$ rpki-client -vvf rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft File: lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft (raw, json) Hash identifier: zXMoFcSWR7wMlw7mrpl8NlcbEgiStuJETK6ZHiKkCCQ= Subject key identifier: AB:79:CE:0E:2B:33:59:15:85:F4:2D:32:0C:8E:FF:03:AD:27:75:3F Authority key identifier: 96:73:B5:CC:F0:A8:EA:5C:E4:1A:2E:47:63:11:F3:75:CD:83:C0:D2 Certificate issuer: /CN=A91A58AA/serialNumber=9673B5CCF0A8EA5CE41A2E476311F375CD83C0D2 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnO1zPCo6lzkGi5HYxHzdc2DwNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft Manifest number: C2 Signing time: Mon 11 May 2026 07:01:23 +0000 Manifest this update: Mon 11 May 2026 07:01:22 +0000 Manifest next update: Mon 18 May 2026 07:01:22 +0000 Files and hashes: 1: lnO1zPCo6lzkGi5HYxHzdc2DwNI.crl (hash: KAtfSuzX+4RJVQ4d0cI4Gyn+PMl6S98coB46vGsZzfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.crl rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnO1zPCo6lzkGi5HYxHzdc2DwNI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A58AA, serialNumber=9673B5CCF0A8EA5CE41A2E476311F375CD83C0D2 Validity Not Before: May 11 07:01:22 2026 GMT Not After : May 18 07:01:22 2026 GMT Subject: CN=6a017ec3-a230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0f:bc:8c:19:0b:47:10:27:92:70:17:e5:1d: a0:56:20:6c:a6:82:7a:c3:19:4e:38:c7:3a:42:72: 40:60:fc:cd:22:9e:39:aa:5e:f3:d2:11:e0:25:b2: 21:59:04:fa:c5:d9:5c:2f:7b:55:0f:ec:90:de:6d: 67:54:c3:f0:55:2b:22:1f:e2:ba:8d:2a:14:e1:18: da:91:f0:26:a0:12:e4:5a:b1:7b:db:97:9c:03:c7: 98:17:2b:3b:b9:2d:b9:96:d4:45:48:83:61:df:73: fc:c5:a8:45:83:43:06:6e:c9:f7:60:8a:3d:e0:fb: 84:63:b6:3f:78:e3:42:11:ea:22:31:15:1f:ff:c0: cc:ea:20:92:3c:9c:fa:a7:e2:c8:62:5b:50:f1:22: a5:0b:1f:25:e9:90:46:e6:01:09:0e:8d:1f:6e:9b: 03:ae:85:50:93:ee:90:34:a8:c5:80:9b:8e:7f:dc: 16:fb:4f:d0:f8:68:bf:02:8a:8f:82:f4:48:9e:31: f6:a4:62:1d:b4:68:c1:84:0f:c8:31:1d:f8:1b:a4: 2f:62:c0:53:dd:69:15:4a:ff:9a:4c:54:43:bb:d3: 46:74:96:61:d6:e0:fa:01:99:d3:f3:3b:23:ca:92: 6c:5d:a5:d1:48:98:9f:a0:97:bd:e3:f4:5f:c7:4e: de:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:79:CE:0E:2B:33:59:15:85:F4:2D:32:0C:8E:FF:03:AD:27:75:3F X509v3 Authority Key Identifier: keyid:96:73:B5:CC:F0:A8:EA:5C:E4:1A:2E:47:63:11:F3:75:CD:83:C0:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnO1zPCo6lzkGi5HYxHzdc2DwNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:6f:d6:f4:87:35:50:a3:aa:40:a7:7b:d5:6a:46:a6:d3:7e: 