$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft File: lX5Qp1--UC844-2_P0qq5mWuFIs.mft (raw, json) Hash identifier: rMIayhkPG3mj7wNqDS4P6cVcBDc1yJEJaDmiL79+puU= Subject key identifier: F3:8A:55:4A:A1:B5:9C:79:4A:5E:1D:3D:A5:56:F8:AC:47:84:55:D4 Authority key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B Certificate issuer: /CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft Manifest number: 0119 Signing time: Wed 25 Mar 2026 05:02:45 +0000 Manifest this update: Wed 25 Mar 2026 05:02:44 +0000 Manifest next update: Wed 01 Apr 2026 05:02:44 +0000 Files and hashes: 1: lX5Qp1--UC844-2_P0qq5mWuFIs.crl (hash: L0wYuw0LSz8aBFvFzwwB/L5FVSmqla0EsG3hBEHSQFw=) 2: A0A9D60C807511EFAD8C4257C4F9AE02.roa (hash: eHxVtr7CaVRUMmuegbvUTVOQCFKL9zTAYfh/hkVVLRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Validity Not Before: Mar 25 05:02:44 2026 GMT Not After : Apr 1 05:02:44 2026 GMT Subject: CN=69c36c74-470b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f0:37:e3:15:76:98:7b:a5:ee:be:21:05:7e: 7d:bf:f9:95:6b:e2:27:8a:67:d2:45:b1:8a:e7:a4: 93:78:d6:1c:e4:0a:20:9b:fd:3a:5a:cf:11:6b:3a: 8c:7d:1d:e3:f0:91:59:b6:99:dc:18:41:be:b7:e2: ec:7e:6b:fb:0f:eb:0f:92:56:8e:f7:07:15:ce:09: be:65:46:5a:83:83:71:a5:7a:ab:9f:ee:fd:e8:5b: 93:66:3d:c2:2b:58:da:3f:62:a0:99:72:48:da:be: d3:c3:54:fb:7b:80:b2:57:af:bb:ec:7a:9b:40:b7: 89:55:fc:c3:a1:5c:a0:67:c2:6b:6b:a1:aa:46:9f: da:d2:af:35:c1:02:5b:30:0a:10:2e:03:d8:f5:b6: 0e:fe:ca:44:f9:a2:14:0b:01:52:52:a9:2e:e0:7b: b5:81:bf:22:41:82:2f:d4:29:7d:d1:93:d6:2f:3f: 69:73:f3:e7:77:0b:7b:5a:df:50:b6:6d:33:fa:67: 30:e1:7d:1a:98:a6:4b:03:33:f3:83:1f:2c:37:51: ff:d5:23:bf:b3:c5:4f:61:a2:db:f0:dd:8c:f1:0f: 7b:98:ea:2b:3d:cd:40:83:f8:52:58:43:68:1e:80: 7b:7e:22:bd:04:bf:b8:0e:a7:56:5c:d6:47:13:ac: 97:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:8A:55:4A:A1:B5:9C:79:4A:5E:1D:3D:A5:56:F8:AC:47:84:55:D4 X509v3 Authority Key Identifier: keyid:95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:1a:ad:ba:8f:bc:d2:9b:62:a3:3f:df:3a:bc:90:5d:9b:9e: c9:85:2c:d7:8e:88:7d:36:05:08:53:14:03:ee:92:fd:46:17: 17:8d:e6:4a:7b:b7:2d:4f:1a:03:07:8b:1a:be:19:c5:96:27: 2e:24:68:3a:13:88:2f:ad:3b:90:31:0c:77:ec:6c:94:0b:d5: 00:5d:db:20:07:f3:61:ab:97:1d:c7:0d:a0:70:6b:f6:f8:03: 2e:d2:ae:bd:80:ae:23:e6:10:60:bc:b6:61:c0:d0:c6:82:ed: d2:a1:24:65:aa:85:0d:e1:a7:7e:c7:81:11:03:ea:7d:58:e5: 6a:f4:49:5c:b1:0f:b6:b4:e4:ea:00:18:82:7f:e9:a8:dd:95: b8:c6:f3:9f:38:84:0c:01:a9:99:fb:07:64:4c:59:e5:0f:d9: 7c:27:92:37:1f:c8:ac:e4:82:c2:e4:56:93:fb:18:d0:42:ae: 3b:ad:7c:3c:e2:e8:c1:e1:03:8b:88:a2:a4:0c:c6:09:9c:da: 80:8f:49:36:16:26:4a:de:35:fd:0e:7f:7d:73:83:39:d0:71: 0d:7e:8c:50:54:3a:cb:bd:52:53:b9:94:2c:9c:49:40:63:75: 9d:40:65:e6:97:e5:69:de:30:08:7f:f7:8c:aa:0a:c6:06:09: 64:42:32:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMEUxMTAvBgNVBAUTKDk1N0U1MEE3NUZCRTUwMkYzOEUzRURCRjNGNEFBQUU2 NjVBRTE0OEIwHhcNMjYwMzI1MDUwMjQ0WhcNMjYwNDAxMDUwMjQ0WjAYMRYwFAYD VQQDEw02OWMzNmM3NC00NzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPA34xV2mHul7r4hBX59v/mVa+InimfSRbGK56STeNYc5Aogm/06Ws8RazqM fR3j8JFZtpncGEG+t+Lsfmv7D+sPklaO9wcVzgm+ZUZag4NxpXqrn+796FuTZj3C K1jaP2KgmXJI2r7Tw1T7e4CyV6+77HqbQLeJVfzDoVygZ8Jra6GqRp/a0q81wQJb MAoQLgPY9bYO/spE+aIUCwFSUqku4Hu1gb8iQYIv1Cl90ZPWLz9pc/Pndwt7Wt9Q tm0z+mcw4X0amKZLAzPzgx8sN1H/1SO/s8VPYaLb8N2M8Q97mOorPc1Ag/hSWENo HoB7fiK9BL+4DqdWXNZHE6yXJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPOKVUqh tZx5Sl4dPaVW+KxHhFXUMB8GA1UdIwQYMBaAFJV+UKdfvlAvOOPtvz9KquZlrhSL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIwRS80RTZDQjRGNjgw NjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVDODQ0LTJfUDBxcTVtV3VG SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xYNVFwMS0tVUM4NDQtMl9QMHFxNW1XdUZJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIwRS80RTZDQjRGNjgwNjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVD ODQ0LTJfUDBxcTVtV3VGSXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWhqtuo+80ptioz/fOryQXZueyYUs146IfTYFCFMUA+6S/UYXF43mSnu3LU8a AweLGr4ZxZYnLiRoOhOIL607kDEMd+xslAvVAF3bIAfzYauXHccNoHBr9vgDLtKu vYCuI+YQYLy2YcDQxoLt0qEkZaqFDeGnfseBEQPqfVjlavRJXLEPtrTk6gAYgn/p qN2VuMbznziEDAGpmfsHZExZ5Q/ZfCeSNx/IrOSCwuRWk/sY0EKuO618POLoweED i4iipAzGCZzagI9JNhYmSt41/Q5/fXODOdBxDX6MUFQ6y71SU7mULJxJQGN1nUBl 5pflad4wCH/3jKoKxgYJZEIybw== -----END CERTIFICATE-----Generated at Thu Mar 26 00:51:23 2026 by rpki-client