$ rpki-client -vvf rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft File: LGfSFpazocG8LOSfy-CnpTo306Y.mft (raw, json) Hash identifier: mVqcLHFNrSNu8vIQshDNzbACXIjEI6LnXa5PX33ff88= Subject key identifier: FF:26:47:9D:5F:62:94:3F:9D:9D:14:31:64:1D:EA:51:BE:3E:53:3E Authority key identifier: 2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 Certificate issuer: /CN=A9168221/serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft Manifest number: A8 Signing time: Wed 13 May 2026 07:32:09 +0000 Manifest this update: Wed 13 May 2026 07:32:08 +0000 Manifest next update: Wed 20 May 2026 07:32:08 +0000 Files and hashes: 1: LGfSFpazocG8LOSfy-CnpTo306Y.crl (hash: 7+dcLQe2WZyY9xWItQqQETNXoT1vHSgOxWsQitzL7Sw=) 2: 7EB9D336E88D11F09C95F79A506F56BC.roa (hash: Ezl0n+OgzlnEpdFqgpF6c3qxbrKC+MfFQzWPPXiHzdM=) 3: DD2F3D28E8A311F0962A42EF556F56BC.roa (hash: kn7qtlgTYPVCEmu4KEqD1zs/ovHOIIn/wazhWoTHlJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 07:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168221, serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Validity Not Before: May 13 07:32:08 2026 GMT Not After : May 20 07:32:08 2026 GMT Subject: CN=6a0428f9-617e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:58:56:fd:dc:28:1d:76:8a:c2:6a:91:0d:4c: 02:e3:45:f6:c1:66:fb:f8:4e:e0:b5:52:75:d5:0c: fb:6b:01:d6:c9:f7:81:df:2a:61:89:e3:e0:05:67: a3:9f:41:68:5b:36:41:e7:3a:d3:d0:1a:a8:af:eb: 44:51:35:4d:20:6e:5d:ea:d2:bf:5e:37:0d:67:24: 8e:cc:c6:a7:f8:4f:6b:26:ef:5a:43:0c:46:57:78: 9b:57:30:e0:d2:18:d9:d9:85:9a:00:14:a8:50:8c: da:7f:01:8a:7e:98:b2:e3:6e:cb:1b:b3:31:f6:b5: 49:7b:b8:a5:96:35:6e:bb:1e:ba:da:25:8e:d5:f7: 26:22:2d:83:03:30:3f:dd:da:94:64:df:9c:c9:61: e3:97:50:ab:7b:6e:01:03:9e:a9:3d:58:95:32:57: 60:79:5f:5f:c4:96:44:b9:21:94:e2:24:e4:5a:21: bc:94:00:9b:43:b3:5e:36:96:d4:24:03:f6:09:79: 11:39:bf:cb:35:9b:c5:a3:90:9f:be:3c:0f:0e:a1: ff:41:df:54:28:69:ce:ce:3c:ae:33:56:e5:fa:68: 82:c4:a6:b4:1d:87:39:13:a2:07:4c:ee:50:d4:62: 39:84:03:83:5c:e2:fe:51:c3:83:4d:1a:e4:93:17: 19:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:26:47:9D:5F:62:94:3F:9D:9D:14:31:64:1D:EA:51:BE:3E:53:3E X509v3 Authority Key Identifier: keyid:2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:9a:e8:5e:a2:90:9d:33:e8:77:e9:01:59:a2:2a:f6:35:fd: 