$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft File: lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft (raw, json) Hash identifier: 0sCgnuY1aPV5XxuVDzft2I7OuMK5x9wkJBXYedhMdJg= Subject key identifier: 33:62:D2:8C:7F:90:D1:75:48:59:B9:F0:B0:81:D6:48:5B:04:D9:54 Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 0927 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft Manifest number: 0974 Signing time: Thu 26 Mar 2026 20:08:27 +0000 Manifest this update: Thu 26 Mar 2026 20:08:26 +0000 Manifest next update: Thu 02 Apr 2026 20:08:26 +0000 Files and hashes: 1: lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl (hash: VmNq7Uav6U6L5+h4hk/60Y09qatAmw4iMJDSV6tfYBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2343 (0x927) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9, serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: Mar 26 20:08:26 2026 GMT Not After : Apr 2 20:08:26 2026 GMT Subject: CN=69c5923b-a4ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:5d:d1:70:c4:3f:00:44:7c:50:f5:53:ad:44: be:da:01:8f:8b:cd:ae:ce:47:bf:d7:08:c9:6f:25: 9a:89:2a:78:70:09:53:d4:9a:3e:55:56:ac:ad:3e: bc:b0:33:28:ec:36:cc:e1:2e:ba:fc:51:17:a6:6f: 63:7c:19:22:d8:01:fb:70:5c:7f:f1:71:7c:40:71: 8b:73:5e:79:a5:19:a4:a2:20:a1:34:53:cd:98:dc: 2d:e1:41:31:e4:6a:fb:0a:27:96:76:ea:3d:27:74: cc:ac:0c:bf:2b:04:da:f8:4e:6b:0d:e4:f7:e7:14: 19:6a:9e:2a:1e:8d:c7:a5:1d:92:79:66:82:ab:43: d5:cc:c4:d6:02:1e:45:d2:93:90:d6:b5:66:5b:03: 73:8e:95:3a:24:34:2c:71:15:14:13:78:f3:ef:bd: 7d:bb:e0:ac:db:04:1d:a8:dd:75:1b:03:96:52:f1: dc:1c:c2:ed:52:e9:a0:21:d5:12:c0:ad:11:64:08: 7d:db:71:07:6a:40:5e:89:05:fd:b0:fa:1d:6c:ca: 9e:18:40:b5:2b:31:5b:01:cc:38:d7:a9:8a:de:37: c1:08:ea:af:7b:7b:79:16:e0:35:7a:89:33:d5:2a: 8b:03:8f:f0:59:c7:b2:83:e3:d5:6d:e3:5f:92:1d: 31:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:62:D2:8C:7F:90:D1:75:48:59:B9:F0:B0:81:D6:48:5B:04:D9:54 X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:67:66:0a:07:41:03:8e:fd:32:c6:35:f3:c1:64:67:4a:aa: cd:d2:80:56:6f:e2:f1:88:76:09:40:32:5e:36:d5:78:3f:85: 19:a5:be:eb:62:ed:e9:61:21:1d:b8:e5:72:75:de:1f:55:9e: 51:c7:c5:45:ab:8c:90:ad:b0:6d:24:d6:e1:88:43:a8:d4:08: 73:d2:71:2d:70:78:e7:ed:ed:b3:1e:2f:59:1d:80:cd:46:9c: 54:d6:a3:47:86:9f:0e:9f:9a:fc:5a:e1:62:77:ee:b9:8f:67: f8:24:f6:ba:cc:6d:e6:1a:19:cf:37:d0:79:8f:df:5f:cf:9d: d9:f9:7a:ad:db:33:26:36:d7:52:bc:af:e1:7e:ec:b5:3e:84: ce:00:32:f5:c4:cc:7c:0b:b6:14:cc:03:f4:27:76:85:76:78: 2c:e5:58:60:39:ec:f1:90:88:73:31:37:4c:00:99:ac:f8:5d: aa:c3:a8:fd:92:23:c1:ea:4f:87:cb:ab:cc:ed:25:7e:1e:7f: c0:54:6b:2a:7a:34:62:c6:6b:bf:2d:33:67:37:d8:28:e3:cf: e4:a4:87:09:31:a7:1f:06:82:2e:23:f1:b2:1a:01:e4:bc:51: 82:56:c3:fb:48:89:8e:b0:00:3c:e2:8d:6e:05:a4:71:39:fb: 3b:07:50:1a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjYwMzI2MjAwODI2WhcNMjYwNDAyMjAwODI2WjAYMRYwFAYD VQQDEw02OWM1OTIzYi1hNGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA813RcMQ/AER8UPVTrUS+2gGPi82uzke/1wjJbyWaiSp4cAlT1Jo+VVasrT68 sDMo7DbM4S66/FEXpm9jfBki2AH7cFx/8XF8QHGLc155pRmkoiChNFPNmNwt4UEx 5Gr7CieWduo9J3TMrAy/KwTa+E5rDeT35xQZap4qHo3HpR2SeWaCq0PVzMTWAh5F 0pOQ1rVmWwNzjpU6JDQscRUUE3jz7719u+Cs2wQdqN11GwOWUvHcHMLtUumgIdUS wK0RZAh923EHakBeiQX9sPodbMqeGEC1KzFbAcw416mK3jfBCOqve3t5FuA1eokz 1SqLA4/wWceyg+PVbeNfkh0xdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDNi0ox/ kNF1SFm58LCB1khbBNlUMB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDFDOS80OUJEOURBNkMwRjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1Br OThaSzFEMEhhOEVhNGYyMTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQGdmCgdBA479MsY188FkZ0qqzdKAVm/i8Yh2CUAyXjbVeD+FGaW+62Lt6WEh HbjlcnXeH1WeUcfFRauMkK2wbSTW4YhDqNQIc9JxLXB45+3tsx4vWR2AzUacVNaj R4afDp+a/FrhYnfuuY9n+CT2usxt5hoZzzfQeY/fX8+d2fl6rdszJjbXUryv4X7s tT6EzgAy9cTMfAu2FMwD9Cd2hXZ4LOVYYDns8ZCIczE3TACZrPhdqsOo/ZIjwepP h8urzO0lfh5/wFRrKno0YsZrvy0zZzfYKOPP5KSHCTGnHwaCLiPxshoB5LxRglbD +0iJjrAAPOKNbgWkcTn7OwdQGg== -----END CERTIFICATE-----Generated at Sat Mar 28 12:12:47 2026 by rpki-client