$ rpki-client -vvf rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft File: LGfSFpazocG8LOSfy-CnpTo306Y.mft (raw, json) Hash identifier: FTXmT2Ftzbj7IIKxqfoijPp7zQkczs/dNzWPLwVMgNA= Subject key identifier: 8D:B5:12:D1:D1:F9:8F:A0:4B:9B:35:A5:00:4C:BC:AB:62:CD:44:59 Authority key identifier: 2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 Certificate issuer: /CN=A9168221/serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft Manifest number: 83 Signing time: Mon 02 Mar 2026 01:20:08 +0000 Manifest this update: Mon 02 Mar 2026 01:20:06 +0000 Manifest next update: Mon 09 Mar 2026 01:20:06 +0000 Files and hashes: 1: LGfSFpazocG8LOSfy-CnpTo306Y.crl (hash: XIzBQPkxxEk0OWk+8YxXQt4d2+PqfRc6UCYilovJH5k=) 2: DD2F3D28E8A311F0962A42EF556F56BC.roa (hash: kn7qtlgTYPVCEmu4KEqD1zs/ovHOIIn/wazhWoTHlJ8=) 3: 7EB9D336E88D11F09C95F79A506F56BC.roa (hash: Ezl0n+OgzlnEpdFqgpF6c3qxbrKC+MfFQzWPPXiHzdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:20:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168221, serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Validity Not Before: Mar 2 01:20:06 2026 GMT Not After : Mar 9 01:20:06 2026 GMT Subject: CN=69a4e5c7-dcb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:65:b5:ef:f3:ab:ed:8f:04:24:73:3b:17:31: f6:d6:5f:c4:a4:0b:81:e6:a7:d5:e2:7a:a9:a6:82: 5a:9a:29:ab:77:e2:da:10:c9:db:fe:99:f6:d2:41: c3:8a:3d:16:21:82:30:c0:89:e5:77:40:1e:43:7b: 13:ce:7e:a7:45:b0:36:49:ee:d1:0a:9e:f9:ba:7c: 4b:e2:cd:38:9b:e0:9a:5c:4e:ff:5e:bb:40:87:24: 02:4d:4c:b3:f7:d6:75:d2:33:7a:37:2d:67:4b:c2: 9e:d5:21:b2:d4:eb:e4:cb:7a:a0:be:d4:dc:40:f5: 3b:36:1a:e7:d2:57:c5:3e:82:8f:3a:a8:a1:16:c0: 21:12:8b:83:a9:af:20:bd:11:c7:8d:df:95:f5:66: 92:00:03:a8:5c:8e:04:b8:e3:69:6c:a3:d1:e3:81: 57:e4:e9:15:a1:26:c4:cf:cc:6a:f9:63:16:28:8c: 23:ea:8c:6a:6f:f9:be:d3:c3:a9:b0:ea:b3:23:76: bc:00:e8:33:af:6d:e1:24:d6:96:5c:1f:79:3b:17: 1b:e1:85:06:aa:b8:87:3e:f3:c5:31:6e:2e:e4:be: d7:dd:f6:c2:5c:4a:53:10:21:51:b5:95:9c:7f:70: 84:23:6e:2e:de:52:01:90:fe:13:7e:51:fb:ac:a5: 76:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B5:12:D1:D1:F9:8F:A0:4B:9B:35:A5:00:4C:BC:AB:62:CD:44:59 X509v3 Authority Key Identifier: keyid:2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:62:95:24:19:9d:e5:6e:33:d2:24:ce:75:39:e2:bb:79:34: