$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft File: lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json) Hash identifier: PSg+FwLOPQ5FQTOiK1nyvFEExifBEqTtIkv0mi5IMYs= Subject key identifier: AA:EA:67:F2:57:3D:DC:A9:1D:DC:01:DB:60:18:5B:83:89:98:E8:15 Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD Certificate issuer: /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft Manifest number: 0124 Signing time: Tue 03 Mar 2026 05:22:41 +0000 Manifest this update: Tue 03 Mar 2026 05:22:41 +0000 Manifest next update: Tue 10 Mar 2026 05:22:41 +0000 Files and hashes: 1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: PZcpnnxPOrokvES81WggLnhzs5BsrjCWes0J46YtFgE=) 2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: /fpFKtFcwh7KjBndTGfGIO4WW4Bx9KlPmCwqANIq6FA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D44BE, serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Validity Not Before: Mar 3 05:22:41 2026 GMT Not After : Mar 10 05:22:41 2026 GMT Subject: CN=69a67021-5ff7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9c:4f:1d:d3:f9:ea:09:11:30:65:25:e0:88: 7d:58:6a:e0:ae:80:8a:e1:8e:ca:56:02:80:51:3c: 5a:c0:86:05:69:6e:99:a6:57:8d:56:47:9b:c4:48: 97:90:bf:d5:38:a1:eb:e6:c8:96:50:33:f5:1d:dd: 9a:df:e8:86:12:3a:54:46:7f:30:b7:56:77:b4:86: ea:de:c5:c4:81:a2:5c:19:23:aa:da:a1:51:be:69: 77:83:f5:39:45:d1:2e:f1:11:57:8c:f0:35:fd:d0: 2d:ed:f2:ec:ff:49:de:77:c2:8e:68:fe:ff:6b:60: dd:48:19:de:2a:23:d2:02:9a:4a:46:95:bb:f6:c8: 6b:48:1b:10:4b:1e:2c:5d:03:cb:17:48:6f:a7:ae: b4:f9:ba:7b:bd:30:bb:fa:2e:e8:29:fc:e6:da:dc: e0:f5:da:03:e7:ce:f7:2b:9f:c0:e9:b6:dc:a9:5b: 3d:bd:9e:cc:8b:78:17:80:a1:26:65:5a:b7:9e:af: 48:69:7f:c2:73:59:b8:6a:74:c9:23:5f:2d:c6:d9: f3:96:1c:f1:a5:c3:49:93:0e:97:92:cc:b4:f7:9a: a0:d9:9c:b5:83:ec:8a:56:06:72:a5:03:e6:07:f0: 9a:06:36:ba:36:3f:73:8e:b2:bb:1b:b7:a6:7d:12: 19:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:EA:67:F2:57:3D:DC:A9:1D:DC:01:DB:60:18:5B:83:89:98:E8:15 X509v3 Authority Key Identifier: keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:2f:97:90:47:00:75:d7:3e:04:3d:02:b1:a5:b0:b8:9e:4c: ca:0a:27:7d:49:e3:c6:dc:99:c3:6f:18:62:f3:af:1e:bb:e3: ae:54:b6:6b:a8:19:5d:7a:51:bf:92:94:c2:23:d7:7f:64:be: 5d:1f:c7:a5:8f:ca:91:6d:2b:8a:4c:4e:c6:c9:b7:59:5c:43: 51:84:9b:2e:de:0d:96:a0:a7:96:c2:c4:db:72:00:00:12:16: 4c:3c:29:e6:6a:d6:4e:9b:f0:d9:96:40:cf:eb:f2:41:24:56: 22:42:36:42:3c:4a:25:b2:76:6b:b2:41:6c:6b:87:89:74:5e: 32:d4:5c:82:b5:ce:3c:b3:ef:19:51:03:9d:88:d8:74:f8:6a: 56:95:0a:72:bd:c6:cc:8a:2d:13:c8:18:a2:f6:e7:53:66:f5: 42:17:30:5d:92:ad:3c:93:52:fe:8c:9a:bd:41:c5:7e:c4:2f: e5:45:32:20:7e:bc:48:ae:9b:73:e0:5b:75:c2:fa:12:ab:bd: c6:54:0f:47:2e:14:68:3b:65:0e:69:5b:7a:4a:c4:b5:23:bf: 36:33:74:a4:57:b8:2f:a5:5d:1e:40:42:da:d9:73:cd:4e:e0: d6:6a:4b:2f:c9:88:45:6b:51:0f:5d:21:3b:8e:72:b3:bf:0b: 01:07:9e:ca -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0QkUxMTAvBgNVBAUTKDk1RjA5RDVFNUI4QkNENkY0QjRENjlCNUM5MzZDOTEy Rjc3RDJDRkQwHhcNMjYwMzAzMDUyMjQxWhcNMjYwMzEwMDUyMjQxWjAYMRYwFAYD VQQDEw02OWE2NzAyMS01ZmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5xPHdP56gkRMGUl4Ih9WGrgroCK4Y7KVgKAUTxawIYFaW6ZpleNVkebxEiX kL/VOKHr5siWUDP1Hd2a3+iGEjpURn8wt1Z3tIbq3sXEgaJcGSOq2qFRvml3g/U5 RdEu8RFXjPA1/dAt7fLs/0ned8KOaP7/a2DdSBneKiPSAppKRpW79shrSBsQSx4s XQPLF0hvp660+bp7vTC7+i7oKfzm2tzg9doD5873K5/A6bbcqVs9vZ7Mi3gXgKEm ZVq3nq9IaX/Cc1m4anTJI18txtnzlhzxpcNJkw6Xksy095qg2Zy1g+yKVgZypQPm B/CaBja6Nj9zjrK7G7emfRIZKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKrqZ/JX PdypHdwB22AYW4OJmOgVMB8GA1UdIwQYMBaAFJXwnV5bi81vS01ptck2yRL3fSz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDRCRS8wMjhBQkU0MjY5 MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpXOUxUV20xeVRiSkV2ZDlM UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmQ2RYbHVMelc5TFRXbTF5VGJKRXZkOUxQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDRCRS8wMjhBQkU0MjY5MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpX OUxUV20xeVRiSkV2ZDlMUDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKy+XkEcAddc+BD0CsaWwuJ5MygonfUnjxtyZw28YYvOvHrvjrlS2a6gZXXpR v5KUwiPXf2S+XR/HpY/KkW0rikxOxsm3WVxDUYSbLt4NlqCnlsLE23IAABIWTDwp 5mrWTpvw2ZZAz+vyQSRWIkI2QjxKJbJ2a7JBbGuHiXReMtRcgrXOPLPvGVEDnYjY dPhqVpUKcr3GzIotE8gYovbnU2b1QhcwXZKtPJNS/oyavUHFfsQv5UUyIH68SK6b c+BbdcL6Equ9xlQPRy4UaDtlDmlbekrEtSO/NjN0pFe4L6VdHkBC2tlzzU7g1mpL L8mIRWtRD10hO45ys78LAQeeyg== -----END CERTIFICATE-----Generated at Wed Mar 4 08:38:29 2026 by rpki-client