$ rpki-client -vvf rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.mft File: lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.mft (raw, json) Hash identifier: DO1Qy9TpE+Q039+qs9EFGLb+NXDkKes/b+om6jiNqFw= Subject key identifier: BA:64:22:E4:46:A3:3E:E6:D8:A2:1D:D9:FE:C0:91:85:99:17:01:B2 Authority key identifier: 95:60:BC:A9:AB:6C:68:BD:90:9F:30:4C:5B:22:BA:63:63:9C:F0:1C Certificate issuer: /CN=A91E427F/serialNumber=9560BCA9AB6C68BD909F304C5B22BA63639CF01C Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.mft Manifest number: 24 Signing time: Wed 25 Mar 2026 08:03:00 +0000 Manifest this update: Wed 25 Mar 2026 08:02:59 +0000 Manifest next update: Wed 01 Apr 2026 08:02:59 +0000 Files and hashes: 1: lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.crl (hash: Oy7v7vGajU6FirpjLN006VkJWG0+9QvqYFYUPYFuSf0=) 2: 8A145232FCFC11F0A8CB3974376F56BC.roa (hash: Xjz1s0MQRu7MQA5suGipgKZp8P0BW1VYHZCCTuVLDsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.crl rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:02:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E427F, serialNumber=9560BCA9AB6C68BD909F304C5B22BA63639CF01C Validity Not Before: Mar 25 08:02:59 2026 GMT Not After : Apr 1 08:02:59 2026 GMT Subject: CN=69c396b3-0763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8c:1b:01:8b:11:50:ff:21:e8:f7:98:56:79: aa:6b:0d:d5:3f:44:55:78:c5:50:fd:77:21:3e:32: 42:23:ee:d0:62:f0:de:0d:06:6e:46:30:a7:fa:eb: 20:85:c7:ad:83:cc:66:a4:16:51:6d:59:55:8f:39: 67:4e:91:c0:f4:04:d8:ad:b5:29:fe:7a:05:62:5c: 31:80:7d:4d:f3:8d:14:17:df:ba:f5:62:2b:ec:11: d3:81:cf:8a:75:66:e7:d4:0c:dd:ad:d3:57:1d:4e: 0c:56:7f:af:a1:b6:51:4d:33:5e:0d:26:37:b3:5f: 55:90:d8:5c:e7:4e:5f:79:71:d0:e8:71:0e:22:78: 6c:3c:42:6a:8f:fc:5a:a9:70:ee:ae:a7:b1:e1:3d: 43:11:41:28:69:c8:a0:19:4b:2e:d1:c8:7e:02:4b: ae:20:ce:e3:97:52:14:f9:23:99:98:b3:2b:b9:82: f9:91:65:a8:3c:3f:25:46:da:96:95:fe:7f:26:4d: a6:90:a4:c4:96:d9:8b:2a:30:62:32:bc:80:21:85: 0b:84:3b:a4:66:47:24:39:b9:47:15:7f:0b:ed:87: 74:35:1e:93:d8:5a:40:e9:90:25:17:70:18:00:c5: c1:aa:3a:7d:b5:fa:9f:ea:85:90:1d:a3:2b:63:e3: f2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:64:22:E4:46:A3:3E:E6:D8:A2:1D:D9:FE:C0:91:85:99:17:01:B2 X509v3 Authority Key Identifier: keyid:95:60:BC:A9:AB:6C:68:BD:90:9F:30:4C:5B:22:BA:63:63:9C:F0:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:71:e1:2e:24:2c:ed:e6:d2:3d:9d:73:e2:0f:bb:34:b3:3d: 