$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: MDQFByFIZXR52gMsvCO8R3mHMZMZVlmeJbCWcqAIi84= Subject key identifier: EF:7C:9D:D1:A9:87:7A:0C:89:A6:62:33:03:EC:CA:7E:95:30:BE:04 Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: 01AA Signing time: Mon 01 Jun 2026 04:53:59 +0000 Manifest this update: Mon 01 Jun 2026 04:53:58 +0000 Manifest next update: Mon 08 Jun 2026 04:53:58 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: hTP12MaVia+2rs0+wGrrt5eJnarq7EafiwGj36guX6o=) 2: C659227E3D9611F1B3BD8648C4833773.roa (hash: URpwa68ICBHx7NH87HQVK1oNTdznNSwb1RkzR4QbR8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 04:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Jun 1 04:53:58 2026 GMT Not After : Jun 8 04:53:58 2026 GMT Subject: CN=6a1d1067-2f74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a5:e6:f9:b5:56:90:6d:e5:38:52:d6:ef:b3: 8f:e3:0c:7d:6c:57:19:b1:6d:23:cc:d2:bc:c4:f6: 24:05:3a:8c:7c:91:d7:23:75:a5:99:24:e5:34:d5: 12:51:ac:83:b1:86:5b:81:d0:31:47:0b:c8:36:86: 5a:ac:ed:e0:df:e2:c3:3e:38:02:83:65:72:7a:a5: 65:24:e6:88:d7:5a:b9:81:05:07:28:6b:8e:40:b1: ea:a8:c3:91:94:eb:79:fb:69:a2:20:2c:c4:a7:fc: a9:24:cf:1f:8a:cd:3f:39:83:83:da:88:80:05:f1: 42:65:2f:a4:75:7e:03:ea:30:9e:da:f6:34:5c:48: 5a:d8:1e:52:ac:6c:00:7a:ba:d3:d5:6e:cd:0f:90: 2e:7d:b0:e7:70:96:a8:00:89:6f:9b:bb:32:ff:fd: b5:42:53:66:ba:de:4a:61:7b:53:2a:e9:52:ce:22: 7b:7c:bd:8e:be:7d:bf:76:72:3f:57:b2:f7:e5:0c: 08:bd:45:aa:30:a6:89:f6:e4:cc:7e:b4:8d:d4:7b: 1b:c7:80:39:e0:6a:9b:0e:c0:a4:4b:23:ac:96:da: 7a:e1:4c:4f:b1:e1:b0:c7:42:c1:17:cc:0c:36:8b: d7:48:be:98:75:3f:29:69:3a:0a:65:f6:8c:f3:69: 44:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:7C:9D:D1:A9:87:7A:0C:89:A6:62:33:03:EC:CA:7E:95:30:BE:04 X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:43:23:4a:3e:b0:51:a5:3b:a3:a5:c6:4b:3b:86:e7:47:8c: 7b:ab:c2:3e:36:06:f3:63:9a:55:af:fe:a0:86:36:05:c2:47: 5f:02:fe:35:c4:13:ec:76:cf:0a:87:6c:6c:a7:3a:3b:57:9f: 16:67:7f:40:5b:af:af:e4:cd:93:27:00:0b:82:14:9f:7b:c7: 30:ce:a7:19:93:97:1b:ee:0b:84:b0:6e:d0:b6:91:66:5f:8c: 72:a6:25:69:27:4f:9f:e1:fd:1d:c3:da:26:d3:93:9f:d7:da: f4:0d:83:61:25:bf:c8:0d:4e:37:28:32:75:30:c8:6f:40:a1: c6:6e:43:15:78:56:c8:b1:9e:ef:f6:49:d0:a7:51:1f:74:2c: 5d:e5:ef:c8:7e:f4:be:79:bc:58:fb:f3:48:08:60:f0:2c:5f: c7:61:34:a2:54:78:4a:d3:16:d2:42:85:31:80:d8:3c:b0:0e: 53:23:8d:b3:f9:7a:a6:63:a9:5e:2f:a1:58:75:54:24:1a:ee: e0:38:50:94:44:18:14:76:2a:e8:ce:ab:10:49:30:28:f0:94: 44:ac:b7:68:e0:aa:ff:05:ce:65:e0:c1:7d:13:dc:f7:cd:72: 77:9e:0c:8d:92:00:a7:03:3a:10:9d:ab:be:3d:2a:08:63:08: f5:c4:40:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjYwNjAxMDQ1MzU4WhcNMjYwNjA4MDQ1MzU4WjAYMRYwFAYD VQQDEw02YTFkMTA2Ny0yZjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5aXm+bVWkG3lOFLW77OP4wx9bFcZsW0jzNK8xPYkBTqMfJHXI3WlmSTlNNUS UayDsYZbgdAxRwvINoZarO3g3+LDPjgCg2VyeqVlJOaI11q5gQUHKGuOQLHqqMOR lOt5+2miICzEp/ypJM8fis0/OYOD2oiABfFCZS+kdX4D6jCe2vY0XEha2B5SrGwA errT1W7ND5AufbDncJaoAIlvm7sy//21QlNmut5KYXtTKulSziJ7fL2Ovn2/dnI/ V7L35QwIvUWqMKaJ9uTMfrSN1Hsbx4A54GqbDsCkSyOsltp64UxPseGwx0LBF8wM NovXSL6YdT8paToKZfaM82lE0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO98ndGp h3oMiaZiMwPsyn6VML4EMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcEMjSj6wUaU7o6XGSzuG50eMe6vCPjYG82OaVa/+oIY2BcJHXwL+NcQT7HbP CodsbKc6O1efFmd/QFuvr+TNkycAC4IUn3vHMM6nGZOXG+4LhLBu0LaRZl+McqYl aSdPn+H9HcPaJtOTn9fa9A2DYSW/yA1ONygydTDIb0Chxm5DFXhWyLGe7/ZJ0KdR H3QsXeXvyH70vnm8WPvzSAhg8Cxfx2E0olR4StMW0kKFMYDYPLAOUyONs/l6pmOp Xi+hWHVUJBru4DhQlEQYFHYq6M6rEEkwKPCURKy3aOCq/wXOZeDBfRPc981yd54M jZIApwM6EJ2rvj0qCGMI9cRAUg== -----END CERTIFICATE-----Generated at Tue Jun 2 21:19:31 2026 by rpki-client