$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft File: lGqi80z6-eS9bjRboJqd6bnC0U0.mft (raw, json) Hash identifier: 5bFsvqIEfaZgHtAoHEVUtOsbnIgGhC41gkAP0E2+ScM= Subject key identifier: 18:0F:6F:A3:28:30:8B:4D:FB:C6:35:CC:07:71:8F:FF:14:18:18:26 Authority key identifier: 94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D Certificate issuer: /CN=A91CAA69/serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Certificate serial: 0EEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft Manifest number: 0ED9 Signing time: Sat 28 Feb 2026 17:46:46 +0000 Manifest this update: Sat 28 Feb 2026 17:46:46 +0000 Manifest next update: Sat 07 Mar 2026 17:46:46 +0000 Files and hashes: 1: lGqi80z6-eS9bjRboJqd6bnC0U0.crl (hash: ruNzaTE7KGmJrAjnR8ShglXqy2wuEy53r0ALhl9y05Q=) 2: DF5D49F6985611ECBE7ED328C4F9AE02.roa (hash: oySlLPz0K/UmHCqFTFPFIY5DaigueFo/oV/JPUia/uU=) 3: 1FAB60EE9EB111E99ED10D84C4F9AE02.roa (hash: J9DgdD9cL2JfNJGX2KpEbeL9xCo98zH1CjpWmw6WEyg=) 4: DECBB040985611ECBE7ED328C4F9AE02.roa (hash: fVjIBFUgnQxd9qxxnDI3HntLIaXeeQgbbHy+hbpb2zg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:46:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3818 (0xeea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA69, serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Validity Not Before: Feb 28 17:46:46 2026 GMT Not After : Mar 7 17:46:46 2026 GMT Subject: CN=69a32a06-97e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:db:81:27:b6:9c:96:aa:4c:8e:2e:0e:ca:32: 38:91:b2:6b:75:31:b7:0f:92:18:ba:40:8f:03:a7: b1:b5:4e:3b:dc:90:1f:88:d6:65:c5:8a:8f:6b:95: c4:2b:2e:ad:e0:cf:a9:6d:47:de:83:ee:63:d1:1d: 42:9e:9d:c5:3a:d0:bb:78:51:4d:24:1d:df:73:ab: 7e:d2:6e:49:af:7e:43:b5:66:b0:6a:61:5c:78:91: 47:c2:4a:4a:7f:8d:1a:4b:d5:da:45:fe:4d:2d:e5: 49:d9:a4:2e:df:3d:db:e2:10:79:8a:63:52:28:73: fa:56:8c:a6:ed:6e:91:9c:03:01:9d:aa:d7:4c:93: a9:82:25:69:8f:d0:c3:e0:f1:5f:78:b5:1c:89:99: 9d:10:84:b2:b4:e1:48:e2:d2:9c:5a:cb:3d:90:83: d5:24:80:f5:e8:bc:10:c0:b7:b3:5b:a3:a6:ea:01: 0b:60:0b:1d:24:92:ed:d5:0c:0d:21:e0:b2:c6:e2: 50:a7:44:a2:d4:e6:46:6a:f8:85:9f:fb:1c:e9:b7: 0e:ce:10:43:10:40:70:59:c4:13:64:78:9c:3b:8b: 37:7a:c6:fe:c6:f0:f5:cd:74:d7:57:57:bd:ac:0f: da:69:c4:30:e1:51:0a:e7:78:e7:0f:00:23:68:06: c7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:0F:6F:A3:28:30:8B:4D:FB:C6:35:CC:07:71:8F:FF:14:18:18:26 X509v3 Authority Key Identifier: keyid:94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:75:d3:61:01:ef:f1:3c:5f:d5:9a:f7:18:6f:77:b9:7e:d7: 57:43:c7:a4:3f:bc:0b:31:41:be:f3:17:9c:50:b7:5b:cd:d1: c0:a3:61:d5:f5:6c:cc:c2:c3:04:30:de:0f:a7:58:9e:8c:d6: 79:83:48:8f:13:b4:da:9e:83:6a:c3:07:68:7c:c0:f6:4b:3e: 55:14:6e:0a:f0:48:8f:db:77:3d:8a:c7:bf:8a:d7:21:a9:4c: 53:87:ce:07:9e:e0:0c:b8:70:08:81:4b:5b:ea:93:60:70:ea: 11:9c:fd:17:e7:1d:67:cf:d4:70:b5:7a:f8:3b:30:78:6c:5d: 89:ae:6e:ad:6e:f7:41:32:75:51:02:30:fc:21:80:ae:13:ce: 5d:c0:0a:dc:00:17:ac:a5:dd:05:9a:db:f2:d5:5b:45:3a:57: 15:80:c6:f7:d7:48:c0:aa:36:1e:2f:6f:b1:9b:e8:56:c2:2c: ae:af:f1:2f:53:0c:75:69:f5:9c:42:71:cf:fd:63:46:e5:da: da:33:26:04:29:1f:0e:85:d5:ac:79:ee:dc:06:94:64:0c:9a: 91:74:58:0b:64:09:c5:1b:a7:20:5c:74:63:0f:2e:5a:04:ba: d6:e6:50:42:06:9f:64:42:27:a9:00:95:c8:5a:e0:81:2d:de: 0b:44:cd:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNjkxMTAvBgNVBAUTKDk0NkFBMkYzNENGQUY5RTRCRDZFMzQ1QkEwOUE5REU5 QjlDMkQxNEQwHhcNMjYwMjI4MTc0NjQ2WhcNMjYwMzA3MTc0NjQ2WjAYMRYwFAYD VQQDDA02OWEzMmEwNi05N2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutuBJ7aclqpMji4OyjI4kbJrdTG3D5IYukCPA6extU473JAfiNZlxYqPa5XE Ky6t4M+pbUfeg+5j0R1Cnp3FOtC7eFFNJB3fc6t+0m5Jr35DtWawamFceJFHwkpK f40aS9XaRf5NLeVJ2aQu3z3b4hB5imNSKHP6Voym7W6RnAMBnarXTJOpgiVpj9DD 4PFfeLUciZmdEISytOFI4tKcWss9kIPVJID16LwQwLezW6Om6gELYAsdJJLt1QwN IeCyxuJQp0Si1OZGaviFn/sc6bcOzhBDEEBwWcQTZHicO4s3esb+xvD1zXTXV1e9 rA/aacQw4VEK53jnDwAjaAbHRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBgPb6Mo MItN+8Y1zAdxj/8UGBgmMB8GA1UdIwQYMBaAFJRqovNM+vnkvW40W6Canem5wtFN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE2OS80MEUxRkM5QzlF QjAxMUU5QjA3RTdBODJDNEY5QUUwMi9sR3FpODB6Ni1lUzlialJib0pxZDZibkMw VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xHcWk4MHo2LWVTOWJqUmJvSnFkNmJuQzBVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE2OS80MEUxRkM5QzlFQjAxMUU5QjA3RTdBODJDNEY5QUUwMi9sR3FpODB6Ni1l UzlialJib0pxZDZibkMwVTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT3XTYQHv8Txf1Zr3GG93uX7XV0PHpD+8CzFBvvMXnFC3W83RwKNh1fVszMLD BDDeD6dYnozWeYNIjxO02p6DasMHaHzA9ks+VRRuCvBIj9t3PYrHv4rXIalMU4fO B57gDLhwCIFLW+qTYHDqEZz9F+cdZ8/UcLV6+DsweGxdia5urW73QTJ1UQIw/CGA rhPOXcAK3AAXrKXdBZrb8tVbRTpXFYDG99dIwKo2Hi9vsZvoVsIsrq/xL1MMdWn1 nEJxz/1jRuXa2jMmBCkfDoXVrHnu3AaUZAyakXRYC2QJxRunIFx0Yw8uWgS61uZQ QgafZEInqQCVyFrggS3eC0TN5w== -----END CERTIFICATE-----Generated at Mon Mar 2 01:14:14 2026 by rpki-client