cf:d6:2c:15:9b:0d:9d:3d:03:82:00:df:9d:71:de:ae:e1:7f: 1b:c4:31:f6:49:ea:32:c7:c4:35:d5:57:cf:49:99:fd:15:35: 35:a8:a4:fd:e0:14:61:dc:08:e6:19:aa:92:71:76:1b:86:1c: 81:9b:46:73:fc:c5:38:d7:5c:76:88:aa:80:6c:61:25:20:72: ba:9b:9a:00:bd:0f:67:cb:ee:1b:a8:f5:ac:73:21:e2:ee:7c: c0:f9:c1:c1:41:f7:71:b3:4a:de:84:99:99:2a:f9:c7:e1:1f: d5:8b:da:25:83:e8:94:6e:56:a8:65:3b:cc:4c:06:db:1e:95: e1:5f:99:36:01:1c:b4:0a:e3:3a:92:f0:d8:ca:3d:96:90:4f: d7:1d:1b:04:04:ec:8b:0f:85:1b:46:3a:5d:4d:12:db:1d:96: ee:eb:e2:55:ed:cb:5a:98:72:c5:ad:55:7b:5b:d2:01:56:a8: d6:3e:03:da:4c:40:60:7a:e3:88:c8:5a:a9:30:19:be:2c:cf: a8:1c:47:5c:60:fc:cd:42:db:3a:0d:c0:ef:b7:dc:44:21:f9: 95:ab:64:fb:79:6f:cc:51:7a:8b:30:bc:1e:b9:fc:5b:77:bd: a2:44:bf:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgyMjExMTAvBgNVBAUTKDJDNjdEMjE2OTZCM0ExQzFCQzJDRTQ5RkNCRTBBN0E1 M0EzN0QzQTYwHhcNMjYwMzAyMDEyMDA2WhcNMjYwMzA5MDEyMDA2WjAYMRYwFAYD VQQDEw02OWE0ZTVjNy1kY2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3GW17/Or7Y8EJHM7FzH21l/EpAuB5qfV4nqppoJamimrd+LaEMnb/pn20kHD ij0WIYIwwInld0AeQ3sTzn6nRbA2Se7RCp75unxL4s04m+CaXE7/XrtAhyQCTUyz 99Z10jN6Ny1nS8Ke1SGy1Ovky3qgvtTcQPU7Nhrn0lfFPoKPOqihFsAhEouDqa8g vRHHjd+V9WaSAAOoXI4EuONpbKPR44FX5OkVoSbEz8xq+WMWKIwj6oxqb/m+08Op sOqzI3a8AOgzr23hJNaWXB95Oxcb4YUGqriHPvPFMW4u5L7X3fbCXEpTECFRtZWc f3CEI24u3lIBkP4TflH7rKV2ewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI21EtHR +Y+gS5s1pQBMvKtizURZMB8GA1UdIwQYMBaAFCxn0haWs6HBvCzkn8vgp6U6N9Om MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODIyMS8zMzUzNUNCMDY1 NEMxMUYwOEIzOUU3MUNDNEY5QUUwMi9MR2ZTRnBhem9jRzhMT1NmeS1DbnBUbzMw NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xHZlNGcGF6b2NHOExPU2Z5LUNucFRvMzA2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODIyMS8zMzUzNUNCMDY1NEMxMUYwOEIzOUU3MUNDNEY5QUUwMi9MR2ZTRnBhem9j RzhMT1NmeS1DbnBUbzMwNlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYmKVJBmd5W4z0iTOdTniu3k0z9YsFZsNnT0DggDfnXHeruF/G8Qx9knqMsfE NdVXz0mZ/RU1Naik/eAUYdwI5hmqknF2G4YcgZtGc/zFONdcdoiqgGxhJSByupua AL0PZ8vuG6j1rHMh4u58wPnBwUH3cbNK3oSZmSr5x+Ef1YvaJYPolG5WqGU7zEwG 2x6V4V+ZNgEctArjOpLw2Mo9lpBP1x0bBATsiw+FG0Y6XU0S2x2W7uviVe3LWphy xa1Ve1vSAVao1j4D2kxAYHrjiMhaqTAZvizPqBxHXGD8zULbOg3A77fcRCH5latk +3lvzFF6izC8Hrn8W3e9okS/mA== -----END CERTIFICATE-----Generated at Mon Mar 2 05:44:51 2026 by rpki-client