$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft File: lFlKrsbtZqaAoVv-tc2leC1MLYg.mft (raw, json) Hash identifier: zQnFF3DK2W26dQMvRts07ZTTyOLLw+nEIFxiPz5z9FA= Subject key identifier: E8:65:61:2F:65:99:30:8E:2C:EC:EB:82:FB:63:A0:9B:56:AD:6E:B1 Authority key identifier: 94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 Certificate issuer: /CN=A91E2EF9/serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft Manifest number: 014C Signing time: Mon 11 May 2026 05:22:43 +0000 Manifest this update: Mon 11 May 2026 05:22:43 +0000 Manifest next update: Mon 18 May 2026 05:22:43 +0000 Files and hashes: 1: lFlKrsbtZqaAoVv-tc2leC1MLYg.crl (hash: Ze54Lhc/O1c2ukbwtYu5j+iSR31n3LrFhDCEI0KBqKE=) 2: E7C7DBF8A0E411EF98A7340EC4F9AE02.roa (hash: kjJfld5TN3m5ZabsgjU4rPFFeonEnHjU7OWPFlkhgEU=) 3: D926DBDA605211EF90C2C621C4F9AE02.roa (hash: jUaYUA+q8jmfLhomac7iMQOSZ4bFSAIAI1vEmJtWXwE=) 4: 5D3D752CDBEB11F0A1AC385A536F56BC.roa (hash: d4S5QC9WpRroo4q9uH7u+G1i3yLbKbKg652rT+oJ1eM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:22:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EF9, serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Validity Not Before: May 11 05:22:43 2026 GMT Not After : May 18 05:22:43 2026 GMT Subject: CN=6a0167a3-414c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:d3:9a:cd:f1:94:f8:95:29:c2:fa:20:30:7a: 7a:cf:b3:85:83:2e:af:97:a4:1c:12:60:51:dd:b6: ad:d7:fc:a3:2d:ed:d0:87:b7:e4:d2:c5:c7:b1:d7: 92:f9:de:c7:0a:b5:18:e5:38:9b:03:c3:8a:df:02: 15:ea:8b:06:3a:5c:e0:91:73:63:a5:f8:11:78:a3: c9:1c:c7:5d:1a:a8:68:55:01:e6:7a:d1:49:2a:3d: 7f:2c:05:c1:0e:4c:31:ca:36:d3:ef:7a:ed:56:a1: 6a:0c:d7:ff:c3:36:17:74:75:3e:f2:87:be:4d:ca: f4:9b:bd:b2:2a:40:0c:c5:13:9b:82:bb:cb:29:88: 82:d8:a0:26:05:a3:7c:f4:b3:30:6b:a7:f9:73:e8: 4b:58:91:e6:c2:15:bd:5c:e3:bc:87:2d:70:52:00: 01:10:a5:99:85:ea:8e:fb:68:63:80:ff:09:46:c5: 54:2b:c5:fa:06:87:11:90:62:c6:b2:79:fe:0c:4f: fa:a7:92:d6:c1:26:f7:4a:d6:3f:f2:8c:09:bc:52: 08:bd:58:a4:c7:90:31:93:21:2b:06:6d:a2:ae:42: 8c:81:0d:f4:04:a9:30:7c:17:99:c9:30:ce:50:93: 04:e1:5d:bc:d4:a9:00:b7:28:bf:10:44:77:87:15: be:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:65:61:2F:65:99:30:8E:2C:EC:EB:82:FB:63:A0:9B:56:AD:6E:B1 X509v3 Authority Key Identifier: keyid:94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:63:45:01:56:7a:39:18:5f:42:1e:dc:22:54:a3:d2:fb:9c: 