$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft File: R-lr-DG7PMQ7TweEJj5ylYddVRY.mft (raw, json) Hash identifier: y9U7KkUwONnzS+CaplgUrorGH/Pi+6QQYvyAo6BI+Nc= Subject key identifier: 20:52:06:06:54:2D:ED:21:4B:60:4F:CE:DC:C4:A6:59:6B:77:BB:11 Authority key identifier: 47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 Certificate issuer: /CN=A91C4204/serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft Manifest number: BB Signing time: Mon 11 May 2026 07:06:28 +0000 Manifest this update: Mon 11 May 2026 07:06:27 +0000 Manifest next update: Mon 18 May 2026 07:06:27 +0000 Files and hashes: 1: R-lr-DG7PMQ7TweEJj5ylYddVRY.crl (hash: wQwpEaMQr3lUSJcHbJPh6MKTnFlqauq56VipElzKzXg=) 2: CA2D4952300911F0AB675D3EC4F9AE02.roa (hash: oMWjSrq7UBr0grnE1BuEzNLinF6a33GQ38fOzOclHV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:06:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4204, serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Validity Not Before: May 11 07:06:27 2026 GMT Not After : May 18 07:06:27 2026 GMT Subject: CN=6a017ff4-b53a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:57:fc:eb:8d:6c:3c:d6:09:b7:24:0a:70:f9: da:d7:98:72:23:7d:c8:d1:86:e6:99:c1:d7:68:2a: af:e8:95:2c:21:f1:0c:a2:30:26:fc:ed:ef:10:41: 87:67:41:b7:35:f7:4a:a6:a9:ef:5b:d5:98:d3:55: 9a:00:09:70:c3:39:13:59:a3:23:58:93:0c:07:38: ab:74:aa:ed:b4:9e:89:31:1e:e8:4c:d4:dd:52:ba: 80:18:8c:e0:85:41:8b:9d:e4:20:37:72:f2:ca:49: a7:d6:d1:23:56:91:9a:fa:4e:9c:ce:75:5c:b7:fe: eb:6e:18:d7:72:86:c0:5c:ce:bb:78:80:b7:dd:17: c0:51:46:ef:74:82:9a:56:09:ba:74:41:81:44:78: d0:f8:46:71:91:ab:83:1c:77:a1:3c:90:7f:b7:6b: 82:62:73:68:21:a2:8f:31:e2:a0:e6:ec:32:03:2b: 88:20:71:1e:fd:1f:e4:2a:96:bd:5e:16:87:16:97: e1:56:bd:6b:d9:06:0d:a5:24:e8:0f:5d:c9:63:ee: ea:77:af:b9:68:8a:14:98:93:79:b2:69:95:c1:f5: f0:af:75:9a:2b:9c:fe:b4:ba:d9:fa:e6:72:99:09: 91:86:79:d9:ec:7b:54:4b:af:7d:06:90:99:69:2f: 69:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:52:06:06:54:2D:ED:21:4B:60:4F:CE:DC:C4:A6:59:6B:77:BB:11 X509v3 Authority Key Identifier: keyid:47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:d3:ae:a7:59:70:36:3b:ad:43:59:1e:c4:ff:c5:ae:95:36: fa:cd:ff:b2:4e:b9:3e:1f:da:9f:4c:c6:b2:04:5a:f0:c8:2d: cd:5a:f6:0d:c1:10:5f:62:78:ba:bc:ca:71:aa:95:ec:e1:66: 55:07:eb:94:7d:c3:12:9c:61:67:a3:dd:2d:ec:f9:30:67:0e: aa:2d:3f:4c:e7:0d:73:45:21:a1:87:26:b9:68:7c:a3:50:e2: e3:a8:bf:8c:de:44:88:b5:3e:97:c2:84:88:16:1a:ae:71:1e: a2:e6:f1:3f:9e:3d:c3:1d:74:96:07:4a:7a:a0:a8:3b:09:0b: e6:64:9d:8d:c7:6a:30:d6:6c:7b:8f:9f:0e:72:58:63:57:14: 8f:30:61:8e:1b:7d:18:47:23:e5:2f:55:38:09:c0:b4:d0:74: 70:af:a8:00:8d:d6:5a:16:90:24:b2:a9:30:da:6d:4b:53:b1: de:14:17:99:d4:81:70:c3:e8:14:46:f1:eb:90:51:64:8f:e9: 10:24:19:56:a4:2a:63:a4:0c:25:10:d8:ab:9c:6a:a5:28:38: 17:9f:29:93:7f:a9:41:03:95:14:ac:0a:d7:8f:e6:f0:fe:87: 67:2e:36:6f:8b:78:64:7f:8d:68:e2:db:c7:1f:dc:fe:8e:35: db:11:d2:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQyMDQxMTAvBgNVBAUTKDQ3RTk2QkY4MzFCQjNDQzQzQjRGMDc4NDI2M0U3Mjk1 ODc1RDU1MTYwHhcNMjYwNTExMDcwNjI3WhcNMjYwNTE4MDcwNjI3WjAYMRYwFAYD VQQDEw02YTAxN2ZmNC1iNTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVf8641sPNYJtyQKcPna15hyI33I0YbmmcHXaCqv6JUsIfEMojAm/O3vEEGH Z0G3NfdKpqnvW9WY01WaAAlwwzkTWaMjWJMMBzirdKrttJ6JMR7oTNTdUrqAGIzg hUGLneQgN3Lyykmn1tEjVpGa+k6cznVct/7rbhjXcobAXM67eIC33RfAUUbvdIKa Vgm6dEGBRHjQ+EZxkauDHHehPJB/t2uCYnNoIaKPMeKg5uwyAyuIIHEe/R/kKpa9 XhaHFpfhVr1r2QYNpSToD13JY+7qd6+5aIoUmJN5smmVwfXwr3WaK5z+tLrZ+uZy mQmRhnnZ7HtUS699BpCZaS9p0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCBSBgZU Le0hS2BPztzEpllrd7sRMB8GA1UdIwQYMBaAFEfpa/gxuzzEO08HhCY+cpWHXVUW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDIwNC80NDFCNTA1MjMw MDkxMUYwQTBBQTdEM0RDNEY5QUUwMi9SLWxyLURHN1BNUTdUd2VFSmo1eWxZZGRW UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1ItbHItREc3UE1RN1R3ZUVKajV5bFlkZFZSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDIwNC80NDFCNTA1MjMwMDkxMUYwQTBBQTdEM0RDNEY5QUUwMi9SLWxyLURHN1BN UTdUd2VFSmo1eWxZZGRWUlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXNOup1lwNjutQ1kexP/FrpU2+s3/sk65Ph/an0zGsgRa8MgtzVr2DcEQX2J4 urzKcaqV7OFmVQfrlH3DEpxhZ6PdLez5MGcOqi0/TOcNc0UhoYcmuWh8o1Di46i/ jN5EiLU+l8KEiBYarnEeoubxP549wx10lgdKeqCoOwkL5mSdjcdqMNZse4+fDnJY Y1cUjzBhjht9GEcj5S9VOAnAtNB0cK+oAI3WWhaQJLKpMNptS1Ox3hQXmdSBcMPo FEbx65BRZI/pECQZVqQqY6QMJRDYq5xqpSg4F58pk3+pQQOVFKwK14/m8P6HZy42 b4t4ZH+NaOLbxx/c/o412xHS1A== -----END CERTIFICATE-----Generated at Wed May 13 04:33:01 2026 by rpki-client