$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft File: lTUaGSeo8Q660c48bEpaxGUVynA.mft (raw, json) Hash identifier: 0R1W2Dpw2FSGU3gisD+Mi6KSFqErSlFq/mJBn0H7/6k= Subject key identifier: 84:1A:85:B3:9A:2E:0C:E9:2F:B5:B2:67:05:F2:C9:A2:0B:A1:EF:02 Authority key identifier: 95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 Certificate issuer: /CN=A91D4E15/serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Certificate serial: 0238 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft Manifest number: 0233 Signing time: Mon 11 May 2026 02:37:26 +0000 Manifest this update: Mon 11 May 2026 02:37:26 +0000 Manifest next update: Mon 18 May 2026 02:37:26 +0000 Files and hashes: 1: lTUaGSeo8Q660c48bEpaxGUVynA.crl (hash: 4UX9DMpvt2SycV0vSENca36eCbXG03P7UbyB+CaiGk0=) 2: 90F09734F1B311EDA789BB57C4F9AE02.roa (hash: TRCit7S/Vg6OV4lqP74PVauh5l5sCF/UMjkzMFmjRuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 02:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E15, serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Validity Not Before: May 11 02:37:26 2026 GMT Not After : May 18 02:37:26 2026 GMT Subject: CN=6a0140e6-b8b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8e:4a:70:89:d3:9d:21:17:b0:ab:1b:ee:2d: 1c:84:84:e4:7c:c3:96:27:02:81:ec:f8:b6:44:98: f1:38:21:9a:4e:7f:fd:17:ae:ab:7c:96:77:6b:e0: f0:c2:d4:31:30:17:39:1f:c2:6f:e6:b4:5d:71:e6: 3b:25:2c:53:fd:95:1d:c3:70:b8:e2:c7:b3:ca:68: 34:03:97:c8:a4:e9:73:d8:93:98:82:82:d2:2b:6f: fc:37:80:5b:42:55:0d:4a:76:32:55:a0:c7:52:b9: c2:38:f9:6d:17:ea:98:44:32:c6:b3:b5:33:94:2f: b6:db:78:d2:0f:b1:80:22:a1:95:bd:a2:52:71:95: b1:49:0f:42:41:2e:b1:88:ae:6d:48:a9:87:3d:20: ff:d7:69:8b:76:2f:c5:d2:24:fc:99:9e:6b:92:53: b3:c3:69:19:98:05:ae:78:e5:cc:65:24:0d:77:2b: a6:c5:43:b1:64:87:33:52:d4:d2:2b:72:19:5f:91: 22:5c:bc:10:8a:05:1d:0e:a7:25:fb:f0:9b:b3:d8: 43:9d:cc:10:b5:20:7d:ea:3d:c8:c0:1f:7f:7a:1e: 4f:1d:ca:ba:d2:f8:84:f1:c5:1c:83:d1:53:4b:eb: 4b:dc:0f:b7:3a:b1:da:a9:7b:00:11:f4:05:70:c8: 51:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:1A:85:B3:9A:2E:0C:E9:2F:B5:B2:67:05:F2:C9:A2:0B:A1:EF:02 X509v3 Authority Key Identifier: keyid:95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:84:c8:f0:0b:89:2c:76:d0:89:bf:89:57:5e:a9:3b:02:cd: 3f:69:ba:f3:6b:95:0b:12:84:9f:27:33:6a:c7:a6:bb:8a:88: ec:17:a5:9e:ec:9b:94:bb:be:3d:ef:dd:0a:b7:66:f2:e9:51: 17:c5:9b:8b:17:47:16:a7:b1:89:5b:1f:0e:65:f0:ba:7f:32: 4c:09:ef:4a:77:e7:ab:a6:7f:04:e5:a6:50:42:88:9c:9a:26: fa:62:33:26:42:12:00:45:1c:42:aa:1c:e2:55:8b:6f:54:0b: 08:7a:cf:e9:93:a1:23:38:7e:f4:3a:f3:0f:69:1d:90:a7:64: 70:5e:45:54:00:96:8d:3b:13:22:7e:bc:78:d0:02:bd:d2:17: 11:ab:5b:94:aa:fc:af:9c:8e:ae:20:39:c2:e8:ec:d7:98:cc: ec:a2:56:c1:fb:83:db:d4:9e:70:8d:78:5f:3f:4b:88:cd:de: 92:2d:b2:db:02:6f:da:5c:15:0e:03:87:38:c2:78:0d:14:c8: 50:b4:58:61:63:79:7a:cc:60:1b:4f:fe:e7:ad:3a:66:00:d2: 56:d8:ef:03:fd:d2:c5:be:18:e2:36:9a:de:a0:5e:65:fd:c8: 00:ae:a8:4c:f9:28:0d:7f:7c:60:b3:09:a4:f8:41:20:3c:45: 58:a5:f9:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFMTUxMTAvBgNVBAUTKDk1MzUxQTE5MjdBOEYxMEVCQUQxQ0UzQzZDNEE1QUM0 NjUxNUNBNzAwHhcNMjYwNTExMDIzNzI2WhcNMjYwNTE4MDIzNzI2WjAYMRYwFAYD VQQDEw02YTAxNDBlNi1iOGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxI5KcInTnSEXsKsb7i0chITkfMOWJwKB7Pi2RJjxOCGaTn/9F66rfJZ3a+Dw wtQxMBc5H8Jv5rRdceY7JSxT/ZUdw3C44sezymg0A5fIpOlz2JOYgoLSK2/8N4Bb QlUNSnYyVaDHUrnCOPltF+qYRDLGs7UzlC+223jSD7GAIqGVvaJScZWxSQ9CQS6x iK5tSKmHPSD/12mLdi/F0iT8mZ5rklOzw2kZmAWueOXMZSQNdyumxUOxZIczUtTS K3IZX5EiXLwQigUdDqcl+/Cbs9hDncwQtSB96j3IwB9/eh5PHcq60viE8cUcg9FT S+tL3A+3OrHaqXsAEfQFcMhRdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIQahbOa LgzpL7WyZwXyyaILoe8CMB8GA1UdIwQYMBaAFJU1GhknqPEOutHOPGxKWsRlFcpw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEUxNS81RERCNDQ0MEYx QUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhRNjYwYzQ4YkVwYXhHVVZ5 bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUVWFHU2VvOFE2NjBjNDhiRXBheEdVVnluQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEUxNS81RERCNDQ0MEYxQUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhR NjYwYzQ4YkVwYXhHVVZ5bkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOoTI8AuJLHbQib+JV16pOwLNP2m682uVCxKEnyczasemu4qI7BelnuyblLu+ Pe/dCrdm8ulRF8WbixdHFqexiVsfDmXwun8yTAnvSnfnq6Z/BOWmUEKInJom+mIz JkISAEUcQqoc4lWLb1QLCHrP6ZOhIzh+9DrzD2kdkKdkcF5FVACWjTsTIn68eNAC vdIXEatblKr8r5yOriA5wujs15jM7KJWwfuD29SecI14Xz9LiM3eki2y2wJv2lwV DgOHOMJ4DRTIULRYYWN5esxgG0/+5606ZgDSVtjvA/3Sxb4Y4jaa3qBeZf3IAK6o TPkoDX98YLMJpPhBIDxFWKX5ZQ== -----END CERTIFICATE-----Generated at Wed May 13 04:08:28 2026 by rpki-client