$ rpki-client -vvf rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft File: lSpNx8TWEJWYvu5awKIG0nuFxWo.mft (raw, json) Hash identifier: anpU89yhPsWMcovm2BuUpBLt77d2Y6ekeL9OWhP9mFY= Subject key identifier: 05:67:07:42:F8:6E:E9:3F:7A:A5:CF:B4:64:66:15:7D:5D:D5:3D:17 Authority key identifier: 95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A Certificate issuer: /CN=A912D71D/serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft Manifest number: 94 Signing time: Tue 03 Mar 2026 07:03:34 +0000 Manifest this update: Tue 03 Mar 2026 07:03:33 +0000 Manifest next update: Tue 10 Mar 2026 07:03:33 +0000 Files and hashes: 1: lSpNx8TWEJWYvu5awKIG0nuFxWo.crl (hash: k0SyaGHMLzVZv3830Mvtdu/pWG+ka4w2+fH+OsCY2Fw=) 2: 4002AE6236CF11F0AA705D26C4F9AE02.roa (hash: PYLDscz39D9VfGo8zcZSUWDhN0EWb8SMMJ0oBjb9APU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:03:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D71D, serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Validity Not Before: Mar 3 07:03:33 2026 GMT Not After : Mar 10 07:03:33 2026 GMT Subject: CN=69a687c5-675e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:88:17:dc:0e:08:e5:ef:f1:dd:6c:a9:10:c5: 3a:80:28:d5:12:30:96:e9:68:e5:f8:39:1c:68:a6: 66:82:a0:a0:66:9d:11:ee:8c:de:9d:5e:89:49:fa: e1:ca:0f:47:ea:6b:ee:57:60:64:99:c5:bc:f0:93: 62:28:62:9d:85:65:63:b0:16:2a:c4:75:d7:8b:a8: 45:3a:60:8c:39:e6:8f:68:88:6d:90:8b:a6:f5:f3: 84:4c:a4:0d:99:d8:b9:93:dd:40:6e:cb:f3:d6:8e: 19:0c:ae:c1:ec:77:36:03:d5:d5:f3:bf:5b:82:4e: 2b:5c:2b:98:2c:25:c7:8a:62:41:5f:94:6c:ff:ae: b8:0b:1f:58:27:3a:33:d4:a1:10:0d:68:e0:65:27: 25:21:16:6a:89:10:b7:98:e1:11:7c:b8:6b:7c:0a: e7:95:46:ad:64:82:7b:2a:20:8b:5c:d6:65:69:4a: c1:33:b7:c5:0b:b6:08:52:87:97:89:fe:4c:0a:c0: ca:1d:b1:d1:73:19:97:a2:a7:87:28:57:21:d7:de: 90:ce:28:67:21:1c:b8:11:59:bd:43:d0:81:9f:6e: 55:b9:b1:93:3d:f7:cf:4b:cd:7f:1e:57:08:0f:10: f7:a5:38:66:1c:10:11:9e:ae:7f:7c:f3:8e:2a:fc: ed:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:67:07:42:F8:6E:E9:3F:7A:A5:CF:B4:64:66:15:7D:5D:D5:3D:17 X509v3 Authority Key Identifier: keyid:95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:c7:8e:f1:c0:21:77:93:0d:75:c0:e0:01:35:e2:c3:2f:73: 16:31:30:c8:de:9c:90:5c:7f:2d:bd:78:94:ac:13:94:7f:48: c4:53:88:b1:72:b6:4e:51:db:8e:d5:de:d2:72:4b:62:21:d6: 58:73:f0:31:18:83:43:1b:96:db:f1:7b:9d:68:c8:b9:5a:7e: ba:e2:5a:ab:f2:3e:54:ef:c2:6a:63:bd:11:31:a6:4d:63:c2: 18:0f:e6:ed:7b:9b:49:7d:76:67:08:d9:df:b4:0d:97:28:df: dd:23:b4:a7:8b:c6:ca:7b:a2:b3:6d:db:0b:77:95:44:23:23: ce:99:ac:f1:df:ac:75:85:e9:8d:40:3b:ad:fe:a3:1b:a4:10: 7a:00:f7:09:47:c8:57:33:48:97:3c:f6:db:f6:d9:73:56:b1: ed:2d:97:3a:8b:bd:0b:e6:e3:5f:40:01:b6:74:5e:c9:59:a1: 44:4e:56:b4:d7:77:f7:4c:6b:dc:69:a2:00:61:13:ac:3c:a3: 37:db:ce:da:94:8b:52:a2:70:49:4d:ba:c6:fa:ce:13:94:50: 38:ad:a3:27:18:e0:14:cd:aa:22:2a:db:b1:e1:79:e9:ca:ef: 51:2d:8b:d7:b6:13:59:f0:35:8f:9c:8e:0e:f0:ca:ff:dc:23: d4:c0:94:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ3MUQxMTAvBgNVBAUTKDk1MkE0REM3QzRENjEwOTU5OEJFRUU1QUMwQTIwNkQy N0I4NUM1NkEwHhcNMjYwMzAzMDcwMzMzWhcNMjYwMzEwMDcwMzMzWjAYMRYwFAYD VQQDEw02OWE2ODdjNS02NzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnIgX3A4I5e/x3WypEMU6gCjVEjCW6Wjl+DkcaKZmgqCgZp0R7ozenV6JSfrh yg9H6mvuV2BkmcW88JNiKGKdhWVjsBYqxHXXi6hFOmCMOeaPaIhtkIum9fOETKQN mdi5k91Absvz1o4ZDK7B7Hc2A9XV879bgk4rXCuYLCXHimJBX5Rs/664Cx9YJzoz 1KEQDWjgZSclIRZqiRC3mOERfLhrfArnlUatZIJ7KiCLXNZlaUrBM7fFC7YIUoeX if5MCsDKHbHRcxmXoqeHKFch196QzihnIRy4EVm9Q9CBn25VubGTPffPS81/HlcI DxD3pThmHBARnq5/fPOOKvztTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAVnB0L4 buk/eqXPtGRmFX1d1T0XMB8GA1UdIwQYMBaAFJUqTcfE1hCVmL7uWsCiBtJ7hcVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDcxRC8xRTBGOTkyRTM2 Q0UxMUYwQTJBNjlDMUZDNEY5QUUwMi9sU3BOeDhUV0VKV1l2dTVhd0tJRzBudUZ4 V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTcE54OFRXRUpXWXZ1NWF3S0lHMG51RnhXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDcxRC8xRTBGOTkyRTM2Q0UxMUYwQTJBNjlDMUZDNEY5QUUwMi9sU3BOeDhUV0VK V1l2dTVhd0tJRzBudUZ4V28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM8eO8cAhd5MNdcDgATXiwy9zFjEwyN6ckFx/Lb14lKwTlH9IxFOIsXK2TlHb jtXe0nJLYiHWWHPwMRiDQxuW2/F7nWjIuVp+uuJaq/I+VO/CamO9ETGmTWPCGA/m 7XubSX12ZwjZ37QNlyjf3SO0p4vGynuis23bC3eVRCMjzpms8d+sdYXpjUA7rf6j G6QQegD3CUfIVzNIlzz22/bZc1ax7S2XOou9C+bjX0ABtnReyVmhRE5WtNd390xr 3GmiAGETrDyjN9vO2pSLUqJwSU26xvrOE5RQOK2jJxjgFM2qIirbseF56crvUS2L 17YTWfA1j5yODvDK/9wj1MCUig== -----END CERTIFICATE-----Generated at Wed Mar 4 08:21:58 2026 by rpki-client