$ rpki-client -vvf rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft File: LgN_IhyajV_cyIxDyosl1ENrsDk.mft (raw, json) Hash identifier: 1JHckBXExc0G3gRZESJ6AIu2sZmjCkwnNOF4lZqZpZg= Subject key identifier: 35:D3:A0:14:41:E7:BF:9D:5B:0E:25:0F:5C:48:99:C4:CA:8C:09:6F Authority key identifier: 2E:03:7F:22:1C:9A:8D:5F:DC:C8:8C:43:CA:8B:25:D4:43:6B:B0:39 Certificate issuer: /CN=A9196285/serialNumber=2E037F221C9A8D5FDCC88C43CA8B25D4436BB039 Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft Manifest number: C2 Signing time: Wed 25 Mar 2026 06:09:00 +0000 Manifest this update: Wed 25 Mar 2026 06:08:59 +0000 Manifest next update: Wed 01 Apr 2026 06:08:59 +0000 Files and hashes: 1: LgN_IhyajV_cyIxDyosl1ENrsDk.crl (hash: HpUVDITNIVDe7VyIzo6pUug0waQzJgLJJCx8PyODRSI=) 2: D3E69766027B11F0ACFB0B53C4F9AE02.roa (hash: KwucprH89zI40KlMGp9yYI7Eo1rslTO1XAG7Mp4YGYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.crl rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196285, serialNumber=2E037F221C9A8D5FDCC88C43CA8B25D4436BB039 Validity Not Before: Mar 25 06:08:59 2026 GMT Not After : Apr 1 06:08:59 2026 GMT Subject: CN=69c37bfc-c1de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c2:f9:73:c1:33:b9:35:00:3b:22:bc:4a:a5: e4:8a:c4:d1:73:88:1e:de:8e:bd:4f:ef:c7:bd:86: 79:6e:f0:ad:8e:2d:30:94:4f:89:d8:32:b6:c6:73: da:76:9b:bd:5d:64:af:a5:ea:5d:79:a1:ac:ef:1e: 87:ee:33:16:5f:f4:a6:f5:50:9f:c4:4d:50:18:10: 19:f8:f5:d1:87:d8:81:14:b0:ee:31:c1:7b:6e:02: 9e:de:86:ef:9c:e1:c4:1e:ed:dc:bd:9c:0a:e3:f8: fc:37:3d:45:ca:c4:f7:a0:90:9e:5c:44:86:20:1f: 88:7f:89:a1:47:47:11:b9:15:b5:37:e1:ca:3b:81: 3b:e1:54:3b:cf:00:07:d4:50:ab:fc:92:01:f4:86: f7:f7:e1:e3:a6:a5:08:2f:49:c5:73:ec:a5:c2:fa: 59:5b:b3:1c:f9:16:26:bd:5d:b3:ae:20:af:52:d4: 0a:34:21:34:6a:20:a7:4e:a1:e7:2d:d8:54:a8:57: 67:72:cc:6a:e2:24:b3:fc:cb:76:87:65:ba:46:d2: f9:0f:ed:27:20:24:14:30:85:6e:2f:cc:cd:05:06: 8e:70:e7:84:35:c1:27:4e:a4:6b:45:c2:e1:83:d3: c6:14:8a:5c:79:c2:be:be:48:6c:81:66:2f:6d:0c: 40:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D3:A0:14:41:E7:BF:9D:5B:0E:25:0F:5C:48:99:C4:CA:8C:09:6F X509v3 Authority Key Identifier: keyid:2E:03:7F:22:1C:9A:8D:5F:DC:C8:8C:43:CA:8B:25:D4:43:6B:B0:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:ac:87:fa:d7:38:04:48:3a:3d:93:45:f9:51:b8:f8:7f:7e: a9:41:9a:e3:66:72:29:51:ea:39:32:e9:ac:50:f8:65:db:a5: 3c:48:07:67:d0:0b:7a:54:b5:a1:60:16:1b:ea:0f:24:ce:ac: 31:b1:02:8a:d0:a4:2d:7b:07:c3:17:b9:73:bd:96:77:94:ed: b4:15:4f:0c:8d:98:a0:a1:cb:bd:73:96:9a:f1:34:d9:a2:d6: 51:e2:b4:ce:38:7b:f1:61:09:0e:80:a6:63:98:b0:0e:1a:b4: d5:24:2a:ba:53:a9:8d:db:e1:5f:c7:d9:54:ea:7e:d5:76:b7: 93:f1:6a:1e:7f:56:6c:23:9a:bd:e3:cd:64:e9:53:e1:61:36: 6c:17:da:d5:1e:a2:4a:95:eb:50:dc:31:42:7c:65:d0:df:1a: ee:0d:8e:35:28:06:09:5a:34:29:b4:40:dc:00:82:c0:00:33: 97:6d:62:b0:c3:07:90:a1:17:00:09:5a:b9:fc:3b:fb:b6:84: 74:64:c4:2c:4e:9c:1a:9b:f6:bf:8e:2b:53:c3:6f:9f:5a:41: 88:5e:59:41:c4:17:bb:07:a0:b2:07:56:e3:60:58:a4:cd:aa: 06:7d:c3:72:01:a0:bd:e8:53:9b:19:09:b5:ec:43:1e:07:f8: 3f:78:42:74 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYyODUxMTAvBgNVBAUTKDJFMDM3RjIyMUM5QThENUZEQ0M4OEM0M0NBOEIyNUQ0 NDM2QkIwMzkwHhcNMjYwMzI1MDYwODU5WhcNMjYwNDAxMDYwODU5WjAYMRYwFAYD VQQDEw02OWMzN2JmYy1jMWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsL5c8EzuTUAOyK8SqXkisTRc4ge3o69T+/HvYZ5bvCtji0wlE+J2DK2xnPa dpu9XWSvpepdeaGs7x6H7jMWX/Sm9VCfxE1QGBAZ+PXRh9iBFLDuMcF7bgKe3obv nOHEHu3cvZwK4/j8Nz1FysT3oJCeXESGIB+If4mhR0cRuRW1N+HKO4E74VQ7zwAH 1FCr/JIB9Ib39+HjpqUIL0nFc+ylwvpZW7Mc+RYmvV2zriCvUtQKNCE0aiCnTqHn LdhUqFdncsxq4iSz/Mt2h2W6RtL5D+0nICQUMIVuL8zNBQaOcOeENcEnTqRrRcLh g9PGFIpcecK+vkhsgWYvbQxA8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDXToBRB 57+dWw4lD1xImcTKjAlvMB8GA1UdIwQYMBaAFC4DfyIcmo1f3MiMQ8qLJdRDa7A5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjI4NS84QzI1OEIxMjAy N0IxMUYwQTk0NkVEMzRDNEY5QUUwMi9MZ05fSWh5YWpWX2N5SXhEeW9zbDFFTnJz RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnTl9JaHlhalZfY3lJeER5b3NsMUVOcnNEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjI4NS84QzI1OEIxMjAyN0IxMUYwQTk0NkVEMzRDNEY5QUUwMi9MZ05fSWh5YWpW X2N5SXhEeW9zbDFFTnJzRGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjKyH+tc4BEg6PZNF+VG4+H9+qUGa42ZyKVHqOTLprFD4ZdulPEgHZ9ALelS1 oWAWG+oPJM6sMbECitCkLXsHwxe5c72Wd5TttBVPDI2YoKHLvXOWmvE02aLWUeK0 zjh78WEJDoCmY5iwDhq01SQqulOpjdvhX8fZVOp+1Xa3k/FqHn9WbCOavePNZOlT 4WE2bBfa1R6iSpXrUNwxQnxl0N8a7g2ONSgGCVo0KbRA3ACCwAAzl21isMMHkKEX AAlaufw7+7aEdGTELE6cGpv2v44rU8Nvn1pBiF5ZQcQXuwegsgdW42BYpM2qBn3D cgGgvehTmxkJtexDHgf4P3hCdA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:59:58 2026 by rpki-client