$ rpki-client -vvf rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft File: LGfSFpazocG8LOSfy-CnpTo306Y.mft (raw, json) Hash identifier: 9EEwnr5nzNmDzkfkyIN8LdXqeIeNOjGupWkyCOUsTOk= Subject key identifier: AB:16:C4:8E:A9:22:E9:C2:66:30:3C:EF:34:AC:D3:9C:81:3D:DC:21 Authority key identifier: 2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 Certificate issuer: /CN=A9168221/serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft Manifest number: 90 Signing time: Fri 27 Mar 2026 07:14:23 +0000 Manifest this update: Fri 27 Mar 2026 07:14:23 +0000 Manifest next update: Fri 03 Apr 2026 07:14:23 +0000 Files and hashes: 1: LGfSFpazocG8LOSfy-CnpTo306Y.crl (hash: DrHBCsxgn87GUH6VNhR5v0kIHiY51gRAkIclgr8CPmI=) 2: 7EB9D336E88D11F09C95F79A506F56BC.roa (hash: Ezl0n+OgzlnEpdFqgpF6c3qxbrKC+MfFQzWPPXiHzdM=) 3: DD2F3D28E8A311F0962A42EF556F56BC.roa (hash: kn7qtlgTYPVCEmu4KEqD1zs/ovHOIIn/wazhWoTHlJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 07:14:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168221, serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Validity Not Before: Mar 27 07:14:23 2026 GMT Not After : Apr 3 07:14:23 2026 GMT Subject: CN=69c62e4f-3a4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ea:d2:ad:6e:61:7b:10:a4:41:74:ed:ef:9e: ed:11:b5:fb:fc:dd:ef:9a:14:c2:11:97:18:c5:7b: e7:c7:43:5b:4d:1c:bd:51:dd:90:8e:ed:74:df:9e: 6d:1c:8a:81:29:bb:f5:82:90:c8:27:a0:dd:53:18: bb:39:78:1d:f6:d0:f8:f6:dc:84:1e:19:aa:eb:8d: 2e:92:e8:06:38:00:d5:fb:c7:f7:ba:4a:1c:04:be: df:50:dc:48:93:b6:88:8c:3b:ba:41:ea:a3:36:13: 53:e3:74:8d:bf:48:16:83:91:1d:dd:19:b6:23:3b: 5e:37:4b:4b:5a:1d:ed:16:d0:08:8c:d1:8c:98:71: ff:d2:a1:c5:d1:dd:77:32:a0:b3:8c:30:aa:88:d4: a5:6e:da:33:5e:54:76:ae:64:b0:b2:30:7f:db:37: 8b:f9:45:0c:ca:9f:f1:fd:e1:25:60:b0:ee:2b:b6: 5c:90:4d:e1:16:44:59:f3:21:a5:e7:15:a7:7a:b6: 91:ec:97:e9:cf:23:8a:c4:c4:a4:9d:e2:70:aa:81: cc:36:57:ca:6b:a8:66:ef:95:00:d3:eb:1c:35:e7: 32:06:e1:fa:8f:f3:c7:f7:96:ed:ba:f5:76:f1:b0: a9:e0:36:95:ef:4b:3b:2e:b3:30:c0:b2:91:b4:ec: 0d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:16:C4:8E:A9:22:E9:C2:66:30:3C:EF:34:AC:D3:9C:81:3D:DC:21 X509v3 Authority Key Identifier: keyid:2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:58:45:10:16:78:c6:e2:94:7e:17:3d:1a:57:92:d8:ce:bd: 