$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft File: lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft (raw, json) Hash identifier: 918/nDTfPr+rwv+GGEFtvhT6/I1KjtUX8rjCYVc6TG4= Subject key identifier: 4B:84:6B:A3:34:B9:99:FC:E5:0B:E6:47:1F:79:20:DA:78:E9:8D:27 Authority key identifier: 95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 Certificate issuer: /CN=A91E9DF8/serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Certificate serial: 0683 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft Manifest number: 067A Signing time: Tue 24 Mar 2026 22:13:44 +0000 Manifest this update: Tue 24 Mar 2026 22:13:43 +0000 Manifest next update: Tue 31 Mar 2026 22:13:43 +0000 Files and hashes: 1: lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl (hash: KYRFBpmsbRe4jPBS5JKTUHsb1jreEPNINqaol2bUIMU=) 2: A8086732B6DA11EBB7B67954C4F9AE02.roa (hash: 9cNeCzppQ/e103+t/5bNmmQB3XDS/R3mXfxCBYG3Y9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:13:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1667 (0x683) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9DF8, serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Validity Not Before: Mar 24 22:13:43 2026 GMT Not After : Mar 31 22:13:43 2026 GMT Subject: CN=69c30c97-9070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:b6:f7:83:08:b0:ea:5f:9f:2f:e2:2e:f5:91: cb:d4:f1:5e:3c:7c:d9:34:8f:53:2a:46:23:98:bd: f5:aa:1f:27:53:63:9b:ae:ff:49:60:e0:89:a6:67: c7:c8:68:1e:8d:67:ac:e6:e2:a0:e8:0b:ac:ff:53: bb:19:45:4b:94:5a:d1:f3:e3:87:2f:ce:d0:2f:c1: 4b:52:81:55:e6:3d:84:31:aa:00:34:16:cf:52:d2: 9c:15:2f:75:79:47:9e:d7:d5:8b:2c:bf:cc:b0:c1: c8:e3:0a:29:2d:be:d0:3d:d1:02:08:ec:79:9c:fc: 63:e2:29:08:ca:20:30:e8:16:a5:39:71:43:a7:be: 2f:b1:68:4c:88:bc:32:e4:14:15:4a:a8:23:29:1d: 5a:e0:bb:c4:39:db:80:57:67:a6:aa:c6:64:3d:ab: c1:f5:bc:73:01:24:4a:16:3f:89:4d:c0:b9:8f:64: 70:df:4a:fb:04:a3:84:2e:86:10:71:c1:78:07:a4: 12:f9:23:be:65:b5:a2:c9:cf:81:61:88:f7:eb:b0: d9:f1:53:64:ee:76:34:61:b2:59:e7:05:3c:87:ec: c7:06:23:cb:64:5d:99:25:61:e1:cd:f3:38:05:cb: 38:70:73:a9:67:d9:ee:b9:73:20:af:35:53:20:40: 00:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:84:6B:A3:34:B9:99:FC:E5:0B:E6:47:1F:79:20:DA:78:E9:8D:27 X509v3 Authority Key Identifier: keyid:95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:6f:ec:4d:19:9f:a9:49:e9:00:b4:fb:b7:dc:43:c8:42:d6: e4:57:86:7c:9d:25:27:e1:8a:3a:6c:79:fe:5c:fe:87:be:44: 21:4a:37:58:c7:61:02:b8:e8:f1:58:7c:c8:79:bd:5d:de:c7: 21:8c:1b:be:d8:44:63:d7:ed:9e:07:84:8c:85:bc:7a:ea:c2: a9:d2:56:31:05:d8:b9:f3:be:b7:a4:25:41:59:e4:e8:b9:9b: 7d:1f:4b:0d:8a:35:9a:7b:2e:57:1a:f6:ad:c6:e2:10:9b:0f: b3:2c:31:e1:b7:47:9d:7b:7d:d7:67:aa:47:92:57:22:01:36: a0:09:0c:ed:6f:8e:f2:75:f8:5e:07:08:d6:0b:c1:b1:83:44: e3:0a:d5:1f:72:1c:fe:be:37:4c:de:b4:d8:6e:43:4c:b0:5f: ea:19:a2:99:a2:7f:e9:91:df:62:c5:31:41:16:50:52:9e:5f: 0f:af:0e:03:94:a4:13:2e:a3:28:d0:51:0f:64:a1:e5:20:b7: b8:c7:6f:e7:8e:f5:6d:05:ff:1b:c5:d0:94:65:e7:3b:1f:2e: 96:ea:9d:ca:39:7a:c7:15:18:b8:0d:86:12:fb:f3:a9:60:7d: b8:c8:30:b9:9e:b5:50:68:ed:7f:48:0f:e8:35:ae:9f:06:ce: 99:31:c7:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlERjgxMTAvBgNVBAUTKDk1MDY4QkIzMEFCQzdFMDA3RkQ4Mzg3RTRERTBBODNF RkFBREQ0NzIwHhcNMjYwMzI0MjIxMzQzWhcNMjYwMzMxMjIxMzQzWjAYMRYwFAYD VQQDEw02OWMzMGM5Ny05MDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlrb3gwiw6l+fL+Iu9ZHL1PFePHzZNI9TKkYjmL31qh8nU2Obrv9JYOCJpmfH yGgejWes5uKg6Aus/1O7GUVLlFrR8+OHL87QL8FLUoFV5j2EMaoANBbPUtKcFS91 eUee19WLLL/MsMHI4wopLb7QPdECCOx5nPxj4ikIyiAw6BalOXFDp74vsWhMiLwy 5BQVSqgjKR1a4LvEOduAV2emqsZkPavB9bxzASRKFj+JTcC5j2Rw30r7BKOELoYQ ccF4B6QS+SO+ZbWiyc+BYYj367DZ8VNk7nY0YbJZ5wU8h+zHBiPLZF2ZJWHhzfM4 Bcs4cHOpZ9nuuXMgrzVTIEAAdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEuEa6M0 uZn85QvmRx95INp46Y0nMB8GA1UdIwQYMBaAFJUGi7MKvH4Af9g4fk3gqD76rdRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOURGOC80QjNCODgxRUI2 RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZnQl8yRGgtVGVDb1B2cXQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRYUxzd3E4ZmdCXzJEaC1UZUNvUHZxdDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OURGOC80QjNCODgxRUI2RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZn Ql8yRGgtVGVDb1B2cXQxSEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo2/sTRmfqUnpALT7t9xDyELW5FeGfJ0lJ+GKOmx5/lz+h75EIUo3WMdhArjo 8Vh8yHm9Xd7HIYwbvthEY9ftngeEjIW8eurCqdJWMQXYufO+t6QlQVnk6LmbfR9L DYo1mnsuVxr2rcbiEJsPsywx4bdHnXt912eqR5JXIgE2oAkM7W+O8nX4XgcI1gvB sYNE4wrVH3Ic/r43TN602G5DTLBf6hmimaJ/6ZHfYsUxQRZQUp5fD68OA5SkEy6j KNBRD2Sh5SC3uMdv5471bQX/G8XQlGXnOx8uluqdyjl6xxUYuA2GEvvzqWB9uMgw uZ61UGjtf0gP6DWunwbOmTHHpw== -----END CERTIFICATE-----Generated at Thu Mar 26 22:39:40 2026 by rpki-client