$ rpki-client -vvf rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft File: lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft (raw, json) Hash identifier: i6gYJ8uJx/+4qMJrFtzFZ8aXIZmr076oowCZrDb5xSs= Subject key identifier: C9:FA:DF:CD:ED:2B:03:5A:6C:C7:FA:09:96:8F:D1:03:21:3C:08:7C Authority key identifier: 96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 Certificate issuer: /CN=A91211D4/serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Certificate serial: 072F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft Manifest number: 070B Signing time: Mon 02 Mar 2026 02:29:42 +0000 Manifest this update: Mon 02 Mar 2026 02:29:41 +0000 Manifest next update: Mon 09 Mar 2026 02:29:41 +0000 Files and hashes: 1: lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl (hash: 7qOX1HESNfOL0cMcjMkQqqLOZrWJANSoBcE27O9weJo=) 2: 1C9DA52E9BD011F0AE2D7868C4F9AE02.roa (hash: kJRxLxZAkXPr0TVPlk3QZ3IleQyxvaLuHor998FaAvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:29:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1839 (0x72f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91211D4, serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Validity Not Before: Mar 2 02:29:41 2026 GMT Not After : Mar 9 02:29:41 2026 GMT Subject: CN=69a4f615-59a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:c6:0e:fe:73:16:4e:21:23:e5:8a:fd:cd:cd: 98:aa:48:5f:ee:21:d2:c3:db:f4:13:5d:10:b9:93: d4:ff:7c:18:06:f6:e0:f5:98:b1:ce:5f:09:ca:f0: c0:42:d9:8d:91:e8:10:a6:0a:01:49:cc:46:d4:db: e2:fe:7d:bb:0c:78:61:3e:aa:48:0b:1c:3d:48:dd: f7:0e:ec:8d:e3:67:cf:6b:04:ac:8e:e7:90:5a:54: 6f:b1:dc:9d:7b:39:fc:69:5b:01:84:93:8d:46:2e: 24:2c:a3:3c:5d:ce:77:6b:3f:a5:54:f1:ea:c9:ca: 00:5e:ee:e3:af:2e:32:d4:70:fb:3f:fd:d8:45:3f: c3:d4:fb:15:09:35:8e:47:a1:c8:4d:38:bf:69:4b: 53:79:1f:2e:77:6b:df:a9:f7:b4:97:8f:49:a3:b2: aa:31:20:e3:60:73:e6:a9:76:61:5c:c9:ba:50:41: c4:24:fb:fd:a5:0f:98:74:11:b4:8b:f3:ed:df:0b: 9b:51:06:58:01:ac:44:54:58:66:94:a3:0b:ab:24: 89:65:08:00:a7:e9:ed:e8:6f:2e:d9:cc:3a:c8:07: 1f:c0:5b:9e:c9:3b:0f:ec:6e:6d:ce:82:ee:cc:f0: 02:21:d3:f6:1a:da:36:45:c4:a5:c5:ec:2d:59:4f: 6d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:FA:DF:CD:ED:2B:03:5A:6C:C7:FA:09:96:8F:D1:03:21:3C:08:7C X509v3 Authority Key Identifier: keyid:96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:49:bf:58:d7:ff:31:c1:90:ad:50:7b:c9:60:a5:d3:18:2e: df:00:e3:09:2c:37:08:8e:1b:fa:e3:4d:0d:c8:b1:b6:08:cc: 88:50:a0:83:cd:5b:60:a2:82:05:bf:db:54:1e:3a:e8:ae:46: 42:85:81:ef:f0:09:c3:bb:bb:d3:81:d2:02:87:6d:fd:28:74: a5:28:4d:70:65:11:68:59:3f:2e:83:56:6e:34:6a:f6:b1:9b: 0d:50:ac:a1:35:93:70:78:22:9a:be:32:23:fc:04:08:a7:49: d6:6f:df:00:ba:bb:85:8a:46:b9:be:af:7e:88:f7:60:e5:12: ca:43:c0:91:34:4b:17:2a:46:df:c2:da:fe:ee:50:3b:50:ed: 19:97:79:b0:f7:bf:73:c0:25:4d:e0:4e:99:91:74:3c:45:3c: 6c:3a:51:57:00:68:43:4e:7d:e5:dc:96:23:69:3d:59:65:8f: a4:54:8e:c3:9f:3f:b9:12:d0:13:15:2e:2c:3c:da:a9:ef:5f: cd:87:c5:ae:f7:2d:59:07:48:89:ee:36:f8:1f:03:f3:bf:d7: 03:5e:15:e4:08:76:f1:6b:47:e3:df:41:b1:a7:fd:72:5e:62: 00:f2:38:f6:f9:05:e8:60:c3:2b:25:76:d4:ee:a1:cd:73:96: c7:1d:77:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjExRDQxMTAvBgNVBAUTKDk2OEQyQUFBNjE2OENCNDk2OTQ0QTcyNzAxOEFGQjQy QTI2RTMxRTEwHhcNMjYwMzAyMDIyOTQxWhcNMjYwMzA5MDIyOTQxWjAYMRYwFAYD VQQDEw02OWE0ZjYxNS01OWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5cYO/nMWTiEj5Yr9zc2Yqkhf7iHSw9v0E10QuZPU/3wYBvbg9Zixzl8JyvDA QtmNkegQpgoBScxG1Nvi/n27DHhhPqpICxw9SN33DuyN42fPawSsjueQWlRvsdyd ezn8aVsBhJONRi4kLKM8Xc53az+lVPHqycoAXu7jry4y1HD7P/3YRT/D1PsVCTWO R6HITTi/aUtTeR8ud2vfqfe0l49Jo7KqMSDjYHPmqXZhXMm6UEHEJPv9pQ+YdBG0 i/Pt3wubUQZYAaxEVFhmlKMLqySJZQgAp+nt6G8u2cw6yAcfwFueyTsP7G5tzoLu zPACIdP2Gto2RcSlxewtWU9t6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMn6383t KwNabMf6CZaP0QMhPAh8MB8GA1UdIwQYMBaAFJaNKqphaMtJaUSnJwGK+0KibjHh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTFENC9BOUY0OTY1Mjg2 Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kwbHBSS2NuQVlyN1FxSnVN ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvMHFxbUZveTBscFJLY25BWXI3UXFKdU1lRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTFENC9BOUY0OTY1Mjg2Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kw bHBSS2NuQVlyN1FxSnVNZUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFkm/WNf/McGQrVB7yWCl0xgu3wDjCSw3CI4b+uNNDcixtgjMiFCgg81bYKKC Bb/bVB466K5GQoWB7/AJw7u704HSAodt/Sh0pShNcGURaFk/LoNWbjRq9rGbDVCs oTWTcHgimr4yI/wECKdJ1m/fALq7hYpGub6vfoj3YOUSykPAkTRLFypG38La/u5Q O1DtGZd5sPe/c8AlTeBOmZF0PEU8bDpRVwBoQ0595dyWI2k9WWWPpFSOw58/uRLQ ExUuLDzaqe9fzYfFrvctWQdIie42+B8D87/XA14V5Ah28WtH499Bsaf9cl5iAPI4 9vkF6GDDKyV21O6hzXOWxx13qA== -----END CERTIFICATE-----Generated at Mon Mar 2 11:21:20 2026 by rpki-client