$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft File: R-lr-DG7PMQ7TweEJj5ylYddVRY.mft (raw, json) Hash identifier: WtIQOtgxnTZnygZnpzWN10oiSBox9pKJZ2Zv/Qk5KIE= Subject key identifier: 95:0F:8D:27:0E:6C:61:32:36:88:1F:70:93:09:58:A8:C3:CA:CD:B2 Authority key identifier: 47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 Certificate issuer: /CN=A91C4204/serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft Manifest number: 97 Signing time: Sun 01 Mar 2026 08:41:48 +0000 Manifest this update: Sun 01 Mar 2026 08:41:48 +0000 Manifest next update: Sun 08 Mar 2026 08:41:48 +0000 Files and hashes: 1: R-lr-DG7PMQ7TweEJj5ylYddVRY.crl (hash: JARpPd6WoDfbDpdkzB82rk7uKdXfx63vYv8G2FD/gEw=) 2: CA2D4952300911F0AB675D3EC4F9AE02.roa (hash: oMWjSrq7UBr0grnE1BuEzNLinF6a33GQ38fOzOclHV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:41:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4204, serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Validity Not Before: Mar 1 08:41:48 2026 GMT Not After : Mar 8 08:41:48 2026 GMT Subject: CN=69a3fbcc-7bf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f1:b3:0b:a7:98:9b:cb:98:a1:44:87:08:e1: 47:06:8f:5e:e1:76:ef:b9:e0:8c:ef:96:bd:e6:73: 13:ac:d7:e8:28:5a:76:56:0d:c3:79:fb:47:a0:9a: 75:be:4f:33:e0:51:56:e7:b9:7c:55:b6:cd:5d:4e: 78:cd:2b:09:44:2d:e7:77:fd:02:b9:50:cb:d7:c7: eb:a6:ca:a0:1d:80:9e:99:c9:ce:29:84:df:9f:a3: df:c6:63:53:e2:49:67:ce:3e:92:37:81:2d:26:b9: fc:c5:c4:9d:e2:d7:b0:e3:33:84:85:1e:b4:9c:e7: db:ba:de:a2:8f:79:c3:a4:03:20:8b:25:bc:5a:2e: 9d:da:d8:6d:d5:cc:6d:7e:65:86:fe:bc:2e:09:87: 57:90:19:68:df:d8:9f:cb:1e:c1:8e:d4:5f:76:36: 3d:b8:6d:5c:fd:6f:fe:16:3c:10:6c:f6:c2:44:d0: 92:a3:80:ec:3a:02:8c:4e:36:47:71:c2:4a:f0:53: f1:4f:a4:b1:95:45:c8:bd:a2:db:de:44:1d:4f:79: 11:7a:5b:2a:f4:aa:11:d7:13:da:0e:3a:dc:90:40: da:a4:17:48:b6:c1:7a:1b:25:34:13:b5:eb:5e:7d: 3a:aa:4f:42:8e:c7:c3:a7:d8:55:3e:2f:00:dc:2b: bc:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:0F:8D:27:0E:6C:61:32:36:88:1F:70:93:09:58:A8:C3:CA:CD:B2 X509v3 Authority Key Identifier: keyid:47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:d1:b7:23:38:90:69:d2:98:3c:c5:3e:52:9f:d3:ec:f4:4e: ba:ff:95:37:b1:aa:96:e0:0a:92:af:01:b5:84:c6:08:a3:e7: 28:ca:fa:78:17:e3:76:5b:65:a6:95:05:bf:3a:bd:ec:c8:92: 73:5a:c5:dd:a5:71:06:41:6e:cf:76:df:ee:2f:e6:8f:42:d4: 2c:ac:68:39:b5:64:dc:e6:b3:8b:73:3c:40:8c:4c:18:cf:1b: 4e:54:c9:06:ca:a0:fb:bf:c2:e4:a5:2d:cb:4e:e6:c0:f1:4b: 4e:e3:60:0b:89:87:d6:45:4d:58:ed:f3:f7:d4:c8:a0:11:3c: 76:f3:d2:dc:f3:54:39:a0:d4:96:66:25:bb:19:f2:07:98:c5: 50:ae:dd:97:20:aa:8e:8e:8c:aa:44:b6:6b:48:bf:dd:57:dd: 01:de:a3:df:93:02:ba:85:17:37:14:8f:c7:0c:fd:8d:bc:52: 2e:3a:b4:db:37:a6:a4:49:05:ea:56:69:bb:0e:0e:17:fe:c4: b2:4f:05:dd:b5:8d:3c:11:fe:8a:7d:6e:72:0b:bd:8a:b6:0b: 47:f3:02:61:c2:9e:75:39:8e:3f:7e:be:e9:34:22:7f:f3:b0: 11:81:cd:e3:ea:85:c6:be:e5:09:a6:96:f5:5d:2b:59:9e:f0: 1a:1c:1a:bc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQyMDQxMTAvBgNVBAUTKDQ3RTk2QkY4MzFCQjNDQzQzQjRGMDc4NDI2M0U3Mjk1 ODc1RDU1MTYwHhcNMjYwMzAxMDg0MTQ4WhcNMjYwMzA4MDg0MTQ4WjAYMRYwFAYD VQQDEw02OWEzZmJjYy03YmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/GzC6eYm8uYoUSHCOFHBo9e4XbvueCM75a95nMTrNfoKFp2Vg3DeftHoJp1 vk8z4FFW57l8VbbNXU54zSsJRC3nd/0CuVDL18frpsqgHYCemcnOKYTfn6PfxmNT 4klnzj6SN4EtJrn8xcSd4tew4zOEhR60nOfbut6ij3nDpAMgiyW8Wi6d2tht1cxt fmWG/rwuCYdXkBlo39ifyx7BjtRfdjY9uG1c/W/+FjwQbPbCRNCSo4DsOgKMTjZH ccJK8FPxT6SxlUXIvaLb3kQdT3kRelsq9KoR1xPaDjrckEDapBdItsF6GyU0E7Xr Xn06qk9CjsfDp9hVPi8A3Cu85wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJUPjScO bGEyNogfcJMJWKjDys2yMB8GA1UdIwQYMBaAFEfpa/gxuzzEO08HhCY+cpWHXVUW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDIwNC80NDFCNTA1MjMw MDkxMUYwQTBBQTdEM0RDNEY5QUUwMi9SLWxyLURHN1BNUTdUd2VFSmo1eWxZZGRW UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1ItbHItREc3UE1RN1R3ZUVKajV5bFlkZFZSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDIwNC80NDFCNTA1MjMwMDkxMUYwQTBBQTdEM0RDNEY5QUUwMi9SLWxyLURHN1BN UTdUd2VFSmo1eWxZZGRWUlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM9G3IziQadKYPMU+Up/T7PROuv+VN7GqluAKkq8BtYTGCKPnKMr6eBfjdltl ppUFvzq97MiSc1rF3aVxBkFuz3bf7i/mj0LULKxoObVk3Oazi3M8QIxMGM8bTlTJ Bsqg+7/C5KUty07mwPFLTuNgC4mH1kVNWO3z99TIoBE8dvPS3PNUOaDUlmYluxny B5jFUK7dlyCqjo6MqkS2a0i/3VfdAd6j35MCuoUXNxSPxwz9jbxSLjq02zempEkF 6lZpuw4OF/7Esk8F3bWNPBH+in1ucgu9irYLR/MCYcKedTmOP36+6TQif/OwEYHN 4+qFxr7lCaaW9V0rWZ7wGhwavA== -----END CERTIFICATE-----Generated at Mon Mar 2 00:29:56 2026 by rpki-client