$ rpki-client -vvf rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft File: Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft (raw, json) Hash identifier: +B6nyaEqvRT3NklxBcEwZP5RMa2EhDrYISuxUWEJExw= Subject key identifier: 91:B8:62:3E:11:07:CA:43:52:A2:8D:4D:0D:B1:F0:37:DA:F6:C0:E7 Authority key identifier: 2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA Certificate issuer: /CN=A9118009/serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft Manifest number: 01D2 Signing time: Sun 01 Mar 2026 04:22:54 +0000 Manifest this update: Sun 01 Mar 2026 04:22:54 +0000 Manifest next update: Sun 08 Mar 2026 04:22:54 +0000 Files and hashes: 1: Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl (hash: /pkueUjhD3275ifW4IHVGFck9Uge+TLMrqkEmgcQm68=) 2: 7AE89AF4513511EE88C64E20C4F9AE02.roa (hash: AlxGluDXo+zPvg73J8VYaA1E3y8KlMVbtV0XzPqPm/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:22:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118009, serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Validity Not Before: Mar 1 04:22:54 2026 GMT Not After : Mar 8 04:22:54 2026 GMT Subject: CN=69a3bf1e-a0d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:83:91:d5:e1:e2:25:48:54:7e:c1:e9:5a:44: 9e:fe:1c:be:5c:57:b3:4f:fd:51:9a:17:cb:a0:62: d2:c8:31:41:7d:64:9d:42:79:91:9e:da:bd:3f:22: b5:8f:b6:a3:b5:c4:0d:04:d0:2a:e6:2f:4d:f5:23: 62:f9:ed:a6:15:63:a5:7c:26:e9:65:81:2c:4d:18: 51:34:b2:9b:74:fb:4c:0a:cd:7a:1e:b6:12:04:d7: 18:1f:af:1f:51:7c:47:32:1e:9d:24:b6:70:0a:21: 71:41:f0:b4:bf:69:4b:3e:ba:6d:b7:ba:b6:3b:f8: 32:2c:9c:f2:01:64:a1:82:e4:f7:28:26:77:7d:e8: 9d:e3:5e:9c:68:e0:b6:3d:a3:38:8d:17:91:81:cb: 58:52:52:a9:63:ed:fb:00:c4:79:15:10:de:22:07: 2b:eb:33:9d:99:22:10:73:ed:17:ba:8e:bd:94:d6: 11:02:a9:59:af:93:8d:c3:ed:ff:2d:c0:52:46:83: 4f:13:c1:b6:17:7f:76:a8:a5:43:cb:51:96:65:37: 92:90:5b:c7:93:f9:d0:ac:9d:c2:c9:48:10:8c:03: 04:44:1f:e9:13:e4:0d:fb:b2:b3:a6:ac:c9:ca:96: 49:4a:85:94:55:0e:14:c7:7e:be:9e:eb:45:f9:6f: 9b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:B8:62:3E:11:07:CA:43:52:A2:8D:4D:0D:B1:F0:37:DA:F6:C0:E7 X509v3 Authority Key Identifier: keyid:2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:40:a0:bc:94:7c:4f:67:aa:53:99:08:00:ce:25:64:aa:c2: 1f:7e:d7:c1:20:18:3e:13:c3:03:45:a9:dd:c5:b7:c7:d1:5e: b2:3d:8e:93:b0:d8:1e:c7:60:a9:cb:28:50:e2:60:3c:7b:dd: 63:68:80:88:dc:46:78:84:e5:58:dd:e0:c5:2f:99:9e:1a:0a: 68:41:ea:a4:e8:10:eb:68:c9:69:b4:22:ad:e2:67:8c:fb:7f: 01:4f:60:e8:65:f9:c6:b1:8f:89:0d:d8:3f:57:39:5e:6b:6a: af:08:4c:91:1c:83:4e:a7:d2:fa:af:bb:e4:04:8a:eb:c8:49: 01:73:82:5c:4f:b8:5e:2d:13:99:c2:38:c3:52:e8:8f:48:1d: 80:ae:6f:9a:8e:cf:66:f9:d9:f8:4e:2c:37:79:a5:5e:6c:07: 15:91:6b:bc:9d:13:1a:11:48:9c:07:7a:e9:1e:99:76:26:38: 43:98:26:d3:b6:b6:21:db:f1:e4:89:4f:ab:61:12:55:65:21: cb:07:5f:a5:d0:96:91:d8:8b:dc:24:a1:cf:1e:5e:5f:c2:f8: dc:5a:98:a5:99:35:71:f9:c7:30:e6:9e:91:32:ed:49:60:27: 7b:5a:59:bb:5a:d2:63:85:48:f1:b3:47:76:ed:60:b4:b0:d5: 2f:c6:70:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMDkxMTAvBgNVBAUTKDJEQkVERDg4RUIyQjJEQzQ3Q0I1MzA5MEMzQTM4NTFG QzY1MjRFQ0EwHhcNMjYwMzAxMDQyMjU0WhcNMjYwMzA4MDQyMjU0WjAYMRYwFAYD VQQDDA02OWEzYmYxZS1hMGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4OR1eHiJUhUfsHpWkSe/hy+XFezT/1RmhfLoGLSyDFBfWSdQnmRntq9PyK1 j7ajtcQNBNAq5i9N9SNi+e2mFWOlfCbpZYEsTRhRNLKbdPtMCs16HrYSBNcYH68f UXxHMh6dJLZwCiFxQfC0v2lLPrptt7q2O/gyLJzyAWShguT3KCZ3feid416caOC2 PaM4jReRgctYUlKpY+37AMR5FRDeIgcr6zOdmSIQc+0Xuo69lNYRAqlZr5ONw+3/ LcBSRoNPE8G2F392qKVDy1GWZTeSkFvHk/nQrJ3CyUgQjAMERB/pE+QN+7KzpqzJ ypZJSoWUVQ4Ux36+nutF+W+bzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJG4Yj4R B8pDUqKNTQ2x8Dfa9sDnMB8GA1UdIwQYMBaAFC2+3YjrKy3EfLUwkMOjhR/GUk7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAwOS9FMzVBQ0FGNDUx MzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxjUjh0VENRdzZPRkg4WlNU c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xiN2RpT3NyTGNSOHRUQ1F3Nk9GSDhaU1Rzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAwOS9FMzVBQ0FGNDUxMzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxj Ujh0VENRdzZPRkg4WlNUc28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkECgvJR8T2eqU5kIAM4lZKrCH37XwSAYPhPDA0Wp3cW3x9Fesj2Ok7DYHsdg qcsoUOJgPHvdY2iAiNxGeITlWN3gxS+ZnhoKaEHqpOgQ62jJabQireJnjPt/AU9g 6GX5xrGPiQ3YP1c5XmtqrwhMkRyDTqfS+q+75ASK68hJAXOCXE+4Xi0TmcI4w1Lo j0gdgK5vmo7PZvnZ+E4sN3mlXmwHFZFrvJ0TGhFInAd66R6ZdiY4Q5gm07a2Idvx 5IlPq2ESVWUhywdfpdCWkdiL3CShzx5eX8L43FqYpZk1cfnHMOaekTLtSWAne1pZ u1rSY4VI8bNHdu1gtLDVL8Zw7g== -----END CERTIFICATE-----Generated at Sun Mar 1 22:24:29 2026 by rpki-client