$ rpki-client -vvf rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft File: lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft (raw, json) Hash identifier: ZQ20PWtQL+TtPpYGHpfwq7U0w7NMh0i/kTTcuz3T+7Y= Subject key identifier: B6:BB:23:88:68:21:44:43:CA:D9:EB:45:68:38:2E:F3:78:8C:5D:26 Authority key identifier: 96:73:B5:CC:F0:A8:EA:5C:E4:1A:2E:47:63:11:F3:75:CD:83:C0:D2 Certificate issuer: /CN=A91A58AA/serialNumber=9673B5CCF0A8EA5CE41A2E476311F375CD83C0D2 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnO1zPCo6lzkGi5HYxHzdc2DwNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft Manifest number: AA Signing time: Wed 25 Mar 2026 06:23:52 +0000 Manifest this update: Wed 25 Mar 2026 06:23:52 +0000 Manifest next update: Wed 01 Apr 2026 06:23:52 +0000 Files and hashes: 1: lnO1zPCo6lzkGi5HYxHzdc2DwNI.crl (hash: 95+JArDv36azxYLAeepoHOk5SYqa+jYnUV4N+0PUoe8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.crl rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnO1zPCo6lzkGi5HYxHzdc2DwNI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A58AA, serialNumber=9673B5CCF0A8EA5CE41A2E476311F375CD83C0D2 Validity Not Before: Mar 25 06:23:52 2026 GMT Not After : Apr 1 06:23:52 2026 GMT Subject: CN=69c37f78-1911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e5:90:76:f2:19:3a:ac:80:b7:e6:45:2c:7a: 45:d0:ba:41:52:80:15:db:fe:f3:2b:af:fc:6a:cb: 31:8f:2c:65:93:5e:b3:76:74:fb:87:91:8d:d5:ac: 5f:a0:8f:56:61:9a:74:9d:97:e5:35:e6:5a:8a:8e: d9:00:1a:70:9f:a0:19:d4:cd:ef:f1:2a:b2:e4:2c: 8e:45:a8:88:ce:97:e7:cc:81:60:a2:4b:33:4d:c7: 3e:e0:06:b1:7a:7b:4e:0d:5a:07:35:ca:70:15:26: 38:33:3b:68:f3:d9:d3:74:52:f3:84:7f:6b:41:f1: 41:53:c9:31:c8:75:23:5f:15:7f:b5:7d:c8:bd:23: 2e:60:e5:e4:39:fa:e7:46:2c:cf:71:ac:0a:56:75: fc:59:08:70:ea:11:d1:08:8f:85:1d:02:55:fb:e1: 52:87:15:ae:4e:ef:91:74:34:00:29:8d:c1:f4:65: 38:c7:e5:da:33:00:a8:bd:08:21:eb:0f:c7:20:90: f4:a2:b7:c7:b1:27:0e:b6:40:cb:a9:bf:18:a8:51: 62:b4:6c:bd:a4:0a:49:c5:9a:04:cc:18:05:f2:68: 6d:cf:c5:a0:ce:20:09:8e:1a:7c:05:97:f5:5d:01: 85:be:7f:66:89:ac:07:5a:53:50:82:ba:d3:d6:78: a7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:BB:23:88:68:21:44:43:CA:D9:EB:45:68:38:2E:F3:78:8C:5D:26 X509v3 Authority Key Identifier: keyid:96:73:B5:CC:F0:A8:EA:5C:E4:1A:2E:47:63:11:F3:75:CD:83:C0:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnO1zPCo6lzkGi5HYxHzdc2DwNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:35:b7:69:a4:62:81:f0:03:dd:2f:2c:ed:32:b6:8b:8d:cf: