$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: ElXo0g6O9iuhRsiwjC4XToxJ5/qR+Fk2WuMRwRmxcI0= Subject key identifier: 75:14:02:40:A7:10:ED:78:02:E1:0B:C9:54:EB:78:32:B5:DF:D5:8C Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 11AC Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 119F Signing time: Mon 02 Mar 2026 01:47:03 +0000 Manifest this update: Mon 02 Mar 2026 01:47:01 +0000 Manifest next update: Mon 09 Mar 2026 01:47:01 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: 7awxzBO7FAA43rHzkMtP9Q0Z5Yg0gwjiLjmXqOVElOI=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: mX70QQ2yE9wPh1hnIXZOciGYYAe5yUlr20YktwOYe68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4524 (0x11ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Mar 2 01:47:01 2026 GMT Not After : Mar 9 01:47:01 2026 GMT Subject: CN=69a4ec16-94cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:60:a5:2f:94:ff:d4:4f:c8:ed:b6:6f:b6:77: 88:ea:e6:09:31:29:41:fd:ea:c4:25:65:53:1e:42: af:c6:1d:9d:f8:10:38:e8:90:9b:ca:5b:9d:70:1b: 8e:2e:e3:35:76:19:f9:10:4b:dd:8c:14:66:1e:3c: 35:8a:b3:e9:a2:0f:2f:3b:ae:d4:81:1b:d3:27:75: 4b:16:a1:f9:45:64:79:f3:ec:98:f1:b0:f7:d9:77: 8d:b6:a4:7f:5e:8d:00:57:4d:49:79:98:d6:c3:36: 2f:27:7c:54:d4:92:b3:d0:9f:93:a0:4f:a8:80:26: e2:3c:d9:51:60:65:e4:22:14:32:03:6b:6e:1e:e4: 78:25:30:a7:3e:21:04:87:44:de:fc:90:7c:fc:59: c2:67:cd:40:99:66:c5:64:5b:f9:08:09:e4:e7:c2: 8c:e4:2e:5a:a3:8a:f7:8b:1c:d0:58:9e:77:3d:f5: fa:ea:de:bf:41:e2:dc:b3:7e:49:fc:3d:ad:0a:f5: f6:fc:28:d3:24:a9:5d:0a:73:03:7b:51:d4:d8:20: 7d:2f:b2:40:31:97:72:08:3e:70:56:49:fc:16:ae: b8:9c:27:e5:e7:74:b5:94:9d:91:bc:d4:8e:64:2e: 77:4e:93:8c:6d:1f:6c:e2:70:7e:7c:5f:be:c2:e1: 79:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:14:02:40:A7:10:ED:78:02:E1:0B:C9:54:EB:78:32:B5:DF:D5:8C X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:11:94:bb:e1:0b:b6:01:f8:b5:24:f7:45:4f:02:22:ea:68: b8:d0:46:40:96:6f:09:8a:96:12:9b:fa:74:44:67:97:7c:65: af:0b:36:9f:4f:2c:ec:72:47:e8:00:f2:73:f1:62:8d:30:96: 19:f0:e6:51:b9:5c:1b:e8:c9:00:bf:9f:89:8f:a4:77:4f:43: be:e1:cb:b2:be:ea:40:17:da:b6:ab:ea:51:99:d5:4d:b4:ed: e2:a0:42:cb:16:84:48:40:31:be:96:fc:85:d5:67:3f:79:9b: f9:5c:e4:9b:28:36:2c:54:f3:db:64:a7:b8:3e:06:af:d9:1d: c5:96:bf:9e:20:d9:a2:d7:d5:ac:0f:5a:f3:25:63:0f:ea:0b: 0e:7c:51:e2:e8:f3:00:6d:24:c6:ec:e1:85:8d:4b:5a:aa:2e: 23:3d:01:c3:fe:03:f1:4e:b8:db:c3:b8:83:e6:03:fe:10:fa: a3:53:fd:2e:6d:c5:0b:f0:63:6e:4c:da:32:c9:2e:ba:d4:ee: 7d:f9:8c:f8:62:a2:e7:4c:e8:d8:fc:9b:c4:f1:ec:e9:d7:ae: 7d:b9:fc:6e:1c:d6:23:38:7a:bb:d0:83:e9:c0:2b:8b:c4:74: 3e:1c:b5:07:e8:b0:9d:ad:41:3c:ec:49:05:c4:bc:cf:49:39: 61:e1:a5:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjYwMzAyMDE0NzAxWhcNMjYwMzA5MDE0NzAxWjAYMRYwFAYD VQQDEw02OWE0ZWMxNi05NGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GClL5T/1E/I7bZvtneI6uYJMSlB/erEJWVTHkKvxh2d+BA46JCbyludcBuO LuM1dhn5EEvdjBRmHjw1irPpog8vO67UgRvTJ3VLFqH5RWR58+yY8bD32XeNtqR/ Xo0AV01JeZjWwzYvJ3xU1JKz0J+ToE+ogCbiPNlRYGXkIhQyA2tuHuR4JTCnPiEE h0Te/JB8/FnCZ81AmWbFZFv5CAnk58KM5C5ao4r3ixzQWJ53PfX66t6/QeLcs35J /D2tCvX2/CjTJKldCnMDe1HU2CB9L7JAMZdyCD5wVkn8Fq64nCfl53S1lJ2RvNSO ZC53TpOMbR9s4nB+fF++wuF5jwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHUUAkCn EO14AuELyVTreDK139WMMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACxGUu+ELtgH4tST3RU8CIupouNBGQJZvCYqWEpv6dERnl3xlrws2n08s7HJH 6ADyc/FijTCWGfDmUblcG+jJAL+fiY+kd09DvuHLsr7qQBfatqvqUZnVTbTt4qBC yxaESEAxvpb8hdVnP3mb+Vzkmyg2LFTz22SnuD4Gr9kdxZa/niDZotfVrA9a8yVj D+oLDnxR4ujzAG0kxuzhhY1LWqouIz0Bw/4D8U6428O4g+YD/hD6o1P9Lm3FC/Bj bkzaMskuutTuffmM+GKi50zo2PybxPHs6deufbn8bhzWIzh6u9CD6cAri8R0Phy1 B+iwna1BPOxJBcS8z0k5YeGlXA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:14:55 2026 by rpki-client