$ rpki-client -vvf rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft File: L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft (raw, json) Hash identifier: SV6c75LhlU+gd+hzllKH1yfyJDJ8KUoH+Bsfxh9gHX4= Subject key identifier: 91:37:BD:13:93:69:72:3E:FA:D0:8E:F0:10:64:C8:FB:AE:F3:48:0C Authority key identifier: 2F:C4:60:19:EE:52:D1:E9:1B:B1:D1:D8:E1:7E:99:8A:71:5B:72:44 Certificate issuer: /CN=A9152D1E/serialNumber=2FC46019EE52D1E91BB1D1D8E17E998A715B7244 Certificate serial: 0477 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft Manifest number: 0473 Signing time: Sun 01 Mar 2026 23:57:45 +0000 Manifest this update: Sun 01 Mar 2026 23:57:43 +0000 Manifest next update: Sun 08 Mar 2026 23:57:43 +0000 Files and hashes: 1: L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl (hash: XOHSLocUDNXFgVZTcmWrxLa03F88Tu2xWFTgUowFEVw=) 2: 74D78D2AB28F11EFB915BB1BC4F9AE02.roa (hash: N+WDRVK1GCgpC7/SSOzfsvjQlOUQfUPMZGxcGp5tWsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1143 (0x477) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152D1E, serialNumber=2FC46019EE52D1E91BB1D1D8E17E998A715B7244 Validity Not Before: Mar 1 23:57:43 2026 GMT Not After : Mar 8 23:57:43 2026 GMT Subject: CN=69a4d279-0f5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1f:a0:ac:6d:b5:df:9e:ec:8f:aa:bb:e4:df: 05:4b:60:df:3e:5f:48:b6:3c:2e:ec:79:02:ed:c1: ff:5d:70:80:98:db:f1:3a:d5:c7:96:ff:ad:c4:84: 95:a6:d0:17:e9:55:f7:5c:5b:3c:68:2d:98:a3:f3: 85:64:43:63:e1:61:aa:56:01:06:47:33:1d:25:a1: 8b:52:0a:a1:01:17:4f:77:ae:af:9e:7c:0e:c2:55: ce:2d:54:68:53:51:4e:0d:e1:2f:a9:c4:7c:5a:da: 52:b1:6d:20:71:b8:03:20:00:46:6b:80:5f:f4:58: 1e:8e:05:2f:82:38:a2:1e:47:21:6b:17:66:24:c2: 60:a8:8f:57:c4:dc:3f:08:2d:d9:77:7e:db:24:e8: 6c:61:83:cd:ca:69:f4:e2:52:f3:19:9d:a6:51:f6: 93:50:93:2d:b3:d4:52:97:6f:03:78:b2:19:5a:ac: 00:c3:6c:c5:27:70:5e:37:6d:c9:86:1d:bb:5a:ac: 1f:94:88:10:23:8b:94:be:72:9c:6e:a6:3e:27:9f: 40:c4:6d:2e:2e:a8:b6:8e:cd:50:ed:75:65:a2:15: 73:57:91:36:71:e7:19:0c:51:97:b4:a7:e2:76:64: 87:2c:7c:89:c5:e6:7f:29:ed:38:50:22:ab:fe:a2: f5:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:37:BD:13:93:69:72:3E:FA:D0:8E:F0:10:64:C8:FB:AE:F3:48:0C X509v3 Authority Key Identifier: keyid:2F:C4:60:19:EE:52:D1:E9:1B:B1:D1:D8:E1:7E:99:8A:71:5B:72:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:2b:69:94:01:4c:32:56:39:d2:f3:39:f5:5b:28:54:7e:cb: