$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json) Hash identifier: 0JxMDAlQLw1DUUtUX2V0BUiADs7S+SsQGsBu3scRVhQ= Subject key identifier: C9:34:E8:F6:35:3C:D8:BB:6D:13:12:D9:84:36:E4:A4:62:DC:9B:AC Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0EE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft Manifest number: 0EE1 Signing time: Thu 26 Mar 2026 17:36:53 +0000 Manifest this update: Thu 26 Mar 2026 17:36:52 +0000 Manifest next update: Thu 02 Apr 2026 17:36:52 +0000 Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: qrvzmjnXuhgrLSNdxjaArTJif0QCc3NVuVIHvktF9Gw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3815 (0xee7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F, serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: Mar 26 17:36:52 2026 GMT Not After : Apr 2 17:36:52 2026 GMT Subject: CN=69c56eb4-d0bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7d:3d:cb:b9:91:bc:4a:8a:33:85:ae:5b:3f: ad:99:d5:49:f9:e8:02:8f:8f:a9:1f:47:8f:d6:07: 52:13:88:b0:ca:7a:a0:81:c8:ab:49:8b:04:e3:42: 9e:e5:47:11:bc:17:b0:8d:16:71:12:e2:71:5d:c9: 5d:63:53:36:2f:93:2c:70:d1:a9:98:a2:aa:dd:88: d6:6f:6f:ae:7e:ad:12:43:a6:20:53:ca:25:fa:0e: c7:5f:fa:63:be:d8:b9:ee:0f:62:d3:45:0e:10:43: 02:5a:04:98:ab:b2:a9:76:14:e4:c5:9b:51:66:9c: d3:a3:58:fb:9c:b2:f1:ae:87:82:e0:2e:85:44:97: c7:0f:03:5a:67:73:79:68:0e:ea:54:64:a7:d4:7f: e6:73:9d:00:16:ea:65:80:10:34:81:20:d5:e9:ce: ff:6d:81:12:b9:42:b5:5e:d5:30:6e:e3:33:f8:5a: 33:c2:be:59:e2:3c:90:25:df:ad:70:cb:69:71:a8: 0b:88:21:e1:95:35:9b:17:2f:1c:90:04:71:68:32: 50:77:65:9e:16:14:52:e3:25:f6:32:fc:3d:9b:67: f2:6e:70:d4:ad:be:ee:c4:bb:22:5a:fe:d4:97:31: 48:ce:64:cf:d9:22:bc:03:93:49:7e:aa:a5:36:ac: 63:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:34:E8:F6:35:3C:D8:BB:6D:13:12:D9:84:36:E4:A4:62:DC:9B:AC X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:74:4e:ff:16:0c:c5:e0:8b:42:95:4a:b2:55:de:05:ed:48: 49:31:e6:86:24:55:01:eb:86:b7:d0:ab:7d:83:9b:d8:cc:d8: c7:15:f1:5b:4c:b0:10:a5:fd:d4:5d:4a:48:7c:89:f4:38:39: dc:c2:e0:65:6e:5f:f4:a5:de:6a:9d:62:07:b9:b5:d3:7b:93: 95:a5:f0:70:81:ee:3e:71:fa:1a:2b:8c:be:a6:41:ed:37:38: 13:aa:62:ff:e9:cc:13:25:78:e3:a0:05:0d:a3:11:e1:fc:f0: 43:98:51:c5:e5:99:ed:d7:35:e7:17:2f:7a:9f:cd:ae:ac:47: 22:bd:17:8d:00:85:77:cf:7a:f3:76:63:e3:a9:74:6b:fa:29: 29:73:ac:f5:5c:50:f6:17:3f:74:79:7b:14:62:79:f4:cf:e0: e5:ec:be:b8:77:0d:f9:cf:51:af:73:a0:40:75:3f:51:eb:80: 52:77:2a:29:9c:5f:aa:20:a8:0d:85:f7:d8:50:c8:50:14:de: 0a:dd:48:31:3b:05:e7:07:bd:a9:97:7f:31:99:51:5e:28:27: bb:e5:e0:9c:39:50:92:d8:86:96:15:0b:d6:a7:25:f2:91:50: 84:68:5e:67:da:c9:5a:05:c0:1a:05:3b:21:a4:ed:d9:a5:51: 42:c1:78:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjYwMzI2MTczNjUyWhcNMjYwNDAyMTczNjUyWjAYMRYwFAYD VQQDEw02OWM1NmViNC1kMGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAon09y7mRvEqKM4WuWz+tmdVJ+egCj4+pH0eP1gdSE4iwynqggcirSYsE40Ke 5UcRvBewjRZxEuJxXcldY1M2L5MscNGpmKKq3YjWb2+ufq0SQ6YgU8ol+g7HX/pj vti57g9i00UOEEMCWgSYq7KpdhTkxZtRZpzTo1j7nLLxroeC4C6FRJfHDwNaZ3N5 aA7qVGSn1H/mc50AFuplgBA0gSDV6c7/bYESuUK1XtUwbuMz+Fozwr5Z4jyQJd+t cMtpcagLiCHhlTWbFy8ckARxaDJQd2WeFhRS4yX2Mvw9m2fybnDUrb7uxLsiWv7U lzFIzmTP2SK8A5NJfqqlNqxj4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMk06PY1 PNi7bRMS2YQ25KRi3JusMB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlI V3U0Y1NidHBxblE4ODJZUnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYXRO/xYMxeCLQpVKslXeBe1ISTHmhiRVAeuGt9CrfYOb2MzYxxXxW0ywEKX9 1F1KSHyJ9Dg53MLgZW5f9KXeap1iB7m103uTlaXwcIHuPnH6GiuMvqZB7Tc4E6pi /+nMEyV446AFDaMR4fzwQ5hRxeWZ7dc15xcvep/NrqxHIr0XjQCFd89683Zj46l0 a/opKXOs9VxQ9hc/dHl7FGJ59M/g5ey+uHcN+c9Rr3OgQHU/UeuAUncqKZxfqiCo DYX32FDIUBTeCt1IMTsF5we9qZd/MZlRXignu+XgnDlQktiGlhUL1qcl8pFQhGhe Z9rJWgXAGgU7IaTt2aVRQsF4Dg== -----END CERTIFICATE-----Generated at Thu Mar 26 21:10:27 2026 by rpki-client