$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft File: lFOfgqNeshWO18Ni1boVQz5-0uE.mft (raw, json) Hash identifier: 3nZT0YryS3EF0U7vGHPsf30e+Ddp3wROsEBtmBwusf8= Subject key identifier: 82:10:07:64:9D:F5:D3:9E:11:55:2C:2B:B3:B9:D2:4A:D6:E4:B7:EB Authority key identifier: 94:53:9F:82:A3:5E:B2:15:8E:D7:C3:62:D5:BA:15:43:3E:7E:D2:E1 Certificate issuer: /CN=A9179EAE/serialNumber=94539F82A35EB2158ED7C362D5BA15433E7ED2E1 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lFOfgqNeshWO18Ni1boVQz5-0uE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft Manifest number: 010A Signing time: Mon 02 Mar 2026 00:50:14 +0000 Manifest this update: Mon 02 Mar 2026 00:50:12 +0000 Manifest next update: Mon 09 Mar 2026 00:50:12 +0000 Files and hashes: 1: lFOfgqNeshWO18Ni1boVQz5-0uE.crl (hash: CU7VrSy3Htoh3qRGe3MhhEFzl+ei2S7O3mlXzGK3ASs=) 2: 5C8A37FEBB0D11F0B828E842C4F9AE02.roa (hash: 5pl+11G8YmcHYBj45JDSG0r8Z2w6y+HBlL43MqCYe3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.crl rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lFOfgqNeshWO18Ni1boVQz5-0uE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EAE, serialNumber=94539F82A35EB2158ED7C362D5BA15433E7ED2E1 Validity Not Before: Mar 2 00:50:12 2026 GMT Not After : Mar 9 00:50:12 2026 GMT Subject: CN=69a4dec5-6467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9d:05:22:6e:62:fe:5c:b0:97:16:60:a6:5b: 5a:0a:bd:9f:6b:6a:96:83:ec:2a:57:56:cf:4d:75: 95:4b:a2:a2:c9:d9:b3:4f:23:bc:9e:21:62:39:91: f5:3e:b3:a3:48:d3:1b:50:ad:22:80:d9:db:3d:6e: 33:52:27:ba:c7:77:3d:c7:5d:a2:51:0c:a8:14:56: c7:c4:92:66:2f:68:60:b2:ac:d5:18:c3:32:e9:02: d3:16:f1:e7:b3:64:4f:cf:03:1c:7e:0e:e7:91:be: 41:0b:ab:28:63:f4:17:40:3d:56:fd:de:d5:98:8f: 4e:71:6e:b2:d8:8d:05:32:61:38:fc:24:94:54:cc: 07:22:46:c7:29:c4:40:5f:da:2a:d9:20:06:e8:51: 0a:7e:9a:00:1b:18:48:30:b5:3f:83:39:48:39:8c: cf:27:d9:77:ef:66:96:28:40:3e:4b:fb:43:68:21: 64:3f:9a:c3:79:3b:7e:e5:77:86:cb:f8:0c:b5:9a: 70:f4:2a:a5:5c:86:ba:fd:bf:c8:de:aa:6d:85:23: 80:44:4d:c7:b4:37:c2:9a:e6:85:82:8d:23:a9:8c: 12:58:c9:79:2f:b4:e2:52:7a:39:93:0a:71:55:df: f1:54:64:72:13:b6:2e:ea:7a:d7:b4:a9:4f:37:dd: bb:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:10:07:64:9D:F5:D3:9E:11:55:2C:2B:B3:B9:D2:4A:D6:E4:B7:EB X509v3 Authority Key Identifier: keyid:94:53:9F:82:A3:5E:B2:15:8E:D7:C3:62:D5:BA:15:43:3E:7E:D2:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lFOfgqNeshWO18Ni1boVQz5-0uE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:8d:aa:60:9e:9e:30:09:3c:b0:99:29:ff:53:0d:7b:fb:50: