$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: ZSYittrcD4iKeiaKUXClDOhDSsYgdMleGLAwa7FBKRY= Subject key identifier: 44:D4:15:BA:C8:02:3A:6F:CC:FD:23:15:59:4D:F8:1B:BB:43:5F:B3 Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0EDB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0ED1 Signing time: Thu 26 Mar 2026 17:36:42 +0000 Manifest this update: Thu 26 Mar 2026 17:36:42 +0000 Manifest next update: Thu 02 Apr 2026 17:36:42 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: XW5NwwovQX/fWZ+g1ff6dSN5YpNi2gGFIQb7shFa/Rs=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: 8GXHkMu5QhzxhDcgK/hTob055OzXskK4SzGbgPUovhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 17:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3803 (0xedb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Mar 26 17:36:42 2026 GMT Not After : Apr 2 17:36:42 2026 GMT Subject: CN=69c56eaa-4ed3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:94:48:e3:d0:df:89:2f:5e:f7:4d:1f:b7:f3: 9d:65:06:36:ec:60:6a:f9:1b:bc:f3:45:3f:18:82: 60:2c:8a:fa:e1:7e:6d:1c:28:87:85:d6:5d:e0:e3: f4:13:21:43:72:83:e7:c3:d6:5f:de:54:f5:cf:5c: a0:05:25:24:a7:90:f6:8f:81:74:bc:dc:8d:e5:98: 12:a2:87:f5:d9:6e:f0:32:6f:3f:eb:6c:e8:53:1a: b7:9f:b8:cf:62:4d:ef:3f:90:12:13:9d:b5:c3:1a: 26:d5:51:d9:92:58:2c:ae:f0:de:46:29:12:da:d9: 9a:0c:4f:2e:cc:e9:0e:dd:e2:5d:b2:0c:39:9a:da: 15:a1:5d:6f:50:89:3c:30:c0:c2:22:79:47:bc:57: 04:68:f1:3d:b9:2f:a6:f5:62:b7:b9:28:4d:04:6b: c1:5a:d7:78:1b:f0:d6:1d:d3:62:4d:e6:b9:ea:e2: ea:7b:ac:24:03:44:56:6a:c6:5b:94:41:d3:c0:3b: 75:80:03:2e:31:4a:d8:09:d9:4d:32:3d:aa:8c:ee: 1c:25:27:b3:e6:f6:e5:e7:94:a1:f9:f3:25:f9:f3: aa:52:0f:73:e5:b3:4d:c2:3b:c8:fd:82:70:45:7a: 36:0d:57:d5:13:47:ac:6f:bc:d3:6d:7b:f6:1a:64: e9:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:D4:15:BA:C8:02:3A:6F:CC:FD:23:15:59:4D:F8:1B:BB:43:5F:B3 X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:47:53:53:b4:17:f6:7d:4c:64:db:e6:8d:73:c9:f5:cf:4c: ea:e4:99:28:f3:7b:40:93:72:d4:77:9f:6c:48:ee:44:12:2d: de:60:c3:9b:e8:c9:ab:ad:ea:46:b0:40:2d:3c:45:c2:9e:a1: cf:9e:ef:bc:64:35:9d:20:30:87:fe:c9:c0:80:f9:19:e8:d0: cc:11:05:ff:61:ad:54:3f:26:f6:f7:28:ec:33:ae:6d:b7:28: c8:46:ea:fb:a2:6c:b7:d3:cd:a3:71:ec:e8:93:61:e9:d9:d1: 51:33:68:c3:3a:cd:65:df:90:dd:45:92:43:a9:1a:dd:b9:c2: 4e:1c:c5:f2:1b:d3:db:3a:12:a0:a3:83:24:a0:2f:8c:e3:df: 63:e3:1b:3e:bb:4d:04:f9:75:bb:a1:d8:27:4d:b5:dc:fc:37: 14:25:41:28:b2:08:49:7a:66:39:70:7f:d6:a0:8f:56:fb:34: 4d:09:5f:07:a1:ef:a8:77:06:23:c4:1b:59:9c:6f:8b:c7:5f: 8f:a8:91:6d:66:67:a7:fc:af:13:31:64:fb:45:10:32:00:30: 5c:19:da:52:73:27:6b:0e:ef:86:41:a8:03:58:56:94:ba:7c: d7:28:ea:81:9c:6f:85:51:01:35:e1:a6:62:ce:eb:a7:59:fb: b1:6c:ad:f3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjYwMzI2MTczNjQyWhcNMjYwNDAyMTczNjQyWjAYMRYwFAYD VQQDEw02OWM1NmVhYS00ZWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA75RI49DfiS9e900ft/OdZQY27GBq+Ru880U/GIJgLIr64X5tHCiHhdZd4OP0 EyFDcoPnw9Zf3lT1z1ygBSUkp5D2j4F0vNyN5ZgSoof12W7wMm8/62zoUxq3n7jP Yk3vP5ASE521wxom1VHZklgsrvDeRikS2tmaDE8uzOkO3eJdsgw5mtoVoV1vUIk8 MMDCInlHvFcEaPE9uS+m9WK3uShNBGvBWtd4G/DWHdNiTea56uLqe6wkA0RWasZb lEHTwDt1gAMuMUrYCdlNMj2qjO4cJSez5vbl55Sh+fMl+fOqUg9z5bNNwjvI/YJw RXo2DVfVE0esb7zTbXv2GmTpXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFETUFbrI AjpvzP0jFVlN+Bu7Q1+zMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASUdTU7QX9n1MZNvmjXPJ9c9M6uSZKPN7QJNy1HefbEjuRBIt3mDDm+jJq63q RrBALTxFwp6hz57vvGQ1nSAwh/7JwID5GejQzBEF/2GtVD8m9vco7DOubbcoyEbq +6Jst9PNo3Hs6JNh6dnRUTNowzrNZd+Q3UWSQ6ka3bnCThzF8hvT2zoSoKODJKAv jOPfY+MbPrtNBPl1u6HYJ0213Pw3FCVBKLIISXpmOXB/1qCPVvs0TQlfB6HvqHcG I8QbWZxvi8dfj6iRbWZnp/yvEzFk+0UQMgAwXBnaUnMnaw7vhkGoA1hWlLp81yjq gZxvhVEBNeGmYs7rp1n7sWyt8w== -----END CERTIFICATE-----Generated at Sat Mar 28 10:33:15 2026 by rpki-client