3a:46:fc:9d:86:f8:c3:dd:a2:be:74:8b:99:cc:40:f0:08:7f: 12:81:5e:fb:dc:a7:f3:8b:f2:81:9c:73:92:2e:86:56:35:f9: fc:28:45:35:f3:e8:1c:61:0e:49:b1:1b:47:30:b2:3a:7a:5a: ad:44:80:b9:b2:f9:df:4d:38:09:7e:8e:35:3c:68:55:b6:e2: 59:f4:a1:25:e1:07:5d:65:93:46:9c:df:54:49:41:80:ae:99: 89:53:b2:a5:d7:66:c0:a6:bc:f6:6b:6a:9c:9e:fa:50:7d:32: 87:45:c4:b8:fa:67:a3:0d:aa:ae:5e:4c:7f:00:31:a5:81:a6: f3:8d:c1:df:fd:65:d8:ec:28:b5:cb:dd:c4:71:6f:9d:e9:bb: fb:68:73:69:e7:88:db:b9:ec:88:e6:4c:2a:99:28:a4:dc:0c: 9c:ba:35:55:9a:71:f2:d9:97:b0:b3:97:09:79:16:ac:07:6d: 84:38:17:57:a2:d3:cd:cf:83:6a:57:e1:40:bc:11:c0:3f:74: 64:a1:2f:66:2f:31:ee:ce:11:2a:ad:03:c4:f3:a9:54:c4:ce: c3:6f:01:e3:b8:4e:04:d4:79:32:d8:95:0d:d0:fd:23:54:00: c7:63:7b:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgyMjExMTAvBgNVBAUTKDJDNjdEMjE2OTZCM0ExQzFCQzJDRTQ5RkNCRTBBN0E1 M0EzN0QzQTYwHhcNMjYwMzI3MDcxNDIzWhcNMjYwNDAzMDcxNDIzWjAYMRYwFAYD VQQDEw02OWM2MmU0Zi0zYTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOrSrW5hexCkQXTt757tEbX7/N3vmhTCEZcYxXvnx0NbTRy9Ud2Qju10355t HIqBKbv1gpDIJ6DdUxi7OXgd9tD49tyEHhmq640ukugGOADV+8f3ukocBL7fUNxI k7aIjDu6QeqjNhNT43SNv0gWg5Ed3Rm2IzteN0tLWh3tFtAIjNGMmHH/0qHF0d13 MqCzjDCqiNSlbtozXlR2rmSwsjB/2zeL+UUMyp/x/eElYLDuK7ZckE3hFkRZ8yGl 5xWneraR7JfpzyOKxMSkneJwqoHMNlfKa6hm75UA0+scNecyBuH6j/PH95btuvV2 8bCp4DaV70s7LrMwwLKRtOwNqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKsWxI6p IunCZjA87zSs05yBPdwhMB8GA1UdIwQYMBaAFCxn0haWs6HBvCzkn8vgp6U6N9Om MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODIyMS8zMzUzNUNCMDY1 NEMxMUYwOEIzOUU3MUNDNEY5QUUwMi9MR2ZTRnBhem9jRzhMT1NmeS1DbnBUbzMw NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xHZlNGcGF6b2NHOExPU2Z5LUNucFRvMzA2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODIyMS8zMzUzNUNCMDY1NEMxMUYwOEIzOUU3MUNDNEY5QUUwMi9MR2ZTRnBhem9j RzhMT1NmeS1DbnBUbzMwNlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAklhFEBZ4xuKUfhc9GleS2M69Okb8nYb4w92ivnSLmcxA8Ah/EoFe+9yn84vy gZxzki6GVjX5/ChFNfPoHGEOSbEbRzCyOnparUSAubL53004CX6ONTxoVbbiWfSh JeEHXWWTRpzfVElBgK6ZiVOypddmwKa89mtqnJ76UH0yh0XEuPpnow2qrl5MfwAx pYGm843B3/1l2OwotcvdxHFvnem7+2hzaeeI27nsiOZMKpkopNwMnLo1VZpx8tmX sLOXCXkWrAdthDgXV6LTzc+DalfhQLwRwD90ZKEvZi8x7s4RKq0DxPOpVMTOw28B 47hOBNR5MtiVDdD9I1QAx2N7DQ== -----END CERTIFICATE-----Generated at Sat Mar 28 11:47:33 2026 by rpki-client