be:37:04:b7:97:3a:27:1a:eb:4b:36:ea:88:a1:9b:66:a6:eb: 58:87:9f:f8:ef:44:ce:be:b5:c4:a5:12:39:f2:24:8c:7d:9f: 85:25:e4:f5:8f:35:c6:61:f7:94:35:54:31:ea:96:1a:fa:39: 7c:ba:11:a6:b5:1e:ee:3c:3b:f8:fa:14:44:24:2f:4c:57:de: 03:55:1d:73:5d:7a:e7:e3:d7:03:d0:21:b6:3a:60:62:c4:03: 1e:01:72:b6:4e:69:b6:fa:da:a5:46:15:ec:cf:36:d0:92:86: 80:a6:2a:d1:b0:cd:53:3b:15:5c:d5:b3:2c:9f:e7:37:47:59: ec:b1:8d:8f:4f:68:46:47:7d:97:4d:7d:6d:c9:9b:c0:23:b5: ed:3f:0c:16:11:bc:b8:32:be:1b:0d:13:36:83:8a:c7:32:ce: 75:e7:49:d3:aa:b8:32:af:bf:ff:64:06:53:54:49:9b:cc:b4: e5:2f:7f:05:cb:5a:52:29:f2:9e:33:22:4c:6b:24:5d:96:98: 60:34:bd:87:ba:0e:3b:95:c7:58:3b:90:c9:55:1a:0c:d2:1a: 72:25:e3:b0:57:24:65:67:6b:00:2c:6e:46:fe:38:b6:6f:94: a3:62:c1:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJEMUUxMTAvBgNVBAUTKDJGQzQ2MDE5RUU1MkQxRTkxQkIxRDFEOEUxN0U5OThB NzE1QjcyNDQwHhcNMjYwMzAxMjM1NzQzWhcNMjYwMzA4MjM1NzQzWjAYMRYwFAYD VQQDEw02OWE0ZDI3OS0wZjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArR+grG21357sj6q75N8FS2DfPl9Itjwu7HkC7cH/XXCAmNvxOtXHlv+txISV ptAX6VX3XFs8aC2Yo/OFZENj4WGqVgEGRzMdJaGLUgqhARdPd66vnnwOwlXOLVRo U1FODeEvqcR8WtpSsW0gcbgDIABGa4Bf9FgejgUvgjiiHkchaxdmJMJgqI9XxNw/ CC3Zd37bJOhsYYPNymn04lLzGZ2mUfaTUJMts9RSl28DeLIZWqwAw2zFJ3BeN23J hh27WqwflIgQI4uUvnKcbqY+J59AxG0uLqi2js1Q7XVlohVzV5E2cecZDFGXtKfi dmSHLHyJxeZ/Ke04UCKr/qL1zQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJE3vROT aXI++tCO8BBkyPuu80gMMB8GA1UdIwQYMBaAFC/EYBnuUtHpG7HR2OF+mYpxW3JE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkQxRS9DN0MwQzFEQTdE NjAxMUVDQUQ5NjUwMzBDNEY5QUUwMi9MOFJnR2U1UzBla2JzZEhZNFg2WmluRmJj a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4UmdHZTVTMGVrYnNkSFk0WDZaaW5GYmNrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkQxRS9DN0MwQzFEQTdENjAxMUVDQUQ5NjUwMzBDNEY5QUUwMi9MOFJnR2U1UzBl a2JzZEhZNFg2WmluRmJja1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdCtplAFMMlY50vM59VsoVH7LvjcEt5c6JxrrSzbqiKGbZqbrWIef+O9Ezr61 xKUSOfIkjH2fhSXk9Y81xmH3lDVUMeqWGvo5fLoRprUe7jw7+PoURCQvTFfeA1Ud c1165+PXA9AhtjpgYsQDHgFytk5ptvrapUYV7M820JKGgKYq0bDNUzsVXNWzLJ/n N0dZ7LGNj09oRkd9l019bcmbwCO17T8MFhG8uDK+Gw0TNoOKxzLOdedJ06q4Mq+/ /2QGU1RJm8y05S9/BctaUinynjMiTGskXZaYYDS9h7oOO5XHWDuQyVUaDNIaciXj sFckZWdrACxuRv44tm+Uo2LBtg== -----END CERTIFICATE-----Generated at Mon Mar 2 01:59:01 2026 by rpki-client