$ rpki-client -vvf rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft File: Lz71uQE3FOMXTGcArgSCTi8FwjA.mft (raw, json) Hash identifier: Y/jg3yEAYYym7TweXeCW1U+y73ezGKxgtL+5ALb0FUo= Subject key identifier: 62:4D:F3:BC:C5:6B:F0:91:D5:B9:91:E9:13:92:CE:C9:7C:B4:6C:E3 Authority key identifier: 2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 Certificate issuer: /CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Certificate serial: 03D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft Manifest number: 03A4 Signing time: Mon 02 Mar 2026 01:11:26 +0000 Manifest this update: Mon 02 Mar 2026 01:11:24 +0000 Manifest next update: Mon 09 Mar 2026 01:11:24 +0000 Files and hashes: 1: Lz71uQE3FOMXTGcArgSCTi8FwjA.crl (hash: kIIDaeXubkr+VOo2hcM0otGF/EdM9I+ak7ybogl6KNw=) 2: 1BC3E9F8D0F711EC8673072FC4F9AE02.roa (hash: TSL+MTPK8EgRMcMjr6qrtFpszOvhkzRM0QdAHqJaU40=) 3: 196C52A8D0F711EC8673072FC4F9AE02.roa (hash: 9isDfhzAiD/lHOxq4r19J9IhtSqgH/VDgO9RTET6Oqo=) 4: 6920E4D8D0F411EC8DAD6D11C4F9AE02.roa (hash: c2lo54QcjHvK6TZ8I450zd6helgARdymi5j3sxVLHME=) 5: 19E46D60D0F711EC8673072FC4F9AE02.roa (hash: yi7NYs8PxhwuWWuOtg4OuRxpExkIea04i2z4LtVyM0w=) 6: 69C96612D0F411EC8DAD6D11C4F9AE02.roa (hash: HgcggV8BxU3DsnfnAjE7D8jFk5D0BasQaQRqwA0EAKs=) 7: 6A430D5AD0F411EC8DAD6D11C4F9AE02.roa (hash: vSHf1X3O2nMKh82RanHECAwvzlkFPBFjzTmLD8chpCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:11:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 978 (0x3d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91346B1, serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Validity Not Before: Mar 2 01:11:24 2026 GMT Not After : Mar 9 01:11:24 2026 GMT Subject: CN=69a4e3bd-b889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:41:dc:3c:59:cf:10:dd:81:b3:8a:b9:74:09: f1:e3:40:31:a6:a3:8b:8c:f4:94:c9:84:df:3c:19: fa:37:38:c1:3b:23:33:ed:62:8c:52:8d:8e:81:3c: 8a:ea:7b:f5:e9:df:85:0c:64:ec:b3:87:7b:9d:b8: 19:23:c1:8e:96:9c:82:6c:50:e3:f5:c8:ec:41:fe: 99:b9:6d:46:8f:af:cc:ce:6e:59:84:98:f7:5f:39: 91:2b:15:62:d2:78:ee:2c:cb:ab:91:88:f5:6a:f8: d4:6f:4b:61:b9:70:d6:c8:b9:1a:35:32:e0:db:f5: 00:a8:ad:01:cc:39:e9:66:c2:a3:0a:e8:9a:f8:bb: b0:38:83:28:1f:ca:c6:fd:d8:aa:ed:5e:46:7d:05: 4b:b0:91:f6:85:cf:e7:97:86:38:b6:fa:02:8c:29: 89:9a:f6:34:71:79:7d:c0:59:9a:82:69:e2:22:91: 7b:02:09:b1:2f:30:3e:e7:56:af:8a:d8:34:b7:c3: 49:03:69:97:2a:ce:27:90:8d:1c:92:16:a2:4f:9b: 77:17:4e:ad:c6:6a:28:9d:74:1b:47:01:c2:bd:8a: 7f:2e:5b:07:a8:30:35:be:1d:12:95:6a:30:41:b6: 22:a5:93:37:28:96:fc:69:c5:f5:cd:50:b6:07:da: 