$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft File: LWNAd8yEe1nUBI1D4EszCWmP5jg.mft (raw, json) Hash identifier: bNZpMUCx/49cq/jmZ4BC1FpZPu/4j7C9hd5k0KK/Yy0= Subject key identifier: 9F:A0:FB:01:9A:BD:12:A8:D8:CC:04:29:83:A7:EB:E4:F0:15:A2:9E Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 03E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft Manifest number: 0344 Signing time: Tue 17 Mar 2026 01:24:40 +0000 Manifest this update: Tue 17 Mar 2026 01:24:39 +0000 Manifest next update: Tue 24 Mar 2026 01:24:39 +0000 Files and hashes: 1: LWNAd8yEe1nUBI1D4EszCWmP5jg.crl (hash: jlruzgyl57vyNRHhJeT9rhJQUw7Ja21asW6ZyyfmMHM=) 2: FECE3C3C855711EF8E79C52BC4F9AE02.roa (hash: NNYpj3betzAmhzyg69sOsd+IkKaVWYtVMEooK8d8Jhg=) 3: FDC6A888AEB111EE9A78E132C4F9AE02.roa (hash: WgHnF+HxD2J+KCfUlWfbyq/6s7oqiK0V3/6UPmCYXSU=) 4: E879EE7C144111EFB247B936C4F9AE02.roa (hash: ZeAGLGAA4h+CcuwE4PZxgCpOScaMQUl6R6qDfBF+VLY=) 5: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (hash: P6k6ZFgyd5A01gmUt+7pAxzOrjslbaS8z1K2UjgCjog=) 6: 430E4E387CC311F0A55B2081C4F9AE02.roa (hash: b357DS6un3095ihmJG/1qzltik8hgTz2G2EsqlSGWDw=) 7: 0B7CEEB07CC911F08411627BC4F9AE02.roa (hash: 6jds39GpIYDWTUvVrxm863ItczOC5PjSQTRWLznhaMU=) 8: F9A864386AAB11EF8FEBE576C4F9AE02.roa (hash: YySN/OEFOesvLCn2GkCFn3w0IA8S3T8IMu+C8KUfxLg=) 9: 94C13908C4AF11EDBCC55111C4F9AE02.roa (hash: m+YMSjzVUuc73W6hTfDFbMi0+yUuBUpgBYQofvaW6Ow=) 10: CA1A46101A5B11EE89B07267C4F9AE02.roa (hash: 2rNOWeXpsmPPeo00gkw3XFog2FCfRkn+qinn6OJcsSU=) 11: FD124A14CC5811EDBE5D203FC4F9AE02.roa (hash: neeN01r5VZ4YRUPHtpZwodLJIVHlwzKgdZUXHbEsINA=) 12: 755E6B82D21C11EEA166891AC4F9AE02.roa (hash: lBUP0TSzebAFXmoSTqeDqtFMO8rYhPyrBUR141U167M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Mar 2026 01:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 996 (0x3e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Mar 17 01:24:39 2026 GMT Not After : Mar 24 01:24:39 2026 GMT Subject: CN=69b8ad58-4bb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:31:c6:dc:d2:6e:fd:78:f2:00:ac:9e:ef:12: 17:08:77:6f:03:f1:20:b3:5a:cc:8a:cc:99:40:86: e0:73:81:cd:fd:03:0f:a3:ec:27:fa:b4:84:62:56: 21:51:44:f2:3c:35:79:9e:e3:d9:a2:d7:7c:1d:7c: be:42:dd:a5:5f:87:dd:11:04:c4:99:81:b9:a0:b9: 71:9d:8c:27:b5:19:84:32:c9:c5:07:6a:02:fd:6a: ad:e4:ee:7a:70:c9:95:b6:9e:8c:c5:c0:fb:78:df: 36:70:d3:cf:5b:53:9d:d1:2f:cd:fe:35:49:b0:37: 40:64:b8:32:94:2c:7e:23:a9:b9:bc:14:78:ac:9d: af:82:59:34:68:a0:99:b5:ae:e4:52:5e:fe:a9:f7: 