$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft File: l_PsEBRVjghHCgOpR4yE8j5FADo.mft (raw, json) Hash identifier: 2lepjj7Zf2rJfMQwBsRjYROg0w6IK9XNx1wUo+CKTEY= Subject key identifier: 87:6E:B9:16:EE:F3:7C:E4:03:33:32:F9:09:9A:C4:E8:7D:32:17:4B Authority key identifier: 97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A Certificate issuer: /CN=A91E2E92/serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Certificate serial: 0226 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft Manifest number: 0211 Signing time: Mon 02 Mar 2026 01:43:35 +0000 Manifest this update: Mon 02 Mar 2026 01:43:34 +0000 Manifest next update: Mon 09 Mar 2026 01:43:34 +0000 Files and hashes: 1: l_PsEBRVjghHCgOpR4yE8j5FADo.crl (hash: NzJZiL7iFsGfZODfeaCJt7HSDfnkjXKheQMh+wr098Y=) 2: B7D34CC444ED11EE8D931624C4F9AE02.roa (hash: ikN5tRwLqDlsCqslEfbzVnOUPYHIszI42NOtjTWTVog=) 3: D78EA2DE44ED11EEA6685324C4F9AE02.roa (hash: l+wLTHIqrekcKTj0QKuQF0Rx57+DsEFBlDvziPYrkC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2E92, serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Validity Not Before: Mar 2 01:43:34 2026 GMT Not After : Mar 9 01:43:34 2026 GMT Subject: CN=69a4eb47-60d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:71:9f:3b:7e:66:4b:ea:be:8a:e8:31:88:c0: 1d:9c:c6:b3:7e:e3:50:cd:f9:43:ca:1e:1b:4c:95: c9:f8:81:92:9e:43:ef:d0:4e:ab:33:f3:c5:66:94: 4c:9c:2a:a0:04:a1:4a:b8:dc:42:dc:41:2e:71:22: 26:dd:11:d0:7b:9c:3c:db:bb:d7:02:4c:55:87:ef: e1:ba:92:95:31:37:5c:53:b3:8c:3c:10:8c:c8:82: 35:31:c3:8d:49:03:0c:5a:c9:e1:ec:1f:40:1a:b7: e6:6a:6f:ee:1f:8d:da:2b:9c:1d:8b:0b:91:70:e7: e2:2a:6a:95:14:73:3b:d0:b5:21:fa:63:9c:04:af: 24:fe:8b:38:ba:6c:5e:33:fe:04:a0:36:e2:11:a2: f6:fe:9e:37:ac:b2:8f:14:68:11:a2:fd:33:c7:be: 25:35:79:b2:03:bb:b9:cf:86:9f:bb:24:9a:74:f1: ad:b3:7f:00:2e:96:18:4f:c5:04:1b:ef:26:9a:2b: 4d:65:11:5a:50:03:37:8a:89:65:e4:56:b5:8f:23: 3e:6b:b1:0a:d4:12:4b:c7:78:a1:05:51:a3:cc:d3: f3:b7:1c:8e:48:6c:41:52:98:5e:04:2a:f7:50:e8: 8d:7e:c4:51:66:80:76:c0:16:6d:2b:b7:0a:31:3e: 0d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:6E:B9:16:EE:F3:7C:E4:03:33:32:F9:09:9A:C4:E8:7D:32:17:4B X509v3 Authority Key Identifier: keyid:97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:f7:6b:4f:69:bc:ac:98:97:33:77:c1:73:95:a3:a3:da:f1: ca:92:bc:a2:a7:98:04:ce:aa:34:2a:15:bb:7c:17:95:95:33: e4:43:d0:ab:f0:15:21:88:4c:5d:0e:b9:63:f6:1b:d8:2c:57: ac:7a:a5:5e:aa:f4:2a:96:9a:c0:eb:fe:5f:2e:de:bf:25:1f: ed:84:49:8e:58:b7:7a:28:db:55:b2:be:c5:02:ca:a2:c2:69: 9c:1f:24:28:8c:c8:a1:7e:3c:1d:96:73:47:36:b2:f1:3f:ab: 58:87:51:2c:c3:28:62:9e:bb:b8:f2:a7:92:ac:38:d5:2a:ec: d6:cb:4d:f8:33:6d:15:06:a8:ce:6e:a7:b0:d7:77:be:93:a6: fd:20:fc:80:fd:50:34:f7:eb:8c:2f:38:2a:68:02:fe:f2:0c: 1e:cf:91:87:a1:d4:2d:f9:cf:3a:a7:86:d0:38:f3:58:86:45: 42:af:73:10:bb:46:99:ca:a3:ce:b6:68:eb:e1:d1:8d:07:f1: da:96:a7:55:d1:b8:e9:45:8e:39:01:f2:14:67:54:ed:e7:5b: 23:5c:4a:d1:dd:86:fe:11:72:2c:b9:ca:55:cd:fc:b1:38:46: 64:40:b2:82:7c:2b:73:42:8f:fa:00:ca:8e:d0:c0:a9:80:b5: 40:07:81:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFOTIxMTAvBgNVBAUTKDk3RjNFQzEwMTQ1NThFMDg0NzBBMDNBOTQ3OEM4NEYy M0U0NTAwM0EwHhcNMjYwMzAyMDE0MzM0WhcNMjYwMzA5MDE0MzM0WjAYMRYwFAYD VQQDEw02OWE0ZWI0Ny02MGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAonGfO35mS+q+iugxiMAdnMazfuNQzflDyh4bTJXJ+IGSnkPv0E6rM/PFZpRM nCqgBKFKuNxC3EEucSIm3RHQe5w827vXAkxVh+/hupKVMTdcU7OMPBCMyII1McON SQMMWsnh7B9AGrfmam/uH43aK5wdiwuRcOfiKmqVFHM70LUh+mOcBK8k/os4umxe M/4EoDbiEaL2/p43rLKPFGgRov0zx74lNXmyA7u5z4afuySadPGts38ALpYYT8UE G+8mmitNZRFaUAM3ioll5Fa1jyM+a7EK1BJLx3ihBVGjzNPztxyOSGxBUpheBCr3 UOiNfsRRZoB2wBZtK7cKMT4NtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIduuRbu 83zkAzMy+QmaxOh9MhdLMB8GA1UdIwQYMBaAFJfz7BAUVY4IRwoDqUeMhPI+RQA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkU5Mi8xODg1QTZEMjA2 Q0YxMUVFOUM5NzEyN0JDNEY5QUUwMi9sX1BzRUJSVmpnaEhDZ09wUjR5RThqNUZB RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfUHNFQlJWamdoSENnT3BSNHlFOGo1RkFEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkU5Mi8xODg1QTZEMjA2Q0YxMUVFOUM5NzEyN0JDNEY5QUUwMi9sX1BzRUJSVmpn aEhDZ09wUjR5RThqNUZBRG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHfdrT2m8rJiXM3fBc5Wjo9rxypK8oqeYBM6qNCoVu3wXlZUz5EPQq/AVIYhM XQ65Y/Yb2CxXrHqlXqr0KpaawOv+Xy7evyUf7YRJjli3eijbVbK+xQLKosJpnB8k KIzIoX48HZZzRzay8T+rWIdRLMMoYp67uPKnkqw41Srs1stN+DNtFQaozm6nsNd3 vpOm/SD8gP1QNPfrjC84KmgC/vIMHs+Rh6HULfnPOqeG0DjzWIZFQq9zELtGmcqj zrZo6+HRjQfx2panVdG46UWOOQHyFGdU7edbI1xK0d2G/hFyLLnKVc38sThGZECy gnwrc0KP+gDKjtDAqYC1QAeBeg== -----END CERTIFICATE-----Generated at Mon Mar 2 12:17:15 2026 by rpki-client