$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: nFJKgfQFcIq5sVDrfWYfyukza0VsH0Z1UkRXjNy+5Mk= Subject key identifier: CF:2A:93:68:D9:D0:39:1F:DC:99:37:9B:EA:6E:C2:2B:67:CD:96:4F Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0ECB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0EC2 Signing time: Sat 28 Feb 2026 17:47:56 +0000 Manifest this update: Sat 28 Feb 2026 17:47:55 +0000 Manifest next update: Sat 07 Mar 2026 17:47:55 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: RMVLTBZ9N+AgtFPzgrlj2TfiGQ8ybM3569TpkkteyS0=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: FB/I0gTgEb20qtL8a4Y3PnJsdj8cSocHpg/e5FisnJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3787 (0xecb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Feb 28 17:47:55 2026 GMT Not After : Mar 7 17:47:55 2026 GMT Subject: CN=69a32a4c-7218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:44:4b:b8:e0:c2:b7:ea:78:69:a2:2d:0d:0b: f6:a0:b4:aa:7c:49:4c:94:36:ab:b8:d7:eb:9c:e7: c6:90:97:9d:44:74:b4:1e:14:6c:af:7e:8a:20:27: 93:a2:59:f8:48:b1:b8:de:03:a9:7f:da:52:51:31: 62:6b:f9:f4:d9:41:1a:b5:97:3e:ae:f0:bf:f3:25: 20:fb:aa:fb:ea:63:7c:b4:cd:b6:2e:82:cd:84:c2: 00:55:cc:30:08:ad:73:fb:81:06:d3:24:18:de:d2: fb:8f:d5:dc:ab:2c:2d:f8:3c:bd:eb:a2:c9:1c:c1: 40:d0:98:c1:bb:39:38:b8:c9:b7:55:25:cd:e8:9c: 91:68:d6:bb:06:28:56:db:4b:ed:b8:fc:60:c5:b5: 79:96:8f:8c:7d:8a:b1:4b:f2:48:e8:a9:e5:19:d4: ff:d6:78:e6:ce:e3:e6:9e:ea:04:50:43:8b:ca:19: 2d:5a:92:d0:28:2c:7e:a8:02:b0:45:9a:15:b8:91: c6:8b:dc:20:e1:ec:7a:ec:4b:19:32:39:e3:a3:b6: dc:ac:a6:0b:ac:b2:0e:8e:dd:4f:d8:67:dd:4e:36: 03:f1:2e:7d:87:47:aa:4e:9d:0a:b9:73:1a:ac:53: a3:d6:07:a9:a7:9f:eb:44:69:40:dd:41:2f:d9:e9: 5d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:2A:93:68:D9:D0:39:1F:DC:99:37:9B:EA:6E:C2:2B:67:CD:96:4F X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:6f:9a:97:11:a0:31:63:72:6b:5e:9d:a8:34:29:cd:fe:c1: 25:4f:4f:06:fc:d6:c2:30:0a:55:21:77:fd:73:a5:62:c4:19: 3a:bc:5f:ea:b5:b4:df:f2:ed:06:23:40:1d:3c:56:f8:e8:58: 51:36:d7:80:35:0b:7c:6f:9a:be:50:2f:b6:6d:4f:33:5e:ea: cd:5f:1c:eb:d1:ea:c3:41:f7:81:13:e3:b7:b8:fb:a6:67:14: 97:4d:6a:27:2f:e1:51:4e:04:3a:95:0c:b0:50:8b:e8:ee:c2: 7f:06:da:66:30:94:89:67:11:9a:3b:31:cb:d6:3a:66:73:19: 47:3f:7f:4c:1c:44:18:6c:a2:f8:36:6c:f7:4c:d3:4a:ae:52: 3b:03:6c:27:9b:84:58:eb:d7:78:59:43:d7:55:7e:0a:cc:59: 23:55:2f:0a:6b:07:60:ce:eb:ac:11:03:47:a3:51:f0:ef:30: 98:a8:66:2d:2c:63:5f:21:3c:1e:7e:d5:6b:d5:b5:f7:94:89: 77:41:a1:e6:3d:b6:08:c8:28:02:d3:f0:b5:c8:2a:df:96:92: 02:1b:0d:7a:15:6b:3f:96:c7:d6:b4:d1:f1:14:dd:6d:b2:3e: 48:d2:05:0a:9e:e1:4c:97:55:49:f7:09:9f:6b:6f:fc:5c:32: b3:91:c8:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjYwMjI4MTc0NzU1WhcNMjYwMzA3MTc0NzU1WjAYMRYwFAYD VQQDDA02OWEzMmE0Yy03MjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkRLuODCt+p4aaItDQv2oLSqfElMlDaruNfrnOfGkJedRHS0HhRsr36KICeT oln4SLG43gOpf9pSUTFia/n02UEatZc+rvC/8yUg+6r76mN8tM22LoLNhMIAVcww CK1z+4EG0yQY3tL7j9Xcqywt+Dy966LJHMFA0JjBuzk4uMm3VSXN6JyRaNa7BihW 20vtuPxgxbV5lo+MfYqxS/JI6KnlGdT/1njmzuPmnuoEUEOLyhktWpLQKCx+qAKw RZoVuJHGi9wg4ex67EsZMjnjo7bcrKYLrLIOjt1P2GfdTjYD8S59h0eqTp0KuXMa rFOj1gepp5/rRGlA3UEv2eldHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM8qk2jZ 0Dkf3Jk3m+puwitnzZZPMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI2+alxGgMWNya16dqDQpzf7BJU9PBvzWwjAKVSF3/XOlYsQZOrxf6rW03/Lt BiNAHTxW+OhYUTbXgDULfG+avlAvtm1PM17qzV8c69Hqw0H3gRPjt7j7pmcUl01q Jy/hUU4EOpUMsFCL6O7CfwbaZjCUiWcRmjsxy9Y6ZnMZRz9/TBxEGGyi+DZs90zT Sq5SOwNsJ5uEWOvXeFlD11V+CsxZI1UvCmsHYM7rrBEDR6NR8O8wmKhmLSxjXyE8 Hn7Va9W195SJd0Gh5j22CMgoAtPwtcgq35aSAhsNehVrP5bH1rTR8RTdbbI+SNIF Cp7hTJdVSfcJn2tv/Fwys5HI5w== -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:26 2026 by rpki-client