:63:8e:dc:b3:5a:29:b2: ae:ea:21:11:1f:94:fe:b6:c0:12:9c:57:ee:9c:18:4e:7d:7f: 40:e7:b9:e6:c5:49:e4:a9:3e:b5:f6:98:04:47:25:6c:e8:55: 90:0e:59:6f:e5:60:8e:5a:98:74:23:35:91:ab:41:89:e0:7a: f9:05:6d:dd:41:94:6b:be:ec:36:b4:e4:4a:37:a7:8f:98:ed: 1a:bc:d9:89:f6:f3:dd:59:a6:e2:bf:55:a8:3a:33:00:de:a9: 54:81:1d:8b:76:7c:a8:07:55:41:b5:0b:7a:89:bc:1c:4f:ed: 0b:5e:7f:54:8c:d1:89:66:b9:7e:38:b1:cb:ec:40:af:fb:d1: 52:83:ec:50:e0:29:e5:1f:2d:a2:49:be:26:cc:bf:6f:87:12: 27:e7:99:9b:62:cb:54:60:c8:20:55:18:fb:86:2f:11:30:52: 80:d7:c5:8f:77:38:6d:49:e9:7c:8d:44:95:01:fa:6a:25:96: dd:b5:03:aa:01:fd:85:39:49:83:d0:9a:51:8b:d3:26:5f:d5: d9:56:2a:19:07:7b:f9:04:1e:09:68:a2:9f:5a:eb:d9:9c:5d: d4:14:e3:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU1MzIxMTAvBgNVBAUTKDk0NTA4QjJBQUIwMzJBQTMzRjlBMDAyODI1ODIzRjlB Qjg1QzcwMTIwHhcNMjYwMzI1MDYxOTU2WhcNMjYwNDAxMDYxOTU2WjAYMRYwFAYD VQQDEw02OWMzN2U4ZC05N2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmfGbOGUkIWcLl6MFT6tzfE9nbDt8uiVMB5ZRqknCo+LLEPz5zSzZHLXfD07S uxQk0vAqB2u9Xb+LBI05Hr6ZQK7u342wpTRJd7a85bqWku/C8+RO6DmtcdWOsnaU mL4BZg0MldXfH5986yji2dSbj2PR2sMC072sM5zqRrLB8QbWjrnBx+/2Rzy/3sBR 015p5KocLagrmolJUZ+5/QpwdiNd4IDRbasyRJv90rFisnWI+KxC/SLB/lrH5oMs aCKlcK5e9XnIGRO8qHEf56s+ZCf+YCjJd2XymcFTdefcgeYkkeDqUT+Iu+CVZ1+l LIi2hkin0c1pBoLlJheIsychSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNIVi+Fy IrA/I1V0EoSVDTmHSuFhMB8GA1UdIwQYMBaAFJRQiyqrAyqjP5oAKCWCP5q4XHAS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTUzMi9GMzdCRDY3QTE5 QzUxMUYwQTU5RDg5MjhDNEY5QUUwMi9sRkNMS3FzREtxTV9tZ0FvSllJX21yaGNj QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xGQ0xLcXNES3FNX21nQW9KWUlfbXJoY2NCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTUzMi9GMzdCRDY3QTE5QzUxMUYwQTU5RDg5MjhDNEY5QUUwMi9sRkNMS3FzREtx TV9tZ0FvSllJX21yaGNjQkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH1PN6jppHFP/+AppBfd75B0C9GIgMR+vHRHWjphjjtyzWimyruohER+U/rbA EpxX7pwYTn1/QOe55sVJ5Kk+tfaYBEclbOhVkA5Zb+VgjlqYdCM1katBieB6+QVt 3UGUa77sNrTkSjenj5jtGrzZifbz3Vmm4r9VqDozAN6pVIEdi3Z8qAdVQbULeom8 HE/tC15/VIzRiWa5fjixy+xAr/vRUoPsUOAp5R8tokm+Jsy/b4cSJ+eZm2LLVGDI IFUY+4YvETBSgNfFj3c4bUnpfI1ElQH6aiWW3bUDqgH9hTlJg9CaUYvTJl/V2VYq GQd7+QQeCWiin1rr2Zxd1BTjbw== -----END CERTIFICATE-----Generated at Thu Mar 26 09:04:55 2026 by rpki-client