$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft File: lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json) Hash identifier: P46DxP2PWv9/M2/6yss3LL3WlCxAhbVBAhemwzoYgbs= Subject key identifier: D0:9B:F7:48:1E:D7:15:6D:D8:8F:DC:05:65:59:C9:8F:48:1E:50:DF Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD Certificate issuer: /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft Manifest number: 0148 Signing time: Mon 11 May 2026 05:26:50 +0000 Manifest this update: Mon 11 May 2026 05:26:50 +0000 Manifest next update: Mon 18 May 2026 05:26:50 +0000 Files and hashes: 1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: qHrM54vLpCFoVBHyzKt/Ylot5HRqLjEUjf0/5e5hWBA=) 2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: /fpFKtFcwh7KjBndTGfGIO4WW4Bx9KlPmCwqANIq6FA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:26:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D44BE, serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Validity Not Before: May 11 05:26:50 2026 GMT Not After : May 18 05:26:50 2026 GMT Subject: CN=6a01689a-909b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e7:01:f9:1b:c0:67:06:bb:53:dc:29:c2:aa: 76:2a:2e:73:df:c5:35:36:1d:a2:31:fc:90:5f:1b: 3d:7c:e1:3f:9f:11:e1:51:14:e2:d2:cf:6e:81:22: 6a:50:b7:f1:1e:a6:14:51:13:df:32:b9:48:24:00: 56:08:89:50:3b:46:ec:77:dd:64:48:c4:f7:b2:46: 9b:9d:70:02:6b:f4:3b:93:9a:a4:c1:16:3d:20:a6: f1:f1:4a:d5:7d:1b:be:c8:ed:73:73:e3:d7:6c:0f: 29:df:a4:26:03:b7:ce:29:06:e3:ee:f5:90:4a:d7: 66:83:dc:48:65:61:52:fe:8e:72:2f:3b:7d:80:9f: eb:af:3e:af:f8:68:06:b2:89:d3:9b:e4:79:2c:f9: 2e:bd:b8:f7:e2:d1:7d:5d:52:fe:13:98:01:15:ed: 97:61:54:ed:30:0b:1d:e1:ad:e2:c7:c7:70:ef:3f: 3f:64:74:b8:d4:1d:a5:92:f4:34:0c:15:d4:9d:64: 82:bf:24:2f:f0:8f:eb:d9:45:d6:a1:9c:64:d7:29: 5b:64:90:43:13:3e:58:63:8f:b9:0d:3e:4a:fb:09: 4d:e6:cf:c4:14:85:60:49:9a:5e:f4:ec:bf:45:d2: ef:16:19:ad:db:b3:d2:86:46:9b:f4:85:e7:2c:e2: 6f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:9B:F7:48:1E:D7:15:6D:D8:8F:DC:05:65:59:C9:8F:48:1E:50:DF X509v3 Authority Key Identifier: keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:e2:28:2b:9c:25:80:00:68:f7:83:bb:b8:44:62:5a:af:e8: 10:78:3a:30:94:e5:93:07:c1:1a:67:a0:dd:85:6c:7c:21:bf: dc:90:f6:b5:1a:49:cb:b3:22:0f:36:0a:73:b3:bc:61:03:65: 1f:cd:68:19:a8:7b:12:70:4c:ab:50:1b:c2:08:7e:ed:12:30: bb:e6:dd:38:8e:b1:a6:c3:af:c7:d3:c2:41:45:9b:25:34:b3: d1:13:16:f1:22:dd:e9:7d:bb:4b:a2:58:d7:07:0c:0c:a7:3c: bb:cb:73:32:95:e5:60:5c:0f:a8:5a:61:92:ad:be:97:d3:c7: 3e:47:07:c0:b5:c7:06:41:9a:03:32:36:7f:70:14:dd:5c:6a: 15:3e:85:f4:3f:3b:a9:52:00:a5:93:32:56:70:01:c2:5e:da: b3:72:72:c2:60:37:17:30:31:1a:67:5c:18:85:7c:0e:27:54: a7:54:2a:71:a4:32:a6:7f:a9:39:57:2a:54:08:bb:a0:6c:2a: 3c:1f:7e:40:fc:97:47:4f:73:39:6d:80:10:82:59:3f:31:1a: b2:37:30:d4:22:52:bc:e0:08:29:f5:e7:82:d5:09:f9:63:90: be:19:d5:02:a1:5c:fc:16:c6:9c:d7:86:90:a1:82:2f:35:4c: 39:b9:fb:53 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0QkUxMTAvBgNVBAUTKDk1RjA5RDVFNUI4QkNENkY0QjRENjlCNUM5MzZDOTEy Rjc3RDJDRkQwHhcNMjYwNTExMDUyNjUwWhcNMjYwNTE4MDUyNjUwWjAYMRYwFAYD VQQDEw02YTAxNjg5YS05MDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOcB+RvAZwa7U9wpwqp2Ki5z38U1Nh2iMfyQXxs9fOE/nxHhURTi0s9ugSJq ULfxHqYUURPfMrlIJABWCIlQO0bsd91kSMT3skabnXACa/Q7k5qkwRY9IKbx8UrV fRu+yO1zc+PXbA8p36QmA7fOKQbj7vWQStdmg9xIZWFS/o5yLzt9gJ/rrz6v+GgG sonTm+R5LPkuvbj34tF9XVL+E5gBFe2XYVTtMAsd4a3ix8dw7z8/ZHS41B2lkvQ0 DBXUnWSCvyQv8I/r2UXWoZxk1ylbZJBDEz5YY4+5DT5K+wlN5s/EFIVgSZpe9Oy/ RdLvFhmt27PShkab9IXnLOJvbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNCb90ge 1xVt2I/cBWVZyY9IHlDfMB8GA1UdIwQYMBaAFJXwnV5bi81vS01ptck2yRL3fSz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDRCRS8wMjhBQkU0MjY5 MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpXOUxUV20xeVRiSkV2ZDlM UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmQ2RYbHVMelc5TFRXbTF5VGJKRXZkOUxQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDRCRS8wMjhBQkU0MjY5MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpX OUxUV20xeVRiSkV2ZDlMUDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASeIoK5wlgABo94O7uERiWq/oEHg6MJTlkwfBGmeg3YVsfCG/3JD2tRpJy7Mi DzYKc7O8YQNlH81oGah7EnBMq1Abwgh+7RIwu+bdOI6xpsOvx9PCQUWbJTSz0RMW 8SLd6X27S6JY1wcMDKc8u8tzMpXlYFwPqFphkq2+l9PHPkcHwLXHBkGaAzI2f3AU 3VxqFT6F9D87qVIApZMyVnABwl7as3JywmA3FzAxGmdcGIV8DidUp1QqcaQypn+p OVcqVAi7oGwqPB9+QPyXR09zOW2AEIJZPzEasjcw1CJSvOAIKfXngtUJ+WOQvhnV AqFc/BbGnNeGkKGCLzVMObn7Uw== -----END CERTIFICATE-----Generated at Wed May 13 04:49:18 2026 by rpki-client