$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: MgXEzxutght3rH7RDfmRD7By9hsyjRjPUhlJue43ztM= Subject key identifier: 6B:49:11:E2:97:57:7A:3D:C5:3E:9D:75:D7:9E:03:67:FF:E7:BE:1A Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: 0180 Signing time: Wed 25 Mar 2026 03:49:33 +0000 Manifest this update: Wed 25 Mar 2026 03:49:33 +0000 Manifest next update: Wed 01 Apr 2026 03:49:33 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: jq5fm5y9KG5gChcvfQOEgQc1HikJF6IvaavbJ6x+zao=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: YD6V2HI2hUFrH/8EXeFP7xfUl76wgNpHMjQUF10dCIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Mar 25 03:49:33 2026 GMT Not After : Apr 1 03:49:33 2026 GMT Subject: CN=69c35b4d-bf2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d6:77:e9:8b:f3:63:f2:1d:04:68:f3:24:bb: fe:93:40:f0:4c:6d:ff:7d:ee:e5:cb:77:22:b8:d8: 6e:de:e3:0f:90:30:a6:86:c2:12:6c:17:36:22:d7: 1c:a1:e4:31:45:c3:d8:8d:e8:b7:82:33:e8:1b:8c: 9e:63:27:2b:2f:05:d7:1e:53:b6:df:35:51:1a:f3: 29:09:34:25:3a:57:21:34:9c:7c:f9:b9:24:70:e7: df:15:02:fe:f7:35:dd:cd:3a:32:c8:50:7f:5d:55: b6:9d:43:80:18:45:17:82:8c:c0:97:94:84:3f:c2: b9:f6:68:48:ba:83:a4:26:7d:35:bc:d3:e4:bc:da: 4c:0d:15:86:e2:e4:2a:71:5d:71:d4:7c:80:50:c0: 36:aa:49:5a:a9:75:bc:3f:ec:8e:2a:7e:b8:1e:4c: b6:72:c2:8c:0a:54:1a:bc:ad:31:8d:16:ff:85:2b: f4:5e:cc:51:ca:71:ac:7f:6a:c1:2d:81:8d:5b:d6: a0:69:9a:9d:7d:7e:cc:35:12:14:66:8a:2e:89:96: 0e:5f:47:e5:c1:37:39:f9:b6:cc:84:99:5c:5a:74: a3:8e:f3:78:12:7d:92:40:56:e9:22:26:ce:e2:09: 55:5d:b4:c0:94:c0:6a:79:b9:de:34:28:db:93:a7: ca:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:49:11:E2:97:57:7A:3D:C5:3E:9D:75:D7:9E:03:67:FF:E7:BE:1A X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:02:29:1c:32:a2:c4:28:74:17:72:68:0f:1d:3f:3b:88:cd: 37:f8:10:3e:29:45:0b:c8:a1:d7:2a:8e:df:b6:7a:fe:39:c7: f7:77:5d:e3:54:58:34:e5:2f:60:91:44:93:80:d7:3e:7b:00: 48:a1:d4:96:1b:52:59:5b:0d:2b:b0:fa:ce:53:80:cf:2d:6c: d4:be:4d:09:ab:5e:c4:d6:a0:09:b4:39:95:e2:1c:d5:7d:57: a3:a1:ac:50:3b:77:73:57:29:a5:09:42:20:d9:5e:04:62:4a: e0:69:d6:f1:d9:8f:3a:e5:61:86:b5:5c:cd:d4:dc:32:43:73: ea:62:69:9e:35:84:a3:0b:c4:73:45:c1:af:65:53:60:aa:34: 6f:b2:dc:b9:bd:17:a4:2b:14:11:63:24:95:c8:9a:7d:1e:90: 30:d9:d5:eb:cf:18:26:48:54:ea:60:04:39:ea:06:d5:cd:95: e5:7e:ce:87:c8:f1:5b:48:37:48:dc:d4:41:ac:a3:4a:99:47: c0:28:fd:96:68:fc:ba:e7:90:9f:5f:a3:65:6e:35:76:74:d9: 3f:07:49:3f:d1:c8:12:a7:32:12:39:ec:3d:9a:12:b5:19:d7: 3b:89:be:3f:fe:b2:56:bf:fd:c9:a6:6f:42:84:9e:00:24:4d: 14:72:ae:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjYwMzI1MDM0OTMzWhcNMjYwNDAxMDM0OTMzWjAYMRYwFAYD VQQDEw02OWMzNWI0ZC1iZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNZ36YvzY/IdBGjzJLv+k0DwTG3/fe7ly3ciuNhu3uMPkDCmhsISbBc2Itcc oeQxRcPYjei3gjPoG4yeYycrLwXXHlO23zVRGvMpCTQlOlchNJx8+bkkcOffFQL+ 9zXdzToyyFB/XVW2nUOAGEUXgozAl5SEP8K59mhIuoOkJn01vNPkvNpMDRWG4uQq cV1x1HyAUMA2qklaqXW8P+yOKn64Hky2csKMClQavK0xjRb/hSv0XsxRynGsf2rB LYGNW9agaZqdfX7MNRIUZoouiZYOX0flwTc5+bbMhJlcWnSjjvN4En2SQFbpIibO 4glVXbTAlMBqebneNCjbk6fKXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGtJEeKX V3o9xT6dddeeA2f/574aMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhgIpHDKixCh0F3JoDx0/O4jNN/gQPilFC8ih1yqO37Z6/jnH93dd41RYNOUv YJFEk4DXPnsASKHUlhtSWVsNK7D6zlOAzy1s1L5NCatexNagCbQ5leIc1X1Xo6Gs UDt3c1cppQlCINleBGJK4GnW8dmPOuVhhrVczdTcMkNz6mJpnjWEowvEc0XBr2VT YKo0b7Lcub0XpCsUEWMklciafR6QMNnV688YJkhU6mAEOeoG1c2V5X7Oh8jxW0g3 SNzUQayjSplHwCj9lmj8uueQn1+jZW41dnTZPwdJP9HIEqcyEjnsPZoStRnXO4m+ P/6yVr/9yaZvQoSeACRNFHKuKw== -----END CERTIFICATE-----Generated at Thu Mar 26 12:57:31 2026 by rpki-client