71:c0:68:b8:9f:25:af:d0:70:0b:8c:bc:c1:25:26:03:e0:8e: cd:ff:95:00:42:55:17:78:9c:92:a1:f7:cb:a2:77:9d:d5:95: 34:2c:e4:e3:bc:14:df:4b:8d:19:7c:85:ba:2f:4e:10:81:3a: 4a:39:73:8c:2d:8d:31:cb:0a:8d:72:25:bc:ba:2c:45:9e:76: 9e:b5:0f:b7:0d:43:4d:31:96:7c:90:1e:ec:71:a8:a4:b3:fb: 70:49:e5:b6:e6:bc:1c:82:7f:84:89:10:d1:52:3a:b7:04:02: 4e:99:d0:92:23:95:b9:9e:e7:cd:36:fd:7f:1e:37:00:3f:5d: c4:43:d1:67:9e:f3:10:44:82:4b:51:ce:04:25:28:d8:65:05: 5b:0a:97:1d:43:9f:94:8d:3c:6b:30:e5:06:bb:00:0c:68:a5: a6:46:0c:df:cf:ff:7d:84:56:cb:be:b3:49:6a:67:ac:df:02: 35:86:fd:42:b3:d3:98:fa:ca:f8:15:67:a5:82:69:c7:fb:9f: e1:69:d9:7b:3f:f5:6d:59:c2:6c:5c:a4:68:4d:e8:01:77:e6: 08:7d:bc:06:62:87:f5:b0:65:b0:e6:36:a3:f5:7c:15:da:27: 4d:c6:0a:0a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU4QUExMTAvBgNVBAUTKDk2NzNCNUNDRjBBOEVBNUNFNDFBMkU0NzYzMTFGMzc1 Q0Q4M0MwRDIwHhcNMjYwNTExMDcwMTIyWhcNMjYwNTE4MDcwMTIyWjAYMRYwFAYD VQQDEw02YTAxN2VjMy1hMjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAow+8jBkLRxAnknAX5R2gViBspoJ6wxlOOMc6QnJAYPzNIp45ql7z0hHgJbIh WQT6xdlcL3tVD+yQ3m1nVMPwVSsiH+K6jSoU4RjakfAmoBLkWrF725ecA8eYFys7 uS25ltRFSINh33P8xahFg0MGbsn3YIo94PuEY7Y/eONCEeoiMRUf/8DM6iCSPJz6 p+LIYltQ8SKlCx8l6ZBG5gEJDo0fbpsDroVQk+6QNKjFgJuOf9wW+0/Q+Gi/AoqP gvRInjH2pGIdtGjBhA/IMR34G6QvYsBT3WkVSv+aTFRDu9NGdJZh1uD6AZnT8zsj ypJsXaXRSJifoJe94/Rfx07edQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKt5zg4r M1kVhfQtMgyO/wOtJ3U/MB8GA1UdIwQYMBaAFJZztczwqOpc5BouR2MR83XNg8DS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNThBQS9DMTkzOUNFNjI0 MDIxMUYwOTYxQjY0NkRDNEY5QUUwMi9sbk8xelBDbzZsemtHaTVIWXhIemRjMkR3 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xuTzF6UENvNmx6a0dpNUhZeEh6ZGMyRHdOSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NThBQS9DMTkzOUNFNjI0MDIxMUYwOTYxQjY0NkRDNEY5QUUwMi9sbk8xelBDbzZs emtHaTVIWXhIemRjMkR3TkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAim/W9Ic1UKOqQKd71WpGptN+ccBouJ8lr9BwC4y8wSUmA+COzf+VAEJVF3ic kqH3y6J3ndWVNCzk47wU30uNGXyFui9OEIE6SjlzjC2NMcsKjXIlvLosRZ52nrUP tw1DTTGWfJAe7HGopLP7cEnltua8HIJ/hIkQ0VI6twQCTpnQkiOVuZ7nzTb9fx43 AD9dxEPRZ57zEESCS1HOBCUo2GUFWwqXHUOflI08azDlBrsADGilpkYM38//fYRW y76zSWpnrN8CNYb9QrPTmPrK+BVnpYJpx/uf4WnZez/1bVnCbFykaE3oAXfmCH28 BmKH9bBlsOY2o/V8FdonTcYKCg== -----END CERTIFICATE-----Generated at Wed May 13 05:21:12 2026 by rpki-client