$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft File: Lfmh43Whe46lYCe0WovWb5Z0fYY.mft (raw, json) Hash identifier: q5pByOJaZYQOBQ5OIEXYd56S02AjB5ZCxqekGjn6lFw= Subject key identifier: DE:12:3B:54:DA:60:CB:3C:4B:C2:04:3C:19:1B:2B:87:6B:48:55:E6 Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: 01A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft Manifest number: 0190 Signing time: Wed 25 Mar 2026 03:55:40 +0000 Manifest this update: Wed 25 Mar 2026 03:55:40 +0000 Manifest next update: Wed 01 Apr 2026 03:55:40 +0000 Files and hashes: 1: Lfmh43Whe46lYCe0WovWb5Z0fYY.crl (hash: 74LKIeFXvIYSj2/6rOTGCayKGawc2lMZMO+3rcv0ds4=) 2: BA6555344DEE11F0B209371DC4F9AE02.roa (hash: EVXt3bTmFBpg7tvfSnoRf14VmLrxNNDyv7kNCjZE6JI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D, serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Validity Not Before: Mar 25 03:55:40 2026 GMT Not After : Apr 1 03:55:40 2026 GMT Subject: CN=69c35cbc-6d3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fc:99:ca:6c:3f:8b:97:16:62:59:fb:7f:51: a9:f4:89:80:3f:94:b9:18:3b:08:29:d9:6a:20:a5: 7d:b7:42:fd:cd:57:0f:fc:64:5d:04:6d:64:89:67: 9c:9c:91:01:87:00:aa:fb:c9:83:ce:78:ee:9f:b6: 80:b7:00:56:2a:24:16:96:8c:07:ff:33:4e:0a:93: 19:50:5b:1c:06:03:73:ad:21:65:0c:dd:95:09:11: 3a:cd:a1:34:fd:b9:2a:c6:8c:41:97:29:f7:35:52: ca:81:fb:61:fd:f7:38:ec:dd:e0:30:76:a6:8d:0f: 94:fe:15:a1:24:1b:dc:e8:a9:83:62:03:a8:7b:88: 4e:26:e2:5a:66:4a:88:9e:84:6c:9d:d4:ef:a9:53: c3:4a:77:c2:3d:07:0a:c0:ea:ec:97:fe:e4:9f:05: c0:c3:37:91:18:8a:6e:46:ba:6d:5f:a9:19:58:ce: 42:8a:02:0a:b6:c8:a9:b5:4a:b5:94:dd:cb:83:a3: 52:79:e4:5a:4e:0b:6e:21:92:0c:9a:b1:87:36:f3: 24:fc:dc:c6:92:67:a3:de:17:c9:96:dc:20:b6:76: 31:bd:30:8e:47:f0:ec:9e:61:49:4c:a9:05:ae:39: d9:ca:9a:a5:87:2f:0e:5c:6a:84:f5:c8:44:61:47: 66:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:12:3B:54:DA:60:CB:3C:4B:C2:04:3C:19:1B:2B:87:6B:48:55:E6 X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:23:96:21:07:9d:f1:63:ef:2c:43:42:bc:95:34:70:9a:ff: f3:36:3e:23:90:25:65:d0:52:b2:00:23:ad:df:60:ba:be:32: 2b:85:f1:67:27:f2:3b:41:f1:ee:74:94:d6:c1:f5:e2:aa:fc: a0:d6:95:bd:5a:4c:fc:29:0e:d8:06:b6:fd:50:d9:f7:30:b4: ab:f8:af:b9:0b:8f:1f:f0:4e:8e:e1:43:38:f0:8c:5f:f6:bf: a5:89:6a:3b:77:a3:7a:99:ad:1e:87:bc:e2:ed:2f:15:6c:1d: e9:d8:d3:55:e6:93:86:56:90:0c:d8:d4:66:46:98:a7:33:f3: 7d:88:05:f2:e7:65:26:64:e7:ef:3e:18:f3:fe:97:eb:bd:cd: a2:0a:22:5e:49:80:fb:06:d6:07:ff:b5:f5:25:1e:91:fe:44: 7f:83:9d:e0:c5:2d:e4:1a:b3:f4:6e:ed:34:0b:c5:ec:b5:f8: 10:5e:2b:34:95:d4:f7:1f:9a:ec:18:3d:6f:79:2a:5f:cf:bb: 63:46:57:48:10:eb:a5:ab:d9:07:c6:8e:5f:fc:06:10:35:52: 93:55:6f:31:49:cb:60:2d:4c:6b:a7:38:5e:cd:03:4a:04:90: 01:05:2c:56:37:75:3a:8c:34:3b:62:2b:05:05:4e:af:6d:08: 5b:1e:aa:2a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDJERjlBMUUzNzVBMTdCOEVBNTYwMjdCNDVBOEJENjZG OTY3NDdEODYwHhcNMjYwMzI1MDM1NTQwWhcNMjYwNDAxMDM1NTQwWjAYMRYwFAYD VQQDEw02OWMzNWNiYy02ZDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPyZymw/i5cWYln7f1Gp9ImAP5S5GDsIKdlqIKV9t0L9zVcP/GRdBG1kiWec nJEBhwCq+8mDznjun7aAtwBWKiQWlowH/zNOCpMZUFscBgNzrSFlDN2VCRE6zaE0 /bkqxoxBlyn3NVLKgfth/fc47N3gMHamjQ+U/hWhJBvc6KmDYgOoe4hOJuJaZkqI noRsndTvqVPDSnfCPQcKwOrsl/7knwXAwzeRGIpuRrptX6kZWM5CigIKtsiptUq1 lN3Lg6NSeeRaTgtuIZIMmrGHNvMk/NzGkmej3hfJltwgtnYxvTCOR/DsnmFJTKkF rjnZypqlhy8OXGqE9chEYUdmPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN4SO1Ta YMs8S8IEPBkbK4drSFXmMB8GA1UdIwQYMBaAFC35oeN1oXuOpWAntFqL1m+WdH2G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8xODFCODIyMEU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0NmxZQ2UwV292V2I1WjBm WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8xODFCODIyMEU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0 NmxZQ2UwV292V2I1WjBmWVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkyOWIQed8WPvLENCvJU0cJr/8zY+I5AlZdBSsgAjrd9gur4yK4XxZyfyO0Hx 7nSU1sH14qr8oNaVvVpM/CkO2Aa2/VDZ9zC0q/ivuQuPH/BOjuFDOPCMX/a/pYlq O3ejepmtHoe84u0vFWwd6djTVeaThlaQDNjUZkaYpzPzfYgF8udlJmTn7z4Y8/6X 673NogoiXkmA+wbWB/+19SUekf5Ef4Od4MUt5Bqz9G7tNAvF7LX4EF4rNJXU9x+a 7Bg9b3kqX8+7Y0ZXSBDrpavZB8aOX/wGEDVSk1VvMUnLYC1Ma6c4Xs0DSgSQAQUs Vjd1Oow0O2IrBQVOr20IWx6qKg== -----END CERTIFICATE-----Generated at Thu Mar 26 18:48:18 2026 by rpki-client