$ rpki-client -vvf rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft File: L4dzyVEFOxQ4vCfsxV45KvteK7I.mft (raw, json) Hash identifier: 25ZWD7BAb48lAbw3mlL4sWLfLDlntZ8zCgy+wBcXr1s= Subject key identifier: 92:6B:46:83:0C:B2:CE:B4:8B:C1:FD:27:38:04:74:F8:34:22:26:2B Authority key identifier: 2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 Certificate issuer: /CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Certificate serial: 0C02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft Manifest number: 0BE2 Signing time: Tue 24 Mar 2026 18:43:48 +0000 Manifest this update: Tue 24 Mar 2026 18:43:47 +0000 Manifest next update: Tue 31 Mar 2026 18:43:47 +0000 Files and hashes: 1: L4dzyVEFOxQ4vCfsxV45KvteK7I.crl (hash: +04VluROJBsAJ/qbNE2vTpUk9cGavfSx2IWKA+PoCIs=) 2: F90AE9C413AB11F1B2F915E2033D8C67.roa (hash: qP73CAez9BA/Kxf0LXcrxOa4cBuTk6ek4TGHHpeWEII=) 3: 84AC17989B0811EDB5FDAF75C4F9AE02.roa (hash: ZdWgxsTDmp2SCgpKV/pUzjdMnUTtasFIwHsMjvPLzoQ=) 4: 60CAF672CAC211F08083F41BC4F9AE02.roa (hash: kq7sx+cXw+m9S0qiyAa+VcKr/WKvuChbXwIbeJRy3rg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3074 (0xc02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B56F0, serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Validity Not Before: Mar 24 18:43:47 2026 GMT Not After : Mar 31 18:43:47 2026 GMT Subject: CN=69c2db63-6fd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:24:30:88:67:8d:c2:a6:87:cd:38:48:e8:d0: 1f:c6:12:d0:3a:e7:85:c7:19:8b:99:61:2c:b0:ba: 24:1f:05:28:8d:a4:c8:72:df:2c:3a:7e:dc:75:6d: c9:2e:10:1d:a9:cf:57:7d:c5:e2:1b:ca:d4:28:b7: 3a:83:21:92:5a:6e:de:70:b7:45:79:29:a4:b0:78: d8:ff:14:b3:67:73:ae:8c:b9:96:e9:1e:43:75:74: 47:ec:59:ae:f8:b2:1a:9a:1e:26:8b:f3:c6:93:17: 4b:5b:d8:c3:25:6d:b8:94:b8:e5:4b:50:f4:1c:ef: cf:0c:2f:75:2c:5f:3a:da:56:3d:b8:31:15:a6:a3: 02:08:a9:92:a9:1d:63:fb:c5:0a:b3:11:7c:c8:76: 42:28:4a:ec:22:48:45:06:68:0a:1e:60:48:e9:5f: 0d:70:18:68:5a:a2:87:33:62:75:e5:54:42:a1:04: a5:02:fc:a2:fb:a0:14:dd:5d:1a:37:98:2a:d3:b7: 16:b7:32:b5:b8:e7:a4:86:a8:3d:26:50:35:06:67: 54:db:c6:51:cc:f1:20:9d:31:3b:83:5c:f4:2d:d0: 11:69:1d:68:f2:79:e9:0b:20:dd:ba:a5:dd:17:40: 38:74:2a:3b:85:44:ac:50:b1:de:46:5f:85:24:f8: b1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:6B:46:83:0C:B2:CE:B4:8B:C1:FD:27:38:04:74:F8:34:22:26:2B X509v3 Authority Key Identifier: