$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft File: Lfmh43Whe46lYCe0WovWb5Z0fYY.mft (raw, json) Hash identifier: e0kmvEKnm4tyKgB/wCXQCnIfl7CfY60IDfG457JTW9g= Subject key identifier: 89:AE:46:E5:FC:79:05:9D:AF:40:80:F6:AB:DF:07:08:15:C5:E6:98 Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft Manifest number: 01AA Signing time: Mon 11 May 2026 04:26:09 +0000 Manifest this update: Mon 11 May 2026 04:26:08 +0000 Manifest next update: Mon 18 May 2026 04:26:08 +0000 Files and hashes: 1: Lfmh43Whe46lYCe0WovWb5Z0fYY.crl (hash: o4QhxQP1dbL0BZse0zVbV8SM5ZynZVoZPvYZrth8r/w=) 2: BA6555344DEE11F0B209371DC4F9AE02.roa (hash: 3ACPZlFXJEBS0DfhOh+fI+mz2WtH3cLyLDO6b8JhniE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 04:26:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D, serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Validity Not Before: May 11 04:26:08 2026 GMT Not After : May 18 04:26:08 2026 GMT Subject: CN=6a015a60-ecb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a0:86:b7:07:1d:91:5d:e5:f2:08:35:4f:16: 0b:df:0f:4a:7b:88:ff:5b:f7:72:fc:ef:1a:23:81: 5a:ba:85:b2:29:83:13:c3:da:8b:1a:04:b5:c0:64: e4:f9:fd:d2:58:f2:f8:f5:47:1e:6f:71:f7:75:9f: b3:4a:f3:8f:01:13:18:bf:6d:8a:7f:48:78:81:46: 4b:09:2c:19:2a:ea:67:df:85:3c:fd:d4:3b:11:81: b2:5f:c9:bf:08:87:14:8d:ca:15:86:a7:6d:5d:0e: 65:2b:34:b0:79:12:b1:40:f9:fc:2c:05:35:60:6d: 32:77:0f:63:98:ba:ad:ad:b8:4c:db:cf:c4:4c:6e: 96:2c:58:3a:f9:49:97:00:86:f5:b8:e4:52:f1:ee: 8a:a3:43:30:bd:12:b8:bc:35:19:43:6e:a6:93:51: 7d:2c:d1:c7:65:f6:4d:c8:ad:68:7c:c8:bf:82:1e: 3e:f2:eb:5f:9a:a5:97:09:71:6a:ad:c5:73:ea:ec: 1b:00:00:ae:f8:83:e5:17:ed:97:9d:14:b5:7b:df: ae:34:dd:10:de:2c:c9:05:ac:36:30:07:b9:9f:33: d9:e6:71:6c:9a:53:09:82:b8:36:fc:79:21:05:ad: db:d7:d3:00:d1:3f:d0:6f:94:65:2d:86:3b:1a:ed: 77:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:AE:46:E5:FC:79:05:9D:AF:40:80:F6:AB:DF:07:08:15:C5:E6:98 X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:75:7c:fb:60:fe:48:e9:45:b3:3d:22:20:c8:e1:9f:8d:e9: 24:78:72:c9:79:a9:06:a8:fe:8f:d9:9c:80:8b:0c:7a:1a:3c: bb:02:b4:fa:85:6b:a3:e4:33:af:51:ce:55:0c:ac:95:08:21: 87:79:d2:8a:2e:8a:c2:c3:04:98:ad:67:12:16:4c:9d:9b:c6: e4:d2:d2:30:1c:ac:74:ad:92:7f:e5:2c:a9:9a:b9:a6:2f:b0: 22:a6:74:d9:74:8d:a3:c5:91:c8:84:6f:b3:da:35:8f:73:46: a1:c3:d1:37:71:8d:ab:a0:cc:b8:45:ca:fb:4b:dd:ea:98:99: cb:49:8b:12:ea:78:9d:33:fb:3b:e1:ae:e0:b0:ca:28:5d:ad: fd:70:72:07:b9:de:49:d0:90:f3:5a:68:4a:71:d8:28:35:df: b6:57:b8:d5:39:54:0c:8c:cd:75:87:5b:d0:cd:b8:cc:c9:c0: 12:86:f2:14:cd:dd:0c:d5:b5:b2:81:dc:f1:76:8a:08:3c:a0: 68:e6:70:69:ae:9b:e1:ab:8f:c8:9b:25:0b:0b:70:e4:3a:0e: 87:22:0c:00:13:54:f6:cf:af:fc:41:44:77:81:b4:36:a5:e4: e5:ec:e4:22:df:bb:0e:57:d1:31:fd:34:72:f3:fc:70:8c:4d: b0:c4:3b:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDJERjlBMUUzNzVBMTdCOEVBNTYwMjdCNDVBOEJENjZG OTY3NDdEODYwHhcNMjYwNTExMDQyNjA4WhcNMjYwNTE4MDQyNjA4WjAYMRYwFAYD VQQDEw02YTAxNWE2MC1lY2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5KCGtwcdkV3l8gg1TxYL3w9Ke4j/W/dy/O8aI4FauoWyKYMTw9qLGgS1wGTk +f3SWPL49Uceb3H3dZ+zSvOPARMYv22Kf0h4gUZLCSwZKupn34U8/dQ7EYGyX8m/ CIcUjcoVhqdtXQ5lKzSweRKxQPn8LAU1YG0ydw9jmLqtrbhM28/ETG6WLFg6+UmX AIb1uORS8e6Ko0MwvRK4vDUZQ26mk1F9LNHHZfZNyK1ofMi/gh4+8utfmqWXCXFq rcVz6uwbAACu+IPlF+2XnRS1e9+uNN0Q3izJBaw2MAe5nzPZ5nFsmlMJgrg2/Hkh Ba3b19MA0T/Qb5RlLYY7Gu13FQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFImuRuX8 eQWdr0CA9qvfBwgVxeaYMB8GA1UdIwQYMBaAFC35oeN1oXuOpWAntFqL1m+WdH2G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8xODFCODIyMEU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0NmxZQ2UwV292V2I1WjBm WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8xODFCODIyMEU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0 NmxZQ2UwV292V2I1WjBmWVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASXV8+2D+SOlFsz0iIMjhn43pJHhyyXmpBqj+j9mcgIsMeho8uwK0+oVro+Qz r1HOVQyslQghh3nSii6KwsMEmK1nEhZMnZvG5NLSMBysdK2Sf+UsqZq5pi+wIqZ0 2XSNo8WRyIRvs9o1j3NGocPRN3GNq6DMuEXK+0vd6piZy0mLEup4nTP7O+Gu4LDK KF2t/XByB7neSdCQ81poSnHYKDXftle41TlUDIzNdYdb0M24zMnAEobyFM3dDNW1 soHc8XaKCDygaOZwaa6b4auPyJslCwtw5DoOhyIMABNU9s+v/EFEd4G0NqXk5ezk It+7DlfRMf00cvP8cIxNsMQ7fA== -----END CERTIFICATE-----Generated at Wed May 13 04:06:33 2026 by rpki-client