$ rpki-client -vvf rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft File: ldG-85ALQWWEFku3RjF3EwIpFog.mft (raw, json) Hash identifier: okXTiRk8EQgx+GPhZ7US+N0OlJaqcN/10rE8R+AUn/k= Subject key identifier: 93:77:CA:A8:8B:F6:DA:CD:C0:D9:DC:D0:14:83:B5:8E:5C:7E:53:6C Authority key identifier: 95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 Certificate issuer: /CN=A91577DD/serialNumber=95D1BEF3900B416584164BB74631771302291688 Certificate serial: 3534 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft Manifest number: 3527 Signing time: Sat 28 Feb 2026 14:51:55 +0000 Manifest this update: Sat 28 Feb 2026 14:51:54 +0000 Manifest next update: Sat 07 Mar 2026 14:51:54 +0000 Files and hashes: 1: ldG-85ALQWWEFku3RjF3EwIpFog.crl (hash: 81i88CrJxttRSYgGWqjJudzJbHOpZiKjic0HiIcDXek=) 2: C2F7AE40C03111EA9777314AC4F9AE02.roa (hash: qS3A01P8uOdoqKyhJXV/pi4f7G58gnxBlL/J7xIzD5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 14:51:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13620 (0x3534) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577DD, serialNumber=95D1BEF3900B416584164BB74631771302291688 Validity Not Before: Feb 28 14:51:54 2026 GMT Not After : Mar 7 14:51:54 2026 GMT Subject: CN=69a3010a-c469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2f:67:55:5c:92:d9:0f:6b:b2:42:b5:75:79: 95:ab:1f:36:bd:67:b0:82:6e:ce:52:32:5e:58:09: b8:76:7c:84:38:94:09:cc:3b:67:74:8d:0b:0c:20: 8f:35:8c:9f:5e:57:58:aa:46:4f:12:b5:c6:10:27: 3b:9e:e1:17:79:bc:1c:38:98:f0:a1:12:5b:91:7c: e6:a5:06:75:d8:47:ae:00:8e:69:2b:4a:93:e3:a9: 1b:ea:cc:21:fe:e0:58:65:09:e3:1d:64:ef:4f:29: 6d:4b:69:06:0b:8e:02:a1:7d:94:74:c7:70:21:13: b1:45:7d:4c:d8:37:48:5e:cf:96:07:72:94:ac:f3: cb:8b:a2:d1:a3:a7:e9:d1:bb:55:7d:ba:a5:7f:14: a8:24:ad:fa:2f:3f:ba:d4:ec:32:03:dd:7a:68:d2: 7b:86:93:9a:5d:c1:bf:2c:93:b6:36:39:41:4f:f7: ea:00:f3:d4:a0:c7:c6:b0:26:9e:a3:8e:f7:3a:ad: 1a:12:3d:fa:ec:1a:37:cf:07:c2:95:86:9d:a6:d7: b6:bc:34:13:dc:79:43:1a:4c:08:ed:7e:9b:9b:13: ca:90:70:e1:67:33:5b:a8:8b:68:58:9a:3f:f1:12: b4:b9:51:6f:9e:95:1c:84:66:45:dc:24:b8:99:41: e9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:77:CA:A8:8B:F6:DA:CD:C0:D9:DC:D0:14:83:B5:8E:5C:7E:53:6C X509v3 Authority Key Identifier: keyid:95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:19:98:15:59:da:ad:a7:a8:de:7e:2e:6d:8a:58:0f:95:a4: 37:7d:a1:d2:a9:14:35:c2:9a:ce:f5:b7:fe:b6:16:61:ca:52: 97:5d:30:85:f7:a0:f8:2c:2e:37:93:f9:7c:8f:76:18:12:c1: e9:88:d8:e4:78:7b:d6:df:93:67:67:ae:ec:36:d9:63:40:ef: 44:7b:b8:da:14:a4:d7:8c:82:fc:18:a9:17:64:d6:36:b4:3a: f1:e2:67:5e:45:23:90:3a:d8:bf:65:d0:30:03:e2:91:9c:16: 8b:f8:19:9a:7a:48:0e:06:a2:d4:f5:45:de:2d:57:52:2f:49: 44:af:9e:7c:7d:87:73:51:0d:71:30:c9:44:66:1c:b2:98:d0: 1a:34:aa:36:ef:a7:c3:51:98:11:a8:4b:ba:77:50:d7:da:56: da:0b:b5:b8:21:99:ac:98:ad:8a:06:bc:1d:f5:ad:5a:97:84: a0:b4:0f:7c:29:09:58:fb:31:89:cb:b5:f1:18:c2:9c:a5:e0: 74:f2:1d:31:46:c8:89:38:26:8c:33:b7:6a:c8:c9:4c:49:e6: 19:bc:5a:fd:1a:96:60:d3:99:0b:69:68:bd:53:a6:ac:ae:dd: 06:4a:af:5e:09:35:7a:8d:0d:be:ce:a3:64:8d:49:f0:cb:df: 9e:d3:ff:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3REQxMTAvBgNVBAUTKDk1RDFCRUYzOTAwQjQxNjU4NDE2NEJCNzQ2MzE3NzEz MDIyOTE2ODgwHhcNMjYwMjI4MTQ1MTU0WhcNMjYwMzA3MTQ1MTU0WjAYMRYwFAYD VQQDDA02OWEzMDEwYS1jNDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoC9nVVyS2Q9rskK1dXmVqx82vWewgm7OUjJeWAm4dnyEOJQJzDtndI0LDCCP NYyfXldYqkZPErXGECc7nuEXebwcOJjwoRJbkXzmpQZ12EeuAI5pK0qT46kb6swh /uBYZQnjHWTvTyltS2kGC44CoX2UdMdwIROxRX1M2DdIXs+WB3KUrPPLi6LRo6fp 0btVfbqlfxSoJK36Lz+61OwyA916aNJ7hpOaXcG/LJO2NjlBT/fqAPPUoMfGsCae o473Oq0aEj367Bo3zwfClYadpte2vDQT3HlDGkwI7X6bmxPKkHDhZzNbqItoWJo/ 8RK0uVFvnpUchGZF3CS4mUHpfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJN3yqiL 9trNwNnc0BSDtY5cflNsMB8GA1UdIwQYMBaAFJXRvvOQC0FlhBZLt0YxdxMCKRaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdERC9EMUM1QjAyQTFE OTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFXV0VGa3UzUmpGM0V3SXBG b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkRy04NUFMUVdXRUZrdTNSakYzRXdJcEZvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdERC9EMUM1QjAyQTFEOTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFX V0VGa3UzUmpGM0V3SXBGb2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALhmYFVnaraeo3n4ubYpYD5WkN32h0qkUNcKazvW3/rYWYcpSl10whfeg+Cwu N5P5fI92GBLB6YjY5Hh71t+TZ2eu7DbZY0DvRHu42hSk14yC/BipF2TWNrQ68eJn XkUjkDrYv2XQMAPikZwWi/gZmnpIDgai1PVF3i1XUi9JRK+efH2Hc1ENcTDJRGYc spjQGjSqNu+nw1GYEahLundQ19pW2gu1uCGZrJitiga8HfWtWpeEoLQPfCkJWPsx icu18RjCnKXgdPIdMUbIiTgmjDO3asjJTEnmGbxa/RqWYNOZC2lovVOmrK7dBkqv Xgk1eo0Nvs6jZI1J8MvfntP/6w== -----END CERTIFICATE-----Generated at Sun Mar 1 22:24:08 2026 by rpki-client