$ rpki-client -vvf rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft File: L4dzyVEFOxQ4vCfsxV45KvteK7I.mft (raw, json) Hash identifier: lVPDXvDj1ysUkcQCDmfQOmORgnQfUbcm7W84ZLQ1mfk= Subject key identifier: 36:D0:3A:50:26:57:27:09:83:BA:B5:A8:6B:55:73:CD:63:E9:C8:16 Authority key identifier: 2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 Certificate issuer: /CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Certificate serial: 0C1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft Manifest number: 0BFB Signing time: Tue 12 May 2026 18:55:09 +0000 Manifest this update: Tue 12 May 2026 18:55:08 +0000 Manifest next update: Tue 19 May 2026 18:55:08 +0000 Files and hashes: 1: L4dzyVEFOxQ4vCfsxV45KvteK7I.crl (hash: 5cxlNPNyT78PzjUx/45BXKEXVj/j3gUYurNvNv9YtnE=) 2: F90AE9C413AB11F1B2F915E2033D8C67.roa (hash: qP73CAez9BA/Kxf0LXcrxOa4cBuTk6ek4TGHHpeWEII=) 3: 60CAF672CAC211F08083F41BC4F9AE02.roa (hash: kq7sx+cXw+m9S0qiyAa+VcKr/WKvuChbXwIbeJRy3rg=) 4: 84AC17989B0811EDB5FDAF75C4F9AE02.roa (hash: ZdWgxsTDmp2SCgpKV/pUzjdMnUTtasFIwHsMjvPLzoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:55:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3099 (0xc1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B56F0, serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Validity Not Before: May 12 18:55:08 2026 GMT Not After : May 19 18:55:08 2026 GMT Subject: CN=6a03778c-f1ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:56:f1:a1:f4:d3:72:f8:06:72:5c:36:12:88: 88:d1:99:2c:65:07:70:ce:01:ba:2a:53:6f:a8:07: e7:95:5b:a9:dc:53:34:eb:d6:f1:3c:b8:dc:53:e1: 11:71:ac:12:cb:9b:8a:db:f3:50:27:f8:50:3d:ac: d4:a9:64:73:61:b7:5b:42:ed:5c:ff:00:4c:3e:52: bf:cf:7f:81:d0:87:f1:2a:ea:05:72:58:08:6c:6a: 7a:6a:2f:2b:06:a0:4c:0b:42:30:3b:7e:2b:4d:d2: c5:52:a7:e0:09:58:9e:71:ce:c5:e0:44:b9:a9:eb: a3:bd:8b:b4:71:a6:e1:f4:fd:a6:71:f0:8f:e5:6e: 43:a7:cf:45:ee:a5:83:60:4e:1b:06:d0:93:21:2a: f7:c2:96:3b:a9:54:66:0f:37:c2:52:3d:16:09:56: b0:28:f7:60:c1:2b:07:2f:29:68:91:b5:f9:86:96: 49:44:2e:94:31:48:39:49:3a:e3:59:7b:97:59:4b: 3f:69:10:8c:88:c9:95:0e:cd:ca:11:73:c8:78:aa: af:bc:a3:c1:d5:a9:a7:64:0a:51:4c:60:7a:a8:8d: da:1e:e3:11:7a:2f:bc:0e:41:a1:3e:05:3a:7a:19: 49:a2:4a:bf:f3:2b:da:38:25:cc:6c:40:e0:77:94: bb:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D0:3A:50:26:57:27:09:83:BA:B5:A8:6B:55:73:CD:63:E9:C8:16 X509v3 Authority Key Identifier: keyid:2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:de:af:a5:ef:40:42:11:e6:9d:9c:90:d3:67:a0:eb:f2:53: 6e:0c:ee:e1:fc:c8:3e:57:c4:29:fb:b5:93:01:b1:5e:cc:0d: b7:df:50:78:e9:3f:6d:c9:ff:a0:1e:e7:90:d0:1a:c5:0b:27: f0:3f:89:e4:9c:bb:de:a4:2d:90:dd:ac:93:9a:ba:5c:49:ff: 51:20:4c:71:d0:8d:35:35:13:8b:5a:01:90:2b:77:dc:01:a3: 80:c7:76:f4:49:6f:2e:dd:8a:e7:c5:f6:f1:fb:cb:ec:1d:ae: a0:0c:6b:bf:66:5f:35:81:53:f5:61:d4:ae:4d:cd:8c:ba:22: 05:1b:c4:96:95:51:07:6c:3b:32:82:70:27:a9:98:3c:07:f4: 3b:20:f3:f6:ea:03:37:4d:a6:45:13:10:e3:90:81:2a:b1:3b: cc:41:d6:24:25:a3:d5:c8:4b:b9:31:c1:5b:15:8f:eb:94:da: 8c:bd:c0:88:17:08:ae:d4:f7:1f:bb:dc:53:9f:70:db:f4:6c: 1c:77:5b:cb:6f:7f:0d:6e:96:53:52:47:2f:40:01:da:01:4d: f3:56:e7:b0:58:cd:e6:c4:16:c7:be:11:84:6c:93:5d:88:f0: 91:45:9a:3b:3c:b1:5c:81:9a:c1:0b:0f:23:c9:9a:c0:b6:3a: 28:78:db:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2RjAxMTAvBgNVBAUTKDJGODc3M0M5NTEwNTNCMTQzOEJDMjdFQ0M1NUUzOTJB RkI1RTJCQjIwHhcNMjYwNTEyMTg1NTA4WhcNMjYwNTE5MTg1NTA4WjAYMRYwFAYD VQQDEw02YTAzNzc4Yy1mMWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVbxofTTcvgGclw2EoiI0ZksZQdwzgG6KlNvqAfnlVup3FM069bxPLjcU+ER cawSy5uK2/NQJ/hQPazUqWRzYbdbQu1c/wBMPlK/z3+B0IfxKuoFclgIbGp6ai8r BqBMC0IwO34rTdLFUqfgCViecc7F4ES5qeujvYu0cabh9P2mcfCP5W5Dp89F7qWD YE4bBtCTISr3wpY7qVRmDzfCUj0WCVawKPdgwSsHLylokbX5hpZJRC6UMUg5STrj WXuXWUs/aRCMiMmVDs3KEXPIeKqvvKPB1amnZApRTGB6qI3aHuMRei+8DkGhPgU6 ehlJokq/8yvaOCXMbEDgd5S7MwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDbQOlAm VycJg7q1qGtVc81j6cgWMB8GA1UdIwQYMBaAFC+Hc8lRBTsUOLwn7MVeOSr7Xiuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTZGMC83RDY3RTRENDM4 NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94UTR2Q2ZzeFY0NUt2dGVL N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0ZHp5VkVGT3hRNHZDZnN4VjQ1S3Z0ZUs3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTZGMC83RDY3RTRENDM4NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94 UTR2Q2ZzeFY0NUt2dGVLN0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcN6vpe9AQhHmnZyQ02eg6/JTbgzu4fzIPlfEKfu1kwGxXswNt99QeOk/bcn/ oB7nkNAaxQsn8D+J5Jy73qQtkN2sk5q6XEn/USBMcdCNNTUTi1oBkCt33AGjgMd2 9ElvLt2K58X28fvL7B2uoAxrv2ZfNYFT9WHUrk3NjLoiBRvElpVRB2w7MoJwJ6mY PAf0OyDz9uoDN02mRRMQ45CBKrE7zEHWJCWj1chLuTHBWxWP65TajL3AiBcIrtT3 H7vcU59w2/RsHHdby29/DW6WU1JHL0AB2gFN81bnsFjN5sQWx74RhGyTXYjwkUWa OzyxXIGawQsPI8mawLY6KHjb0Q== -----END CERTIFICATE-----Generated at Wed May 13 01:21:50 2026 by rpki-client