$ rpki-client -vvf rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft File: lSpNx8TWEJWYvu5awKIG0nuFxWo.mft (raw, json) Hash identifier: S10QgBydd5/DOHnVy512Hw0yZLTKMsadIIfddyF7Zlc= Subject key identifier: 01:40:8A:D6:30:0C:7E:62:1D:B4:40:F7:43:13:ED:74:8A:2D:98:41 Authority key identifier: 95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A Certificate issuer: /CN=A912D71D/serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft Manifest number: 93 Signing time: Sun 01 Mar 2026 08:46:48 +0000 Manifest this update: Sun 01 Mar 2026 08:46:47 +0000 Manifest next update: Sun 08 Mar 2026 08:46:47 +0000 Files and hashes: 1: lSpNx8TWEJWYvu5awKIG0nuFxWo.crl (hash: Jb8YcglW/ogibsPRxBXy9Ik1aWYTsp7TG2lla8W1OOU=) 2: 4002AE6236CF11F0AA705D26C4F9AE02.roa (hash: PYLDscz39D9VfGo8zcZSUWDhN0EWb8SMMJ0oBjb9APU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:46:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D71D, serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Validity Not Before: Mar 1 08:46:47 2026 GMT Not After : Mar 8 08:46:47 2026 GMT Subject: CN=69a3fcf7-b51c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:69:f9:4b:1d:34:32:e4:d9:3f:44:32:28:06: 54:30:c2:a2:c7:f8:08:7d:a8:74:36:48:39:d8:eb: 20:b5:91:0b:f9:47:e2:7a:0d:bd:44:af:2d:d4:02: 28:1a:2a:50:f9:69:36:83:b0:0b:df:9f:7a:fb:ac: 51:5f:66:7b:ee:5d:65:38:52:b6:cd:d8:52:c6:7f: ca:00:22:09:ee:dc:0f:e8:1e:a5:f1:15:da:7c:60: eb:02:88:85:57:c2:95:3e:26:9b:88:30:cd:de:73: 3b:ea:c6:86:7c:11:b2:ea:75:f4:3a:bf:37:9b:25: 24:ad:6d:37:5d:b8:da:0c:9b:e5:e8:1f:35:74:c9: 04:91:b7:c0:0e:f0:69:18:80:a4:45:63:4a:d5:db: 5d:99:ee:5e:ed:bf:bc:43:0d:23:bc:41:5e:4d:c1: 13:1c:a6:82:bf:d0:ac:ad:9f:c7:cb:27:4d:bd:1b: 56:83:5d:47:02:82:ee:81:b1:26:b0:83:38:a5:c3: df:a4:c4:3e:d5:08:9f:9b:91:00:63:9d:b4:43:d6: b9:15:cb:42:27:1b:6e:cf:85:31:7c:e1:49:84:ae: 12:a9:73:2f:1a:98:d1:09:39:25:a2:d9:00:47:57: 2b:c2:a7:08:b2:23:95:b1:42:f0:cb:36:09:a4:34: 55:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:40:8A:D6:30:0C:7E:62:1D:B4:40:F7:43:13:ED:74:8A:2D:98:41 X509v3 Authority Key Identifier: keyid:95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:07:af:19:31:24:41:f1:d4:4a:99:ec:c9:15:3f:6c:75:61: ae:7c:47:c7:a6:07:28:9f:d0:90:e9:86:24:10:25:67:80:ee: f1:f6:1c:ca:b5:3e:83:44:62:c9:98:ae:0e:c2:74:f9:77:70: d5:ff:fd:94:a2:ae:63:a0:26:17:7b:11:4a:af:0e:92:96:84: c5:1d:c4:e8:c4:e2:21:11:cd:e0:b1:37:88:a2:e8:dd:12:61: 74:97:f9:6c:bc:b0:5d:1a:ab:53:c0:86:4d:8e:d8:a5:4e:43: 2e:c1:6d:f0:3c:06:7b:b2:7a:03:2c:ce:e0:4e:54:13:e8:99: 16:d4:e8:57:cf:3c:30:3d:38:2c:94:f1:cb:fa:e5:28:0f:c9: c5:77:dc:1e:15:ce:9c:2c:3a:b9:62:86:c3:ab:db:66:04:7e: 14:89:ca:a2:95:9c:80:69:f9:fc:b9:85:54:76:65:af:26:71: 19:1e:6e:14:92:8e:94:69:42:6e:55:e6:c2:4e:bc:50:c7:97: 17:dd:e3:29:a5:32:52:23:58:56:c0:26:22:29:b3:37:df:d3: b1:f1:cf:a9:56:b3:2d:4f:e7:c6:0b:f0:11:07:d9:8a:6f:24: 33:f9:55:87:6b:5a:b0:ca:4f:47:69:3e:dc:4e:d3:f8:26:00: e4:5d:45:dd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ3MUQxMTAvBgNVBAUTKDk1MkE0REM3QzRENjEwOTU5OEJFRUU1QUMwQTIwNkQy N0I4NUM1NkEwHhcNMjYwMzAxMDg0NjQ3WhcNMjYwMzA4MDg0NjQ3WjAYMRYwFAYD VQQDEw02OWEzZmNmNy1iNTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnmn5Sx00MuTZP0QyKAZUMMKix/gIfah0Nkg52OsgtZEL+Ufieg29RK8t1AIo GipQ+Wk2g7AL3596+6xRX2Z77l1lOFK2zdhSxn/KACIJ7twP6B6l8RXafGDrAoiF V8KVPiabiDDN3nM76saGfBGy6nX0Or83myUkrW03XbjaDJvl6B81dMkEkbfADvBp GICkRWNK1dtdme5e7b+8Qw0jvEFeTcETHKaCv9CsrZ/HyydNvRtWg11HAoLugbEm sIM4pcPfpMQ+1Qifm5EAY520Q9a5FctCJxtuz4UxfOFJhK4SqXMvGpjRCTklotkA R1crwqcIsiOVsULwyzYJpDRVtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAFAitYw DH5iHbRA90MT7XSKLZhBMB8GA1UdIwQYMBaAFJUqTcfE1hCVmL7uWsCiBtJ7hcVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDcxRC8xRTBGOTkyRTM2 Q0UxMUYwQTJBNjlDMUZDNEY5QUUwMi9sU3BOeDhUV0VKV1l2dTVhd0tJRzBudUZ4 V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTcE54OFRXRUpXWXZ1NWF3S0lHMG51RnhXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDcxRC8xRTBGOTkyRTM2Q0UxMUYwQTJBNjlDMUZDNEY5QUUwMi9sU3BOeDhUV0VK V1l2dTVhd0tJRzBudUZ4V28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWwevGTEkQfHUSpnsyRU/bHVhrnxHx6YHKJ/QkOmGJBAlZ4Du8fYcyrU+g0Ri yZiuDsJ0+Xdw1f/9lKKuY6AmF3sRSq8OkpaExR3E6MTiIRHN4LE3iKLo3RJhdJf5 bLywXRqrU8CGTY7YpU5DLsFt8DwGe7J6AyzO4E5UE+iZFtToV888MD04LJTxy/rl KA/JxXfcHhXOnCw6uWKGw6vbZgR+FInKopWcgGn5/LmFVHZlryZxGR5uFJKOlGlC blXmwk68UMeXF93jKaUyUiNYVsAmIimzN9/TsfHPqVazLU/nxgvwEQfZim8kM/lV h2tasMpPR2k+3E7T+CYA5F1F3Q== -----END CERTIFICATE-----Generated at Mon Mar 2 12:41:38 2026 by rpki-client