$ rpki-client -vvf rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft File: lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft (raw, json) Hash identifier: Hj00z7F7310GwJ1ru2deh/wkbgVSBsOWiWPA1nRrNcQ= Subject key identifier: D7:9E:E9:5F:F9:BE:2C:05:9B:62:FB:C7:68:76:0F:DE:9C:22:6A:6D Authority key identifier: 96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B Certificate issuer: /CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Certificate serial: 034B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft Manifest number: 033E Signing time: Wed 25 Mar 2026 00:39:36 +0000 Manifest this update: Wed 25 Mar 2026 00:39:35 +0000 Manifest next update: Wed 01 Apr 2026 00:39:35 +0000 Files and hashes: 1: lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl (hash: OdVtl9r/7YvUlpxHiuGs+85t0MC6R90vRjCrDAGQ6QU=) 2: B83B7E0C065511EDB3E94E54C4F9AE02.roa (hash: EaaSXzGz05+ts4EkpTMhP55oUChU6Bk9DAG9srhRaSc=) 3: 481545DEFE8211ECBAB0E13FC4F9AE02.roa (hash: 8dpXRXimhjXqFq8UENKdvQMz2YmohstnkMIHLOtJCy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 843 (0x34b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91818BD, serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Validity Not Before: Mar 25 00:39:35 2026 GMT Not After : Apr 1 00:39:35 2026 GMT Subject: CN=69c32ec8-bdcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:36:76:94:55:d1:0f:e8:87:81:84:dc:13:b5: b6:82:ad:4d:34:3e:8e:d0:fe:ec:f2:56:3c:dd:a1: 0b:1c:87:8b:9d:3f:e1:b9:90:48:c0:2a:4b:71:21: 1a:4a:fe:06:e9:c1:4e:7b:df:bf:27:2d:65:3e:0e: ed:ff:68:00:fe:ad:f0:44:7d:ba:44:fd:40:57:69: 71:4d:b7:9f:da:4c:d6:45:5c:dc:ac:e9:ad:ac:55: 96:ca:89:b4:1c:e4:76:0e:c0:10:5f:f0:e2:9d:15: b5:ee:d5:52:a4:c0:6f:22:9b:d6:bc:e6:08:51:e9: 4e:42:a0:e2:e2:7c:c8:f4:2a:50:8c:6e:c8:8d:8e: 6a:7a:e2:8d:42:46:2d:45:ec:26:5d:5b:d2:25:96: f6:d8:8c:39:85:fa:14:18:c2:1a:3b:62:38:03:e7: 9a:49:16:50:3a:4d:b3:98:f9:85:9f:a5:e2:07:82: 9b:57:e1:70:20:70:75:65:ea:8e:4b:b6:17:2e:df: 5d:e7:12:65:79:dc:85:be:66:af:d2:9d:58:24:92: 69:cf:d9:ac:b6:be:e6:56:3d:c8:2e:0e:81:a4:02: 18:48:6a:83:bb:93:5c:4e:44:90:d5:20:97:43:7e: 09:93:d1:04:76:f2:40:5f:67:1d:5f:5d:c3:93:c2: b1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:9E:E9:5F:F9:BE:2C:05:9B:62:FB:C7:68:76:0F:DE:9C:22:6A:6D X509v3 Authority Key Identifier: keyid:96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ec:3a:bd:6f:56:28:d4:cb:89:2d:1f:9e:be:66:45:91:8c: 2b:b0:ff:8c:77:b4:f6:77:28:8a:f2:35:4c:a8:dc:c1:84:6c: 70:19:9c:30:18:b3:47:b2:ff:35:e2:df:e8:ce:0b:60:24:8f: f4:7a:cd:c4:54:36:95:5b:d4:d0:4a:48:6d:9a:fb:fd:3a:bf: 91:cd:b5:0f:20:ac:1e:6f:b2:0e:f0:db:ec:16:af:1e:67:6a: b8:9e:2f:7e:e2:b5:6f:b5:eb:20:60:7d:41:a9:27:d4:35:9c: 82:6c:8d:06:26:d8:4a:25:fa:7a:1a:27:75:0e:bc:07:21:81: fd:2c:8a:7a:8c:a2:a9:ae:31:ff:79:dd:17:ef:26:44:84:ce: f4:9e:6e:83:0f:68:e9:c6:d0:38:95:2f:e7:c9:c8:2b:d0:39: 6d:de:24:5e:0d:05:c4:ce:f2:61:39:eb:8a:f4:7b:aa:da:e3: e3:06:55:00:d0:86:ed:1b:b4:bd:17:09:de:3a:8b:17:29:5b: c4:40:fa:6a:98:50:2e:0c:29:42:f7:54:2b:cd:95:f7:ff:08: bb:0b:7c:5a:36:1d:3c:a0:7e:1c:11:72:af:d1:e7:12:b5:bf: 71:3d:f0:c4:b1:a8:e2:fd:2d:c4:d0:49:41:9d:8b:de:b6:17: 91:fa:1c:99 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE4QkQxMTAvBgNVBAUTKDk2QjgwQzM3QzY2MTNEMTRBOTJDREJFQzY2MjgyMTY0 M0U4QUYxMUIwHhcNMjYwMzI1MDAzOTM1WhcNMjYwNDAxMDAzOTM1WjAYMRYwFAYD VQQDEw02OWMzMmVjOC1iZGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjZ2lFXRD+iHgYTcE7W2gq1NND6O0P7s8lY83aELHIeLnT/huZBIwCpLcSEa Sv4G6cFOe9+/Jy1lPg7t/2gA/q3wRH26RP1AV2lxTbef2kzWRVzcrOmtrFWWyom0 HOR2DsAQX/DinRW17tVSpMBvIpvWvOYIUelOQqDi4nzI9CpQjG7IjY5qeuKNQkYt RewmXVvSJZb22Iw5hfoUGMIaO2I4A+eaSRZQOk2zmPmFn6XiB4KbV+FwIHB1ZeqO S7YXLt9d5xJledyFvmav0p1YJJJpz9mstr7mVj3ILg6BpAIYSGqDu5NcTkSQ1SCX Q34Jk9EEdvJAX2cdX13Dk8KxCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNee6V/5 viwFm2L7x2h2D96cImptMB8GA1UdIwQYMBaAFJa4DDfGYT0UqSzb7GYoIWQ+ivEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MThCRC80MTRENUJEQUZF ODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBSU3BMTnZzWmlnaFpENks4 UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xyZ01OOFpoUFJTcExOdnNaaWdoWkQ2SzhScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MThCRC80MTRENUJEQUZFODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBS U3BMTnZzWmlnaFpENks4UnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcOw6vW9WKNTLiS0fnr5mRZGMK7D/jHe09ncoivI1TKjcwYRscBmcMBizR7L/ NeLf6M4LYCSP9HrNxFQ2lVvU0EpIbZr7/Tq/kc21DyCsHm+yDvDb7BavHmdquJ4v fuK1b7XrIGB9Qakn1DWcgmyNBibYSiX6ehondQ68ByGB/SyKeoyiqa4x/3ndF+8m RITO9J5ugw9o6cbQOJUv58nIK9A5bd4kXg0FxM7yYTnrivR7qtrj4wZVANCG7Ru0 vRcJ3jqLFylbxED6aphQLgwpQvdUK82V9/8Iuwt8WjYdPKB+HBFyr9HnErW/cT3w xLGo4v0txNBJQZ2L3rYXkfocmQ== -----END CERTIFICATE-----Generated at Thu Mar 26 17:27:27 2026 by rpki-client