$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft File: loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft (raw, json) Hash identifier: rf4W/H+TLtcuTWxv1TTvlKBBVc4Ke6wItjhJ0F4Aa0w= Subject key identifier: D6:C6:F2:44:9D:A2:C3:61:21:F2:A9:66:02:80:2B:BC:5B:E6:B2:41 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 0600 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft Manifest number: 05DD Signing time: Tue 24 Mar 2026 22:45:10 +0000 Manifest this update: Tue 24 Mar 2026 22:45:09 +0000 Manifest next update: Tue 31 Mar 2026 22:45:09 +0000 Files and hashes: 1: loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl (hash: yUaCmmcr/wWD2GWR4ZFTZduhv3pdiIoUpKu3ddEmYiE=) 2: AF0A3F14178911EC876F5F50C4F9AE02.roa (hash: Ae3vnYMRPKUdXa+CO5NCrtQU86FdJMZKr59EI0hk4E8=) 3: F1C7A044D91E11EFAD3C7613C4F9AE02.roa (hash: X85hHwwMk7D4YA68Yefpn/DdDekokXijChU0NLic1JM=) 4: D3D36BE0271011ECA0D7D95AC4F9AE02.roa (hash: 3HHpLWwhlM54c0ygayHpZ//nfGJy4YzZlrDagN2/hEE=) 5: AE8BB766178911EC876F5F50C4F9AE02.roa (hash: +d1MUKmmVJG/vsTFf7Frn1NwsWtESd/BW6+x47gDzSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:45:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1536 (0x600) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Mar 24 22:45:09 2026 GMT Not After : Mar 31 22:45:09 2026 GMT Subject: CN=69c313f5-9dc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:94:6e:6e:6c:1d:23:93:fe:f1:f0:61:3a:f9: 19:18:99:76:4c:69:36:a2:8d:57:dc:f7:c8:a9:dd: 98:20:b4:65:e9:9e:c6:9c:95:9a:ac:3b:de:b8:6f: 8c:db:d8:32:88:3a:d2:c7:ce:19:ad:39:c9:1e:95: c2:68:2e:01:63:7d:5e:a8:16:25:e4:93:5a:13:61: 6f:e4:b4:6c:5b:76:18:c0:31:53:44:e4:6b:aa:bb: 44:f4:19:33:37:bd:60:c7:85:4b:e1:88:f7:1a:b9: 72:8d:f6:27:b3:88:f9:f0:f1:6d:43:0f:f1:16:47: f7:f3:ee:29:e6:d3:83:a2:dc:50:32:03:82:ef:65: 77:3c:87:ca:58:7c:98:f6:d8:e7:c0:9f:8b:7f:22: f4:1d:ca:a0:cb:fd:ad:a6:a9:60:59:16:17:e3:d5: 3c:55:9b:23:45:d1:31:fa:9b:5b:3b:7a:69:73:c8: 7e:50:58:3a:3d:33:88:ab:ef:7b:e6:31:bb:6a:6c: 08:bc:31:ca:83:7b:88:f2:ce:e3:9e:ba:b3:36:82: 8f:59:a8:09:e3:c2:c9:60:a7:cb:06:76:72:14:90: c9:6e:ac:b2:0e:5e:08:fc:96:0e:63:82:2b:dc:a1: 46:e8:33:4d:c0:88:38:e6:a5:64:da:8d:2d:fa:83: 47:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:C6:F2:44:9D:A2:C3:61:21:F2:A9:66:02:80:2B:BC:5B:E6:B2:41 X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:79:91:b4:13:13:9a:08:d6:85:a9:7c:6a:6c:33:87:c1:62: bf:7a:70:ff:d3:c6:34:75:06:f8:cf:fe:f6:67:ca:8e:91:18: 13:ff:46:fc:7f:3e:51:8d:ba:66:61:51:3f:51:1f:cf:55:c3: ac:09:89:76:38:b6:e8:79:7c:fa:4b:2d:74:30:f2:9f:89:e8: cf:b0:db:8e:9b:e3:79:5c:f7:bc:b9:de:8b:a8:45:a8:5c:d2: 4a:6e:c8:9e:d2:2a:92:d9:5f:af:00:35:19:7b:7f:d1:d2:a8: d0:9e:7e:99:22:12:8b:86:33:08:13:97:a4:67:71:5e:6f:01: 92:d2:4f:34:13:fe:98:12:d0:06:a4:e1:1b:e7:22:19:c5:79: 33:c8:e4:91:a4:6b:bd:fd:19:30:2f:cd:33:c6:a0:60:37:8e: 28:ee:b6:5d:8c:fe:a4:4b:37:ac:80:1b:70:01:41:05:2b:de: 37:98:a0:e0:e0:d5:4e:ce:38:49:a6:b7:cd:75:8b:59:5c:84: 07:52:c5:c9:10:d9:83:f6:72:34:1e:a7:4c:20:0f:58:fc:31: 3a:f8:71:80:8d:4a:50:c5:95:08:59:9d:7a:5b:64:f5:b6:ff: 95:e0:6a:61:e6:59:a5:83:d4:5f:90:58:1d:d9:c1:32:0f:fc: 3b:70:3e:22 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjYwMzI0MjI0NTA5WhcNMjYwMzMxMjI0NTA5WjAYMRYwFAYD VQQDEw02OWMzMTNmNS05ZGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5RubmwdI5P+8fBhOvkZGJl2TGk2oo1X3PfIqd2YILRl6Z7GnJWarDveuG+M 29gyiDrSx84ZrTnJHpXCaC4BY31eqBYl5JNaE2Fv5LRsW3YYwDFTRORrqrtE9Bkz N71gx4VL4Yj3GrlyjfYns4j58PFtQw/xFkf38+4p5tODotxQMgOC72V3PIfKWHyY 9tjnwJ+LfyL0Hcqgy/2tpqlgWRYX49U8VZsjRdEx+ptbO3ppc8h+UFg6PTOIq+97 5jG7amwIvDHKg3uI8s7jnrqzNoKPWagJ48LJYKfLBnZyFJDJbqyyDl4I/JYOY4Ir 3KFG6DNNwIg45qVk2o0t+oNHuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNbG8kSd osNhIfKpZgKAK7xb5rJBMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTRCMS83QTg4NjRBQ0ZCRTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkx Z0hkckhRNG5YU19TMXBmclkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgXmRtBMTmgjWhal8amwzh8Fiv3pw/9PGNHUG+M/+9mfKjpEYE/9G/H8+UY26 ZmFRP1Efz1XDrAmJdji26Hl8+kstdDDyn4noz7DbjpvjeVz3vLnei6hFqFzSSm7I ntIqktlfrwA1GXt/0dKo0J5+mSISi4YzCBOXpGdxXm8BktJPNBP+mBLQBqThG+ci GcV5M8jkkaRrvf0ZMC/NM8agYDeOKO62XYz+pEs3rIAbcAFBBSveN5ig4ODVTs44 Saa3zXWLWVyEB1LFyRDZg/ZyNB6nTCAPWPwxOvhxgI1KUMWVCFmdeltk9bb/leBq YeZZpYPUX5BYHdnBMg/8O3A+Ig== -----END CERTIFICATE-----Generated at Thu Mar 26 15:23:20 2026 by rpki-client