$ rpki-client -vvf rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft File: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft (raw, json) Hash identifier: PTct3XA2f3ztJ9ATgOFNLC6G+obeL6JN07MQTYhMtWk= Subject key identifier: B7:3D:9E:1C:E1:74:2C:EE:06:06:80:47:67:64:69:A9:07:6B:39:DF Authority key identifier: 2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD Certificate issuer: /CN=A9131ABD/serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Certificate serial: 0D21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft Manifest number: 0D02 Signing time: Tue 12 May 2026 18:14:23 +0000 Manifest this update: Tue 12 May 2026 18:14:22 +0000 Manifest next update: Tue 19 May 2026 18:14:22 +0000 Files and hashes: 1: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl (hash: t7oZ21365zrUqsjEEIHmj6OOK9R6z3fTxGMOp/Yj+ag=) 2: 99191AA404E911EAA9C20A60C4F9AE02.roa (hash: OGh3gB84SgLrNeV+oSTQFAGbvx7CV+eo340xHFNcHRk=) 3: 37FE0B120C0011EAA414FC4AC4F9AE02.roa (hash: pMrtGOs7uT1vXLuw6dCiCU+QFLRT1Z3tUfJSisugmVg=) 4: 3726AAFA0C0011EAA414FC4AC4F9AE02.roa (hash: AZJ9Ikn6w4HKM1tU6KflkZ7ElKv1SQQyJlfS833ElRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:14:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3361 (0xd21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131ABD, serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Validity Not Before: May 12 18:14:22 2026 GMT Not After : May 19 18:14:22 2026 GMT Subject: CN=6a036dff-383c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5c:22:82:f2:92:11:b1:a8:46:2c:cb:9d:76: b1:12:6e:a3:47:e7:13:69:5d:22:9c:89:0a:94:f9: 3a:3f:3e:ce:2b:de:0b:58:33:95:28:4a:c0:42:ce: b8:57:dc:2f:1c:6f:4f:73:a2:06:8c:28:d8:e4:fe: 49:f6:bd:69:c0:de:23:82:f5:47:66:19:3c:eb:84: 5c:91:f7:3b:06:c4:27:6c:8c:bb:55:68:8b:ed:37: 4c:d4:03:c6:5a:6d:85:9f:99:cc:45:09:fd:80:31: f7:39:b2:f9:ad:32:d4:76:25:30:20:2f:5b:76:e7: 94:e4:54:09:04:c2:dd:ef:07:ad:72:fe:bf:93:34: ef:13:da:87:29:ae:c1:d5:c2:66:0b:22:58:86:21: e1:b0:3b:c8:ba:79:74:a3:7e:a2:ec:a1:15:78:dd: 10:4a:54:83:39:27:ce:60:14:3d:7b:0c:9d:0d:71: c9:f1:39:c8:85:c1:44:a4:35:99:1d:58:89:7c:ed: 03:ce:5f:f2:52:7d:f9:40:3b:55:53:62:ec:b6:48: 85:43:73:dd:f0:03:70:40:a6:17:38:88:92:ea:17: 23:f0:7a:e9:b8:82:8d:c6:1e:a1:b1:f2:52:e0:f9: 09:7c:87:6b:f7:7e:23:29:0a:58:c7:db:3d:37:68: 1e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:3D:9E:1C:E1:74:2C:EE:06:06:80:47:67:64:69:A9:07:6B:39:DF X509v3 Authority Key Identifier: