$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft File: LRgGu3n37GppfLCmWiHlyxIv3nY.mft (raw, json) Hash identifier: phlajFOwzM1Smq6JTU2+VVtgSNKTUh4fgBQA2jfBuVA= Subject key identifier: 28:86:E6:14:08:73:23:C1:F8:48:B9:5E:2A:AD:67:09:2A:A9:89:63 Authority key identifier: 2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 Certificate issuer: /CN=A9165A58/serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft Manifest number: 0120 Signing time: Sun 05 Apr 2026 05:08:54 +0000 Manifest this update: Sun 05 Apr 2026 05:08:54 +0000 Manifest next update: Sun 12 Apr 2026 05:08:54 +0000 Files and hashes: 1: LRgGu3n37GppfLCmWiHlyxIv3nY.crl (hash: /TYnVBQkE58PaXpQylYZgGGUphE3GSCshDWFrYnRxSc=) 2: BDBEED967C0011EFB63C7076C4F9AE02.roa (hash: BOLBqg6HB+WZgDmASuick5DSh+pZdhSvC9fPbTzN5P4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:08:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A58, serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Validity Not Before: Apr 5 05:08:54 2026 GMT Not After : Apr 12 05:08:54 2026 GMT Subject: CN=69d1ee66-475c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5b:18:ff:be:06:3a:cc:02:ee:24:db:44:56: 48:a8:18:43:02:fb:c0:ba:07:c7:1c:16:e2:0d:ec: 7d:5a:8d:70:c1:d3:16:ca:ad:a1:e2:8f:c2:d5:1d: d3:d7:bc:a8:5a:4c:76:f4:b9:c9:89:0b:9d:c0:68: 16:89:13:a4:7f:08:34:f9:40:59:1f:25:7d:69:ff: b2:72:ab:74:2e:24:de:02:b0:2b:03:22:99:02:4f: ad:98:67:3e:ec:06:8c:c8:6e:38:d5:a3:e8:94:3e: b8:84:71:61:1a:3c:16:54:5d:20:4a:cb:d3:15:f1: eb:69:e9:02:45:64:53:99:47:d3:71:85:80:29:cd: a9:4e:29:13:b0:28:1c:0c:a9:9d:4e:87:b3:26:6a: 8a:ff:56:21:64:0d:ab:75:d0:dc:5f:cc:d3:2d:c4: 76:45:b7:a1:17:16:ef:1d:ca:51:f9:3d:4c:db:76: 49:60:f0:1f:7c:01:0d:70:f4:d7:eb:c0:2e:be:3c: 2a:89:c5:db:7f:a9:b8:e8:8f:6d:e0:a3:29:d5:9c: 4a:93:01:18:7c:74:1a:46:86:8f:2d:f2:1b:5f:f1: 3f:32:b5:9a:1c:5c:45:e1:6f:0b:e4:9a:fb:d5:6d: 42:ea:ed:b3:e6:9e:a1:a2:e7:62:d4:c2:fe:ad:90: 34:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:86:E6:14:08:73:23:C1:F8:48:B9:5E:2A:AD:67:09:2A:A9:89:63 X509v3 Authority Key Identifier: keyid:2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:f9:ee:0e:c4:a5:a8:c4:38:f3:5f:44:31:5c:19:95:a4:31: 1f:d4:6b:f4:a6:74:f4:77:1b:27:fa:30:fc:55:38:c9:73:11: b6:ab:c1:dc:72:91:87:b5:60:f5:b0:94:c3:e8:ba:a8:5b:1d: 55:23:c7:6e:99:35:55:90:5a:5c:4d:f3:bf:8d:9d:13:8b:83: e7:e8:ae:01:fa:44:1d:2a:b7:ce:dc:0c:c4:37:e0:e4:59:71: 57:71:5d:67:d4:ff:d3:a9:10:72:42:a0:11:1b:4d:28:0c:c1: d0:74:19:00:9d:62:49:35:df:60:b8:42:d2:b8:3a:f4:79:f6: 86:4c:db:5f:9d:db:ed:40:b9:13:d3:2d:16:1e:37:1b:19:68: 9d:80:f9:4d:59:62:f1:b6:c9:4f:a6:ac:d4:86:d1:d4:47:0e: 12:f0:a0:a5:84:93:b7:05:46:b3:76:e7:ca:6b:d1:5c:e5:83: 8b:f6:19:56:8a:95:c2:af:b4:6d:0a:f0:50:8b:17:c3:d3:06: 0f:3a:f7:d0:0c:42:10:d5:1c:f5:ec:a0:83:97:61:d3:47:79: 06:13:89:76:cd:c0:73:17:58:55:81:53:0c:31:7d:1d:53:2c: 03:df:05:bd:a4:99:da:f3:dd:b5:f0:f6:05:47:7e:cd:61:5b: 3b:6b:16:44 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBNTgxMTAvBgNVBAUTKDJEMTgwNkJCNzlGN0VDNkE2OTdDQjBBNjVBMjFFNUNC MTIyRkRFNzYwHhcNMjYwNDA1MDUwODU0WhcNMjYwNDEyMDUwODU0WjAYMRYwFAYD VQQDEw02OWQxZWU2Ni00NzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVsY/74GOswC7iTbRFZIqBhDAvvAugfHHBbiDex9Wo1wwdMWyq2h4o/C1R3T 17yoWkx29LnJiQudwGgWiROkfwg0+UBZHyV9af+ycqt0LiTeArArAyKZAk+tmGc+ 7AaMyG441aPolD64hHFhGjwWVF0gSsvTFfHraekCRWRTmUfTcYWAKc2pTikTsCgc DKmdToezJmqK/1YhZA2rddDcX8zTLcR2RbehFxbvHcpR+T1M23ZJYPAffAENcPTX 68AuvjwqicXbf6m46I9t4KMp1ZxKkwEYfHQaRoaPLfIbX/E/MrWaHFxF4W8L5Jr7 1W1C6u2z5p6houdi1ML+rZA04wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCiG5hQI cyPB+Ei5XiqtZwkqqYljMB8GA1UdIwQYMBaAFC0YBrt59+xqaXywploh5csSL952 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUE1OC9ERjY5NEJBNjdC RkQxMUVGQTdCOEVCNUNDNEY5QUUwMi9MUmdHdTNuMzdHcHBmTENtV2lIbHl4SXYz blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xSZ0d1M24zN0dwcGZMQ21XaUhseXhJdjNuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUE1OC9ERjY5NEJBNjdCRkQxMUVGQTdCOEVCNUNDNEY5QUUwMi9MUmdHdTNuMzdH cHBmTENtV2lIbHl4SXYzblkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAvnuDsSlqMQ4819EMVwZlaQxH9Rr9KZ09HcbJ/ow/FU4yXMRtqvB3HKRh7Vg 9bCUw+i6qFsdVSPHbpk1VZBaXE3zv42dE4uD5+iuAfpEHSq3ztwMxDfg5FlxV3Fd Z9T/06kQckKgERtNKAzB0HQZAJ1iSTXfYLhC0rg69Hn2hkzbX53b7UC5E9MtFh43 GxlonYD5TVli8bbJT6as1IbR1EcOEvCgpYSTtwVGs3bnymvRXOWDi/YZVoqVwq+0 bQrwUIsXw9MGDzr30AxCENUc9eygg5dh00d5BhOJds3AcxdYVYFTDDF9HVMsA98F vaSZ2vPdtfD2BUd+zWFbO2sWRA== -----END CERTIFICATE-----Generated at Sun Apr 5 23:49:58 2026 by rpki-client