$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft File: LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft (raw, json) Hash identifier: QTze6MS9n1RSTQnw8SBNuJHFCPzMeWAndDIU5rHyo6M= Subject key identifier: D7:08:37:F4:4B:60:06:EA:A2:B2:C6:46:5A:A5:EF:52:E8:16:33:70 Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 02C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft Manifest number: 02C0 Signing time: Mon 02 Mar 2026 02:40:31 +0000 Manifest this update: Mon 02 Mar 2026 02:40:28 +0000 Manifest next update: Mon 09 Mar 2026 02:40:28 +0000 Files and hashes: 1: LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl (hash: u1ExvwpLom/w+8xFkZRpP/alflFYDPMzxJLk9LZCF4c=) 2: 49CEB44A28D111EDB364C870C4F9AE02.roa (hash: KYxgbKkbHxGZy90LePidqYYy5WjWj5ewerN5tHIii0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:40:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 709 (0x2c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28, serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: Mar 2 02:40:28 2026 GMT Not After : Mar 9 02:40:28 2026 GMT Subject: CN=69a4f89f-b86c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:85:70:bf:bf:15:57:7a:1b:c5:6e:76:e6:19: 81:7a:c5:28:85:90:f6:e1:40:8c:a0:e6:1f:1e:1f: 0d:42:dc:91:c6:86:6c:8e:c6:23:4f:5b:ef:25:2b: eb:ad:94:c3:a6:14:5d:01:88:d0:2f:01:88:41:b1: 00:77:f3:6c:54:ee:a3:0b:a6:f4:2a:b8:c8:c2:8f: 14:ba:8f:bd:97:de:1d:b1:bf:1e:5a:45:bd:98:5d: 0a:6f:0e:c6:69:f7:8e:a6:80:6b:9b:0e:f8:6e:34: 64:99:85:cd:11:24:04:13:7a:7a:2e:0c:b0:66:e4: 3f:a9:f8:d1:98:c0:dc:4d:28:46:65:83:de:07:94: 3f:54:40:69:1e:10:77:83:2c:db:9c:0f:fd:84:a0: 64:cf:5d:34:b6:7a:a3:ee:43:eb:34:60:46:f3:78: ad:f6:10:e4:a3:74:dd:71:ed:33:13:e7:9b:92:33: a3:89:6d:91:d7:f0:26:70:36:aa:3b:ef:fc:d7:ef: d9:72:53:88:d8:5d:c3:8e:51:77:cb:74:ea:4b:52: 3b:ac:8d:2a:29:57:d2:b6:5a:ba:14:5c:01:1a:1e: 78:81:8b:dc:c9:3f:f4:ad:11:59:ab:71:fa:3e:e7: 97:32:9b:36:3d:65:2f:cd:c7:fa:4b:29:4a:9f:f0: 63:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:08:37:F4:4B:60:06:EA:A2:B2:C6:46:5A:A5:EF:52:E8:16:33:70 X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:37:3a:88:ea:c6:3c:60:85:5d:dc:c8:2d:ac:fa:df:fb:55: 2b:4b:9d:17:7c:f1:34:0e:3a:48:7e:52:73:ba:0a:97:46:5d: 56:67:ff:91:0e:54:05:74:7a:6d:fd:ea:63:03:f5:b3:3d:5f: 80:ec:90:bf:1b:ba:f2:d1:39:24:dd:19:25:d9:31:c4:bb:71: 2b:0c:cd:7a:3e:09:4c:3e:4c:56:e3:ff:a3:c0:29:77:54:5c: 60:c5:2e:7a:81:0c:3c:6e:8d:8d:24:3b:5a:e8:42:f5:7c:ed: 6a:ee:8e:be:43:aa:97:8c:f7:19:f6:a9:91:d5:b4:eb:2b:3a: 54:df:ab:75:a8:93:50:4f:f0:11:0f:02:e2:02:7a:63:ae:87: ec:0a:7a:7f:8b:8b:5d:8a:45:3d:f7:c0:bb:fe:26:c2:3f:d3: 80:ab:aa:ec:6d:7e:bf:32:bd:f3:64:6a:51:e8:16:9c:04:b3: d0:52:20:53:da:d2:d4:d5:6b:87:b5:fb:7b:19:ab:ba:2c:3a: 24:9b:4d:ce:21:c5:18:b4:d7:79:cf:cb:40:82:10:dd:34:e6: 11:6f:83:9a:89:50:77:28:ec:6d:69:ef:4a:77:6a:9c:69:e3: e6:2e:a7:d4:a5:82:15:ee:73:b3:ac:c9:a5:7b:0c:30:07:c4: 94:8c:8e:07 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjYwMzAyMDI0MDI4WhcNMjYwMzA5MDI0MDI4WjAYMRYwFAYD VQQDEw02OWE0Zjg5Zi1iODZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYVwv78VV3obxW525hmBesUohZD24UCMoOYfHh8NQtyRxoZsjsYjT1vvJSvr rZTDphRdAYjQLwGIQbEAd/NsVO6jC6b0KrjIwo8Uuo+9l94dsb8eWkW9mF0Kbw7G afeOpoBrmw74bjRkmYXNESQEE3p6LgywZuQ/qfjRmMDcTShGZYPeB5Q/VEBpHhB3 gyzbnA/9hKBkz100tnqj7kPrNGBG83it9hDko3Tdce0zE+ebkjOjiW2R1/AmcDaq O+/81+/ZclOI2F3DjlF3y3TqS1I7rI0qKVfStlq6FFwBGh54gYvcyT/0rRFZq3H6 PueXMps2PWUvzcf6SylKn/BjjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNcIN/RL YAbqorLGRlql71LoFjNwMB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QyOC80QkRBRUVEQzI4Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0 QmpQX21Kc2YweWwzUHNPcWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjDc6iOrGPGCFXdzILaz63/tVK0udF3zxNA46SH5Sc7oKl0ZdVmf/kQ5UBXR6 bf3qYwP1sz1fgOyQvxu68tE5JN0ZJdkxxLtxKwzNej4JTD5MVuP/o8Apd1RcYMUu eoEMPG6NjSQ7WuhC9Xztau6OvkOql4z3GfapkdW06ys6VN+rdaiTUE/wEQ8C4gJ6 Y66H7Ap6f4uLXYpFPffAu/4mwj/TgKuq7G1+vzK982RqUegWnASz0FIgU9rS1NVr h7X7exmruiw6JJtNziHFGLTXec/LQIIQ3TTmEW+DmolQdyjsbWnvSndqnGnj5i6n 1KWCFe5zs6zJpXsMMAfElIyOBw== -----END CERTIFICATE-----Generated at Mon Mar 2 07:31:48 2026 by rpki-client