$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft File: ldziG17K3rBp3IG5JAXUdN5BwgY.mft (raw, json) Hash identifier: 0p8Nt9T7CS4Pmetx/8EWYbjnD9Kf2xiujR1bPCL1HEU= Subject key identifier: A4:12:9D:B9:00:A3:54:7B:D5:D1:EB:DC:83:7A:AA:65:03:84:1A:45 Authority key identifier: 95:DC:E2:1B:5E:CA:DE:B0:69:DC:81:B9:24:05:D4:74:DE:41:C2:06 Certificate issuer: /CN=A91CD174/serialNumber=95DCE21B5ECADEB069DC81B92405D474DE41C206 Certificate serial: 0CBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft Manifest number: 0CB1 Signing time: Sat 28 Feb 2026 18:35:20 +0000 Manifest this update: Sat 28 Feb 2026 18:35:19 +0000 Manifest next update: Sat 07 Mar 2026 18:35:19 +0000 Files and hashes: 1: ldziG17K3rBp3IG5JAXUdN5BwgY.crl (hash: 2d7v2u/LYd6BzQQcrWhYeiMfGA+D5WkD5hRy+yHSJNo=) 2: 54AD60AE0C2E11EABBBFA158C4F9AE02.roa (hash: /1zN6Gwwi0zP2Xs45slEdMpw3TT72EUNYyQ6n/qRBPQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.crl rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:35:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3260 (0xcbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD174, serialNumber=95DCE21B5ECADEB069DC81B92405D474DE41C206 Validity Not Before: Feb 28 18:35:19 2026 GMT Not After : Mar 7 18:35:19 2026 GMT Subject: CN=69a33568-d2fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fb:2f:6b:3a:ca:ee:d0:df:23:47:fd:ef:18: b1:0d:f6:b4:79:df:40:97:53:4c:2e:91:48:1a:3d: 61:ff:55:b5:c8:c3:81:ce:67:82:8c:85:eb:f6:ab: 12:7f:4e:48:ac:8e:1f:4d:72:11:04:db:d9:92:04: 19:55:07:26:b3:7b:75:fa:4a:21:30:bc:8e:af:f5: 40:f0:5a:b6:0a:5e:71:09:21:ea:1a:de:83:83:0f: d3:6d:f5:37:40:a8:a8:95:7e:8e:45:1d:09:03:fb: 15:89:02:cf:8c:12:a6:2d:fd:42:1d:dd:b1:dd:74: ba:3e:d1:16:27:fc:60:9a:13:d6:c7:c8:8b:43:32: 79:8d:63:0c:fc:57:9d:79:a3:90:70:ea:d8:0b:33: d8:9d:89:77:d7:17:32:88:5f:aa:54:cc:8d:5e:b7: 8c:2b:b9:34:f6:bb:9b:01:9f:ba:90:39:f3:94:31: 31:64:87:a6:65:ad:08:06:88:08:c6:4d:fd:57:fd: ed:09:11:b6:7d:e5:c5:a3:53:98:3d:09:05:d4:1f: 2d:48:d9:b0:41:4e:bd:e2:cb:08:09:f6:46:ac:16: b4:97:bf:45:fd:d6:84:d7:96:ec:ff:3b:6a:21:ac: 91:c2:11:45:1c:a4:20:9d:ca:a5:b3:37:f1:bf:b0: f1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:12:9D:B9:00:A3:54:7B:D5:D1:EB:DC:83:7A:AA:65:03:84:1A:45 X509v3 Authority Key Identifier: keyid:95:DC:E2:1B:5E:CA:DE:B0:69:DC:81:B9:24:05:D4:74:DE:41:C2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:09:e2:5b:4c:3c:fb:14:3f:34:3e:fb:55:aa:93:f5:63:e1: 