14:59:b1:d1:2e:70:5f:0f:85:ba:1b:e2:2a:78:9a:2f:44:4f: 13:85:d7:1f:2a:8d:1a:51:48:ec:50:b7:58:71:6d:52:c7:78: 54:9b:66:f7:6c:51:ca:be:b2:05:56:48:7a:c1:84:93:ac:b6: 08:be:6a:df:43:6c:9d:1e:7d:66:f4:88:e4:4d:de:3b:e2:1d: 9a:30:c1:b8:ca:58:27:b8:cb:0a:91:d6:7e:34:6d:7e:ef:48: 6d:0b:10:80:fb:43:5f:13:15:af:e4:59:19:0e:4b:de:71:3d: f4:53:5d:58:12:16:31:4f:b2:86:db:68:85:0d:91:e9:92:ff: 7e:fb:9c:22:db:8c:ac:f6:09:9a:20:95:d4:54:f4:e4:de:99: 60:14:11:9b:28:c4:ce:17:a3:58:f2:14:a6:61:33:d7:ee:3e: 7a:72:6e:dd:4c:df:c8:01:de:be:2c:ad:19:78:77:e6:b9:ad: b9:d2:7d:74:67:d7:c5:8e:70:fe:b5:e9:58:19:f8:89:1b:d2: 2d:05:1a:f0:c3:cc:86:e5:e5:ae:b0:00:ce:24:91:b3:5a:ec: 9c:a3:83:f2:bc:ce:f5:20:a4:bd:a7:52:49:de:a4:01:d1:28: 62:ad:9f:1f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFRjkxMTAvBgNVBAUTKDk0NTk0QUFFQzZFRDY2QTY4MEExNUJGRUI1Q0RBNTc4 MkQ0QzJEODgwHhcNMjYwNTExMDUyMjQzWhcNMjYwNTE4MDUyMjQzWjAYMRYwFAYD VQQDEw02YTAxNjdhMy00MTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlNOazfGU+JUpwvogMHp6z7OFgy6vl6QcEmBR3bat1/yjLe3Qh7fk0sXHsdeS +d7HCrUY5TibA8OK3wIV6osGOlzgkXNjpfgReKPJHMddGqhoVQHmetFJKj1/LAXB DkwxyjbT73rtVqFqDNf/wzYXdHU+8oe+Tcr0m72yKkAMxRObgrvLKYiC2KAmBaN8 9LMwa6f5c+hLWJHmwhW9XOO8hy1wUgABEKWZheqO+2hjgP8JRsVUK8X6BocRkGLG snn+DE/6p5LWwSb3StY/8owJvFIIvVikx5AxkyErBm2irkKMgQ30BKkwfBeZyTDO UJME4V281KkAtyi/EER3hxW+qQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOhlYS9l mTCOLOzrgvtjoJtWrW6xMB8GA1UdIwQYMBaAFJRZSq7G7WamgKFb/rXNpXgtTC2I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkVGOS84MDRENkJGMDYw NTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpxYUFvVnYtdGMybGVDMU1M WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xGbEtyc2J0WnFhQW9Wdi10YzJsZUMxTUxZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkVGOS84MDRENkJGMDYwNTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpx YUFvVnYtdGMybGVDMU1MWWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKWNFAVZ6ORhfQh7cIlSj0vucFFmx0S5wXw+FuhviKniaL0RPE4XXHyqNGlFI 7FC3WHFtUsd4VJtm92xRyr6yBVZIesGEk6y2CL5q30NsnR59ZvSI5E3eO+IdmjDB uMpYJ7jLCpHWfjRtfu9IbQsQgPtDXxMVr+RZGQ5L3nE99FNdWBIWMU+yhttohQ2R 6ZL/fvucItuMrPYJmiCV1FT05N6ZYBQRmyjEzhejWPIUpmEz1+4+enJu3UzfyAHe viytGXh35rmtudJ9dGfXxY5w/rXpWBn4iRvSLQUa8MPMhuXlrrAAziSRs1rsnKOD 8rzO9SCkvadSSd6kAdEoYq2fHw== -----END CERTIFICATE-----Generated at Wed May 13 01:34:43 2026 by rpki-client