$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft File: LzabRI0hcVlrosk82-JY6vMxdZQ.mft (raw, json) Hash identifier: G2qtN7cAsL6qLpelWil2S0pU8UR6zzgWwdndTyCp8fg= Subject key identifier: F6:6E:E2:C8:03:35:6F:5A:6E:5B:0E:8A:06:D8:66:48:D2:D5:25:B2 Authority key identifier: 2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 Certificate issuer: /CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Certificate serial: 0762 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft Manifest number: 074F Signing time: Tue 24 Mar 2026 21:28:43 +0000 Manifest this update: Tue 24 Mar 2026 21:28:43 +0000 Manifest next update: Tue 31 Mar 2026 21:28:43 +0000 Files and hashes: 1: LzabRI0hcVlrosk82-JY6vMxdZQ.crl (hash: 9UMYLEDm7YfZXUZy7igPdDOZj7wNin4d5RkQZ4WAVSQ=) 2: 79D611D265E711EBB6FD8A0DC4F9AE02.roa (hash: lSWEMS2uEe71aU2Bsm1/P/1Jz0cRE4RsE/WEknnL1vU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1890 (0x762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A5A, serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Validity Not Before: Mar 24 21:28:43 2026 GMT Not After : Mar 31 21:28:43 2026 GMT Subject: CN=69c3020b-30fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d7:32:7e:b5:06:0a:05:5e:b0:0d:37:41:b4: 80:1c:a7:b7:47:77:31:4c:8b:34:41:eb:fe:35:d2: 71:fb:51:c5:1a:3b:9c:43:2b:bb:a4:54:f2:f2:7f: 71:77:8d:4b:00:31:0c:1e:d9:1c:35:95:15:8a:f4: 20:17:10:89:50:dc:04:bf:a4:48:df:a4:79:22:f5: 8d:0d:8d:ad:9a:8e:90:14:f9:2b:e8:53:fd:a4:c9: 2b:46:b6:d0:3a:a8:fe:d7:95:f0:c6:9e:84:b9:af: 51:40:7b:7a:a4:95:93:6a:b2:ea:dc:fa:1c:84:98: 9c:96:56:8a:9a:cb:2d:be:c7:c4:ff:66:9f:4e:99: 4e:b3:58:ed:68:da:5e:68:04:27:5e:91:bb:8f:3c: dd:79:cd:05:15:62:c8:b9:ae:b8:91:42:e2:4f:cd: 87:85:b0:33:02:5e:15:e1:96:76:79:6f:9d:f2:cb: f0:f4:5c:11:88:dc:d8:21:ec:9e:66:43:d3:18:4f: ec:cc:7a:e3:a3:61:ba:b5:eb:e0:e7:a0:35:8b:bf: 1c:21:b6:a8:1b:ba:7b:58:aa:ca:c6:cc:1e:a3:ca: 86:6f:68:8a:4d:f5:e1:52:29:0a:78:60:31:3e:4d: 56:2f:fe:30:6c:42:7d:f2:0f:60:64:e0:98:67:ed: 9a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:6E:E2:C8:03:35:6F:5A:6E:5B:0E:8A:06:D8:66:48:D2:D5:25:B2 X509v3 Authority Key Identifier: keyid:2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:b9:94:84:5d:f6:aa:64:00:39:95:b8:08:06:ab:e7:3d:df: cc:31:ac:9a:8f:f4:a2:14:1f:1e:c2:57:f4:7a:cb:d8:82:99: fa:d6:a4:2d:b7:35:be:6f:fa:24:b5:00:c3:aa:20:d5:89:10: 3d:c3:a1:34:86:7b:27:36:52:5c:a1:ac:5a:fc:f2:24:83:9b: c8:77:ae:17:51:41:e0:ed:ff:8a:f8:20:3b:f1:40:ed:9c:41: 18:2d:3f:d1:ae:15:83:68:5b:8e:2c:7e:bf:85:4d:da:c9:ac: c6:a7:eb:5c:74:ed:56:9a:8c:33:b2:5b:25:2a:9c:0a:bb:0c: e0:f9:05:fb:ee:79:ef:5d:1c:81:7c:84:9e:11:b9:d7:00:00: 94:3c:c5:2b:76:b6:04:f4:b8:2a:fc:e5:b4:0a:cf:e8:1d:7f: 1d:0d:ef:c2:04:e9:87:7f:6d:74:72:0d:9a:a4:fa:f5:b0:fe: 12:31:44:fd:00:d3:38:73:8f:ad:b7:f4:ee:d0:96:56:b9:c0: 49:7a:d7:d2:22:c3:83:9b:b3:1a:d6:b2:4a:cc:ec:a9:1e:e4: 24:06:fb:56:f1:30:b4:58:e7:8a:af:80:ac:8a:85:76:dc:20: 9f:af:5b:26:de:3b:8b:ba:70:dc:f2:0e:fd:04:20:d1:80:fd: 74:67:31:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNUExMTAvBgNVBAUTKDJGMzY5QjQ0OEQyMTcxNTk2QkEyQzkzQ0RCRTI1OEVB RjMzMTc1OTQwHhcNMjYwMzI0MjEyODQzWhcNMjYwMzMxMjEyODQzWjAYMRYwFAYD VQQDEw02OWMzMDIwYi0zMGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnNcyfrUGCgVesA03QbSAHKe3R3cxTIs0Qev+NdJx+1HFGjucQyu7pFTy8n9x d41LADEMHtkcNZUVivQgFxCJUNwEv6RI36R5IvWNDY2tmo6QFPkr6FP9pMkrRrbQ Oqj+15Xwxp6Eua9RQHt6pJWTarLq3PochJicllaKmsstvsfE/2afTplOs1jtaNpe aAQnXpG7jzzdec0FFWLIua64kULiT82HhbAzAl4V4ZZ2eW+d8svw9FwRiNzYIeye ZkPTGE/szHrjo2G6tevg56A1i78cIbaoG7p7WKrKxsweo8qGb2iKTfXhUikKeGAx Pk1WL/4wbEJ98g9gZOCYZ+2aUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPZu4sgD NW9ablsOigbYZkjS1SWyMB8GA1UdIwQYMBaAFC82m0SNIXFZa6LJPNviWOrzMXWU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1QS9COEJCNTY4RTY1 RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNWbHJvc2s4Mi1KWTZ2TXhk WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6YWJSSTBoY1Zscm9zazgyLUpZNnZNeGRaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1QS9COEJCNTY4RTY1RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNW bHJvc2s4Mi1KWTZ2TXhkWlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASrmUhF32qmQAOZW4CAar5z3fzDGsmo/0ohQfHsJX9HrL2IKZ+takLbc1vm/6 JLUAw6og1YkQPcOhNIZ7JzZSXKGsWvzyJIObyHeuF1FB4O3/ivggO/FA7ZxBGC0/ 0a4Vg2hbjix+v4VN2smsxqfrXHTtVpqMM7JbJSqcCrsM4PkF++55710cgXyEnhG5 1wAAlDzFK3a2BPS4KvzltArP6B1/HQ3vwgTph39tdHINmqT69bD+EjFE/QDTOHOP rbf07tCWVrnASXrX0iLDg5uzGtaySszsqR7kJAb7VvEwtFjniq+ArIqFdtwgn69b Jt47i7pw3PIO/QQg0YD9dGcxXQ== -----END CERTIFICATE-----Generated at Thu Mar 26 15:50:19 2026 by rpki-client