$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft File: lCJM-heqoN5UOrYQifwdOdGZDj4.mft (raw, json) Hash identifier: 6RFlLMPUZJE/3lgV8K8lTUJpGcYL+0tu65MMj++Y6Vo= Subject key identifier: 12:76:39:B0:18:C0:FD:28:3E:D4:E4:CE:13:CB:11:A9:6C:47:0E:5A Authority key identifier: 94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E Certificate issuer: /CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Certificate serial: 21A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft Manifest number: 21A2 Signing time: Tue 24 Mar 2026 15:50:34 +0000 Manifest this update: Tue 24 Mar 2026 15:50:33 +0000 Manifest next update: Tue 31 Mar 2026 15:50:33 +0000 Files and hashes: 1: lCJM-heqoN5UOrYQifwdOdGZDj4.crl (hash: gsHm2yZSLuZS5mC+87DiZZmpSj9YEizwuQ47Cc4VOYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8610 (0x21a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Validity Not Before: Mar 24 15:50:33 2026 GMT Not After : Mar 31 15:50:33 2026 GMT Subject: CN=69c2b2c9-6bd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a1:c0:9c:23:f6:41:39:e5:3c:63:ee:4a:94: 5f:c8:07:ce:ef:a9:ea:b6:a7:a1:85:3b:2c:71:45: 6c:ab:56:f0:aa:d6:4d:27:d0:6a:0d:6b:60:0c:be: 71:61:86:dd:91:69:81:72:31:bc:8f:29:49:f2:3f: 75:60:60:64:cc:8a:3e:67:50:e4:6b:0a:10:54:85: 0b:51:e3:de:75:a8:32:e5:4d:b1:d5:e1:04:84:4c: 33:54:a7:2c:5a:0e:ef:91:1e:57:d2:2e:36:2e:7e: 71:5a:f0:d3:57:24:61:ac:7b:31:14:80:2c:26:22: d6:34:a6:0e:bb:34:a3:66:88:1e:6d:86:56:44:6b: fd:25:a0:c4:aa:12:bf:ef:f8:bd:c5:01:d4:2e:f8: ee:69:f4:2a:4b:5d:4c:09:5f:6f:be:d0:13:6f:50: 36:fe:63:6d:b9:66:a6:2e:f7:00:95:2f:32:50:03: 64:6d:c3:83:a0:2c:1a:e1:6c:81:5e:68:87:69:19: 8c:e2:f4:50:32:f4:e4:3b:d7:8b:c8:e0:b9:64:c9: 7f:0f:4b:63:bd:b7:8a:83:a2:b3:79:2e:5a:ce:61: 71:51:6f:10:9a:8f:aa:16:19:88:cf:f8:7d:01:45: df:68:3d:ec:01:60:ae:3c:9e:da:57:1e:11:d7:d4: 21:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:76:39:B0:18:C0:FD:28:3E:D4:E4:CE:13:CB:11:A9:6C:47:0E:5A X509v3 Authority Key Identifier: keyid:94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:b2:5a:cd:28:81:8d:9b:ae:22:01:82:1c:12:0d:38:a7:c2: fd:19:4e:09:a9:76:36:94:ef:8e:98:96:84:34:92:a8:70:48: f0:b7:26:8b:dd:19:13:3b:46:09:14:aa:50:1c:5d:30:12:04: b1:e6:5d:e0:e7:67:d4:c9:0f:7f:ef:e6:14:49:9e:0b:2a:5a: 35:7c:41:65:67:d8:f4:eb:b4:71:50:c5:9d:0c:b9:97:7b:9d: 3c:c3:67:f2:e0:e9:fd:42:d5:f3:ea:23:12:7c:7c:a1:cb:64: f3:2b:c4:48:2b:68:b0:41:a5:7a:9a:60:dc:50:ca:1d:6e:39: f1:2d:77:fb:67:4f:a6:f5:8c:17:43:75:0e:68:1c:1a:3a:e2: 4a:ed:84:58:78:f7:d7:4c:07:e3:98:cb:34:07:bf:f3:b0:e4: 0b:c2:fc:52:47:65:36:c8:91:44:f5:1b:ca:0a:06:04:94:e9: a7:25:83:a1:d5:bb:5d:15:94:d1:a6:52:91:9e:63:ca:f4:f4: fc:7c:72:12:a5:e6:3a:25:c3:0b:a1:77:3a:3a:02:17:71:62: 03:08:04:f7:ab:36:3a:f7:71:8b:ad:dc:03:bf:75:6f:09:0c: 30:62:9c:88:9b:7e:ce:ce:d0:05:49:a1:61:2f:fb:33:45:ec: 13:72:30:ad -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDk0MjI0Q0ZBMTdBQUEwREU1NDNBQjYxMDg5RkMxRDM5 RDE5OTBFM0UwHhcNMjYwMzI0MTU1MDMzWhcNMjYwMzMxMTU1MDMzWjAYMRYwFAYD VQQDEw02OWMyYjJjOS02YmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqHAnCP2QTnlPGPuSpRfyAfO76nqtqehhTsscUVsq1bwqtZNJ9BqDWtgDL5x YYbdkWmBcjG8jylJ8j91YGBkzIo+Z1DkawoQVIULUePedagy5U2x1eEEhEwzVKcs Wg7vkR5X0i42Ln5xWvDTVyRhrHsxFIAsJiLWNKYOuzSjZogebYZWRGv9JaDEqhK/ 7/i9xQHULvjuafQqS11MCV9vvtATb1A2/mNtuWamLvcAlS8yUANkbcODoCwa4WyB XmiHaRmM4vRQMvTkO9eLyOC5ZMl/D0tjvbeKg6KzeS5azmFxUW8Qmo+qFhmIz/h9 AUXfaD3sAWCuPJ7aVx4R19QhXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBJ2ObAY wP0oPtTkzhPLEalsRw5aMB8GA1UdIwQYMBaAFJQiTPoXqqDeVDq2EIn8HTnRmQ4+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80RUQyMkZEMkYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9ONVVPcllRaWZ3ZE9kR1pE ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDSk0taGVxb041VU9yWVFpZndkT2RHWkRqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80RUQyMkZEMkYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9O NVVPcllRaWZ3ZE9kR1pEajQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAELJazSiBjZuuIgGCHBINOKfC/RlOCal2NpTvjpiWhDSSqHBI8Lcmi90ZEztG CRSqUBxdMBIEseZd4Odn1MkPf+/mFEmeCypaNXxBZWfY9Ou0cVDFnQy5l3udPMNn 8uDp/ULV8+ojEnx8octk8yvESCtosEGleppg3FDKHW458S13+2dPpvWMF0N1Dmgc GjriSu2EWHj310wH45jLNAe/87DkC8L8UkdlNsiRRPUbygoGBJTppyWDodW7XRWU 0aZSkZ5jyvT0/HxyEqXmOiXDC6F3OjoCF3FiAwgE96s2Ovdxi63cA791bwkMMGKc iJt+zs7QBUmhYS/7M0XsE3IwrQ== -----END CERTIFICATE-----Generated at Thu Mar 26 05:41:25 2026 by rpki-client