$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft File: lAiiAfAOWP6SWY7gOTkHi673d5U.mft (raw, json) Hash identifier: Aja1mCXL4NKyCP5/hB3R3gRN6arfwJMN6VngIQXB0nU= Subject key identifier: FD:42:12:E5:3A:7F:83:E4:0A:2D:63:DD:65:14:BC:C2:3A:52:19:3E Authority key identifier: 94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 Certificate issuer: /CN=A91A6F68/serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft Manifest number: D1 Signing time: Sat 07 Mar 2026 05:59:40 +0000 Manifest this update: Sat 07 Mar 2026 05:59:39 +0000 Manifest next update: Sat 14 Mar 2026 05:59:39 +0000 Files and hashes: 1: lAiiAfAOWP6SWY7gOTkHi673d5U.crl (hash: Y5d10sFR9El5CgWcKQztDHq6N8Ut/rVmq11HFdiN9aY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 02:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68, serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Validity Not Before: Mar 7 05:59:39 2026 GMT Not After : Mar 14 05:59:39 2026 GMT Subject: CN=69abbecb-de12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9b:c1:7b:81:d3:cf:9e:ce:b2:e6:cc:18:09: 5d:57:69:3a:3e:9d:e0:62:b2:0e:b4:be:11:0a:00: 8c:c5:a7:fb:a0:5a:92:dd:db:f1:b9:20:44:cb:7e: 3a:dd:ad:e0:77:1f:c7:8a:72:e9:51:16:c2:0d:d5: ec:b0:61:23:9e:c0:87:99:98:d9:cc:cd:10:ff:59: ba:e7:ca:4d:73:c2:ba:3e:6a:d9:f9:27:68:ea:af: da:6a:31:62:e3:3f:53:0d:e6:a5:19:1a:4c:1f:2b: eb:a9:d0:86:42:de:e9:88:b3:84:fb:fc:b3:c1:2e: 3c:4c:91:0f:42:80:7f:01:14:ff:05:57:84:9c:2e: fa:bf:d4:4a:5f:ec:ee:3f:63:56:c4:30:57:e5:e0: 0c:3b:33:82:5b:43:a8:ff:09:70:91:06:de:ec:d6: 9f:6d:06:6c:45:f6:7b:8a:01:c3:86:00:5f:a9:84: cb:73:b9:72:50:a1:ef:84:6a:83:ff:eb:1f:73:31: f2:12:0a:ce:bf:8f:31:2e:c6:b9:37:5e:69:52:f4: e4:d1:b6:54:47:22:77:c0:34:1d:d7:b9:b2:c8:4f: 5d:da:44:68:95:22:d7:3f:e6:3a:c0:4e:cc:c6:9e: 45:c4:f0:89:f5:0e:e0:52:d3:ab:1f:31:1b:1b:c4: 3e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:42:12:E5:3A:7F:83:E4:0A:2D:63:DD:65:14:BC:C2:3A:52:19:3E X509v3 Authority Key Identifier: keyid:94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:6f:e6:ee:1c:7b:da:24:b8:8b:ef:fa:d6:80:ad:4f:9d:36: 5a:3a:15:72:df:5c:0b:e5:95:b6:f4:4d:8e:6a:7f:07:02:d6: e2:a1:1f:f3:70:36:97:93:b1:48:c4:12:d5:6b:63:e0:14:b9: 80:23:82:f6:dc:07:a3:b4:e2:04:4a:5b:fb:7c:be:ff:e9:aa: bf:36:1a:35:78:16:71:23:cf:18:06:08:2f:55:d5:e5:61:77: dc:50:26:4c:f7:e0:80:a5:3a:dd:ce:60:08:db:32:88:da:f4: 8c:6a:53:18:ef:ef:a9:6f:12:0d:30:67:10:df:34:79:3e:0c: 24:ff:db:77:45:bb:33:3e:23:ec:28:10:cf:d6:14:40:63:54: 4f:29:b6:a4:b8:ac:05:17:11:c2:f0:07:37:bc:83:1f:91:61: ed:49:2d:b8:dd:e7:aa:4f:28:60:e7:92:9b:93:a4:65:d8:87: 4b:f3:3d:fe:96:46:f1:cc:9c:b1:61:a7:1e:cf:aa:44:4d:d6: e7:53:5f:9c:39:e5:bc:e7:8d:06:9f:4a:03:08:44:bb:85:ff: 9a:b4:f3:04:2f:1a:c8:4d:93:f8:15:c7:c6:ff:93:13:07:46: 87:70:00:b8:c9:b2:29:6b:5d:6b:e9:25:09:e6:c0:49:2d:99: 46:dd:62:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGNjgxMTAvBgNVBAUTKDk0MDhBMjAxRjAwRTU4RkU5MjU5OEVFMDM5MzkwNzhC QUVGNzc3OTUwHhcNMjYwMzA3MDU1OTM5WhcNMjYwMzE0MDU1OTM5WjAYMRYwFAYD VQQDEw02OWFiYmVjYi1kZTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JvBe4HTz57OsubMGAldV2k6Pp3gYrIOtL4RCgCMxaf7oFqS3dvxuSBEy346 3a3gdx/HinLpURbCDdXssGEjnsCHmZjZzM0Q/1m658pNc8K6PmrZ+Sdo6q/aajFi 4z9TDealGRpMHyvrqdCGQt7piLOE+/yzwS48TJEPQoB/ART/BVeEnC76v9RKX+zu P2NWxDBX5eAMOzOCW0Oo/wlwkQbe7NafbQZsRfZ7igHDhgBfqYTLc7lyUKHvhGqD /+sfczHyEgrOv48xLsa5N15pUvTk0bZURyJ3wDQd17myyE9d2kRolSLXP+Y6wE7M xp5FxPCJ9Q7gUtOrHzEbG8Q+7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP1CEuU6 f4PkCi1j3WUUvMI6Uhk+MB8GA1UdIwQYMBaAFJQIogHwDlj+klmO4Dk5B4uu93eV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkY2OC9CQTU2NUY1Q0RG MjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQNlNXWTdnT1RrSGk2NzNk NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xBaWlBZkFPV1A2U1dZN2dPVGtIaTY3M2Q1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkY2OC9CQTU2NUY1Q0RGMjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQ NlNXWTdnT1RrSGk2NzNkNVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGW/m7hx72iS4i+/61oCtT502WjoVct9cC+WVtvRNjmp/BwLW4qEf83A2l5Ox SMQS1Wtj4BS5gCOC9twHo7TiBEpb+3y+/+mqvzYaNXgWcSPPGAYIL1XV5WF33FAm TPfggKU63c5gCNsyiNr0jGpTGO/vqW8SDTBnEN80eT4MJP/bd0W7Mz4j7CgQz9YU QGNUTym2pLisBRcRwvAHN7yDH5Fh7UktuN3nqk8oYOeSm5OkZdiHS/M9/pZG8cyc sWGnHs+qRE3W51NfnDnlvOeNBp9KAwhEu4X/mrTzBC8ayE2T+BXHxv+TEwdGh3AA uMmyKWtda+klCebASS2ZRt1iHg== -----END CERTIFICATE-----Generated at Sat Mar 7 14:34:07 2026 by rpki-client