$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: Yzo4ArHpMQpwM4Ywz8l77oj0MAa3w/pPDg5nxzo8iUs= Subject key identifier: FC:79:86:AC:87:10:F2:7D:E5:83:A5:B9:9E:ED:38:8F:21:44:27:7D Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 11B9 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 11AC Signing time: Thu 26 Mar 2026 17:08:57 +0000 Manifest this update: Thu 26 Mar 2026 17:08:57 +0000 Manifest next update: Thu 02 Apr 2026 17:08:57 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: uCRG+UIeQtOg6y11HYM11eZSuV3UTsct8E8DWA4EtIk=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: mX70QQ2yE9wPh1hnIXZOciGYYAe5yUlr20YktwOYe68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4537 (0x11b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Mar 26 17:08:57 2026 GMT Not After : Apr 2 17:08:57 2026 GMT Subject: CN=69c56829-39f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:10:de:aa:20:f2:bb:12:27:cf:63:ad:d6:64: 60:9a:2e:ed:a7:0c:78:82:45:84:7f:bb:b8:c4:f3: 35:5d:f1:2b:b8:b0:91:f1:c4:f3:a3:f5:36:dd:68: ee:37:29:55:e0:02:a0:3e:60:54:b0:0c:6b:00:0f: 48:53:ff:89:a7:09:69:cd:34:23:28:ac:d4:45:01: 6a:41:f7:ae:53:ee:45:61:d9:99:86:a3:1d:fb:18: 77:69:35:1b:7e:63:25:1a:a8:fc:22:b3:3c:aa:ce: b5:40:be:45:04:41:d0:f9:90:5d:c0:48:8f:2b:57: d7:d5:17:10:90:29:2a:e7:27:85:3e:2b:37:f2:bd: 22:55:3f:c1:1f:8f:f4:7c:58:d5:20:a4:d9:84:85: 62:60:dd:25:e3:e4:5f:db:55:31:6a:6c:b5:e2:a8: 35:b1:82:0d:5f:dc:7c:3f:6a:5b:fd:c9:3a:4d:8f: 16:cb:13:19:2e:d6:b7:78:21:e5:c2:7b:bd:cb:47: 33:0d:93:95:52:34:47:9c:09:8e:91:c7:66:dd:86: 02:84:17:a1:27:10:fb:5b:0e:84:2e:25:15:f5:b4: ba:c7:9e:7f:5d:d1:66:3c:99:da:b2:ee:32:11:62: b4:05:cf:2c:0c:ea:0f:f3:9a:87:71:96:92:34:fb: 35:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:79:86:AC:87:10:F2:7D:E5:83:A5:B9:9E:ED:38:8F:21:44:27:7D X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:f0:e0:4f:70:e9:1a:da:37:9e:db:68:da:b8:b7:f4:ce:ef: 71:87:52:5b:d6:67:08:a6:2c:ae:88:cb:c5:07:7b:9a:52:04: 5a:37:c1:28:4f:c6:93:22:6b:12:4e:51:51:f1:58:66:e8:83: a2:2b:6a:23:fa:73:e0:ce:77:f2:ba:8e:74:28:e7:2f:04:6c: 86:8b:bc:5e:c6:9a:3c:c6:aa:e4:62:39:e0:22:5d:16:11:4d: 32:43:e1:17:fd:a2:e7:c5:03:6e:18:10:4c:02:08:d4:8c:35: 68:93:35:bc:68:f9:d0:82:57:e6:b9:f4:51:bb:4f:c0:a4:69: 59:dd:11:22:a5:00:55:02:82:e8:e2:5e:ae:a6:dc:12:1c:d8: 4a:30:22:0d:89:72:03:e4:97:f4:7e:62:fa:d4:62:4e:52:59: 8b:49:2e:47:84:3e:3d:8a:46:c5:d4:29:9b:00:0f:61:a9:81: 8f:47:05:8d:3f:79:27:3f:d2:b9:e3:15:54:12:d8:43:97:af: 18:80:e5:23:e6:4e:d0:34:44:ff:4d:b7:15:58:f6:d5:8e:d5: 34:7e:9a:9b:ee:44:8e:7f:64:ce:12:cc:b4:e0:65:e3:5c:da: d8:62:fe:a2:7c:72:55:51:b9:b7:4f:e6:02:f3:a5:d7:28:fa: d4:25:cc:1b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjYwMzI2MTcwODU3WhcNMjYwNDAyMTcwODU3WjAYMRYwFAYD VQQDEw02OWM1NjgyOS0zOWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxDeqiDyuxInz2Ot1mRgmi7tpwx4gkWEf7u4xPM1XfEruLCR8cTzo/U23Wju NylV4AKgPmBUsAxrAA9IU/+JpwlpzTQjKKzURQFqQfeuU+5FYdmZhqMd+xh3aTUb fmMlGqj8IrM8qs61QL5FBEHQ+ZBdwEiPK1fX1RcQkCkq5yeFPis38r0iVT/BH4/0 fFjVIKTZhIViYN0l4+Rf21Uxamy14qg1sYINX9x8P2pb/ck6TY8WyxMZLta3eCHl wnu9y0czDZOVUjRHnAmOkcdm3YYChBehJxD7Ww6ELiUV9bS6x55/XdFmPJnasu4y EWK0Bc8sDOoP85qHcZaSNPs1UwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPx5hqyH EPJ95YOluZ7tOI8hRCd9MB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh/DgT3DpGto3ntto2ri39M7vcYdSW9ZnCKYsrojLxQd7mlIEWjfBKE/GkyJr Ek5RUfFYZuiDoitqI/pz4M538rqOdCjnLwRshou8XsaaPMaq5GI54CJdFhFNMkPh F/2i58UDbhgQTAII1Iw1aJM1vGj50IJX5rn0UbtPwKRpWd0RIqUAVQKC6OJerqbc EhzYSjAiDYlyA+SX9H5i+tRiTlJZi0kuR4Q+PYpGxdQpmwAPYamBj0cFjT95Jz/S ueMVVBLYQ5evGIDlI+ZO0DRE/023FVj21Y7VNH6am+5Ejn9kzhLMtOBl41za2GL+ onxyVVG5t0/mAvOl1yj61CXMGw== -----END CERTIFICATE-----Generated at Thu Mar 26 21:40:24 2026 by rpki-client