$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft File: R-lr-DG7PMQ7TweEJj5ylYddVRY.mft (raw, json) Hash identifier: /2Xw6GMLt5pSqFcVd+61MhhZMNHoISuN5Z7/Rkzbwcw= Subject key identifier: 24:FE:81:46:CC:62:FF:BB:50:34:F0:5E:BD:D0:F3:BC:97:54:D0:27 Authority key identifier: 47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 Certificate issuer: /CN=A91C4204/serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft Manifest number: 98 Signing time: Tue 03 Mar 2026 06:59:01 +0000 Manifest this update: Tue 03 Mar 2026 06:59:00 +0000 Manifest next update: Tue 10 Mar 2026 06:59:00 +0000 Files and hashes: 1: R-lr-DG7PMQ7TweEJj5ylYddVRY.crl (hash: EUpExJxg+7JbzLK37iXwyalXF5CCZQUqD6wl3OkU8r0=) 2: CA2D4952300911F0AB675D3EC4F9AE02.roa (hash: oMWjSrq7UBr0grnE1BuEzNLinF6a33GQ38fOzOclHV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 06:59:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4204, serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Validity Not Before: Mar 3 06:59:00 2026 GMT Not After : Mar 10 06:59:00 2026 GMT Subject: CN=69a686b5-553a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1f:90:33:f0:34:b8:b2:0e:8b:27:a7:8e:3c: e4:3a:cf:3d:0c:dd:7e:1d:6e:b6:be:da:8f:2b:d1: 91:23:ff:13:f2:e0:1c:94:76:55:07:51:d8:dc:2b: 6b:ab:fe:fa:05:6b:5f:74:da:b2:44:9c:92:67:bc: 17:ce:90:73:45:ea:55:59:42:6f:81:db:e3:46:fb: 16:95:5a:24:97:4e:36:2b:36:c9:fe:90:bd:1b:bd: e2:7b:e4:1c:ff:2f:95:a5:0a:fb:fc:f9:f8:ab:5d: 74:83:1c:4a:3c:a2:be:d3:fa:3d:59:a1:9b:28:5b: b2:33:fc:ec:8d:a3:93:a8:93:d7:88:04:38:2a:f3: 08:bc:a2:1a:a3:95:5a:d4:d6:21:4b:64:8e:6b:50: f5:7c:b2:df:0f:28:23:d0:f9:d4:a6:f5:8f:d7:b3: 8b:17:9c:d3:07:09:1c:91:33:51:ae:6d:b8:a4:de: 87:f6:0f:f3:e8:5f:d3:eb:56:05:7a:16:3a:1c:ac: b6:73:19:a7:4c:a9:06:9e:4d:d0:44:75:54:05:8d: 9e:7d:b1:91:44:85:e2:e6:84:b5:f6:af:1b:1c:86: 32:22:1b:69:86:9c:6f:68:ef:12:ac:f8:ee:6a:12: 0c:af:ee:89:73:4c:6d:18:e5:55:5a:53:91:94:6a: aa:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:FE:81:46:CC:62:FF:BB:50:34:F0:5E:BD:D0:F3:BC:97:54:D0:27 X509v3 Authority Key Identifier: keyid:47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:64:3b:5c:76:46:cf:9f:e9:21:f4:83:eb:ae:ea:81:75:aa: a1:45:14:7f:c9:4b:48:d3:f3:da:88:ca:f0:21:68:e7:2d:39: 48:ac:25:fe:85:eb:b7:87:7c:09:08:49:05:66:fc:26:b7:7f: ff:77:4b:0f:10:10:ee:2f:94:4f:2b:dd:a1:a1:76:77:8e:79: dc:48:f3:03:96:2a:ea:fa:51:d0:11:cc:b7:31:7a:ec:24:ef: 38:25:a8:fd:4e:00:80:38:de:cf:3f:a8:72:25:18:87:a8:ad: 07:0c:f5:77:5a:6d:39:db:05:f8:7a:e7:f1:81:63:15:f4:9e: af:9a:c9:aa:2a:44:af:f3:32:1b:0d:f1:48:ec:f5:4b:b3:84: 53:84:b5:8f:cd:08:28:6c:8c:53:2b:c1:f5:f3:08:69:d7:ca: 3a:79:4c:b6:e7:11:d0:9b:a3:78:20:43:31:de:73:55:de:db: 1c:de:d6:dc:ef:ae:9b:ca:97:85:ce:28:f6:73:8f:32:fa:ad: 33:b6:6a:82:33:5c:ca:f6:f7:5c:1b:8d:0a:28:94:1d:c3:ad: 1e:a7:21:78:75:d1:cb:f9:74:8f:3d:7b:a1:92:da:e9:25:7d: 4e:64:84:f7:f6:a0:c6:32:97:1d:9b:56:c3:20:6e:27:86:87: 96:17:60:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQyMDQxMTAvBgNVBAUTKDQ3RTk2QkY4MzFCQjNDQzQzQjRGMDc4NDI2M0U3Mjk1 ODc1RDU1MTYwHhcNMjYwMzAzMDY1OTAwWhcNMjYwMzEwMDY1OTAwWjAYMRYwFAYD VQQDEw02OWE2ODZiNS01NTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzx+QM/A0uLIOiyenjjzkOs89DN1+HW62vtqPK9GRI/8T8uAclHZVB1HY3Ctr q/76BWtfdNqyRJySZ7wXzpBzRepVWUJvgdvjRvsWlVokl042KzbJ/pC9G73ie+Qc /y+VpQr7/Pn4q110gxxKPKK+0/o9WaGbKFuyM/zsjaOTqJPXiAQ4KvMIvKIao5Va 1NYhS2SOa1D1fLLfDygj0PnUpvWP17OLF5zTBwkckTNRrm24pN6H9g/z6F/T61YF ehY6HKy2cxmnTKkGnk3QRHVUBY2efbGRRIXi5oS19q8bHIYyIhtphpxvaO8SrPju ahIMr+6Jc0xtGOVVWlORlGqqmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCT+gUbM Yv+7UDTwXr3Q87yXVNAnMB8GA1UdIwQYMBaAFEfpa/gxuzzEO08HhCY+cpWHXVUW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDIwNC80NDFCNTA1MjMw MDkxMUYwQTBBQTdEM0RDNEY5QUUwMi9SLWxyLURHN1BNUTdUd2VFSmo1eWxZZGRW UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1ItbHItREc3UE1RN1R3ZUVKajV5bFlkZFZSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDIwNC80NDFCNTA1MjMwMDkxMUYwQTBBQTdEM0RDNEY5QUUwMi9SLWxyLURHN1BN UTdUd2VFSmo1eWxZZGRWUlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmmQ7XHZGz5/pIfSD667qgXWqoUUUf8lLSNPz2ojK8CFo5y05SKwl/oXrt4d8 CQhJBWb8Jrd//3dLDxAQ7i+UTyvdoaF2d4553EjzA5Yq6vpR0BHMtzF67CTvOCWo /U4AgDjezz+ociUYh6itBwz1d1ptOdsF+Hrn8YFjFfSer5rJqipEr/MyGw3xSOz1 S7OEU4S1j80IKGyMUyvB9fMIadfKOnlMtucR0JujeCBDMd5zVd7bHN7W3O+um8qX hc4o9nOPMvqtM7ZqgjNcyvb3XBuNCiiUHcOtHqcheHXRy/l0jz17oZLa6SV9TmSE 9/agxjKXHZtWwyBuJ4aHlhdgHg== -----END CERTIFICATE-----Generated at Wed Mar 4 08:21:06 2026 by rpki-client