$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft File: lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json) Hash identifier: ssjqdgthEVNPFmPJ7K0WPupHW9jZu0zoHMXFndOijuo= Subject key identifier: DC:45:27:D3:5E:A3:18:92:72:05:A1:52:8B:A9:B3:1C:3D:1A:69:7A Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD Certificate issuer: /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft Manifest number: 0130 Signing time: Wed 25 Mar 2026 04:52:46 +0000 Manifest this update: Wed 25 Mar 2026 04:52:45 +0000 Manifest next update: Wed 01 Apr 2026 04:52:45 +0000 Files and hashes: 1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: SMkyulPcxOQ0c09gGE0moE7IKChtZnLHVlSKh5TKyIM=) 2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: /fpFKtFcwh7KjBndTGfGIO4WW4Bx9KlPmCwqANIq6FA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:52:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D44BE, serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Validity Not Before: Mar 25 04:52:45 2026 GMT Not After : Apr 1 04:52:45 2026 GMT Subject: CN=69c36a1e-979e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:51:08:78:82:c9:09:6c:eb:d2:b1:e0:fb:04: b0:4d:70:60:f6:eb:90:a6:29:a5:30:9e:c6:da:a1: 3c:17:53:8a:a3:59:43:bb:d7:2e:f9:8b:7a:71:d7: 35:64:19:c7:b7:e0:c0:9f:b1:3a:35:13:af:20:68: 49:5d:5e:cc:69:93:6d:e1:07:69:41:dc:74:74:55: 1c:b4:85:79:9e:89:4f:36:2b:36:8c:fb:ac:65:4b: 61:1c:79:50:59:7e:1b:9f:d2:fd:6d:45:57:da:cf: f8:44:a3:40:c4:c2:7b:43:cb:b0:c9:02:9a:50:bc: 9a:b7:03:3b:fc:8f:f8:fe:02:5e:c8:eb:3c:f4:44: 6e:da:0d:d3:81:6f:23:f4:7b:7d:e9:aa:a5:07:01: fd:00:5d:3a:8d:99:b8:b5:f4:77:f4:a0:8c:44:12: 6f:ab:d4:d1:5a:31:17:4a:5b:04:fe:b6:15:aa:44: ad:6d:c0:b8:0b:02:20:23:70:1c:67:19:78:20:b1: c3:85:3e:54:5d:93:0e:56:fb:c9:d7:d0:7a:90:b7: 4d:4a:07:d5:70:94:e4:fd:40:12:f6:0a:5b:c2:e8: 3e:94:44:c5:4d:95:d3:ec:86:f5:20:b6:59:77:9a: e3:13:1b:dc:1f:1f:00:7f:39:87:9c:db:be:a7:b9: 98:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:45:27:D3:5E:A3:18:92:72:05:A1:52:8B:A9:B3:1C:3D:1A:69:7A X509v3 Authority Key Identifier: keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:04:c8:1b:e8:a6:45:7c:02:13:27:1f:65:91:54:9b:6b:57: 1a:cd:11:46:b1:c0:d1:0c:96:dd:5b:2f:f9:e1:59:e0:c1:89: bd:24:dc:b8:a6:8a:09:b1:3f:ce:6a:ba:c7:30:3e:e6:6d:9f: f0:b3:f9:d0:4e:3e:94:ba:c5:84:44:02:56:dc:32:a6:ad:2c: 0d:6b:50:99:ac:d6:bf:91:9d:86:52:fd:29:16:cf:75:fa:57: a9:49:fd:47:be:4d:b5:06:c3:5e:be:64:be:24:e6:eb:20:e9: 61:2e:38:ba:b8:8e:61:eb:97:cc:23:37:85:a1:30:aa:6d:50: 41:46:83:9e:b3:93:9c:5c:78:10:a4:f0:6a:a8:7b:61:73:b8: 0c:2a:e5:1f:41:21:9b:4a:2e:80:ce:35:65:9b:8d:5b:1f:9d: 45:1a:36:0e:14:f7:bb:04:71:7b:7b:4e:d5:f4:e6:28:8b:54: 1d:42:26:4e:25:f4:19:0b:2a:d4:e7:59:08:cd:cb:03:c2:c5: de:0b:68:a8:27:bb:7b:be:fe:d4:6e:ed:b5:6c:1c:4d:14:bd: f7:ca:6f:66:55:a0:6e:c5:aa:ba:6c:31:41:90:dc:0c:9e:b9: 9c:3e:0b:54:cb:59:d3:4e:5d:22:cb:47:38:0f:6f:79:1c:0d: ca:f1:6a:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0QkUxMTAvBgNVBAUTKDk1RjA5RDVFNUI4QkNENkY0QjRENjlCNUM5MzZDOTEy Rjc3RDJDRkQwHhcNMjYwMzI1MDQ1MjQ1WhcNMjYwNDAxMDQ1MjQ1WjAYMRYwFAYD VQQDEw02OWMzNmExZS05NzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFEIeILJCWzr0rHg+wSwTXBg9uuQpimlMJ7G2qE8F1OKo1lDu9cu+Yt6cdc1 ZBnHt+DAn7E6NROvIGhJXV7MaZNt4QdpQdx0dFUctIV5nolPNis2jPusZUthHHlQ WX4bn9L9bUVX2s/4RKNAxMJ7Q8uwyQKaULyatwM7/I/4/gJeyOs89ERu2g3TgW8j 9Ht96aqlBwH9AF06jZm4tfR39KCMRBJvq9TRWjEXSlsE/rYVqkStbcC4CwIgI3Ac Zxl4ILHDhT5UXZMOVvvJ19B6kLdNSgfVcJTk/UAS9gpbwug+lETFTZXT7Ib1ILZZ d5rjExvcHx8AfzmHnNu+p7mY0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNxFJ9Ne oxiScgWhUoupsxw9Gml6MB8GA1UdIwQYMBaAFJXwnV5bi81vS01ptck2yRL3fSz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDRCRS8wMjhBQkU0MjY5 MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpXOUxUV20xeVRiSkV2ZDlM UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmQ2RYbHVMelc5TFRXbTF5VGJKRXZkOUxQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDRCRS8wMjhBQkU0MjY5MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpX OUxUV20xeVRiSkV2ZDlMUDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkQTIG+imRXwCEycfZZFUm2tXGs0RRrHA0QyW3Vsv+eFZ4MGJvSTcuKaKCbE/ zmq6xzA+5m2f8LP50E4+lLrFhEQCVtwypq0sDWtQmazWv5GdhlL9KRbPdfpXqUn9 R75NtQbDXr5kviTm6yDpYS44uriOYeuXzCM3haEwqm1QQUaDnrOTnFx4EKTwaqh7 YXO4DCrlH0Ehm0ougM41ZZuNWx+dRRo2DhT3uwRxe3tO1fTmKItUHUImTiX0GQsq 1OdZCM3LA8LF3gtoqCe7e77+1G7ttWwcTRS998pvZlWgbsWqumwxQZDcDJ65nD4L VMtZ005dIstHOA9veRwNyvFqVw== -----END CERTIFICATE-----Generated at Thu Mar 26 17:26:53 2026 by rpki-client