$ rpki-client -vvf rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft File: llSi8IRZeiuRrAAqdgfhPBXQlJE.mft (raw, json) Hash identifier: dNOziak/xzxm+yAPNShupYAAnCKmnvbj61aeyyyx60o= Subject key identifier: 0F:EA:F5:E0:D7:8E:74:ED:CE:92:FA:37:85:8F:96:FB:60:C2:55:9D Authority key identifier: 96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 Certificate issuer: /CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft Manifest number: 0132 Signing time: Sun 01 Mar 2026 06:28:56 +0000 Manifest this update: Sun 01 Mar 2026 06:28:56 +0000 Manifest next update: Sun 08 Mar 2026 06:28:56 +0000 Files and hashes: 1: llSi8IRZeiuRrAAqdgfhPBXQlJE.crl (hash: w5Lx2fGVY/su5sXbb0IZ0jCFwlYtSzStbTvzamTyrRI=) 2: 29A436623FE111EFB5A50814C4F9AE02.roa (hash: 6fHZUduLlppKNeQyv7MyGz7d2EPeIy77Os8/ALcrrKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:28:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153303, serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Validity Not Before: Mar 1 06:28:56 2026 GMT Not After : Mar 8 06:28:56 2026 GMT Subject: CN=69a3dca8-eec4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:8b:0c:1d:f8:c3:22:81:98:db:83:0e:ee:25: 47:2e:15:8e:d8:44:95:ae:8d:8d:47:b6:6c:19:86: a0:5e:7b:cf:2b:9a:59:81:11:fe:fa:da:d8:0c:5f: 4a:95:76:b1:4f:eb:d2:78:12:49:51:ce:5e:d9:8a: d8:7c:9f:f2:df:b1:83:c7:d8:1a:76:65:1c:a6:f4: b5:bd:1c:08:dc:f6:4b:62:c5:e5:11:2f:f5:30:66: f1:33:c0:6d:76:ab:ad:6a:e5:0f:0e:c5:62:0d:e1: 53:83:b3:39:f5:5a:b8:90:31:b1:b5:b1:7d:16:ab: 1f:3c:39:a9:4f:dd:dc:23:59:32:5f:8a:54:1d:97: 9c:c4:c6:2b:01:84:39:2c:45:69:6f:2f:1a:6a:69: a7:41:ed:7b:e6:80:ec:07:81:90:49:21:8f:38:39: 64:30:ea:e8:d5:e5:39:fd:be:aa:90:74:f1:05:67: 8f:f3:a6:be:3e:d4:1c:a5:c6:9d:04:34:ca:ff:84: fe:38:07:6b:b4:aa:6c:7b:d7:cb:8c:e9:e8:c5:56: a4:24:35:95:2c:05:b0:93:be:66:39:d3:57:ef:18: 29:1d:e7:ce:58:96:df:c3:41:52:3d:62:76:86:c3: 65:f8:46:70:e7:34:8b:21:c5:37:31:41:b1:45:64: 5a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:EA:F5:E0:D7:8E:74:ED:CE:92:FA:37:85:8F:96:FB:60:C2:55:9D X509v3 Authority Key Identifier: keyid:96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:05:6c:22:4b:78:8d:42:60:b8:fc:b9:44:16:3e:fa:f8:98: 66:18:9a:b1:fb:bb:62:41:06:59:84:56:33:20:ba:7c:d8:ed: 97:73:68:e0:89:cd:76:98:7d:06:21:cf:99:0b:39:0d:56:e1: 5e:67:93:cc:00:cb:c0:a5:7a:92:b0:ca:b9:85:7d:4a:80:00: b4:19:e8:be:8e:da:ea:98:69:5f:07:a6:5d:ad:3f:29:1a:a6: 6a:e5:8b:30:82:39:c7:06:e4:b2:63:28:e1:72:9a:d6:c1:b4: f1:fe:d5:e6:41:b0:1a:9c:29:2d:c1:ec:df:bb:29:d3:d3:dc: 79:5e:d0:23:f5:85:e6:f2:06:24:27:f3:5e:5c:ac:40:32:8d: 4f:68:79:33:5b:7e:80:45:4b:58:0b:a6:77:ec:d5:0f:71:49: 9c:5b:07:4c:ca:0c:ec:88:65:ac:9a:7c:06:cb:7f:92:8b:5d: ad:a7:7e:79:7c:bf:ba:de:26:24:b5:df:9e:13:6c:c0:42:91: b4:57:10:3e:72:30:80:2b:0c:60:93:00:fb:85:1b:52:d1:3a: f4:91:38:81:45:a0:5a:ef:86:42:32:0e:f8:f8:26:f1:01:f6: 84:80:dd:5b:f7:7b:ad:18:fd:59:22:45:31:c1:e6:58:28:2c: 36:29:f6:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTMzMDMxMTAvBgNVBAUTKDk2NTRBMkYwODQ1OTdBMkI5MUFDMDAyQTc2MDdFMTND MTVEMDk0OTEwHhcNMjYwMzAxMDYyODU2WhcNMjYwMzA4MDYyODU2WjAYMRYwFAYD VQQDEw02OWEzZGNhOC1lZWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9osMHfjDIoGY24MO7iVHLhWO2ESVro2NR7ZsGYagXnvPK5pZgRH++trYDF9K lXaxT+vSeBJJUc5e2YrYfJ/y37GDx9gadmUcpvS1vRwI3PZLYsXlES/1MGbxM8Bt dqutauUPDsViDeFTg7M59Vq4kDGxtbF9FqsfPDmpT93cI1kyX4pUHZecxMYrAYQ5 LEVpby8aammnQe175oDsB4GQSSGPODlkMOro1eU5/b6qkHTxBWeP86a+PtQcpcad BDTK/4T+OAdrtKpse9fLjOnoxVakJDWVLAWwk75mOdNX7xgpHefOWJbfw0FSPWJ2 hsNl+EZw5zSLIcU3MUGxRWRa2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA/q9eDX jnTtzpL6N4WPlvtgwlWdMB8GA1UdIwQYMBaAFJZUovCEWXorkawAKnYH4TwV0JSR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzMwMy84MEJGMUE2MjNG RTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVpdVJyQUFxZGdmaFBCWFFs SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xsU2k4SVJaZWl1UnJBQXFkZ2ZoUEJYUWxKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzMwMy84MEJGMUE2MjNGRTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVp dVJyQUFxZGdmaFBCWFFsSkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKAVsIkt4jUJguPy5RBY++viYZhiasfu7YkEGWYRWMyC6fNjtl3No4InNdph9 BiHPmQs5DVbhXmeTzADLwKV6krDKuYV9SoAAtBnovo7a6phpXwemXa0/KRqmauWL MII5xwbksmMo4XKa1sG08f7V5kGwGpwpLcHs37sp09PceV7QI/WF5vIGJCfzXlys QDKNT2h5M1t+gEVLWAumd+zVD3FJnFsHTMoM7IhlrJp8Bst/kotdrad+eXy/ut4m JLXfnhNswEKRtFcQPnIwgCsMYJMA+4UbUtE69JE4gUWgWu+GQjIO+Pgm8QH2hIDd W/d7rRj9WSJFMcHmWCgsNin22g== -----END CERTIFICATE-----Generated at Mon Mar 2 11:09:49 2026 by rpki-client