keyid:2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:f0:89:fc:fe:3c:97:29:c3:72:10:0b:7e:73:1b:70:a0:2a: d2:22:d2:2d:fe:b3:31:3c:22:da:a4:a6:e3:6b:1d:41:a5:49: 4d:4e:80:a0:82:bf:91:2b:a9:d2:d4:98:ce:0f:9e:88:cc:6e: 4e:2a:37:8c:b7:42:0f:b3:ae:4e:a9:eb:16:69:20:b6:c9:78: a6:09:95:37:24:2f:b1:89:61:bb:d7:31:f0:6c:49:68:16:5f: 47:49:98:35:45:3d:2b:59:14:70:7e:d5:b0:bf:27:78:36:5f: 64:11:7a:7a:e7:77:da:e7:f6:c0:b1:f4:27:33:a8:7c:b6:04: 31:b2:a9:62:ea:a9:8c:16:37:cf:b3:05:fa:93:32:4a:f2:f5: 37:eb:6e:fd:1a:da:2d:46:0f:4c:f4:6c:e2:7e:e1:f6:ce:a2: 08:28:93:4d:56:0f:41:54:0c:d6:e6:a5:3d:49:c1:89:fa:4c: 5c:10:55:33:f4:bf:61:de:54:67:9a:06:38:dd:cd:85:82:cb: 92:44:62:3a:b9:eb:c0:b8:7d:94:dc:00:ba:12:b4:8a:cc:f1: 13:c1:4c:3e:50:88:8c:4d:ae:6c:b0:4d:03:ac:29:7a:f5:cf: d2:ef:55:dd:96:8c:d6:1c:7c:6d:64:06:32:76:87:66:79:3b: 09:a9:ba:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2RjAxMTAvBgNVBAUTKDJGODc3M0M5NTEwNTNCMTQzOEJDMjdFQ0M1NUUzOTJB RkI1RTJCQjIwHhcNMjYwMzI0MTg0MzQ3WhcNMjYwMzMxMTg0MzQ3WjAYMRYwFAYD VQQDEw02OWMyZGI2My02ZmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoyQwiGeNwqaHzThI6NAfxhLQOueFxxmLmWEssLokHwUojaTIct8sOn7cdW3J LhAdqc9XfcXiG8rUKLc6gyGSWm7ecLdFeSmksHjY/xSzZ3OujLmW6R5DdXRH7Fmu +LIamh4mi/PGkxdLW9jDJW24lLjlS1D0HO/PDC91LF862lY9uDEVpqMCCKmSqR1j +8UKsxF8yHZCKErsIkhFBmgKHmBI6V8NcBhoWqKHM2J15VRCoQSlAvyi+6AU3V0a N5gq07cWtzK1uOekhqg9JlA1BmdU28ZRzPEgnTE7g1z0LdARaR1o8nnpCyDduqXd F0A4dCo7hUSsULHeRl+FJPixXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJJrRoMM ss60i8H9JzgEdPg0IiYrMB8GA1UdIwQYMBaAFC+Hc8lRBTsUOLwn7MVeOSr7Xiuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTZGMC83RDY3RTRENDM4 NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94UTR2Q2ZzeFY0NUt2dGVL N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0ZHp5VkVGT3hRNHZDZnN4VjQ1S3Z0ZUs3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTZGMC83RDY3RTRENDM4NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94 UTR2Q2ZzeFY0NUt2dGVLN0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQvCJ/P48lynDchALfnMbcKAq0iLSLf6zMTwi2qSm42sdQaVJTU6AoIK/kSup 0tSYzg+eiMxuTio3jLdCD7OuTqnrFmkgtsl4pgmVNyQvsYlhu9cx8GxJaBZfR0mY NUU9K1kUcH7VsL8neDZfZBF6eud32uf2wLH0JzOofLYEMbKpYuqpjBY3z7MF+pMy SvL1N+tu/RraLUYPTPRs4n7h9s6iCCiTTVYPQVQM1ualPUnBifpMXBBVM/S/Yd5U Z5oGON3NhYLLkkRiOrnrwLh9lNwAuhK0iszxE8FMPlCIjE2ubLBNA6wpevXP0u9V 3ZaM1hx8bWQGMnaHZnk7Cam6pw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:30 2026 by rpki-client