$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: 2L6FjEu6oHUSajcnLTn4GUsIT4DeWO7MYvmHr+zaEvI= Subject key identifier: 54:FF:1B:3B:7F:6C:D4:CA:39:5E:B0:D9:CA:72:0A:C7:F3:B3:64:CF Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 0626 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 060B Signing time: Mon 02 Mar 2026 02:27:37 +0000 Manifest this update: Mon 02 Mar 2026 02:27:34 +0000 Manifest next update: Mon 09 Mar 2026 02:27:34 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: CpXSbgkrmpSGdOx2hehAgp4zPOiVNzPYtfeXUaNF4yk=) 2: 368F5308A27311EFA8731822C4F9AE02.roa (hash: KBf8JxajMdMMi2+GI03db8VLySuC8cD1rgByqAKzBds=) 3: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: 8A4Wb2KJcDqzfgpVuNBZcnB+OO/NHwZAcOnGRk55RA8=) 4: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: uvL2gNEthqGV41KwTfLQpnni0nIuRN7IKI+1/XnuE+o=) 5: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: 7N+kBhMTPa/IDmaHS5j88uMau/dBXAyZziXt2IYR/Jg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1574 (0x626) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Mar 2 02:27:34 2026 GMT Not After : Mar 9 02:27:34 2026 GMT Subject: CN=69a4f599-dec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ea:2d:9d:26:c7:4b:40:21:22:69:7c:12:cd: ad:ac:6a:63:07:f0:a8:bf:59:48:33:e8:4f:ea:23: 09:3b:62:d2:12:b0:a8:f3:56:85:18:5a:6b:08:e6: b7:b8:fc:5f:d4:9e:ed:af:0a:0e:6d:6f:19:3a:c9: f1:89:bd:db:7e:40:51:9f:4b:65:b8:4b:a4:fd:63: 24:ec:bd:3a:6c:43:ce:f3:ce:c8:d7:89:16:17:d1: a9:61:53:16:a6:37:a0:3d:ce:68:d5:96:a7:03:5c: 4c:01:e9:10:53:19:48:02:7e:a3:c8:31:38:d5:2c: ce:6f:f4:cb:a5:4c:7e:19:77:b9:91:d3:bf:60:6b: ff:02:ba:4c:1b:ca:4b:ac:0e:6f:17:af:b0:7f:8e: c1:07:aa:19:26:2c:e5:83:13:04:8f:fc:7e:5d:19: e1:58:2b:ec:84:3f:6f:ec:8a:48:86:5f:1e:62:72: ff:8f:70:e1:43:dc:96:f7:2d:f3:c9:5e:4d:a1:19: a0:1a:2b:0d:23:f1:a3:78:17:a3:9f:77:93:3a:64: ba:b9:bb:f1:7f:e0:8d:f7:ba:50:a7:eb:76:64:b8: ce:3b:0b:08:01:f6:43:8e:b4:e3:bc:41:04:54:78: a3:16:db:f1:44:4f:5d:dc:79:9d:29:10:1e:72:88: 81:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:FF:1B:3B:7F:6C:D4:CA:39:5E:B0:D9:CA:72:0A:C7:F3:B3:64:CF X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:c4:8d:cd:67:f7:96:eb:f3:60:80:7b:a4:d9:82:62:2a:29: cb:49:04:98:52:3f:fa:dd:5f:42:4e:33:8b:b7:8a:c1:31:84: 7c:3b:0d:01:24:b5:80:78:5d:e3:08:26:2e:de:eb:5f:42:85: 51:51:95:43:43:23:8d:e2:e6:8a:1d:15:9a:64:1a:00:63:23: 74:08:9a:44:93:56:71:7f:1c:56:a8:62:06:b1:d8:bc:91:44: fc:fb:89:55:20:f2:f0:ed:33:8b:36:31:c5:cc:33:ab:d8:f5: dd:20:7a:03:97:d8:84:fd:7d:88:99:d0:23:ff:7f:68:a7:7f: 12:19:a3:e4:35:40:29:d2:7e:8b:0b:f7:eb:48:c6:83:b4:ca: b3:02:c3:93:0f:ed:75:56:bb:6e:d5:f2:2b:33:08:c9:0f:b2: 30:c7:fc:68:f1:27:2f:11:ed:a1:64:f9:15:17:70:f4:3f:80: d3:64:df:7d:7f:ee:4e:e8:3e:b0:74:4d:50:37:66:18:1e:c4: 2d:b4:7c:03:ec:46:b3:96:9d:04:35:ac:df:2d:ba:90:68:ae: 14:e6:32:ca:c6:6e:c1:3a:c2:ef:f7:68:d0:e9:2a:d9:f7:01: a9:ac:98:7c:b5:b9:a0:9a:12:6a:bd:fe:15:ac:0e:b8:fa:6d: 7d:54:56:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjYwMzAyMDIyNzM0WhcNMjYwMzA5MDIyNzM0WjAYMRYwFAYD VQQDEw02OWE0ZjU5OS1kZWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOotnSbHS0AhIml8Es2trGpjB/Cov1lIM+hP6iMJO2LSErCo81aFGFprCOa3 uPxf1J7trwoObW8ZOsnxib3bfkBRn0tluEuk/WMk7L06bEPO887I14kWF9GpYVMW pjegPc5o1ZanA1xMAekQUxlIAn6jyDE41SzOb/TLpUx+GXe5kdO/YGv/ArpMG8pL rA5vF6+wf47BB6oZJizlgxMEj/x+XRnhWCvshD9v7IpIhl8eYnL/j3DhQ9yW9y3z yV5NoRmgGisNI/GjeBejn3eTOmS6ubvxf+CN97pQp+t2ZLjOOwsIAfZDjrTjvEEE VHijFtvxRE9d3HmdKRAecoiBSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFT/Gzt/ bNTKOV6w2cpyCsfzs2TPMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAg8SNzWf3luvzYIB7pNmCYiopy0kEmFI/+t1fQk4zi7eKwTGEfDsNASS1gHhd 4wgmLt7rX0KFUVGVQ0MjjeLmih0VmmQaAGMjdAiaRJNWcX8cVqhiBrHYvJFE/PuJ VSDy8O0zizYxxcwzq9j13SB6A5fYhP19iJnQI/9/aKd/Ehmj5DVAKdJ+iwv360jG g7TKswLDkw/tdVa7btXyKzMIyQ+yMMf8aPEnLxHtoWT5FRdw9D+A02TffX/uTug+ sHRNUDdmGB7ELbR8A+xGs5adBDWs3y26kGiuFOYyysZuwTrC7/do0Okq2fcBqayY fLW5oJoSar3+FawOuPptfVRWXQ== -----END CERTIFICATE-----Generated at Mon Mar 2 09:07:56 2026 by rpki-client