$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft File: L2rfQq_RZAgOox4PO4M4vtbaHlk.mft (raw, json) Hash identifier: cqf9bjjeuc+844ZxoHHH6eiowWP0mWC2YpFOcGHIByM= Subject key identifier: 8C:E8:BA:48:AE:3D:42:C2:45:6C:46:4E:D5:32:DB:52:7A:38:FC:A2 Authority key identifier: 2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 Certificate issuer: /CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Certificate serial: 0A58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft Manifest number: 0A4F Signing time: Tue 12 May 2026 19:44:08 +0000 Manifest this update: Tue 12 May 2026 19:44:08 +0000 Manifest next update: Tue 19 May 2026 19:44:08 +0000 Files and hashes: 1: L2rfQq_RZAgOox4PO4M4vtbaHlk.crl (hash: JN3/AjJvTYnehunDhkKStWSExRHpl/kh7iAh2RY3HWc=) 2: F3173EDC898C11EA97286262C4F9AE02.roa (hash: GNVMRmxpK7mVQconnlOE34cE3Vp+VynLXCF2Ha4Paq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2648 (0xa58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7164, serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Validity Not Before: May 12 19:44:08 2026 GMT Not After : May 19 19:44:08 2026 GMT Subject: CN=6a038308-a310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:42:37:f6:f6:72:73:a6:0d:96:11:83:34:44: 44:38:70:a8:25:fa:70:fc:50:81:48:eb:08:da:f2: a2:57:a6:f5:62:1a:59:97:6d:3a:51:57:e7:9a:96: c9:4a:89:92:0e:c5:57:5e:81:df:b3:c1:a7:bd:42: 73:21:b6:71:d3:ec:d2:9f:c4:1e:69:e1:9d:ad:e1: a3:90:b0:cc:2d:c1:ae:de:de:60:bf:c4:f9:d0:d6: e0:bb:cb:37:ea:4d:fa:a9:02:e7:6d:fd:7a:64:a2: c3:0a:3e:22:54:82:44:ce:69:84:44:ba:2c:d1:e4: 12:76:b2:74:b8:53:a0:79:da:98:09:96:57:5f:bb: ef:73:2d:4f:8b:b5:51:b2:c4:e5:09:43:fc:4e:a0: 8b:a6:59:86:ea:6e:06:cf:e1:55:ea:c9:12:f7:66: 1e:fe:85:2f:c0:fb:b9:85:09:7a:ba:a0:3f:94:ac: 1a:dd:df:7b:e0:5c:15:17:d2:77:29:71:74:7d:b9: e5:71:d1:82:20:2b:1c:e5:45:f6:48:0e:22:48:12: 64:71:d0:77:ed:82:21:ba:72:36:cd:aa:9c:5f:b5: 5d:00:9a:bb:e3:3c:d0:e4:6a:0a:12:7b:6e:19:b6: 33:30:21:26:b9:0e:8b:3b:54:83:7a:87:23:f0:28: f6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:E8:BA:48:AE:3D:42:C2:45:6C:46:4E:D5:32:DB:52:7A:38:FC:A2 X509v3 Authority Key Identifier: keyid:2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:ca:94:41:05:02:42:48:8e:bc:ba:6f:03:97:61:8b:77:7c: 1a:9c:6a:36:34:17:b8:98:cd:02:03:a3:de:8c:7f:ca:ae:66: 23:cb:82:f3:09:41:a7:c2:29:ad:60:7f:77:d5:a9:04:ec:9d: c8:14:63:5b:6e:87:ce:05:44:24:88:9b:81:84:05:b1:a8:92: 61:bb:87:6e:c9:b6:79:42:f1:3a:7e:35:e8:89:e9:c0:e4:12: 6c:cc:41:d4:77:27:fc:bc:e8:ea:ee:a7:70:0b:55:80:6a:3f: e5:dc:8f:f7:89:42:2f:43:c7:8b:3e:ce:17:d0:97:09:89:59: 92:99:3b:19:15:11:33:9d:77:88:5d:a1:e5:16:b5:f8:7d:25: 74:11:c7:44:ca:5a:7e:32:77:c0:38:e5:ea:f6:ae:c7:11:7f: 7c:5c:40:fc:24:02:96:cf:48:b5:be:71:1f:da:d9:e0:ba:5a: 84:15:14:b2:e3:39:ea:96:0b:36:bc:4b:32:a5:cf:01:29:ee: c5:5d:ac:1e:b5:5b:0a:e5:7c:8d:dd:24:31:64:b7:b7:5e:ca: 41:0e:b8:d6:a6:1e:5f:7e:e9:05:d3:7f:7c:26:ac:c8:3e:b6: fd:c2:88:18:75:1f:83:32:6b:df:c1:03:d1:7e:0e:07:86:75: 75:4c:6e:46 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICClgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcxNjQxMTAvBgNVBAUTKDJGNkFERjQyQUZEMTY0MDgwRUEzMUUwRjNCODMzOEJF RDZEQTFFNTkwHhcNMjYwNTEyMTk0NDA4WhcNMjYwNTE5MTk0NDA4WjAYMRYwFAYD VQQDEw02YTAzODMwOC1hMzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkI39vZyc6YNlhGDNEREOHCoJfpw/FCBSOsI2vKiV6b1YhpZl206UVfnmpbJ SomSDsVXXoHfs8GnvUJzIbZx0+zSn8QeaeGdreGjkLDMLcGu3t5gv8T50Nbgu8s3 6k36qQLnbf16ZKLDCj4iVIJEzmmERLos0eQSdrJ0uFOgedqYCZZXX7vvcy1Pi7VR ssTlCUP8TqCLplmG6m4Gz+FV6skS92Ye/oUvwPu5hQl6uqA/lKwa3d974FwVF9J3 KXF0fbnlcdGCICsc5UX2SA4iSBJkcdB37YIhunI2zaqcX7VdAJq74zzQ5GoKEntu GbYzMCEmuQ6LO1SDeocj8Cj2NQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIzoukiu PULCRWxGTtUy21J6OPyiMB8GA1UdIwQYMBaAFC9q30Kv0WQIDqMeDzuDOL7W2h5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzE2NC8yMjhBQkY3NDg5 OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpBZ09veDRQTzRNNHZ0YmFI bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wycmZRcV9SWkFnT294NFBPNE00dnRiYUhsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzE2NC8yMjhBQkY3NDg5OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpB Z09veDRQTzRNNHZ0YmFIbGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATcqUQQUCQkiOvLpvA5dhi3d8GpxqNjQXuJjNAgOj3ox/yq5mI8uC8wlBp8Ip rWB/d9WpBOydyBRjW26HzgVEJIibgYQFsaiSYbuHbsm2eULxOn416InpwOQSbMxB 1Hcn/Lzo6u6ncAtVgGo/5dyP94lCL0PHiz7OF9CXCYlZkpk7GRURM513iF2h5Ra1 +H0ldBHHRMpafjJ3wDjl6vauxxF/fFxA/CQCls9Itb5xH9rZ4LpahBUUsuM56pYL NrxLMqXPASnuxV2sHrVbCuV8jd0kMWS3t17KQQ641qYeX37pBdN/fCasyD62/cKI GHUfgzJr38ED0X4OB4Z1dUxuRg== -----END CERTIFICATE-----Generated at Wed May 13 07:32:37 2026 by rpki-client