$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft File: LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft (raw, json) Hash identifier: F1yUaWPFw/mJ5EdZvXpIytj1EipyOsbKDU4qyrri/OU= Subject key identifier: 86:25:FE:BB:EA:1F:9C:B6:4C:A3:4D:27:24:C6:E2:85:A7:C8:B0:72 Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 05F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft Manifest number: 05A2 Signing time: Tue 24 Mar 2026 23:02:48 +0000 Manifest this update: Tue 24 Mar 2026 23:02:48 +0000 Manifest next update: Tue 31 Mar 2026 23:02:48 +0000 Files and hashes: 1: LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl (hash: xxsDAzE9bWqdWkji1Cwz7xKTRNv4/veLI90DRjiAV7w=) 2: F88F642285E411EEB951413BC4F9AE02.roa (hash: krziyxJjj3W5faMkTkdh3jS0gXk+dMCMIxlaoN+oOhU=) 3: CD7FBD2CFDE711F08E6C9BDB726F56BC.roa (hash: HOjKKUKfVkEJkpJ5kP3nNLtaEubz2MLWdl6U7WuE38A=) 4: 74CECB38FBF711F0B6045B12716F56BC.roa (hash: DQhYrefFOI4w+qsMMTRGiZB2qVxuQnH+mEqRGikTB98=) 5: BD4E85B09E6311ECA6EC8071C4F9AE02.roa (hash: 7BVtLLotMLGpAMIjNPPakQoOlPGO61uSEIii5dgYdzo=) 6: 1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa (hash: PGfOZ8aur6eFpfgp1qb3p6zkq3ccsWlLdh66JdofFDY=) 7: CE988D80FB7311EC97CD7F85C4F9AE02.roa (hash: loULOkxTyFtV5eU4JwAnNk7SaUEpMQGahUv+OEZBH2g=) 8: D6C060C27E1811EEB9B4FE4AC4F9AE02.roa (hash: bTmhZaAypt5r6H6ei3QiJe1JRpUEf1NlmVzAJrVmPHM=) 9: 74489676FBF711F0B6045B12716F56BC.roa (hash: PtmrY+a/4HZCqPq48R9VOsgkvL+9qoLlfHRXIydqoPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1528 (0x5f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72, serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Mar 24 23:02:48 2026 GMT Not After : Mar 31 23:02:48 2026 GMT Subject: CN=69c31818-47c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d5:43:dc:27:20:d7:ac:87:73:0c:e2:1a:ab: d0:61:1c:dd:85:2a:0d:00:1b:c7:70:a3:ab:02:f5: b1:16:16:60:22:50:b4:97:ed:83:3b:ff:d8:f9:18: c0:c8:6a:2a:e9:ca:d6:24:7c:1a:00:35:c1:b7:cb: ad:0a:86:3d:58:6f:e4:b2:d1:ec:3b:9c:8e:02:1a: bf:2e:7a:46:1b:ab:ff:bf:07:c5:6b:e9:75:ab:a6: 53:1d:b7:17:dd:e8:76:c8:0f:80:bc:ca:6f:e8:c2: d2:70:fa:02:1f:80:e9:f6:a4:fa:77:ab:6a:eb:ae: 71:40:87:6c:ec:a1:77:c9:a8:26:e1:44:4b:3e:ea: da:73:d5:94:7d:6b:3b:e7:23:9e:c0:8c:9f:8c:73: 57:aa:d7:06:26:c7:d4:0b:d9:dc:2c:c3:c0:9e:cb: 4b:c2:47:b9:ce:5f:ae:57:a4:69:de:05:73:bb:42: eb:ef:44:7e:c0:d7:46:85:4d:0b:87:98:20:28:76: 