$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft File: lAiiAfAOWP6SWY7gOTkHi673d5U.mft (raw, json) Hash identifier: Z7+yk6JLGk4jKoxDYbLhOOyHZ+j/jfevJZDo0ky5grE= Subject key identifier: A2:96:1D:32:49:20:C5:F7:E0:5E:9C:F8:46:BF:3E:EB:D4:66:A5:CB Authority key identifier: 94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 Certificate issuer: /CN=A91A6F68/serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft Manifest number: DA Signing time: Wed 25 Mar 2026 05:50:08 +0000 Manifest this update: Wed 25 Mar 2026 05:50:08 +0000 Manifest next update: Wed 01 Apr 2026 05:50:08 +0000 Files and hashes: 1: lAiiAfAOWP6SWY7gOTkHi673d5U.crl (hash: AnqeQ7tjwEZI6WRsy80GNvV2W9TAFA3dmtCuSG5mPrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68, serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Validity Not Before: Mar 25 05:50:08 2026 GMT Not After : Apr 1 05:50:08 2026 GMT Subject: CN=69c37790-07f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:bc:22:a6:9f:fa:b7:79:4a:e7:3c:58:f2:89: ff:c9:2e:8f:99:2f:e2:a9:31:b0:1b:68:08:6b:ed: f9:dc:77:fd:e4:fb:9e:c7:17:bd:6b:ea:bf:52:a6: e5:d1:26:4b:f8:cd:3e:90:3e:d7:97:ce:8d:8d:87: 4f:9e:83:1f:14:a2:5e:4b:af:a8:f2:30:66:6f:68: d9:d8:d9:69:0e:ed:08:53:dd:61:14:ac:40:5e:80: 2c:88:d9:b6:cd:46:06:47:86:22:72:8a:e8:57:e8: 64:8d:38:69:81:04:75:b2:79:3a:08:b9:67:7c:70: 05:01:cc:58:91:67:a2:2c:ac:7c:81:b9:13:aa:81: fe:08:0e:98:02:88:9a:23:71:7b:e5:30:8a:ca:09: d3:3c:c0:11:70:d3:8d:5a:34:68:4a:8b:d5:15:88: e7:1f:80:da:ac:85:35:2e:d8:e4:3d:32:c3:94:f9: 2f:46:27:17:39:4a:20:fe:f6:93:b4:00:52:aa:37: 42:26:66:e3:21:12:ec:a8:58:11:46:4f:a1:bb:1d: dc:08:b6:45:a4:b7:1a:d3:02:2a:5f:13:eb:41:4f: 8d:d2:10:64:2c:c9:db:ef:e3:16:e6:e4:fa:1c:e3: 6a:84:dc:76:aa:9b:89:ee:ac:a9:51:fd:7e:b9:7d: db:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:96:1D:32:49:20:C5:F7:E0:5E:9C:F8:46:BF:3E:EB:D4:66:A5:CB X509v3 Authority Key Identifier: keyid:94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:78:1c:6f:b4:fe:5d:32:27:cb:7d:2a:1e:51:a9:5f:23:ed: 3f:3b:9f:e8:05:3e:01:f7:08:ce:4f:0e:3c:e5:aa:82:6a:a5: 77:ca:f7:0a:89:04:dd:72:c2:98:e6:1e:f7:28:d9:8f:c2:55: 19:6f:09:f3:1a:fd:5d:36:ed:28:8e:df:4e:68:0e:ac:22:b2: ef:c9:cc:86:30:4b:6b:d3:e3:de:c0:f9:49:3a:21:ad:0b:e7: 5b:b0:bc:6d:ce:4d:11:8d:c3:b4:43:68:a3:91:5d:5c:e5:93: bb:0f:e3:63:9e:97:92:4a:0b:fa:5e:24:9c:dc:8e:1b:91:f7: 3c:42:a2:b8:7d:2f:8b:bf:33:60:a3:69:19:5d:96:68:d7:f8: f7:2e:a0:b7:5b:2d:9f:ba:74:2e:47:c3:73:bc:71:78:78:74: 38:eb:51:1a:00:bb:af:cc:e9:db:5b:f5:d3:58:84:78:d7:dd: a6:93:32:e4:f8:02:c3:24:2c:ad:23:e4:91:4e:80:dd:e6:2d: 9c:b0:65:7c:ff:36:e5:4f:91:a2:14:7e:2f:bb:bb:12:f9:be: c4:f5:9c:03:0a:d1:d6:13:b6:42:88:4e:7e:86:07:e6:19:e9: 4a:a0:39:09:de:69:b1:02:0f:a3:dd:e5:16:0c:28:fc:ab:a0: 46:27:c4:54 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGNjgxMTAvBgNVBAUTKDk0MDhBMjAxRjAwRTU4RkU5MjU5OEVFMDM5MzkwNzhC QUVGNzc3OTUwHhcNMjYwMzI1MDU1MDA4WhcNMjYwNDAxMDU1MDA4WjAYMRYwFAYD VQQDEw02OWMzNzc5MC0wN2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjbwipp/6t3lK5zxY8on/yS6PmS/iqTGwG2gIa+353Hf95Puexxe9a+q/Uqbl 0SZL+M0+kD7Xl86NjYdPnoMfFKJeS6+o8jBmb2jZ2NlpDu0IU91hFKxAXoAsiNm2 zUYGR4YicoroV+hkjThpgQR1snk6CLlnfHAFAcxYkWeiLKx8gbkTqoH+CA6YAoia I3F75TCKygnTPMARcNONWjRoSovVFYjnH4DarIU1LtjkPTLDlPkvRicXOUog/vaT tABSqjdCJmbjIRLsqFgRRk+hux3cCLZFpLca0wIqXxPrQU+N0hBkLMnb7+MW5uT6 HONqhNx2qpuJ7qypUf1+uX3bKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKKWHTJJ IMX34F6c+Ea/PuvUZqXLMB8GA1UdIwQYMBaAFJQIogHwDlj+klmO4Dk5B4uu93eV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkY2OC9CQTU2NUY1Q0RG MjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQNlNXWTdnT1RrSGk2NzNk NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xBaWlBZkFPV1A2U1dZN2dPVGtIaTY3M2Q1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkY2OC9CQTU2NUY1Q0RGMjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQ NlNXWTdnT1RrSGk2NzNkNVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgXgcb7T+XTIny30qHlGpXyPtPzuf6AU+AfcIzk8OPOWqgmqld8r3CokE3XLC mOYe9yjZj8JVGW8J8xr9XTbtKI7fTmgOrCKy78nMhjBLa9Pj3sD5STohrQvnW7C8 bc5NEY3DtENoo5FdXOWTuw/jY56XkkoL+l4knNyOG5H3PEKiuH0vi78zYKNpGV2W aNf49y6gt1stn7p0LkfDc7xxeHh0OOtRGgC7r8zp21v101iEeNfdppMy5PgCwyQs rSPkkU6A3eYtnLBlfP825U+RohR+L7u7Evm+xPWcAwrR1hO2QohOfoYH5hnpSqA5 Cd5psQIPo93lFgwo/KugRifEVA== -----END CERTIFICATE-----Generated at Thu Mar 26 10:47:58 2026 by rpki-client