$ rpki-client -vvf rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft File: lSpNx8TWEJWYvu5awKIG0nuFxWo.mft (raw, json) Hash identifier: 9jT36etzlRby52N8AwgKbpKpUcukXa7ca4JLay6I88w= Subject key identifier: E5:8C:4D:B4:07:29:38:04:35:8C:96:13:BB:63:26:66:8C:BA:BC:CE Authority key identifier: 95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A Certificate issuer: /CN=A912D71D/serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft Manifest number: 9F Signing time: Wed 25 Mar 2026 06:33:09 +0000 Manifest this update: Wed 25 Mar 2026 06:33:08 +0000 Manifest next update: Wed 01 Apr 2026 06:33:08 +0000 Files and hashes: 1: lSpNx8TWEJWYvu5awKIG0nuFxWo.crl (hash: jGhtyK281iFawH0nseqnNKAk8Zzk+ALA4IfY9FrObLA=) 2: 4002AE6236CF11F0AA705D26C4F9AE02.roa (hash: PYLDscz39D9VfGo8zcZSUWDhN0EWb8SMMJ0oBjb9APU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:33:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D71D, serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Validity Not Before: Mar 25 06:33:08 2026 GMT Not After : Apr 1 06:33:08 2026 GMT Subject: CN=69c381a5-c44a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c9:15:43:f8:80:73:c6:74:a2:5b:c3:9f:eb: 48:36:ff:7c:c5:91:a9:71:4d:25:ff:75:ef:11:f8: cb:13:d4:37:4d:82:cb:27:db:d7:62:9e:6a:e5:18: c9:77:5a:0f:52:fa:60:b9:37:c3:a9:bc:95:2c:0b: 29:8d:29:03:da:2f:11:e6:c6:08:33:f9:d6:92:57: 05:9f:cc:f6:e9:d7:12:19:ca:b2:e4:f0:ba:41:11: 66:4d:87:93:fb:f3:ce:65:8c:fc:bc:86:de:af:4a: 5c:00:4a:b5:c3:00:20:d0:13:6d:a3:de:9d:24:09: 95:0d:7f:4c:f5:4c:89:6a:97:3b:09:af:bb:9d:7d: 30:36:3e:42:8e:08:8d:e5:39:8d:22:1b:29:70:7a: 90:b1:18:de:a9:cb:4e:5d:e1:65:c9:0b:5b:42:1f: a1:07:1c:f3:e5:73:5e:91:f6:f5:a3:a7:f2:86:a1: 23:79:6b:68:67:cf:1d:13:c2:bf:c1:fd:43:ba:2c: df:94:e0:81:0d:fc:ed:41:d6:af:57:11:bc:84:b0: e2:0b:5a:91:d7:e2:2f:4d:b2:29:40:85:c4:dd:3a: 32:c9:5a:15:1f:0e:90:14:f4:6e:03:96:4e:94:3c: b5:b5:4d:71:0a:f0:34:c6:b7:bb:4a:78:0c:91:90: 21:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:8C:4D:B4:07:29:38:04:35:8C:96:13:BB:63:26:66:8C:BA:BC:CE X509v3 Authority Key Identifier: keyid:95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:84:12:86:b6:66:9f:64:6f:da:1d:60:6b:19:3a:f5:4a:f9: ef:97:10:27:d7:ed:e0:71:b7:e5:12:4e:29:68:38:63:28:57: a3:03:bb:30:17:32:d6:cf:a1:89:65:bc:7c:ad:7d:f9:1f:0b: 81:d0:f1:fc:f5:4b:85:1b:04:04:11:a0:b5:cb:3e:4b:b3:54: 93:e7:5e:67:8c:ee:74:a3:ff:2e:0b:f4:ae:9f:f7:d4:59:5b: 64:12:2d:ca:ef:dd:9d:3d:d9:21:50:9a:0c:d7:63:4d:f3:22: 1b:52:61:9b:ea:9e:d4:27:06:86:7d:53:cb:78:9b:fb:1f:a3: 76:7f:9a:22:82:cb:73:e0:9d:92:02:5c:b8:61:f2:a4:88:f1: 9e:0c:e7:d3:21:c7:02:48:52:6e:32:76:75:8f:92:61:e2:2c: 31:d1:8b:86:23:70:90:95:92:29:1a:96:98:f2:95:10:22:d2: 9a:f3:7a:50:88:3f:46:6d:d1:f9:d6:99:ed:8d:b1:70:a5:3f: be:aa:bd:f6:a2:6b:e7:49:50:35:9b:46:c9:c8:2a:a1:c1:66: c7:a2:ef:97:40:d2:e4:55:d8:7b:51:27:28:ce:85:10:34:cb: 27:f4:d7:29:a5:60:83:8c:73:6d:65:cc:28:d6:f1:f5:fa:64: a0:bf:9c:b9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ3MUQxMTAvBgNVBAUTKDk1MkE0REM3QzRENjEwOTU5OEJFRUU1QUMwQTIwNkQy N0I4NUM1NkEwHhcNMjYwMzI1MDYzMzA4WhcNMjYwNDAxMDYzMzA4WjAYMRYwFAYD VQQDEw02OWMzODFhNS1jNDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMkVQ/iAc8Z0olvDn+tINv98xZGpcU0l/3XvEfjLE9Q3TYLLJ9vXYp5q5RjJ d1oPUvpguTfDqbyVLAspjSkD2i8R5sYIM/nWklcFn8z26dcSGcqy5PC6QRFmTYeT +/POZYz8vIber0pcAEq1wwAg0BNto96dJAmVDX9M9UyJapc7Ca+7nX0wNj5CjgiN 5TmNIhspcHqQsRjeqctOXeFlyQtbQh+hBxzz5XNekfb1o6fyhqEjeWtoZ88dE8K/ wf1DuizflOCBDfztQdavVxG8hLDiC1qR1+IvTbIpQIXE3ToyyVoVHw6QFPRuA5ZO lDy1tU1xCvA0xre7SngMkZAhIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOWMTbQH KTgENYyWE7tjJmaMurzOMB8GA1UdIwQYMBaAFJUqTcfE1hCVmL7uWsCiBtJ7hcVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDcxRC8xRTBGOTkyRTM2 Q0UxMUYwQTJBNjlDMUZDNEY5QUUwMi9sU3BOeDhUV0VKV1l2dTVhd0tJRzBudUZ4 V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTcE54OFRXRUpXWXZ1NWF3S0lHMG51RnhXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDcxRC8xRTBGOTkyRTM2Q0UxMUYwQTJBNjlDMUZDNEY5QUUwMi9sU3BOeDhUV0VK V1l2dTVhd0tJRzBudUZ4V28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACYQShrZmn2Rv2h1gaxk69Ur575cQJ9ft4HG35RJOKWg4YyhXowO7MBcy1s+h iWW8fK19+R8LgdDx/PVLhRsEBBGgtcs+S7NUk+deZ4zudKP/Lgv0rp/31FlbZBIt yu/dnT3ZIVCaDNdjTfMiG1Jhm+qe1CcGhn1Ty3ib+x+jdn+aIoLLc+CdkgJcuGHy pIjxngzn0yHHAkhSbjJ2dY+SYeIsMdGLhiNwkJWSKRqWmPKVECLSmvN6UIg/Rm3R +daZ7Y2xcKU/vqq99qJr50lQNZtGycgqocFmx6Lvl0DS5FXYe1EnKM6FEDTLJ/TX KaVgg4xzbWXMKNbx9fpkoL+cuQ== -----END CERTIFICATE-----Generated at Fri Mar 27 02:03:23 2026 by rpki-client