5f:6e:20:3b:b8:43:2a:46:98:10:60:8b:f1:6d:c7: d9:56:7e:2a:aa:08:71:22:19:cb:b4:c9:ae:f0:03: d4:b1:a0:61:a0:8e:93:b5:f7:c7:06:6e:09:83:ad: 47:25:b6:2c:d3:a6:69:61:64:b7:63:75:ba:ea:07: 9a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:25:FE:BB:EA:1F:9C:B6:4C:A3:4D:27:24:C6:E2:85:A7:C8:B0:72 X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:a6:83:a8:42:db:e4:c6:21:ca:2a:57:7a:5c:44:2c:1a:f8: 66:ef:f7:fe:7e:39:b9:70:5f:49:24:58:b9:5a:d5:e6:cc:b9: 1d:f1:48:a6:dd:6f:68:bc:d1:65:f6:f2:1a:e2:6f:e4:83:56: dc:52:30:c2:94:73:b3:60:55:00:ae:70:eb:0d:61:f9:89:8f: 37:d8:16:ba:96:54:df:6c:7d:d5:fe:e5:37:ae:92:6d:7e:2f: 7b:8c:84:22:68:bc:b6:94:2c:dd:19:79:80:db:66:df:5e:3d: 96:bf:1f:4d:5b:60:51:2b:2a:14:82:68:ad:a7:3f:4d:74:12: 9c:62:a5:9a:c8:e9:15:3f:03:dc:e7:f8:08:68:5c:94:4b:1b: 05:b8:fa:77:81:19:41:8f:35:93:ed:c9:d8:1d:b4:eb:d9:63: 7c:32:e3:4d:e4:13:24:35:39:3e:71:20:77:16:13:28:24:b1: 19:2a:10:60:4e:be:9e:db:8f:a2:7e:52:90:47:0f:05:c0:08: eb:77:35:b9:c5:1d:a5:f5:df:f4:c4:53:42:5b:bc:8f:e1:b1: c5:b3:30:66:d4:cf:a9:42:96:fa:d5:25:11:8d:b1:50:1f:e5: b1:6d:72:ba:21:11:6d:5e:fe:f7:35:19:59:b0:b2:33:72:5b: 36:6e:c8:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjYwMzI0MjMwMjQ4WhcNMjYwMzMxMjMwMjQ4WjAYMRYwFAYD VQQDEw02OWMzMTgxOC00N2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6dVD3Ccg16yHcwziGqvQYRzdhSoNABvHcKOrAvWxFhZgIlC0l+2DO//Y+RjA yGoq6crWJHwaADXBt8utCoY9WG/kstHsO5yOAhq/LnpGG6v/vwfFa+l1q6ZTHbcX 3eh2yA+AvMpv6MLScPoCH4Dp9qT6d6tq665xQIds7KF3yagm4URLPurac9WUfWs7 5yOewIyfjHNXqtcGJsfUC9ncLMPAnstLwke5zl+uV6Rp3gVzu0Lr70R+wNdGhU0L h5ggKHZfbiA7uEMqRpgQYIvxbcfZVn4qqghxIhnLtMmu8APUsaBhoI6TtffHBm4J g61HJbYs06ZpYWS3Y3W66geaBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIYl/rvq H5y2TKNNJyTG4oWnyLByMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q3Mi80NTc2QTY3MjI2MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgy d0x0WS1TRVo1bGdneVAxWHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXKaDqELb5MYhyipXelxELBr4Zu/3/n45uXBfSSRYuVrV5sy5HfFIpt1vaLzR ZfbyGuJv5INW3FIwwpRzs2BVAK5w6w1h+YmPN9gWupZU32x91f7lN66SbX4ve4yE Imi8tpQs3Rl5gNtm3149lr8fTVtgUSsqFIJorac/TXQSnGKlmsjpFT8D3Of4CGhc lEsbBbj6d4EZQY81k+3J2B2069ljfDLjTeQTJDU5PnEgdxYTKCSxGSoQYE6+ntuP on5SkEcPBcAI63c1ucUdpfXf9MRTQlu8j+GxxbMwZtTPqUKW+tUlEY2xUB/lsW1y uiERbV7+9zUZWbCyM3JbNm7IRw== -----END CERTIFICATE-----Generated at Thu Mar 26 15:08:35 2026 by rpki-client