$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: MS1UA33VSgihpZcy0YoWDXh+FIyYbtvw42VmVILjVew= Subject key identifier: 4D:3A:54:16:7B:F5:41:CE:BF:63:B3:0F:ED:B6:1A:71:02:C8:61:4D Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 11D1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 11C4 Signing time: Tue 12 May 2026 17:11:48 +0000 Manifest this update: Tue 12 May 2026 17:11:47 +0000 Manifest next update: Tue 19 May 2026 17:11:47 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: 3EyiOGGGElV6fK/MwJxmnEC4WGPTJCQj9hsnxhTkZkY=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: mX70QQ2yE9wPh1hnIXZOciGYYAe5yUlr20YktwOYe68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:11:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4561 (0x11d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: May 12 17:11:47 2026 GMT Not After : May 19 17:11:47 2026 GMT Subject: CN=6a035f53-9db1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d4:03:5d:64:93:d6:92:85:b8:ed:a8:7f:2a: 97:04:7a:2c:ce:60:af:bc:63:69:47:53:d3:80:7f: ab:b9:30:db:2a:4b:55:54:5f:1f:0a:42:22:d4:c9: 2b:ee:79:12:e4:9d:ac:c6:a9:3b:29:ec:96:f5:65: 3e:31:7f:4c:ab:8d:08:ff:df:18:c3:53:8c:03:84: 03:d5:b9:45:87:e6:cd:7c:56:96:25:af:44:8a:9a: 95:d6:9b:0b:32:45:23:82:99:43:97:64:2a:b4:89: d1:5a:d8:3c:dc:96:d3:94:30:87:34:89:9d:8f:84: 8d:7d:ce:36:3c:cb:03:0b:01:9e:88:0d:ca:ec:aa: a9:9a:0f:8a:46:49:86:5b:70:de:0d:12:a0:72:57: 97:20:15:1e:16:f3:60:17:9d:59:43:a6:ab:46:6d: 08:3d:9b:b2:06:40:15:10:75:f9:a8:7e:5d:d4:23: e3:a3:b3:53:b5:37:da:4d:36:0b:21:44:22:ea:07: 5d:01:b9:8d:81:14:fc:88:40:13:b0:0b:c9:cd:a9: 1d:6d:c2:c2:58:14:0d:c3:34:de:68:93:47:bb:9e: 86:6d:52:26:b5:ef:e5:fe:0a:5b:00:94:e6:13:46: 36:c3:8e:56:94:78:f9:df:92:c0:b4:fc:28:8a:ed: 0f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:3A:54:16:7B:F5:41:CE:BF:63:B3:0F:ED:B6:1A:71:02:C8:61:4D X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:c9:3e:cb:3c:85:1b:27:7c:89:26:1a:f4:54:43:8e:78:37: 9b:5f:e0:0d:33:38:d2:df:e4:b4:ed:d9:2e:24:a8:b1:7e:ca: 0e:ab:4f:a4:2f:14:26:2e:68:a3:e6:11:35:a0:4d:9b:c5:e4: 90:ec:84:54:ab:5f:28:88:d2:f6:db:0e:69:4f:b9:c7:92:48: c5:6c:13:0f:c9:04:da:90:4e:05:80:e5:df:26:a9:41:b0:c6: 0e:dc:5a:31:1a:4e:50:5b:0d:d9:3e:21:a9:41:35:bf:b3:4e: a1:d9:0f:bf:12:bc:ca:87:f7:6f:b6:d0:35:2f:f9:d2:0c:75: b7:b5:6a:18:69:6b:36:9a:8c:08:9c:3c:aa:6e:f3:a2:d2:4e: db:3e:1e:f1:80:56:bc:36:f5:53:f8:12:fb:79:7b:46:12:96: 0f:4f:da:ff:04:81:60:06:10:0e:64:a4:59:af:62:1c:71:33: 38:17:f4:d4:70:8f:85:c8:f6:d3:57:99:50:aa:ca:f3:ed:35: 15:f5:1d:34:30:ac:16:d4:98:78:6f:eb:6c:b6:90:f2:25:c2: 46:1e:ed:22:01:45:13:9b:f5:b1:ca:1c:f7:1f:ee:11:f3:64: f1:14:5d:ba:03:f5:f9:81:a4:c0:ca:76:66:b9:0d:67:60:19: e7:93:1a:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjYwNTEyMTcxMTQ3WhcNMjYwNTE5MTcxMTQ3WjAYMRYwFAYD VQQDEw02YTAzNWY1My05ZGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9QDXWST1pKFuO2ofyqXBHoszmCvvGNpR1PTgH+ruTDbKktVVF8fCkIi1Mkr 7nkS5J2sxqk7KeyW9WU+MX9Mq40I/98Yw1OMA4QD1blFh+bNfFaWJa9EipqV1psL MkUjgplDl2QqtInRWtg83JbTlDCHNImdj4SNfc42PMsDCwGeiA3K7Kqpmg+KRkmG W3DeDRKgcleXIBUeFvNgF51ZQ6arRm0IPZuyBkAVEHX5qH5d1CPjo7NTtTfaTTYL IUQi6gddAbmNgRT8iEATsAvJzakdbcLCWBQNwzTeaJNHu56GbVImte/l/gpbAJTm E0Y2w45WlHj535LAtPwoiu0PGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE06VBZ7 9UHOv2OzD+22GnECyGFNMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWsk+yzyFGyd8iSYa9FRDjng3m1/gDTM40t/ktO3ZLiSosX7KDqtPpC8UJi5o o+YRNaBNm8XkkOyEVKtfKIjS9tsOaU+5x5JIxWwTD8kE2pBOBYDl3yapQbDGDtxa MRpOUFsN2T4hqUE1v7NOodkPvxK8yof3b7bQNS/50gx1t7VqGGlrNpqMCJw8qm7z otJO2z4e8YBWvDb1U/gS+3l7RhKWD0/a/wSBYAYQDmSkWa9iHHEzOBf01HCPhcj2 01eZUKrK8+01FfUdNDCsFtSYeG/rbLaQ8iXCRh7tIgFFE5v1scoc9x/uEfNk8RRd ugP1+YGkwMp2ZrkNZ2AZ55MaeQ== -----END CERTIFICATE-----Generated at Wed May 13 15:05:01 2026 by rpki-client