c1:c5:20:d0:f4:27:5d:19:b0:b0:b6:86:c8:35:9e:c0:64:15: 65:41:36:0c:87:70:c4:da:33:3e:41:cb:41:14:04:fe:c6:d5: 91:6d:c7:cd:00:7b:08:ae:99:59:0d:59:3e:04:1e:4d:ed:0a: 39:fd:34:02:ee:d9:eb:ba:e3:b5:93:07:27:47:7f:f2:ad:29: c8:02:a2:60:cb:e8:8a:f8:21:05:1f:a8:97:ed:14:a6:ea:09: 57:ff:9c:83:d0:32:c8:6b:3f:a7:0f:2c:89:97:75:9d:86:a2: 70:8c:ee:9f:61:35:e3:70:7e:55:95:43:e7:a7:2d:1a:61:a9: f1:1b:99:4e:8d:27:be:e6:9c:27:b8:2e:0a:9b:45:38:47:c2: fe:9a:58:49:8e:a4:a1:e3:d0:43:7f:04:71:04:d9:e0:47:87: d2:81:f6:13:70:c1:8b:d6:27:31:95:9d:0b:72:87:8c:21:6b: 0c:b0:a5:cc:c6:ae:05:81:e2:6c:80:7c:e4:05:cd:86:f7:24: 2d:48:95:5e:be:97:a7:f9:84:59:ba:69:54:a8:1f:c4:26:ea: a1:05:f2:e2:f1:d2:72:8f:b0:41:5e:bd:54:53:94:99:c5:6c: cf:fe:37:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU4QUExMTAvBgNVBAUTKDk2NzNCNUNDRjBBOEVBNUNFNDFBMkU0NzYzMTFGMzc1 Q0Q4M0MwRDIwHhcNMjYwMzI1MDYyMzUyWhcNMjYwNDAxMDYyMzUyWjAYMRYwFAYD VQQDEw02OWMzN2Y3OC0xOTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApeWQdvIZOqyAt+ZFLHpF0LpBUoAV2/7zK6/8assxjyxlk16zdnT7h5GN1axf oI9WYZp0nZflNeZaio7ZABpwn6AZ1M3v8Sqy5CyORaiIzpfnzIFgokszTcc+4Aax entODVoHNcpwFSY4Mzto89nTdFLzhH9rQfFBU8kxyHUjXxV/tX3IvSMuYOXkOfrn RizPcawKVnX8WQhw6hHRCI+FHQJV++FShxWuTu+RdDQAKY3B9GU4x+XaMwCovQgh 6w/HIJD0orfHsScOtkDLqb8YqFFitGy9pApJxZoEzBgF8mhtz8WgziAJjhp8BZf1 XQGFvn9miawHWlNQgrrT1nin8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLa7I4ho IURDytnrRWg4LvN4jF0mMB8GA1UdIwQYMBaAFJZztczwqOpc5BouR2MR83XNg8DS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNThBQS9DMTkzOUNFNjI0 MDIxMUYwOTYxQjY0NkRDNEY5QUUwMi9sbk8xelBDbzZsemtHaTVIWXhIemRjMkR3 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xuTzF6UENvNmx6a0dpNUhZeEh6ZGMyRHdOSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NThBQS9DMTkzOUNFNjI0MDIxMUYwOTYxQjY0NkRDNEY5QUUwMi9sbk8xelBDbzZs emtHaTVIWXhIemRjMkR3TkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAojW3aaRigfAD3S8s7TK2i43PwcUg0PQnXRmwsLaGyDWewGQVZUE2DIdwxNoz PkHLQRQE/sbVkW3HzQB7CK6ZWQ1ZPgQeTe0KOf00Au7Z67rjtZMHJ0d/8q0pyAKi YMvoivghBR+ol+0UpuoJV/+cg9AyyGs/pw8siZd1nYaicIzun2E143B+VZVD56ct GmGp8RuZTo0nvuacJ7guCptFOEfC/ppYSY6koePQQ38EcQTZ4EeH0oH2E3DBi9Yn MZWdC3KHjCFrDLClzMauBYHibIB85AXNhvckLUiVXr6Xp/mEWbppVKgfxCbqoQXy 4vHSco+wQV69VFOUmcVsz/43Qw== -----END CERTIFICATE-----Generated at Thu Mar 26 20:37:15 2026 by rpki-client