29:1a:e9:89:67:7a:2f:28:65:c6:3e:6f:ef:f4:3f: e2:69:b1:62:20:c2:58:fc:97:8b:7e:3e:68:7a:61: b8:54:2c:c2:bf:4f:98:97:6e:9b:b5:12:97:59:95: b2:e0:3c:43:76:a6:eb:41:d0:29:a1:2c:58:0d:24: da:82:8b:b3:42:1c:b4:e3:d8:ea:3d:5b:e5:a2:ba: f7:c3:af:0f:a8:6f:b3:8a:5f:cc:36:08:90:dc:da: ef:6e:a6:d8:20:88:dc:17:f2:ec:30:8d:b8:25:d9: 5d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A0:FB:01:9A:BD:12:A8:D8:CC:04:29:83:A7:EB:E4:F0:15:A2:9E X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:fd:36:4b:e9:ca:1e:d5:f9:d7:6d:40:da:1b:d2:39:4f:96: 9f:8e:b9:c5:7c:dd:00:20:4a:b5:cd:b6:3c:34:f4:e1:86:5f: bd:d3:f9:e4:e3:e3:75:cd:3e:8f:44:8e:51:1f:d1:2c:26:ae: b6:59:8d:92:1d:f7:07:ee:88:2d:1e:53:40:6e:e7:4d:1b:3c: 6d:93:0b:16:c3:e3:bb:fa:9b:20:08:41:93:ce:80:29:e0:79: cc:c0:23:b6:e8:d5:04:2f:b9:c1:d8:aa:64:ea:34:90:f6:8b: 58:39:de:37:b5:20:85:7f:2e:94:99:8d:2a:67:d0:35:05:07: 10:d2:49:22:fb:34:05:31:69:fc:7b:ed:8c:75:da:d2:de:c2: 26:e1:90:26:c1:a5:54:1f:f4:58:5d:e9:c6:26:80:bd:e4:0e: c0:1e:f6:68:61:23:72:92:b4:28:b2:27:ab:e9:7f:fc:f5:ca: 7c:12:41:8d:84:dc:a0:15:9c:e1:b6:04:df:1a:7a:90:0b:65: a7:75:f3:fe:35:f2:86:5f:f0:54:06:3d:88:0c:fe:63:44:32: 61:5e:f7:ed:2f:f8:3c:ee:78:1e:4c:cb:a8:09:f3:86:de:c3: 81:f3:0a:f6:b0:e3:ca:73:61:7d:29:36:a8:01:ae:79:c8:d7: e4:72:f1:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjYwMzE3MDEyNDM5WhcNMjYwMzI0MDEyNDM5WjAYMRYwFAYD VQQDEw02OWI4YWQ1OC00YmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjHG3NJu/XjyAKye7xIXCHdvA/Egs1rMisyZQIbgc4HN/QMPo+wn+rSEYlYh UUTyPDV5nuPZotd8HXy+Qt2lX4fdEQTEmYG5oLlxnYwntRmEMsnFB2oC/Wqt5O56 cMmVtp6MxcD7eN82cNPPW1Od0S/N/jVJsDdAZLgylCx+I6m5vBR4rJ2vglk0aKCZ ta7kUl7+qfcpGumJZ3ovKGXGPm/v9D/iabFiIMJY/JeLfj5oemG4VCzCv0+Yl26b tRKXWZWy4DxDdqbrQdApoSxYDSTagouzQhy049jqPVvlorr3w68PqG+zil/MNgiQ 3NrvbqbYIIjcF/LsMI24JdldUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ+g+wGa vRKo2MwEKYOn6+TwFaKeMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjU4Ny80MTdENzFCNDkxODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUx blVCSTFENEVzekNXbVA1amcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAA/02S+nKHtX5121A2hvSOU+Wn465xXzdACBKtc22PDT04YZfvdP55OPjdc0+ j0SOUR/RLCautlmNkh33B+6ILR5TQG7nTRs8bZMLFsPju/qbIAhBk86AKeB5zMAj tujVBC+5wdiqZOo0kPaLWDneN7UghX8ulJmNKmfQNQUHENJJIvs0BTFp/HvtjHXa 0t7CJuGQJsGlVB/0WF3pxiaAveQOwB72aGEjcpK0KLInq+l//PXKfBJBjYTcoBWc 4bYE3xp6kAtlp3Xz/jXyhl/wVAY9iAz+Y0QyYV737S/4PO54HkzLqAnzht7DgfMK 9rDjynNhfSk2qAGuecjX5HLx9A== -----END CERTIFICATE-----Generated at Tue Mar 17 16:05:32 2026 by rpki-client