04:5d:49:e7:bd:c4:44:5e:65:4d:3e:86:b6:33:19:59:64:83: eb:a2:7a:2d:10:5f:9c:60:84:34:08:b6:33:ea:ff:84:c1:6e: e4:fe:e6:ce:ad:9a:7d:4e:c1:a8:a0:3c:8a:d7:03:df:07:89: 36:2e:c4:46:78:48:58:ef:46:a2:62:34:71:e8:0e:64:80:33: b2:2b:19:62:ac:9d:7f:e8:4b:16:9b:06:b6:d4:71:0f:a2:7b: 63:f3:11:c9:0d:13:5f:ed:f7:38:3d:54:e7:8e:f9:48:65:2c: f0:91:a6:d5:bd:1f:2c:b0:f2:1f:31:c8:dc:d7:59:f3:42:ae: 73:e1:f1:d1:e6:af:41:8a:4a:95:00:7e:aa:8d:eb:70:d1:cb: 1f:a1:91:d5:13:82:4d:0d:87:f2:ca:d0:d6:27:e4:7d:59:81: 3b:5f:e4:d5:8e:32:f3:7e:a6:31:70:99:a6:df:6f:b9:39:ce: 82:c4:af:22:0f:c9:3e:19:4c:2a:08:67:a3:4c:63:13:5e:f9: 72:65:bf:fb:8e:87:32:7a:18:05:5c:54:92:44:b9:cc:5e:7d: bf:08:57:8f:0c:f6:c5:70:ba:35:24:0e:7d:5e:54:39:0a:48: d2:f5:b0:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QxNzQxMTAvBgNVBAUTKDk1RENFMjFCNUVDQURFQjA2OURDODFCOTI0MDVENDc0 REU0MUMyMDYwHhcNMjYwMjI4MTgzNTE5WhcNMjYwMzA3MTgzNTE5WjAYMRYwFAYD VQQDDA02OWEzMzU2OC1kMmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfsvazrK7tDfI0f97xixDfa0ed9Al1NMLpFIGj1h/1W1yMOBzmeCjIXr9qsS f05IrI4fTXIRBNvZkgQZVQcms3t1+kohMLyOr/VA8Fq2Cl5xCSHqGt6Dgw/TbfU3 QKiolX6ORR0JA/sViQLPjBKmLf1CHd2x3XS6PtEWJ/xgmhPWx8iLQzJ5jWMM/Fed eaOQcOrYCzPYnYl31xcyiF+qVMyNXreMK7k09rubAZ+6kDnzlDExZIemZa0IBogI xk39V/3tCRG2feXFo1OYPQkF1B8tSNmwQU694ssICfZGrBa0l79F/daE15bs/ztq IayRwhFFHKQgncqlszfxv7DxXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKQSnbkA o1R71dHr3IN6qmUDhBpFMB8GA1UdIwQYMBaAFJXc4hteyt6wadyBuSQF1HTeQcIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDE3NC81MUMzRTU0ODBC NEQxMUVBOTJDMjhGMjBDNEY5QUUwMi9sZHppRzE3SzNyQnAzSUc1SkFYVWRONUJ3 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkemlHMTdLM3JCcDNJRzVKQVhVZE41QndnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDE3NC81MUMzRTU0ODBCNEQxMUVBOTJDMjhGMjBDNEY5QUUwMi9sZHppRzE3SzNy QnAzSUc1SkFYVWRONUJ3Z1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApAniW0w8+xQ/ND77VaqT9WPhBF1J573ERF5lTT6GtjMZWWSD66J6LRBfnGCE NAi2M+r/hMFu5P7mzq2afU7BqKA8itcD3weJNi7ERnhIWO9GomI0cegOZIAzsisZ Yqydf+hLFpsGttRxD6J7Y/MRyQ0TX+33OD1U5475SGUs8JGm1b0fLLDyHzHI3NdZ 80Kuc+Hx0eavQYpKlQB+qo3rcNHLH6GR1ROCTQ2H8srQ1ifkfVmBO1/k1Y4y836m MXCZpt9vuTnOgsSvIg/JPhlMKghno0xjE175cmW/+46HMnoYBVxUkkS5zF59vwhX jwz2xXC6NSQOfV5UOQpI0vWwsw== -----END CERTIFICATE-----Generated at Sun Mar 1 23:07:07 2026 by rpki-client