$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: 5v19cp5Ne1dmgMbn41C+LBXwnEGEYhOaelEm9CzCRv4= Subject key identifier: 46:D1:13:5E:CD:49:D5:CF:B6:CB:0F:F9:E3:6B:36:06:04:E3:1A:76 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 046D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 0464 Signing time: Sun 01 Mar 2026 00:54:58 +0000 Manifest this update: Sun 01 Mar 2026 00:54:58 +0000 Manifest next update: Sun 08 Mar 2026 00:54:58 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: uPdmJc0qtr9SORKdWVHRcCzMo7Eb7CpdyPZeQaGbVsA=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1133 (0x46d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Mar 1 00:54:58 2026 GMT Not After : Mar 8 00:54:58 2026 GMT Subject: CN=69a38e62-251a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9b:3e:a6:38:1c:1f:ac:72:3d:71:a9:5b:98: 80:04:01:91:5b:a2:e6:fb:10:db:df:6e:80:d6:03: 17:3c:55:3f:46:ff:d8:9a:a5:0b:89:70:64:e9:ee: d5:9b:2b:7a:ed:46:70:64:98:27:6c:42:76:4c:b8: 58:28:49:69:f9:e6:3c:7b:64:17:fa:d6:ac:d6:88: 48:1c:6d:5e:69:1d:96:34:ba:45:90:27:e6:15:2f: 30:28:12:47:41:fc:52:32:a0:d1:15:18:d3:37:dc: d4:d9:f2:b0:70:67:22:da:41:af:b0:13:3d:04:1f: 7c:4b:17:d1:b1:11:2e:ca:77:1f:68:d6:2a:2f:20: 60:7e:65:39:ac:4b:0e:cd:fe:c8:49:70:0e:d0:45: b0:ac:14:b6:a6:83:c5:67:80:11:de:7f:7a:87:22: c7:19:95:a1:14:0d:b0:e3:1e:96:dd:51:eb:77:fd: 72:43:38:c7:29:9e:dd:ff:ad:31:7b:3d:fe:6f:85: 53:1f:04:6d:d3:90:20:17:9a:95:f4:8f:08:fb:e6: e5:e2:71:01:a6:99:2b:8b:18:22:00:86:d9:89:6c: 42:73:58:a4:10:fc:a4:a2:92:3d:ac:12:e3:bb:3d: 07:54:8d:c8:b1:a4:be:04:20:b7:c5:2a:82:f9:8d: 98:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D1:13:5E:CD:49:D5:CF:B6:CB:0F:F9:E3:6B:36:06:04:E3:1A:76 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:b4:ee:30:fe:18:a5:a5:79:f0:27:45:be:4f:20:dc:2b:b2: c9:d5:e2:2d:03:4d:ea:a8:e3:0c:07:e1:d4:e8:76:de:58:dd: dd:cd:46:e3:cb:0d:af:89:6b:92:49:a8:f8:5e:2c:8e:17:3f: 9d:a3:35:30:9c:f6:56:22:2d:9d:cb:7b:36:34:d3:4f:c8:d5: c4:ae:99:45:1f:1b:aa:ae:ba:37:74:4a:c6:95:0f:4c:db:88: 27:72:a4:21:e2:9d:b3:78:20:a2:f0:50:91:e0:e0:9f:54:53: c4:97:88:07:e3:50:47:ff:91:55:a6:72:b0:29:60:33:ff:7b: d3:60:47:ed:99:c2:a9:26:6a:df:1d:2c:de:d5:fa:99:7a:83: 9c:54:ae:b7:42:51:fc:96:d2:da:ea:b0:92:a5:c3:08:c7:5c: 07:eb:e7:15:58:1f:a9:1f:8b:e0:9b:75:7a:1f:8c:fb:d1:d6: 03:ae:54:76:90:e6:4a:ce:c6:57:55:d6:75:59:ae:2b:4d:25: f0:0c:0a:46:c4:be:82:d6:5c:6e:2b:e7:0f:77:2c:fc:ba:f2: e3:a0:a7:63:f5:ea:0a:ac:a1:f7:b7:aa:27:14:bb:87:16:c0: 55:d9:02:36:b0:be:3e:3a:79:8e:f1:32:37:37:03:0b:5d:76: 52:ba:df:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjYwMzAxMDA1NDU4WhcNMjYwMzA4MDA1NDU4WjAYMRYwFAYD VQQDDA02OWEzOGU2Mi0yNTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwps+pjgcH6xyPXGpW5iABAGRW6Lm+xDb326A1gMXPFU/Rv/YmqULiXBk6e7V myt67UZwZJgnbEJ2TLhYKElp+eY8e2QX+tas1ohIHG1eaR2WNLpFkCfmFS8wKBJH QfxSMqDRFRjTN9zU2fKwcGci2kGvsBM9BB98SxfRsREuyncfaNYqLyBgfmU5rEsO zf7ISXAO0EWwrBS2poPFZ4AR3n96hyLHGZWhFA2w4x6W3VHrd/1yQzjHKZ7d/60x ez3+b4VTHwRt05AgF5qV9I8I++bl4nEBppkrixgiAIbZiWxCc1ikEPykopI9rBLj uz0HVI3IsaS+BCC3xSqC+Y2YnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEbRE17N SdXPtssP+eNrNgYE4xp2MB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAabTuMP4YpaV58CdFvk8g3CuyydXiLQNN6qjjDAfh1Oh23ljd3c1G48sNr4lr kkmo+F4sjhc/naM1MJz2ViItnct7NjTTT8jVxK6ZRR8bqq66N3RKxpUPTNuIJ3Kk IeKds3ggovBQkeDgn1RTxJeIB+NQR/+RVaZysClgM/9702BH7ZnCqSZq3x0s3tX6 mXqDnFSut0JR/JbS2uqwkqXDCMdcB+vnFVgfqR+L4Jt1eh+M+9HWA65UdpDmSs7G V1XWdVmuK00l8AwKRsS+gtZcbivnD3cs/Lry46CnY/XqCqyh97eqJxS7hxbAVdkC NrC+Pjp5jvEyNzcDC112UrrfyQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:21:44 2026 by rpki-client