$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft File: lTUaGSeo8Q660c48bEpaxGUVynA.mft (raw, json) Hash identifier: Y2058AjCRt9+IVXqNHhstnOQyFX3lrRir2gsdFDZ/dU= Subject key identifier: 2B:8B:80:06:3A:1B:4E:0C:00:7B:5A:BB:B4:69:3B:8A:90:87:94:9D Authority key identifier: 95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 Certificate issuer: /CN=A91D4E15/serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Certificate serial: 0220 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft Manifest number: 021B Signing time: Wed 25 Mar 2026 02:12:27 +0000 Manifest this update: Wed 25 Mar 2026 02:12:26 +0000 Manifest next update: Wed 01 Apr 2026 02:12:26 +0000 Files and hashes: 1: lTUaGSeo8Q660c48bEpaxGUVynA.crl (hash: cTo54EYEIJyt9vtrGA87TB0ootJhT5uZ0+mjkcrEDZU=) 2: 90F09734F1B311EDA789BB57C4F9AE02.roa (hash: TRCit7S/Vg6OV4lqP74PVauh5l5sCF/UMjkzMFmjRuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E15, serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Validity Not Before: Mar 25 02:12:26 2026 GMT Not After : Apr 1 02:12:26 2026 GMT Subject: CN=69c3448a-a089 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b2:97:23:65:51:9e:c3:5a:3f:44:2f:77:8e: 12:40:24:5c:13:d7:4e:d5:c6:f6:64:4b:03:48:e2: bd:1a:1e:ca:c4:0c:16:3e:1b:ee:69:e4:e8:2a:c2: aa:b0:1a:c8:0a:83:74:66:db:8e:7c:07:ba:03:e5: f9:30:3f:3d:60:cd:14:22:c4:b6:61:a1:37:42:c7: c2:d8:61:e0:b5:26:d4:1d:d0:91:26:14:9e:a2:66: 26:db:26:bd:ad:a6:dd:00:dd:a2:aa:69:95:b0:04: 41:49:3b:8a:23:c8:bd:a0:e2:52:46:d6:ff:ea:3c: c6:01:b3:06:9f:19:eb:81:b8:f1:0c:86:5f:53:1e: 76:c0:03:a5:a2:e9:8b:00:82:53:b6:4d:d1:39:c6: 16:8c:b6:4d:85:98:5a:8e:b2:c2:9d:0e:0c:77:48: 49:ec:21:0b:09:da:ae:9c:ac:8c:37:b7:85:75:57: 6a:61:bf:db:7d:9d:24:40:50:37:1b:22:61:00:3d: ea:2d:be:3f:ea:73:63:3d:a0:f9:ed:8a:7b:54:8d: 3a:85:4c:d5:d8:c0:3f:6c:d3:8d:9b:01:46:fa:94: 68:3a:15:b3:fd:25:e6:ac:1c:4b:a8:3d:65:b1:2f: 8d:c7:ac:80:a4:e8:87:98:14:b6:0d:31:11:7e:95: ca:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:8B:80:06:3A:1B:4E:0C:00:7B:5A:BB:B4:69:3B:8A:90:87:94:9D X509v3 Authority Key Identifier: keyid:95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:87:d7:b7:74:76:90:7a:a2:9b:23:69:92:b5:24:b7:60:f9: 50:3e:f2:29:77:2b:92:33:42:62:7b:e5:b2:fb:33:ed:f3:b2: 8a:8b:1a:51:fc:21:84:c2:82:a1:f3:1c:15:1c:fe:cc:6a:0d: 8e:0a:75:b7:15:0d:4d:b4:5b:e5:95:4b:c2:1e:0b:d7:18:a8: e4:a5:20:d5:c1:79:d3:80:84:43:5a:1e:eb:8f:5b:54:04:be: bf:d8:5c:b3:00:11:62:33:1e:c3:3d:70:cc:8e:0c:a6:47:2c: 5e:67:ad:c1:c6:90:f8:53:15:33:dd:7e:fc:78:c3:84:d7:c8: 44:39:6f:41:54:3c:77:7b:10:81:a7:ad:59:39:88:bd:5a:54: 4c:46:9e:cf:d2:14:58:2c:ad:a6:6c:87:03:c0:8e:ad:0e:d6: cd:a6:02:63:58:0a:45:30:8e:7d:1e:f9:03:b3:ad:03:66:ff: b1:75:04:64:9d:1b:58:77:41:e1:04:3a:ee:74:15:33:5e:8c: 34:ae:0c:ce:56:54:23:b7:2f:33:3c:ac:f6:51:f4:98:8f:fd: a6:76:37:e7:ed:4c:11:d7:a9:0c:27:45:48:e3:20:73:aa:6e: fb:6e:69:49:25:0e:d7:60:cc:bf:f5:e6:b3:4e:e3:83:92:58: 4f:aa:0d:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFMTUxMTAvBgNVBAUTKDk1MzUxQTE5MjdBOEYxMEVCQUQxQ0UzQzZDNEE1QUM0 NjUxNUNBNzAwHhcNMjYwMzI1MDIxMjI2WhcNMjYwNDAxMDIxMjI2WjAYMRYwFAYD VQQDEw02OWMzNDQ4YS1hMDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLKXI2VRnsNaP0Qvd44SQCRcE9dO1cb2ZEsDSOK9Gh7KxAwWPhvuaeToKsKq sBrICoN0ZtuOfAe6A+X5MD89YM0UIsS2YaE3QsfC2GHgtSbUHdCRJhSeomYm2ya9 rabdAN2iqmmVsARBSTuKI8i9oOJSRtb/6jzGAbMGnxnrgbjxDIZfUx52wAOloumL AIJTtk3ROcYWjLZNhZhajrLCnQ4Md0hJ7CELCdqunKyMN7eFdVdqYb/bfZ0kQFA3 GyJhAD3qLb4/6nNjPaD57Yp7VI06hUzV2MA/bNONmwFG+pRoOhWz/SXmrBxLqD1l sS+Nx6yApOiHmBS2DTERfpXKgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCuLgAY6 G04MAHtau7RpO4qQh5SdMB8GA1UdIwQYMBaAFJU1GhknqPEOutHOPGxKWsRlFcpw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEUxNS81RERCNDQ0MEYx QUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhRNjYwYzQ4YkVwYXhHVVZ5 bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUVWFHU2VvOFE2NjBjNDhiRXBheEdVVnluQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEUxNS81RERCNDQ0MEYxQUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhR NjYwYzQ4YkVwYXhHVVZ5bkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWofXt3R2kHqimyNpkrUkt2D5UD7yKXcrkjNCYnvlsvsz7fOyiosaUfwhhMKC ofMcFRz+zGoNjgp1txUNTbRb5ZVLwh4L1xio5KUg1cF504CEQ1oe649bVAS+v9hc swARYjMewz1wzI4MpkcsXmetwcaQ+FMVM91+/HjDhNfIRDlvQVQ8d3sQgaetWTmI vVpUTEaez9IUWCytpmyHA8COrQ7WzaYCY1gKRTCOfR75A7OtA2b/sXUEZJ0bWHdB 4QQ67nQVM16MNK4MzlZUI7cvMzys9lH0mI/9pnY35+1MEdepDCdFSOMgc6pu+25p SSUO12DMv/Xms07jg5JYT6oNzg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:27:17 2026 by rpki-client