$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft File: lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft (raw, json) Hash identifier: r5o1nIBoso0qwI24n9TZS1EW03mO9FC+774HRHEEveE= Subject key identifier: 24:D2:98:A6:B2:EA:3B:87:5B:1E:CC:4A:AC:C0:8E:59:13:B9:24:F7 Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 352A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft Manifest number: 3522 Signing time: Mon 02 Mar 2026 01:48:51 +0000 Manifest this update: Mon 02 Mar 2026 01:48:49 +0000 Manifest next update: Mon 09 Mar 2026 01:48:49 +0000 Files and hashes: 1: lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl (hash: HRccUrxubPY0U+aqorXkG4/niB7iZpTTI99LHPEJZrI=) 2: 35FC192C272C11ED9E64C718C4F9AE02.roa (hash: 5gb2IR3RmAQfetfMD3Cf2kp33anqtncaV+qXbOqkB4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:48:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13610 (0x352a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Mar 2 01:48:49 2026 GMT Not After : Mar 9 01:48:49 2026 GMT Subject: CN=69a4ec82-14de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:88:3f:52:25:e9:ec:af:2b:92:de:4c:4a:34: 77:f8:db:fd:2d:86:b3:81:ef:13:bb:b8:56:c9:2e: 53:8a:7e:bc:01:68:eb:68:97:8f:c7:52:c1:62:6b: 2c:9a:44:a5:4c:de:66:c4:bc:40:95:31:9b:80:8d: 6c:dc:98:62:a3:a4:e7:fe:da:d3:7a:d0:b7:21:7e: ed:2f:f0:94:7e:fd:bc:da:e6:b1:4e:29:c0:66:bf: da:db:e1:7d:62:63:67:73:ed:70:f3:43:19:65:2b: 46:6b:0d:2c:c2:c6:01:08:c3:42:a6:82:2f:8b:2b: b9:14:72:16:d2:ee:3b:af:aa:50:97:de:23:11:4d: 68:38:bf:1c:aa:c4:f5:a4:79:1a:9d:38:ea:35:86: 64:23:89:cb:9e:3a:c1:15:d3:ba:a0:77:b7:b9:01: 69:f1:f7:d0:07:f2:31:a1:31:00:24:d4:ee:35:fb: e2:bb:3d:fd:74:e1:3c:fe:68:49:e0:c7:e1:e9:9a: be:96:19:9e:60:33:2d:6f:a7:2d:28:72:ce:0f:d3: 89:9b:f3:c6:a8:c0:e7:ab:1a:6f:c4:9f:f2:b1:f4: e3:a6:5e:17:59:61:a3:0e:32:fa:b2:9c:45:6d:83: 43:c2:91:60:c2:a9:08:4f:19:ce:ce:2b:73:18:e1: 97:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D2:98:A6:B2:EA:3B:87:5B:1E:CC:4A:AC:C0:8E:59:13:B9:24:F7 X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:5c:6c:7c:bf:2c:fb:2f:a7:24:44:82:35:1f:56:d5:db:7d: 14:9e:2d:37:d9:84:8c:ac:32:f3:69:1f:c9:bc:07:f1:c8:8d: 2e:6b:d2:03:82:fc:76:9b:c7:36:77:90:20:ea:f4:86:69:d0: 24:11:2e:bd:fd:3e:f4:e6:c4:f7:0e:1e:ec:ba:c7:e3:60:92: 93:f3:8e:6e:09:33:ba:97:77:d7:b4:57:ac:2b:a9:88:64:ed: 49:bd:f7:89:f7:33:bc:ef:ab:aa:bd:25:82:c1:13:3c:83:4a: 38:5e:cf:28:97:ae:2d:e7:ba:0e:d6:28:42:e4:57:f9:be:ea: a9:42:62:02:cc:8a:d0:a4:b5:8e:06:2a:6d:0d:c5:03:d0:fc: d5:40:cb:9f:6a:2d:9d:ea:48:0e:8b:96:00:af:53:53:47:47: a3:ee:3d:7d:e6:4f:51:a0:61:e8:df:89:d5:35:b9:bc:1c:1c: f0:0e:3c:a0:22:75:d1:27:63:ff:2f:46:d1:6a:30:ef:a1:cc: de:4f:e8:e9:dd:71:bf:0d:b6:5f:0c:92:5a:83:e0:a8:ed:ac: 3e:ea:63:54:0b:2e:a4:3f:a7:61:b9:1f:6d:ff:30:36:54:f4: 0d:6c:b8:79:35:ff:05:ae:ba:e5:a2:a0:dc:4b:f0:53:6f:74: 73:9f:b9:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjYwMzAyMDE0ODQ5WhcNMjYwMzA5MDE0ODQ5WjAYMRYwFAYD VQQDEw02OWE0ZWM4Mi0xNGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4g/UiXp7K8rkt5MSjR3+Nv9LYazge8Tu7hWyS5Tin68AWjraJePx1LBYmss mkSlTN5mxLxAlTGbgI1s3Jhio6Tn/trTetC3IX7tL/CUfv282uaxTinAZr/a2+F9 YmNnc+1w80MZZStGaw0swsYBCMNCpoIviyu5FHIW0u47r6pQl94jEU1oOL8cqsT1 pHkanTjqNYZkI4nLnjrBFdO6oHe3uQFp8ffQB/IxoTEAJNTuNfviuz39dOE8/mhJ 4Mfh6Zq+lhmeYDMtb6ctKHLOD9OJm/PGqMDnqxpvxJ/ysfTjpl4XWWGjDjL6spxF bYNDwpFgwqkITxnOzitzGOGXbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCTSmKay 6juHWx7MSqzAjlkTuST3MB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDdGMi9GMDI4OTAzQzFEOEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2 YmdIbXZNbDIzQXk0UVU2RGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARlxsfL8s+y+nJESCNR9W1dt9FJ4tN9mEjKwy82kfybwH8ciNLmvSA4L8dpvH NneQIOr0hmnQJBEuvf0+9ObE9w4e7LrH42CSk/OObgkzupd317RXrCupiGTtSb33 ifczvO+rqr0lgsETPINKOF7PKJeuLee6DtYoQuRX+b7qqUJiAsyK0KS1jgYqbQ3F A9D81UDLn2otnepIDouWAK9TU0dHo+49feZPUaBh6N+J1TW5vBwc8A48oCJ10Sdj /y9G0Wow76HM3k/o6d1xvw22XwySWoPgqO2sPupjVAsupD+nYbkfbf8wNlT0DWy4 eTX/Ba665aKg3EvwU290c5+5eA== -----END CERTIFICATE-----Generated at Mon Mar 2 12:18:09 2026 by rpki-client