5f:61:01:ee:5f:a1:d1:9d:d1:14:f1:68:39:26:bd:80:4d:ce: 17:70:79:b3:ed:f6:68:e9:a9:d1:a9:0b:8e:d5:9e:9f:01:56: 21:d3:8a:5a:14:04:ae:1e:a1:42:1e:bc:24:ee:3e:3d:75:ae: 2d:7f:c2:f1:6d:e2:40:8d:6b:0f:1e:23:f8:44:30:e1:9e:42: 41:1a:fd:bf:b7:e6:e6:12:d5:20:ff:ed:13:97:b6:b2:66:28: 11:6d:e1:a8:e5:68:c8:57:6f:fe:66:c6:8a:05:ea:c4:94:eb: 3d:07:bf:6b:c5:4f:81:9d:b9:4d:03:9d:23:3c:a0:f1:de:c9: 0b:27:62:b4:36:21:1c:a7:19:22:f2:c5:81:39:8f:5c:e8:af: b6:38:da:d9:59:fc:ce:c6:99:d5:f9:55:93:aa:4e:d2:ad:5e: 1a:ec:dc:87:00:ae:14:e9:8e:98:77:41:e4:46:bf:a3:4f:0a: a6:18:d2:7f:05:fe:1a:38:53:5b:76:82:33:6e:10:65:f8:8c: 4d:1d:b5:16:ce:de:64:d3:1a:6a:79:55:a7:33:67:60:f9:3e: f8:60:22:f6:03:90:0f:2d:4f:4b:ac:8d:57:73:71:e5:6e:7a: e9:fe:69:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgyMjExMTAvBgNVBAUTKDJDNjdEMjE2OTZCM0ExQzFCQzJDRTQ5RkNCRTBBN0E1 M0EzN0QzQTYwHhcNMjYwNTEzMDczMjA4WhcNMjYwNTIwMDczMjA4WjAYMRYwFAYD VQQDEw02YTA0MjhmOS02MTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlhW/dwoHXaKwmqRDUwC40X2wWb7+E7gtVJ11Qz7awHWyfeB3yphiePgBWej n0FoWzZB5zrT0Bqor+tEUTVNIG5d6tK/XjcNZySOzMan+E9rJu9aQwxGV3ibVzDg 0hjZ2YWaABSoUIzafwGKfpiy427LG7Mx9rVJe7illjVuux662iWO1fcmIi2DAzA/ 3dqUZN+cyWHjl1Cre24BA56pPViVMldgeV9fxJZEuSGU4iTkWiG8lACbQ7NeNpbU JAP2CXkROb/LNZvFo5CfvjwPDqH/Qd9UKGnOzjyuM1bl+miCxKa0HYc5E6IHTO5Q 1GI5hAODXOL+UcODTRrkkxcZLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP8mR51f YpQ/nZ0UMWQd6lG+PlM+MB8GA1UdIwQYMBaAFCxn0haWs6HBvCzkn8vgp6U6N9Om MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODIyMS8zMzUzNUNCMDY1 NEMxMUYwOEIzOUU3MUNDNEY5QUUwMi9MR2ZTRnBhem9jRzhMT1NmeS1DbnBUbzMw NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xHZlNGcGF6b2NHOExPU2Z5LUNucFRvMzA2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODIyMS8zMzUzNUNCMDY1NEMxMUYwOEIzOUU3MUNDNEY5QUUwMi9MR2ZTRnBhem9j RzhMT1NmeS1DbnBUbzMwNlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJJroXqKQnTPod+kBWaIq9jX9X2EB7l+h0Z3RFPFoOSa9gE3OF3B5s+32aOmp 0akLjtWenwFWIdOKWhQErh6hQh68JO4+PXWuLX/C8W3iQI1rDx4j+EQw4Z5CQRr9 v7fm5hLVIP/tE5e2smYoEW3hqOVoyFdv/mbGigXqxJTrPQe/a8VPgZ25TQOdIzyg 8d7JCyditDYhHKcZIvLFgTmPXOivtjja2Vn8zsaZ1flVk6pO0q1eGuzchwCuFOmO mHdB5Ea/o08KphjSfwX+GjhTW3aCM24QZfiMTR21Fs7eZNMaanlVpzNnYPk++GAi 9gOQDy1PS6yNV3Nx5W566f5pkA== -----END CERTIFICATE-----Generated at Wed May 13 09:32:18 2026 by rpki-client