keyid:2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:3a:2c:42:43:86:33:f0:a7:32:eb:40:65:9c:83:63:01:a8: 77:ea:b2:b7:c2:aa:0d:15:cb:f3:96:64:ed:e0:3c:f9:98:b4: e5:a9:b4:99:98:c7:5f:c5:4d:73:67:5a:ce:7f:6f:15:df:09: 57:b2:59:b6:9f:38:2a:33:97:bf:d5:37:81:ae:43:e0:cf:f9: 34:7d:a2:5a:c2:aa:a1:83:94:39:ff:c4:f2:71:26:a4:d1:57: fa:0e:a3:49:ff:39:2e:16:fa:a8:01:fa:2c:d7:60:38:6e:60: f9:7c:d1:7b:45:c1:a2:4e:71:62:a1:f1:1d:c0:34:69:c3:34: 06:12:3a:1e:82:7d:2f:e5:c1:cd:d8:36:b3:ef:46:85:9f:8b: ab:1c:d8:0b:06:cb:4f:45:8e:9e:31:5d:da:10:8e:91:c7:86: f1:35:70:e1:4d:39:af:9a:f0:1f:f4:c4:0a:85:e8:22:f9:df: 63:5d:41:b0:96:38:aa:1e:f8:4f:8b:09:3c:93:2b:24:ff:96: 58:09:30:85:cd:d4:f7:f1:43:bb:ef:b5:1e:27:e0:c9:a6:13: 3c:a0:63:82:c4:07:2c:ee:3d:28:c4:12:c2:fa:40:43:cf:10: b1:68:34:e8:c3:1e:4e:9f:f5:41:96:2e:79:8c:55:06:3a:c5: e2:44:8e:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBQkQxMTAvBgNVBAUTKDJFOUM5MUY0RTM5NEE0QUZBOTc2RDZCQzNGNjVERjJE OUYwNzlFQkQwHhcNMjYwNTEyMTgxNDIyWhcNMjYwNTE5MTgxNDIyWjAYMRYwFAYD VQQDEw02YTAzNmRmZi0zODNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFwigvKSEbGoRizLnXaxEm6jR+cTaV0inIkKlPk6Pz7OK94LWDOVKErAQs64 V9wvHG9Pc6IGjCjY5P5J9r1pwN4jgvVHZhk864Rckfc7BsQnbIy7VWiL7TdM1APG Wm2Fn5nMRQn9gDH3ObL5rTLUdiUwIC9bdueU5FQJBMLd7wetcv6/kzTvE9qHKa7B 1cJmCyJYhiHhsDvIunl0o36i7KEVeN0QSlSDOSfOYBQ9ewydDXHJ8TnIhcFEpDWZ HViJfO0Dzl/yUn35QDtVU2LstkiFQ3Pd8ANwQKYXOIiS6hcj8HrpuIKNxh6hsfJS 4PkJfIdr934jKQpYx9s9N2geKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLc9nhzh dCzuBgaAR2dkaakHaznfMB8GA1UdIwQYMBaAFC6ckfTjlKSvqXbWvD9l3y2fB569 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUFCRC8yMEU4RjlBMDA0 RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBLLXBkdGE4UDJYZkxaOEhu cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xweVI5T09VcEstcGR0YThQMlhmTFo4SG5yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUFCRC8yMEU4RjlBMDA0RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBL LXBkdGE4UDJYZkxaOEhucjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEzosQkOGM/CnMutAZZyDYwGod+qyt8KqDRXL85Zk7eA8+Zi05am0mZjHX8VN c2dazn9vFd8JV7JZtp84KjOXv9U3ga5D4M/5NH2iWsKqoYOUOf/E8nEmpNFX+g6j Sf85Lhb6qAH6LNdgOG5g+XzRe0XBok5xYqHxHcA0acM0BhI6HoJ9L+XBzdg2s+9G hZ+LqxzYCwbLT0WOnjFd2hCOkceG8TVw4U05r5rwH/TECoXoIvnfY11BsJY4qh74 T4sJPJMrJP+WWAkwhc3U9/FDu++1HifgyaYTPKBjgsQHLO49KMQSwvpAQ88QsWg0 6MMeTp/1QZYueYxVBjrF4kSOhA== -----END CERTIFICATE-----Generated at Wed May 13 00:40:44 2026 by rpki-client