7a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:4D:F3:BC:C5:6B:F0:91:D5:B9:91:E9:13:92:CE:C9:7C:B4:6C:E3 X509v3 Authority Key Identifier: keyid:2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:bb:a7:a4:b5:bc:a5:48:81:4a:a4:ee:80:7f:ce:8d:87:95: ea:07:b1:ea:77:67:64:d7:57:b6:e6:41:83:06:68:ab:3b:e3: af:4b:5f:8b:22:7f:c3:88:ce:34:cf:81:3d:3b:68:f4:7e:13: d5:8c:bd:a5:ef:b0:dc:27:88:30:7d:7e:85:94:a3:dd:b9:0c: 3e:e4:50:71:f8:d5:5d:6e:dd:ec:ce:ee:77:38:63:46:12:c6: 30:42:bb:fb:33:ca:6a:ea:3d:c1:d7:62:38:5d:48:ae:13:9e: 11:da:38:e1:82:ee:30:73:ba:c6:cc:01:d8:be:db:e7:c0:d4: 8b:42:1b:3f:c1:36:71:dd:d9:df:ee:56:bc:0d:b2:44:2f:a8: d4:fb:dc:a2:9a:76:ca:17:63:2f:66:df:08:56:4b:cf:81:57: 01:38:13:a0:3f:3b:f0:49:77:57:68:7f:74:25:b3:e9:cc:c4: dc:ee:16:5c:1c:c5:53:a6:de:99:33:1c:bd:4f:07:5f:95:10: 39:be:29:35:53:21:0e:67:e8:89:31:43:7c:65:63:da:b2:31: e7:11:46:b3:a7:60:0a:85:f8:f6:ba:5d:76:f7:ed:d8:49:18: 32:94:17:4d:39:10:da:d4:13:0a:9b:6a:08:15:e7:0e:0c:64: 17:3a:e0:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ2QjExMTAvBgNVBAUTKDJGM0VGNUI5MDEzNzE0RTMxNzRDNjcwMEFFMDQ4MjRF MkYwNUMyMzAwHhcNMjYwMzAyMDExMTI0WhcNMjYwMzA5MDExMTI0WjAYMRYwFAYD VQQDEw02OWE0ZTNiZC1iODg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0HcPFnPEN2Bs4q5dAnx40AxpqOLjPSUyYTfPBn6NzjBOyMz7WKMUo2OgTyK 6nv16d+FDGTss4d7nbgZI8GOlpyCbFDj9cjsQf6ZuW1Gj6/Mzm5ZhJj3XzmRKxVi 0njuLMurkYj1avjUb0thuXDWyLkaNTLg2/UAqK0BzDnpZsKjCuia+LuwOIMoH8rG /diq7V5GfQVLsJH2hc/nl4Y4tvoCjCmJmvY0cXl9wFmagmniIpF7AgmxLzA+51av itg0t8NJA2mXKs4nkI0ckhaiT5t3F06txmoonXQbRwHCvYp/LlsHqDA1vh0SlWow QbYipZM3KJb8acX1zVC2B9p6/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGJN87zF a/CR1bmR6ROSzsl8tGzjMB8GA1UdIwQYMBaAFC8+9bkBNxTjF0xnAK4Egk4vBcIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDZCMS85QTBFQ0UxMEQw RjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZPTVhUR2NBcmdTQ1RpOEZ3 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6NzF1UUUzRk9NWFRHY0FyZ1NDVGk4RndqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDZCMS85QTBFQ0UxMEQwRjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZP TVhUR2NBcmdTQ1RpOEZ3akEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeLunpLW8pUiBSqTugH/OjYeV6gex6ndnZNdXtuZBgwZoqzvjr0tfiyJ/w4jO NM+BPTto9H4T1Yy9pe+w3CeIMH1+hZSj3bkMPuRQcfjVXW7d7M7udzhjRhLGMEK7 +zPKauo9wddiOF1IrhOeEdo44YLuMHO6xswB2L7b58DUi0IbP8E2cd3Z3+5WvA2y RC+o1Pvcopp2yhdjL2bfCFZLz4FXATgToD878El3V2h/dCWz6czE3O4WXBzFU6be mTMcvU8HX5UQOb4pNVMhDmfoiTFDfGVj2rIx5xFGs6dgCoX49rpddvft2EkYMpQX TTkQ2tQTCptqCBXnDgxkFzrgiA== -----END CERTIFICATE-----Generated at Mon Mar 2 05:34:27 2026 by rpki-client