$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft File: lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft (raw, json) Hash identifier: 56kH8B/dZ5d42Z8wDTtFxB9z/fev8ztKHhA/lEfJVgY= Subject key identifier: E6:77:91:89:28:91:BD:44:E8:04:B4:19:86:07:85:8F:A0:C5:3D:AE Authority key identifier: 97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 Certificate issuer: /CN=A91A1C06/serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Certificate serial: 3553 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft Manifest number: 3541 Signing time: Thu 26 Mar 2026 15:01:16 +0000 Manifest this update: Thu 26 Mar 2026 15:01:15 +0000 Manifest next update: Thu 02 Apr 2026 15:01:15 +0000 Files and hashes: 1: lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl (hash: 2CqPKbkK8AtAsa7xx9UakH8m0/A4l1EpJk1s1JtX+8U=) 2: F3E1B79CB8F811F08ABED010C4F9AE02.roa (hash: HjuuUU5Hjru1oMEmmlPOI9SeAkfKsJ5rRrHQC6vo5ZU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13651 (0x3553) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C06, serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Validity Not Before: Mar 26 15:01:15 2026 GMT Not After : Apr 2 15:01:15 2026 GMT Subject: CN=69c54a3b-abdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:54:f7:98:6c:c3:37:69:47:1a:76:e2:ba:42: 23:fb:80:92:09:22:c2:a0:c8:ce:2e:3a:b0:54:2c: 40:dc:d0:b0:9c:58:ad:1b:6a:a8:32:0b:55:0f:ff: 77:b9:77:1f:9a:01:fd:a1:7d:cb:60:97:4b:5b:2d: 62:c8:44:e6:4c:dc:10:be:4e:77:92:16:82:1e:e1: 5d:bc:66:31:f6:1c:90:00:39:89:28:ad:e9:d5:e2: bd:8b:fe:ab:97:7e:28:c6:5d:cf:b8:c6:3a:62:57: bb:d7:bd:7d:a1:74:f8:20:5d:97:dd:a1:54:3b:a0: 62:78:60:41:d4:65:8c:37:88:5d:82:19:e8:33:f8: 72:a8:d0:c3:8e:61:52:f3:ba:44:b7:21:c8:d2:5b: 38:ba:a1:b1:6d:84:00:47:e2:ef:db:3f:c2:91:dd: 14:a7:d3:bb:45:9c:d2:22:ec:2d:b7:08:41:3f:22: 57:8d:3d:a1:d8:2f:0e:ed:3f:e0:d1:ee:b3:d9:f4: bb:5c:5f:5f:90:7b:56:da:0b:68:93:8a:b1:22:fe: de:e2:6f:a5:29:20:4c:38:55:a4:2e:0f:86:f0:01: 07:1f:09:cb:9d:29:00:33:b3:46:e9:74:44:a3:df: 20:3c:23:29:ac:db:05:20:f0:68:17:2a:15:2d:0d: 77:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:77:91:89:28:91:BD:44:E8:04:B4:19:86:07:85:8F:A0:C5:3D:AE X509v3 Authority Key Identifier: keyid:97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:04:63:fc:51:b1:b8:9f:9c:83:50:66:86:cf:d1:80:da:a6: 55:eb:68:af:cb:60:e3:cf:3a:f2:49:51:62:3d:12:b3:15:11: 50:58:16:da:ab:7e:ed:27:29:0f:b1:fc:95:bc:ea:96:aa:d2: 50:03:9d:9b:45:83:81:be:a2:e3:30:e8:03:b1:e7:2f:bc:18: 6f:6d:b9:1b:c7:2f:7e:ad:83:95:da:b9:21:56:9c:91:ae:51: a0:7a:28:5a:95:94:76:bf:4e:52:67:da:fc:d1:58:2b:a0:30: 7f:5a:00:5e:bc:e0:c0:d9:2e:5e:a8:e7:c5:12:0d:67:62:ba: 2a:0f:cb:eb:e2:5c:f1:c9:39:a6:8f:bb:53:a6:d3:c6:76:19: 2b:6e:84:ce:ed:a8:8f:82:c4:19:ed:95:1f:db:7e:be:bb:bc: 6e:be:ab:db:20:85:ef:7d:84:bd:50:8e:3c:21:3e:8f:f8:46: d0:bd:f9:1f:18:7b:41:53:f2:9f:95:a2:2b:bc:6f:6e:95:40: 22:1e:3e:36:f1:f6:77:48:d7:4f:e1:fd:22:9b:b7:6e:a1:b5: 43:38:db:3f:49:ed:48:53:9e:ee:61:02:f7:dd:02:13:59:3b: 6d:1c:50:c4:f5:62:31:49:59:aa:51:c0:f9:4d:0e:64:35:b8: 9f:d7:ea:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDMDYxMTAvBgNVBAUTKDk3Mzc3MTMwMDQ4MTlCNkI2NkZDNTZFNkVDODZCRTRE QzJFMjhFMTcwHhcNMjYwMzI2MTUwMTE1WhcNMjYwNDAyMTUwMTE1WjAYMRYwFAYD VQQDEw02OWM1NGEzYi1hYmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVT3mGzDN2lHGnbiukIj+4CSCSLCoMjOLjqwVCxA3NCwnFitG2qoMgtVD/93 uXcfmgH9oX3LYJdLWy1iyETmTNwQvk53khaCHuFdvGYx9hyQADmJKK3p1eK9i/6r l34oxl3PuMY6Yle71719oXT4IF2X3aFUO6BieGBB1GWMN4hdghnoM/hyqNDDjmFS 87pEtyHI0ls4uqGxbYQAR+Lv2z/Ckd0Up9O7RZzSIuwttwhBPyJXjT2h2C8O7T/g 0e6z2fS7XF9fkHtW2gtok4qxIv7e4m+lKSBMOFWkLg+G8AEHHwnLnSkAM7NG6XRE o98gPCMprNsFIPBoFyoVLQ13WQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOZ3kYko kb1E6AS0GYYHhY+gxT2uMB8GA1UdIwQYMBaAFJc3cTAEgZtrZvxW5uyGvk3C4o4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUMwNi82REVBRTIxQzFE OUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0ydG1fRmJtN0lhLVRjTGlq aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x6ZHhNQVNCbTJ0bV9GYm03SWEtVGNMaWpoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUMwNi82REVBRTIxQzFEOUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0y dG1fRmJtN0lhLVRjTGlqaGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABARj/FGxuJ+cg1Bmhs/RgNqmVetor8tg48868klRYj0SsxURUFgW2qt+7Scp D7H8lbzqlqrSUAOdm0WDgb6i4zDoA7HnL7wYb225G8cvfq2Dldq5IVacka5RoHoo WpWUdr9OUmfa/NFYK6Awf1oAXrzgwNkuXqjnxRINZ2K6Kg/L6+Jc8ck5po+7U6bT xnYZK26Ezu2oj4LEGe2VH9t+vru8br6r2yCF732EvVCOPCE+j/hG0L35Hxh7QVPy n5WiK7xvbpVAIh4+NvH2d0jXT+H9Ipu3bqG1QzjbP0ntSFOe7mEC990CE1k7bRxQ xPViMUlZqlHA+U0OZDW4n9fqzg== -----END CERTIFICATE-----Generated at Thu Mar 26 20:36:40 2026 by rpki-client