1c:47:58:96:31:27:5a:ef:0e:fd:bc:85:59:03:ab:94:89:6a: df:7f:7b:e2:68:40:52:e3:d9:f5:79:e9:8b:6d:dc:d7:04:ea: 7e:a5:6b:28:0f:68:a6:87:b3:13:04:2c:2b:42:92:cc:d9:b0: c6:38:d1:9b:d7:32:2e:48:17:72:6d:ee:13:08:ec:c0:62:0b: df:20:8f:35:a2:33:23:65:91:06:15:32:1a:b2:f1:72:9f:c4: bd:38:d0:83:de:3f:83:8f:88:5a:ea:96:2d:39:87:7c:35:28: 72:11:9e:46:70:36:bf:0d:1a:66:4b:4d:91:e9:52:7a:49:d7: 6a:73:47:fe:7a:90:e3:1b:f1:44:c8:cf:03:24:85:d3:85:96: 2e:4a:52:2a:a0:55:0c:28:71:76:5c:5b:e9:26:f7:91:26:da: 16:9d:f1:09:3f:58:01:5e:64:c4:5d:75:d0:d8:48:8e:18:3a: 33:e3:6d:10:7e:e1:91:6d:fa:93:89:6f:e3:ab:da:5b:66:01: 57:56:bf:2f:c7:af:cb:a9:9f:82:5d:35:8d:2e:18:57:67:9a: 9b:13:bf:b1:39:98:74:3c:87:c8:d4:43:56:06:a1:29:44:18: 4e:9d:cf:94 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NDI3RjExMC8GA1UEBRMoOTU2MEJDQTlBQjZDNjhCRDkwOUYzMDRDNUIyMkJBNjM2 MzlDRjAxQzAeFw0yNjAzMjUwODAyNTlaFw0yNjA0MDEwODAyNTlaMBgxFjAUBgNV BAMTDTY5YzM5NmIzLTA3NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3jBsBixFQ/yHo95hWeaprDdU/RFV4xVD9dyE+MkIj7tBi8N4NBm5GMKf66yCF x62DzGakFlFtWVWPOWdOkcD0BNittSn+egViXDGAfU3zjRQX37r1YivsEdOBz4p1 ZufUDN2t01cdTgxWf6+htlFNM14NJjezX1WQ2FznTl95cdDocQ4ieGw8QmqP/Fqp cO6up7HhPUMRQShpyKAZSy7RyH4CS64gzuOXUhT5I5mYsyu5gvmRZag8PyVG2paV /n8mTaaQpMSW2YsqMGIyvIAhhQuEO6RmRyQ5uUcVfwvth3Q1HpPYWkDpkCUXcBgA xcGqOn21+p/qhZAdoytj4/IrAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUumQi5Eaj PubYoh3Z/sCRhZkXAbIwHwYDVR0jBBgwFoAUlWC8qatsaL2QnzBMWyK6Y2Oc8Bww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0MjdGLzNCQkRBQ0UyRkMw NjExRjBBQTFCQ0UwNTc0NkY1NkJDL2xXQzhxYXRzYUwyUW56Qk1XeUs2WTJPYzhC dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFdDOHFhdHNhTDJRbnpCTVd5SzZZMk9jOEJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 MjdGLzNCQkRBQ0UyRkMwNjExRjBBQTFCQ0UwNTc0NkY1NkJDL2xXQzhxYXRzYUwy UW56Qk1XeUs2WTJPYzhCdy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCHceEuJCzt5tI9nXPiD7s0sz0cR1iWMSda7w79vIVZA6uUiWrff3viaEBS49n1 eemLbdzXBOp+pWsoD2imh7MTBCwrQpLM2bDGONGb1zIuSBdybe4TCOzAYgvfII81 ojMjZZEGFTIasvFyn8S9ONCD3j+Dj4ha6pYtOYd8NShyEZ5GcDa/DRpmS02R6VJ6 Sddqc0f+epDjG/FEyM8DJIXThZYuSlIqoFUMKHF2XFvpJveRJtoWnfEJP1gBXmTE XXXQ2EiOGDoz420QfuGRbfqTiW/jq9pbZgFXVr8vx6/LqZ+CXTWNLhhXZ5qbE7+x OZh0PIfI1ENWBqEpRBhOnc+U -----END CERTIFICATE-----Generated at Thu Mar 26 08:22:17 2026 by rpki-client