$ rpki-client -vvf rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft File: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft (raw, json) Hash identifier: u/9VcGBknrmaSMqtpgeuSUaayfK6etyAQUZOg/ptKT8= Subject key identifier: 06:A9:D0:19:51:E6:5B:D1:20:64:60:20:A5:B0:EC:43:7E:5E:2C:DA Authority key identifier: 2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD Certificate issuer: /CN=A9131ABD/serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Certificate serial: 0D09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft Manifest number: 0CEA Signing time: Thu 26 Mar 2026 18:08:59 +0000 Manifest this update: Thu 26 Mar 2026 18:08:59 +0000 Manifest next update: Thu 02 Apr 2026 18:08:59 +0000 Files and hashes: 1: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl (hash: B5hz5teqthcMvY5te3Cwc0T4OFFKR4GOZAPVmoB0Ogg=) 2: 37FE0B120C0011EAA414FC4AC4F9AE02.roa (hash: pMrtGOs7uT1vXLuw6dCiCU+QFLRT1Z3tUfJSisugmVg=) 3: 3726AAFA0C0011EAA414FC4AC4F9AE02.roa (hash: AZJ9Ikn6w4HKM1tU6KflkZ7ElKv1SQQyJlfS833ElRI=) 4: 99191AA404E911EAA9C20A60C4F9AE02.roa (hash: OGh3gB84SgLrNeV+oSTQFAGbvx7CV+eo340xHFNcHRk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3337 (0xd09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131ABD, serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Validity Not Before: Mar 26 18:08:59 2026 GMT Not After : Apr 2 18:08:59 2026 GMT Subject: CN=69c5763b-a98e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:15:84:17:81:db:6d:20:4c:36:be:2f:7a:e2: 6a:bf:53:67:af:60:1f:8b:98:2f:d7:43:cd:ad:5a: 56:82:e7:36:7d:8e:be:30:7f:03:d5:e5:5f:f7:47: ae:71:0e:cc:5f:a1:e2:1e:98:b8:17:83:2c:fa:57: 6c:98:6a:33:66:38:08:b5:f7:6d:81:27:43:06:49: 97:01:18:7d:f9:8d:ad:92:5f:76:be:e4:8b:5b:8e: db:2f:5d:2a:d4:b7:cb:5a:bd:54:05:01:82:63:3a: 72:e4:bd:a9:4e:2a:e6:b9:fe:e7:90:f5:d8:0a:3b: 87:74:17:c5:23:fa:1d:3c:85:2c:d7:a5:9b:af:51: 2d:8c:3d:0c:fb:20:bd:a4:43:7b:79:bb:cc:b5:b0: 79:4d:82:ee:be:b9:87:99:f0:20:fa:18:07:09:b4: d3:f6:10:4b:e2:01:29:93:94:d2:e7:06:15:62:7c: e9:78:d1:90:71:1c:bc:db:92:2b:82:f6:43:33:73: 10:5d:0c:0d:1d:b1:83:46:9d:c5:ef:3e:9c:03:37: 06:5d:be:43:ec:59:cd:6a:6e:b3:a5:8d:61:6e:ea: bb:eb:22:48:21:a0:f2:b8:d3:5a:62:66:f6:47:87: 49:2b:67:2c:e1:06:5b:79:d7:ec:98:b8:9d:50:8e: 71:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A9:D0:19:51:E6:5B:D1:20:64:60:20:A5:B0:EC:43:7E:5E:2C:DA X509v3 Authority Key Identifier: keyid:2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:b9:3f:f7:88:71:38:0b:f6:d2:7b:0d:0b:84:99:0b:38:b9: ab:1c:40:26:de:97:7f:b7:df:99:64:6f:00:ae:5e:f1:23:09: a1:33:bd:86:83:f2:f8:95:e1:37:dd:8a:14:ca:5d:48:4c:05: 6b:ed:bd:27:f3:a9:c9:7f:ff:23:af:a1:54:8f:c1:37:82:82: f7:c0:f0:3c:6a:1d:7a:88:c3:29:fc:21:5d:14:a7:10:f6:4e: 97:28:22:c3:5b:8f:3e:1b:7b:b7:83:7f:b6:95:eb:a8:37:be: 96:0f:ce:1a:5b:e7:1c:d0:30:0d:48:83:ba:50:6c:35:8c:07: 1d:66:ba:04:b4:c4:e1:be:40:1f:15:21:db:be:cd:df:1c:5d: 2c:fe:9f:e0:37:9e:12:1a:da:8e:78:da:5f:b3:f7:4f:96:ad: 1d:09:eb:4c:c3:60:9b:18:cd:7e:72:a2:e3:00:23:c1:35:ba: 7b:39:06:fe:12:43:06:e3:32:61:6a:25:be:86:98:b3:54:34: 60:23:5a:96:4d:04:4e:65:91:9e:ad:a0:ab:a0:bc:2e:2a:7f: 68:ab:d9:54:58:8c:f5:94:5a:27:6b:9f:22:89:4b:a9:bf:00: d3:3c:1b:58:89:83:e4:53:24:09:90:ea:37:33:53:7a:52:1a: e3:96:d9:1f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBQkQxMTAvBgNVBAUTKDJFOUM5MUY0RTM5NEE0QUZBOTc2RDZCQzNGNjVERjJE OUYwNzlFQkQwHhcNMjYwMzI2MTgwODU5WhcNMjYwNDAyMTgwODU5WjAYMRYwFAYD VQQDEw02OWM1NzYzYi1hOThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmBWEF4HbbSBMNr4veuJqv1Nnr2Afi5gv10PNrVpWguc2fY6+MH8D1eVf90eu cQ7MX6HiHpi4F4Ms+ldsmGozZjgItfdtgSdDBkmXARh9+Y2tkl92vuSLW47bL10q 1LfLWr1UBQGCYzpy5L2pTirmuf7nkPXYCjuHdBfFI/odPIUs16Wbr1EtjD0M+yC9 pEN7ebvMtbB5TYLuvrmHmfAg+hgHCbTT9hBL4gEpk5TS5wYVYnzpeNGQcRy825Ir gvZDM3MQXQwNHbGDRp3F7z6cAzcGXb5D7FnNam6zpY1hbuq76yJIIaDyuNNaYmb2 R4dJK2cs4QZbedfsmLidUI5x0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAap0BlR 5lvRIGRgIKWw7EN+XizaMB8GA1UdIwQYMBaAFC6ckfTjlKSvqXbWvD9l3y2fB569 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUFCRC8yMEU4RjlBMDA0 RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBLLXBkdGE4UDJYZkxaOEhu cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xweVI5T09VcEstcGR0YThQMlhmTFo4SG5yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUFCRC8yMEU4RjlBMDA0RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBL LXBkdGE4UDJYZkxaOEhucjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqbk/94hxOAv20nsNC4SZCzi5qxxAJt6Xf7ffmWRvAK5e8SMJoTO9hoPy+JXh N92KFMpdSEwFa+29J/OpyX//I6+hVI/BN4KC98DwPGodeojDKfwhXRSnEPZOlygi w1uPPht7t4N/tpXrqDe+lg/OGlvnHNAwDUiDulBsNYwHHWa6BLTE4b5AHxUh277N 3xxdLP6f4DeeEhrajnjaX7P3T5atHQnrTMNgmxjNfnKi4wAjwTW6ezkG/hJDBuMy YWolvoaYs1Q0YCNalk0ETmWRnq2gq6C8Lip/aKvZVFiM9ZRaJ2ufIolLqb8A0zwb WImD5FMkCZDqNzNTelIa45bZHw== -----END CERTIFICATE-----Generated at Sat Mar 28 12:13:24 2026 by rpki-client