e0:a4:02:aa:40:16:77:28:46:36:f1:ea:1f:ee:fe:ef:ab:1d: c6:44:71:07:b1:22:6c:33:d1:f2:24:68:12:65:6a:d7:1f:21: 01:55:49:ce:f9:71:4e:a8:5e:51:c3:20:5b:c5:7b:42:70:63: c8:a1:da:8d:e8:22:f1:79:21:32:14:45:27:e9:13:ac:a0:0f: a0:e8:ca:ac:84:40:ce:ee:bf:71:93:bd:94:e6:1d:1d:e9:7b: 48:f8:76:c3:6f:e2:87:12:8e:82:1d:6c:33:5c:94:b3:b6:79: 2c:b3:9a:ef:56:81:7f:0b:b3:f1:0d:2a:fc:34:f2:b7:3d:44: 51:b4:35:5e:e2:7a:2e:1e:76:24:bd:f0:66:bb:7a:5e:ba:dc: d3:27:6b:c0:68:15:ed:f7:69:e7:d7:c5:cd:92:24:5e:19:1d: 05:af:ca:12:4a:4d:2b:e8:d2:a3:d9:70:c8:97:f0:be:78:24: 4c:92:36:56:60:1c:50:23:db:a4:ca:b5:a2:ab:01:35:dc:4a: 90:b6:76:1f:0c:31:c5:66:ed:d2:2d:2e:c5:ac:6f:5e:28:b8: 3d:dd:84:2f:e4:b2:5f:87:7b:7f:77:66:05:0b:42:66:e9:ca: fc:a9:04:7f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFQUUxMTAvBgNVBAUTKDk0NTM5RjgyQTM1RUIyMTU4RUQ3QzM2MkQ1QkExNTQz M0U3RUQyRTEwHhcNMjYwMzAyMDA1MDEyWhcNMjYwMzA5MDA1MDEyWjAYMRYwFAYD VQQDEw02OWE0ZGVjNS02NDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJ0FIm5i/lywlxZgpltaCr2fa2qWg+wqV1bPTXWVS6KiydmzTyO8niFiOZH1 PrOjSNMbUK0igNnbPW4zUie6x3c9x12iUQyoFFbHxJJmL2hgsqzVGMMy6QLTFvHn s2RPzwMcfg7nkb5BC6soY/QXQD1W/d7VmI9OcW6y2I0FMmE4/CSUVMwHIkbHKcRA X9oq2SAG6FEKfpoAGxhIMLU/gzlIOYzPJ9l372aWKEA+S/tDaCFkP5rDeTt+5XeG y/gMtZpw9CqlXIa6/b/I3qpthSOARE3HtDfCmuaFgo0jqYwSWMl5L7TiUno5kwpx Vd/xVGRyE7Yu6nrXtKlPN927OwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIIQB2Sd 9dOeEVUsK7O50krW5LfrMB8GA1UdIwQYMBaAFJRTn4KjXrIVjtfDYtW6FUM+ftLh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVBRS9BNDlDRERCODhE MEUxMUVGQThGRTkzNzFDNEY5QUUwMi9sRk9mZ3FOZXNoV08xOE5pMWJvVlF6NS0w dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xGT2ZncU5lc2hXTzE4TmkxYm9WUXo1LTB1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVBRS9BNDlDRERCODhEMEUxMUVGQThGRTkzNzFDNEY5QUUwMi9sRk9mZ3FOZXNo V08xOE5pMWJvVlF6NS0wdUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO42qYJ6eMAk8sJkp/1MNe/tQ4KQCqkAWdyhGNvHqH+7+76sdxkRxB7EibDPR 8iRoEmVq1x8hAVVJzvlxTqheUcMgW8V7QnBjyKHajegi8XkhMhRFJ+kTrKAPoOjK rIRAzu6/cZO9lOYdHel7SPh2w2/ihxKOgh1sM1yUs7Z5LLOa71aBfwuz8Q0q/DTy tz1EUbQ1XuJ6Lh52JL3wZrt6Xrrc0ydrwGgV7fdp59fFzZIkXhkdBa/KEkpNK+jS o9lwyJfwvngkTJI2VmAcUCPbpMq1oqsBNdxKkLZ2HwwxxWbt0i0uxaxvXii4Pd2E L+SyX4d7f3dmBQtCZunK/KkEfw== -----END CERTIFICATE-----Generated at Mon Mar 2 13:07:11 2026 by rpki-client