$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: kPJM0X6Kp0wuJb1zykgl8xQXmGB4UsG9WlVKDiHZzeY= Subject key identifier: 34:7A:7B:57:6F:AB:73:11:14:F0:A2:28:C6:B9:1D:DC:43:25:F6:8A Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 01D1 Signing time: Tue 24 Mar 2026 18:25:24 +0000 Manifest this update: Tue 24 Mar 2026 18:25:24 +0000 Manifest next update: Tue 31 Mar 2026 18:25:24 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: r4a+Rbt3LuIEsMToIg9r4qAIv0OvCc79LA40OYU8NEU=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: tSRP0mSyeCxo4ldlJd0x8udwsUTZBLiY2tDABXr5M1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:25:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: Mar 24 18:25:24 2026 GMT Not After : Mar 31 18:25:24 2026 GMT Subject: CN=69c2d714-173d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:62:eb:9b:e9:94:e6:48:49:f2:a2:9e:4c:7f: eb:88:25:2a:4a:bb:05:86:f5:f3:2b:3e:d4:a5:9b: 8c:4f:fa:65:d2:cf:f0:d7:dd:20:4a:2b:3d:31:7e: 99:8a:67:49:ee:1d:ab:76:f3:19:55:ee:82:0e:1b: 49:91:50:45:85:4c:6e:1a:7c:97:4c:38:61:a0:08: c6:8f:60:86:f2:a9:c1:cf:1e:5e:8a:7d:2e:78:ef: 71:b2:69:22:5d:1c:35:0e:b6:4b:a3:a6:d0:51:a5: 1d:fe:2b:a2:f0:a3:84:1d:cc:8a:2f:19:c3:06:fa: 6b:83:ed:17:30:ab:80:6f:05:b6:35:65:b4:2d:0c: 5d:d9:62:8b:cf:dc:a5:79:9e:66:ef:f1:ce:17:7a: 0a:a8:57:d4:3d:2c:4d:a8:f1:99:45:36:d1:bf:48: 5d:7f:50:72:bf:68:70:18:56:f0:e4:74:95:9c:e7: a9:11:44:4e:96:de:ac:12:9b:8f:30:59:2c:c1:df: 34:71:ee:e4:29:ad:a2:7a:de:fa:2d:6c:dd:04:b0: 7b:48:b3:e5:25:da:9c:32:d6:4b:97:96:a7:9b:98: c7:a0:20:ac:97:fe:88:a4:1b:7e:ba:2c:b9:66:0e: 2d:95:3d:a2:ec:0c:54:3a:e5:73:d8:26:37:24:0c: 2e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:7A:7B:57:6F:AB:73:11:14:F0:A2:28:C6:B9:1D:DC:43:25:F6:8A X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:e8:a3:ef:67:fa:9b:78:e7:2f:1b:f3:e6:31:c3:68:aa:67: df:41:98:f3:fb:e8:21:3a:ad:8a:d1:6a:77:de:91:4c:92:fc: 01:eb:6a:f7:4c:61:72:a8:61:40:ae:12:11:d2:a8:09:7b:6a: 08:86:be:ed:5c:05:dc:81:26:47:f0:6c:3d:48:5b:0a:34:2f: 96:0c:ff:2d:27:86:db:04:8b:8c:e1:8d:66:c3:b0:61:7c:79: a1:30:72:34:68:6c:fc:ed:20:7c:ca:e7:52:a9:8c:c7:9d:71: 28:56:01:b1:5e:43:8f:1d:f8:4a:b3:c6:dc:7d:96:89:c0:e7: bf:29:38:2f:86:ca:30:af:1c:6c:1d:dd:92:f7:8a:a8:f8:75: 65:57:8d:97:2f:60:21:f9:78:2a:78:4a:32:2a:f0:11:1e:e1: 80:27:bf:35:43:93:62:49:60:a1:38:68:17:1e:8f:3c:a1:48: fb:52:af:66:fe:24:9c:25:f7:de:f6:83:52:3b:fa:3a:f7:3f: 42:e0:25:a5:f1:11:34:3b:e0:8b:87:a1:61:ff:7c:28:a4:82: 8d:05:3b:0b:bb:d6:32:1e:ce:6c:9e:77:d3:23:0f:53:5d:91: 98:b1:89:92:21:20:42:2c:14:74:34:32:51:66:a2:03:c8:54: b2:5a:6f:cc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKDk0M0FEOUJDNjE3N0FCOEMyRjhFODEzMUMxNEE1NDY1 RUM0Mjk1NEYwHhcNMjYwMzI0MTgyNTI0WhcNMjYwMzMxMTgyNTI0WjAYMRYwFAYD VQQDEw02OWMyZDcxNC0xNzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWLrm+mU5khJ8qKeTH/riCUqSrsFhvXzKz7UpZuMT/pl0s/w190gSis9MX6Z imdJ7h2rdvMZVe6CDhtJkVBFhUxuGnyXTDhhoAjGj2CG8qnBzx5ein0ueO9xsmki XRw1DrZLo6bQUaUd/iui8KOEHcyKLxnDBvprg+0XMKuAbwW2NWW0LQxd2WKLz9yl eZ5m7/HOF3oKqFfUPSxNqPGZRTbRv0hdf1Byv2hwGFbw5HSVnOepEUROlt6sEpuP MFkswd80ce7kKa2iet76LWzdBLB7SLPlJdqcMtZLl5anm5jHoCCsl/6IpBt+uiy5 Zg4tlT2i7AxUOuVz2CY3JAwuJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDR6e1dv q3MRFPCiKMa5HdxDJfaKMB8GA1UdIwQYMBaAFJQ62bxhd6uML46BMcFKVGXsQpVP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC8zNjE4QUI2RTcy QTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0d3Zqb0V4d1VwVVpleENs VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC8zNjE4QUI2RTcyQTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0 d3Zqb0V4d1VwVVpleENsVTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG+ij72f6m3jnLxvz5jHDaKpn30GY8/voITqtitFqd96RTJL8Aetq90xhcqhh QK4SEdKoCXtqCIa+7VwF3IEmR/BsPUhbCjQvlgz/LSeG2wSLjOGNZsOwYXx5oTBy NGhs/O0gfMrnUqmMx51xKFYBsV5Djx34SrPG3H2WicDnvyk4L4bKMK8cbB3dkveK qPh1ZVeNly9gIfl4KnhKMirwER7hgCe/NUOTYklgoThoFx6PPKFI+1KvZv4knCX3 3vaDUjv6Ovc/QuAlpfERNDvgi4ehYf98KKSCjQU7C7vWMh7ObJ530yMPU12RmLGJ kiEgQiwUdDQyUWaiA8hUslpvzA== -----END CERTIFICATE-----Generated at Thu Mar 26 15:07:41 2026 by rpki-client