$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft File: lC8l1zULID6onvLRzBULBbF7K4c.mft (raw, json) Hash identifier: O5i/iJm9pbXfAimJctqtaT2kXZkVUv+ekCFvnviZgXc= Subject key identifier: 8B:58:16:56:BE:89:C9:96:B8:05:1B:AE:1B:07:C7:DB:0D:FA:B1:FE Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 Certificate issuer: /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Certificate serial: 3544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft Manifest number: 3528 Signing time: Mon 02 Mar 2026 02:54:04 +0000 Manifest this update: Mon 02 Mar 2026 02:54:03 +0000 Manifest next update: Mon 09 Mar 2026 02:54:03 +0000 Files and hashes: 1: lC8l1zULID6onvLRzBULBbF7K4c.crl (hash: PpuJUYNT4SiQACz5dUuKue0Sk1a0hNNrCACODUIhmLQ=) 2: C098D762675111E9A0C4BB36C4F9AE02.roa (hash: naU1L3sA/vwcpXLmBU/QE/974IoqN32UsdXdqlCcaP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13636 (0x3544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FB1D, serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Validity Not Before: Mar 2 02:54:03 2026 GMT Not After : Mar 9 02:54:03 2026 GMT Subject: CN=69a4fbcc-3430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:41:66:f7:b9:55:e3:67:02:df:5e:6b:0a:c3: a7:61:be:7a:c2:5b:db:6a:6f:cc:f4:57:a2:b2:98: 01:20:d4:ff:94:c0:39:0e:01:b9:48:79:5e:92:81: e5:b2:79:ef:ba:f2:69:5d:e4:af:61:ec:b2:81:6b: 73:b0:5f:0d:a9:66:64:ad:45:8d:e6:a4:60:8b:5c: d9:2b:af:3d:07:3e:ce:1b:8b:11:57:eb:b4:3e:9d: 79:28:d0:d3:32:50:97:84:d2:54:11:83:e5:ac:8b: 40:08:a8:4a:32:97:e8:27:5d:11:d0:a6:b4:aa:c5: 75:7d:1e:69:72:7c:e4:19:92:99:34:96:cf:2f:05: 1c:32:39:16:72:38:70:2d:b3:5c:03:b4:02:64:71: e9:7a:4c:de:b0:02:5c:5e:89:a8:bd:e3:39:fd:ac: b7:99:8e:73:8f:e6:cd:7f:5d:85:3f:66:4a:9e:2c: ca:47:2c:f1:8f:39:43:60:1c:42:bc:12:7f:77:c6: 47:7b:0f:6f:5b:dd:1b:f8:78:b6:25:0a:94:1c:95: 36:f9:d0:ea:ab:f6:3a:e5:59:67:ac:34:78:e0:c4: 65:21:97:9b:9a:ef:43:a7:3a:ac:e6:eb:c9:10:b0: d0:6c:94:60:36:ef:45:02:6c:5b:aa:ee:1f:2d:06: 94:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:58:16:56:BE:89:C9:96:B8:05:1B:AE:1B:07:C7:DB:0D:FA:B1:FE X509v3 Authority Key Identifier: keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:17:93:06:8b:cb:66:34:ae:d7:1b:38:c3:6a:f6:20:0a:aa: aa:51:fe:de:90:03:64:aa:0b:a7:19:96:32:99:af:2e:d5:17: 0c:a7:31:c2:58:bc:27:f1:f0:a0:c3:b7:8f:7a:93:9d:81:f5: 52:65:5f:08:c4:e6:47:76:cf:56:dc:ca:a1:95:ee:5e:50:41: fa:88:28:da:56:b4:06:91:8f:db:e7:a7:e6:1b:5a:47:b1:98: 4d:2a:2e:ff:cf:78:1e:a5:0a:0e:76:1e:43:28:9a:84:e1:a7: 8c:00:6f:09:8e:34:f8:9e:b3:be:38:5c:3e:8d:0c:3d:c6:5f: 6e:47:06:c2:ed:09:5a:0b:9a:50:24:79:39:1b:0b:1d:04:de: 03:14:f0:75:ab:b1:5d:34:9e:1c:75:60:85:d9:a8:41:d5:44: ab:9c:b2:4e:82:07:c7:7a:fc:49:e0:b6:d7:9e:3d:65:14:2e: fc:7e:5a:b8:83:b1:d6:78:27:0e:f7:05:f0:92:84:91:05:bd: 03:73:17:6c:b3:e2:94:ad:5c:82:a0:46:21:12:7b:8a:06:89: 0e:af:0d:ba:8f:ab:73:9a:70:34:6f:c1:84:8a:33:fb:13:24: 39:d1:dd:14:1f:5e:2e:ea:66:51:3d:d6:bd:be:48:a7:6b:5a: 25:4d:19:7d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1 QjE3QjJCODcwHhcNMjYwMzAyMDI1NDAzWhcNMjYwMzA5MDI1NDAzWjAYMRYwFAYD VQQDEw02OWE0ZmJjYy0zNDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUFm97lV42cC315rCsOnYb56wlvbam/M9FeispgBINT/lMA5DgG5SHlekoHl snnvuvJpXeSvYeyygWtzsF8NqWZkrUWN5qRgi1zZK689Bz7OG4sRV+u0Pp15KNDT MlCXhNJUEYPlrItACKhKMpfoJ10R0Ka0qsV1fR5pcnzkGZKZNJbPLwUcMjkWcjhw LbNcA7QCZHHpekzesAJcXomoveM5/ay3mY5zj+bNf12FP2ZKnizKRyzxjzlDYBxC vBJ/d8ZHew9vW90b+Hi2JQqUHJU2+dDqq/Y65VlnrDR44MRlIZebmu9Dpzqs5uvJ ELDQbJRgNu9FAmxbqu4fLQaUvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFItYFla+ icmWuAUbrhsHx9sN+rH+MB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkIxRC9DNjg0Q0E5QzFEQUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElE Nm9udkxSekJVTEJiRjdLNGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANxeTBovLZjSu1xs4w2r2IAqqqlH+3pADZKoLpxmWMpmvLtUXDKcxwli8J/Hw oMO3j3qTnYH1UmVfCMTmR3bPVtzKoZXuXlBB+ogo2la0BpGP2+en5htaR7GYTSou /894HqUKDnYeQyiahOGnjABvCY40+J6zvjhcPo0MPcZfbkcGwu0JWguaUCR5ORsL HQTeAxTwdauxXTSeHHVghdmoQdVEq5yyToIHx3r8SeC21549ZRQu/H5auIOx1ngn DvcF8JKEkQW9A3MXbLPilK1cgqBGIRJ7igaJDq8Nuo+rc5pwNG/BhIoz+xMkOdHd FB9eLupmUT3Wvb5Ip2taJU0ZfQ== -----END CERTIFICATE-----Generated at Mon Mar 2 09:18:22 2026 by rpki-client