$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft File: lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft (raw, json) Hash identifier: oAy1sWWyn6CMk1ts9KXE1bPXF2diuwgr4KQ3Afqt22M= Subject key identifier: C8:0A:D3:82:C4:44:E4:F5:68:EC:02:13:38:0E:39:E7:45:90:11:60 Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 3537 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft Manifest number: 352F Signing time: Thu 26 Mar 2026 14:39:41 +0000 Manifest this update: Thu 26 Mar 2026 14:39:41 +0000 Manifest next update: Thu 02 Apr 2026 14:39:41 +0000 Files and hashes: 1: lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl (hash: 7VAdK/oBVOu9rMay/nG3IyJY//QFBlqxCospLl3+8d4=) 2: 35FC192C272C11ED9E64C718C4F9AE02.roa (hash: 5gb2IR3RmAQfetfMD3Cf2kp33anqtncaV+qXbOqkB4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:39:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13623 (0x3537) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Mar 26 14:39:41 2026 GMT Not After : Apr 2 14:39:41 2026 GMT Subject: CN=69c5452d-3736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6a:01:43:48:3f:5e:c4:49:ea:2f:0e:f0:f2: fe:ea:dc:26:12:7e:88:bb:17:a2:00:0a:72:75:71: 9c:5c:a3:86:99:2a:03:a0:71:a1:37:b0:9c:47:71: ad:ce:98:7a:9e:8d:ab:ce:c9:aa:14:84:9a:70:40: 83:d7:5b:f7:18:be:63:88:02:b6:81:a5:00:12:c0: bc:cb:a1:3c:73:ad:3f:ac:7f:2d:cc:12:15:74:53: ed:dd:b2:c2:a5:67:b7:21:29:43:67:b5:b8:bc:f8: aa:cb:1e:42:16:a6:27:2c:4b:c5:d2:9d:3f:ab:41: 7d:a0:3d:10:80:90:01:0e:27:90:28:88:85:ac:b4: 95:d5:95:31:09:1b:ee:2e:10:08:07:1d:52:14:0a: e9:89:12:0f:bd:45:b6:7f:5f:99:37:9f:70:b4:0a: 6b:08:f0:cd:74:84:cc:cc:5b:29:f7:3f:d4:d3:5a: 20:f8:b5:37:4f:44:42:7f:35:ba:6c:d8:8d:04:f1: 8f:75:23:eb:99:d2:99:46:1f:75:89:eb:3d:be:08: de:08:77:ee:80:6a:25:2e:f3:f8:34:46:67:2b:d7: 72:02:52:36:1b:19:6d:24:f3:4c:cf:48:ab:6c:3c: c6:4e:07:9a:04:89:49:be:94:8b:c1:c0:46:76:d9: 84:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:0A:D3:82:C4:44:E4:F5:68:EC:02:13:38:0E:39:E7:45:90:11:60 X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:78:e4:41:57:7c:f7:b6:e0:57:c4:87:4a:e0:4c:3f:ca:6a: 5e:d8:a5:7c:75:fa:46:17:3b:e7:b8:aa:6c:82:14:7b:27:06: 40:fa:88:ac:0a:e7:01:6e:41:3f:3e:d9:13:28:a4:9d:66:36: 9e:a1:78:26:5a:bd:c0:23:62:35:92:a1:e3:af:50:f5:5a:80: 2a:bd:56:e5:5c:48:0d:20:3d:d6:82:ff:4b:81:16:9e:c5:29: f9:89:44:45:a0:48:08:2d:12:f1:15:c4:17:b6:48:24:63:cb: f2:bc:4a:7e:e6:79:50:bf:18:1e:e5:7b:d2:f9:d1:f5:3b:6d: 18:6a:ad:11:53:90:b1:95:fa:4f:8d:0e:eb:19:6b:ed:43:e6: 71:46:b4:5e:a2:ad:e7:e9:46:8b:0f:19:5d:34:9e:10:ff:70: 9e:13:67:cb:67:3e:68:3c:6d:08:0f:f8:e5:06:b7:5a:23:88: 63:25:65:e0:b5:34:e6:da:74:ff:1e:d1:5d:78:40:c1:1b:8b: bb:83:be:57:42:4b:1c:3b:5d:c4:b6:d7:eb:c1:7e:0f:a3:1a: 45:d3:ea:a4:b9:bd:fa:43:f0:ac:f0:ab:ea:2d:c0:73:68:0a: d6:82:f8:d4:30:85:48:bc:2d:bc:e6:82:10:f2:69:0e:d0:3e: bb:2f:71:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjYwMzI2MTQzOTQxWhcNMjYwNDAyMTQzOTQxWjAYMRYwFAYD VQQDEw02OWM1NDUyZC0zNzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWoBQ0g/XsRJ6i8O8PL+6twmEn6IuxeiAApydXGcXKOGmSoDoHGhN7CcR3Gt zph6no2rzsmqFISacECD11v3GL5jiAK2gaUAEsC8y6E8c60/rH8tzBIVdFPt3bLC pWe3ISlDZ7W4vPiqyx5CFqYnLEvF0p0/q0F9oD0QgJABDieQKIiFrLSV1ZUxCRvu LhAIBx1SFArpiRIPvUW2f1+ZN59wtAprCPDNdITMzFsp9z/U01og+LU3T0RCfzW6 bNiNBPGPdSPrmdKZRh91ies9vgjeCHfugGolLvP4NEZnK9dyAlI2GxltJPNMz0ir bDzGTgeaBIlJvpSLwcBGdtmEswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMgK04LE ROT1aOwCEzgOOedFkBFgMB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDdGMi9GMDI4OTAzQzFEOEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2 YmdIbXZNbDIzQXk0UVU2RGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi3jkQVd897bgV8SHSuBMP8pqXtilfHX6Rhc757iqbIIUeycGQPqIrArnAW5B Pz7ZEyiknWY2nqF4Jlq9wCNiNZKh469Q9VqAKr1W5VxIDSA91oL/S4EWnsUp+YlE RaBICC0S8RXEF7ZIJGPL8rxKfuZ5UL8YHuV70vnR9TttGGqtEVOQsZX6T40O6xlr 7UPmcUa0XqKt5+lGiw8ZXTSeEP9wnhNny2c+aDxtCA/45Qa3WiOIYyVl4LU05tp0 /x7RXXhAwRuLu4O+V0JLHDtdxLbX68F+D6MaRdPqpLm9+kPwrPCr6i3Ac2gK1oL4 1DCFSLwtvOaCEPJpDtA+uy9x7Q== -----END CERTIFICATE-----Generated at Thu Mar 26 19:27:22 2026 by rpki-client