$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json) Hash identifier: 0MzZRruqyiLJLDUJNZq3QiRhhAgGUuK3L6aUEwaWI3Q= Subject key identifier: 4A:7E:7C:DC:E1:FC:E6:F7:24:D0:67:7C:9C:6C:76:5C:8B:8A:7E:37 Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft Manifest number: 0186 Signing time: Wed 25 Mar 2026 03:55:48 +0000 Manifest this update: Wed 25 Mar 2026 03:55:47 +0000 Manifest next update: Wed 01 Apr 2026 03:55:47 +0000 Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: SIZJdmrpf+8StiMNWUj+811I3vimQZGlbnvnqyiiOps=) 2: 10771E5497C211F0A9D40817C4F9AE02.roa (hash: Ih6CUVzbaPRdHejVQvZNcYEMy1tnq4yUXbGOoq+u3g0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:55:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD2D, serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Validity Not Before: Mar 25 03:55:47 2026 GMT Not After : Apr 1 03:55:47 2026 GMT Subject: CN=69c35cc4-4baa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7c:7f:2b:a8:2e:ec:a3:7e:b0:0c:04:58:ce: 43:40:47:95:d6:0b:c0:93:5d:10:0d:25:d1:86:91: 70:00:2e:43:7a:23:43:37:90:d7:6a:56:40:f3:21: f2:c0:4f:3b:79:13:af:56:7f:61:6a:b9:64:4f:9f: fd:60:e4:ea:5c:c4:f9:9c:af:e5:11:87:18:c2:f0: cd:15:09:c7:41:3a:35:40:d0:90:03:da:3b:cd:5a: df:da:87:d2:ff:6a:8c:c3:5c:66:c2:eb:e8:48:be: 4b:f5:10:81:f0:19:f1:32:07:50:a5:a6:7e:4b:0c: 69:89:f4:f7:ec:bd:af:a6:a9:ae:a6:de:88:91:cc: b9:e8:fd:dd:5f:8d:72:3e:6a:a9:77:2d:9c:11:25: 1b:d5:63:fd:a7:7f:8e:09:66:13:bd:35:c0:54:b1: 38:07:ec:09:03:a8:73:19:42:c4:b5:ca:3f:1a:18: 3f:01:b3:14:93:18:20:d0:c3:e9:84:31:7d:5b:cc: f0:bb:ee:75:13:91:ef:cf:37:59:8e:24:a2:d2:b9: 66:43:c0:14:84:02:71:f8:f1:45:d6:59:f9:ff:80: 4b:7c:55:d0:bc:b4:14:53:7b:a5:64:d6:34:fe:25: 2c:f3:3f:5e:58:a0:15:ba:a2:b4:f0:6a:0f:5a:da: 27:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:7E:7C:DC:E1:FC:E6:F7:24:D0:67:7C:9C:6C:76:5C:8B:8A:7E:37 X509v3 Authority Key Identifier: keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:52:b1:5c:7b:69:67:45:ea:15:a4:03:11:59:dc:b0:3f:dc: b3:6c:99:65:65:b4:71:84:64:ca:b7:24:77:ab:57:c7:d2:d3: 64:6b:20:e8:4b:bd:aa:72:b9:d4:78:67:4d:31:86:db:a6:7c: de:09:a5:e3:83:0d:c7:fb:07:dd:4e:bc:3c:a2:82:c8:3e:c8: bf:9d:3c:d6:f8:29:2a:e5:95:53:a0:69:a1:fb:ea:a0:cb:1f: d8:32:cc:03:d3:70:96:39:95:8c:f2:ed:5d:a0:7f:7d:b1:1c: 23:b6:40:94:de:68:e3:f3:2d:fd:63:b3:95:89:9b:db:32:86: 8f:a6:86:d2:4a:76:97:85:03:0a:a3:74:0b:e6:f8:af:8c:27: 07:19:a9:06:89:b6:d9:e2:62:f6:92:1b:16:40:ac:09:21:5e: 9c:c3:0b:9a:45:7c:0f:4b:da:59:3e:18:8d:3d:81:8a:9f:8b: 41:25:0e:c6:4b:49:98:6e:07:80:75:3e:19:8f:2d:14:f3:30: 5b:41:c3:29:f2:6a:d9:04:34:18:26:e2:4b:a1:3c:85:83:bc: 47:0c:0f:2b:52:36:ea:49:e5:01:9b:26:5b:01:ea:86:90:17: 94:38:22:91:7d:29:40:5e:91:c0:e8:02:f1:30:6e:ba:b2:37: 14:a1:63:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEMkQxMTAvBgNVBAUTKDk0QTk1MEIzMDNCNDY5MDBERDVBMzA2MTAzMEM4OUE0 ODk2ODAzQUYwHhcNMjYwMzI1MDM1NTQ3WhcNMjYwNDAxMDM1NTQ3WjAYMRYwFAYD VQQDEw02OWMzNWNjNC00YmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3x/K6gu7KN+sAwEWM5DQEeV1gvAk10QDSXRhpFwAC5DeiNDN5DXalZA8yHy wE87eROvVn9harlkT5/9YOTqXMT5nK/lEYcYwvDNFQnHQTo1QNCQA9o7zVrf2ofS /2qMw1xmwuvoSL5L9RCB8BnxMgdQpaZ+SwxpifT37L2vpqmupt6Ikcy56P3dX41y Pmqpdy2cESUb1WP9p3+OCWYTvTXAVLE4B+wJA6hzGULEtco/Ghg/AbMUkxgg0MPp hDF9W8zwu+51E5HvzzdZjiSi0rlmQ8AUhAJx+PFF1ln5/4BLfFXQvLQUU3ulZNY0 /iUs8z9eWKAVuqK08GoPWtonLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEp+fNzh /Ob3JNBnfJxsdlyLin43MB8GA1UdIwQYMBaAFJSpULMDtGkA3VowYQMMiaSJaAOv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQyRC85MDg4RUU1QUU4 MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFRRGRXakJoQXd5SnBJbG9B NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLbFFzd08wYVFEZFdqQmhBd3lKcElsb0E2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQyRC85MDg4RUU1QUU4MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFR RGRXakJoQXd5SnBJbG9BNjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHlKxXHtpZ0XqFaQDEVncsD/cs2yZZWW0cYRkyrckd6tXx9LTZGsg6Eu9qnK5 1HhnTTGG26Z83gml44MNx/sH3U68PKKCyD7Iv5081vgpKuWVU6BpofvqoMsf2DLM A9NwljmVjPLtXaB/fbEcI7ZAlN5o4/Mt/WOzlYmb2zKGj6aG0kp2l4UDCqN0C+b4 r4wnBxmpBom22eJi9pIbFkCsCSFenMMLmkV8D0vaWT4YjT2Bip+LQSUOxktJmG4H gHU+GY8tFPMwW0HDKfJq2QQ0GCbiS6E8hYO8RwwPK1I26knlAZsmWwHqhpAXlDgi kX0pQF6RwOgC8TBuurI3FKFjXQ== -----END CERTIFICATE-----Generated at Thu Mar 26 17:09:08 2026 by rpki-client