$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft File: lAiiAfAOWP6SWY7gOTkHi673d5U.mft (raw, json) Hash identifier: P6ZN3LhYSCwTERckdR2aWNv5scDD9MDskvGD0EreQxA= Subject key identifier: EF:41:14:21:35:3B:89:D8:A4:87:66:D3:5D:4E:13:5A:58:83:27:05 Authority key identifier: 94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 Certificate issuer: /CN=A91A6F68/serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft Manifest number: FE Signing time: Fri 05 Jun 2026 06:32:01 +0000 Manifest this update: Fri 05 Jun 2026 06:32:01 +0000 Manifest next update: Fri 12 Jun 2026 06:32:01 +0000 Files and hashes: 1: lAiiAfAOWP6SWY7gOTkHi673d5U.crl (hash: zcA8kYVXgqq4eRrKK8FpQl6VOW1Ntgy7ZL8BxfGecfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 06:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68, serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Validity Not Before: Jun 5 06:32:01 2026 GMT Not After : Jun 12 06:32:01 2026 GMT Subject: CN=6a226d61-8805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3a:cc:20:34:f1:94:85:44:ac:50:d8:13:4e: 79:b9:a2:98:7e:9c:c8:f4:b5:0d:35:50:0e:0b:49: 2f:bd:2b:f8:a7:ef:5b:11:10:09:ce:f5:7b:d3:da: 38:1d:52:65:b4:f9:7c:9a:87:dc:ad:00:e1:31:b6: 37:58:de:a2:83:cb:b3:fb:a3:e8:f9:fe:f4:17:ef: d2:97:9a:2d:30:27:ce:c9:c6:a3:b4:40:70:28:d5: 79:00:06:eb:d8:68:34:9d:47:2e:ea:fa:06:90:63: e0:d7:a8:0b:8b:c3:c9:6f:a8:36:31:4e:48:05:23: c0:12:1f:22:2e:7a:5a:2b:99:5c:84:ef:f6:ae:28: e0:e0:4c:93:d8:28:5e:e6:09:79:c8:fb:8c:8a:c3: 14:96:35:be:be:33:dd:26:cf:e0:7c:f7:08:0b:1f: da:8b:2c:46:2f:72:5f:cd:4b:cb:40:b8:33:f4:bf: 6a:fd:0f:aa:58:c0:e4:f3:43:64:78:59:ee:94:37: 05:ac:15:fe:9b:ec:aa:1f:2b:e8:1a:64:c5:cb:8f: 31:b6:41:ec:56:3a:9e:80:d3:17:90:84:23:84:f9: 67:99:90:51:17:26:95:7e:7e:ab:ec:ec:f4:33:7a: 56:5b:65:aa:98:94:37:7e:ea:9a:e7:ee:07:e4:82: 06:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:41:14:21:35:3B:89:D8:A4:87:66:D3:5D:4E:13:5A:58:83:27:05 X509v3 Authority Key Identifier: keyid:94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:09:a9:ba:32:5a:f6:d4:0f:d9:a2:9a:c6:44:65:08:3a:25: ce:3d:5f:83:5b:32:cb:89:79:31:99:37:e5:8b:2f:5e:ff:03: a0:3b:00:bf:f6:c2:8e:eb:72:9e:af:d2:2d:f6:ab:cf:14:79: da:cc:2a:a7:8a:50:e1:2f:aa:48:11:3f:ee:f4:27:c8:9f:29: ae:5c:7c:78:44:52:48:e9:56:41:b3:2e:bf:b5:7d:b0:0d:e7: 8f:9c:ee:6c:5c:b2:ea:ce:44:14:b1:3c:5b:ef:88:fb:49:a0: d0:59:ad:29:19:92:42:32:44:74:e3:ff:01:8e:e0:44:ab:30: 84:2f:2f:36:00:aa:d4:8f:9d:99:a9:eb:3a:2b:f8:2d:07:29: 5d:f7:15:e5:0c:d4:42:40:cf:5f:94:d0:4d:b7:bf:a1:ff:a3: dd:37:96:b3:d2:97:2c:bc:13:5f:a4:13:5d:f1:6b:d9:60:ac: c7:79:17:de:8d:9e:c6:2d:c8:79:01:f6:2f:3a:5a:a0:f5:b8: 57:7d:a1:31:c8:52:90:34:06:9e:3e:7b:9a:8e:88:47:d2:f1: 99:6a:de:3b:21:e3:4d:45:b9:3d:20:8c:d8:07:52:7d:e2:d4: ba:7e:5c:2a:ba:98:93:15:65:b5:3e:4e:e2:c3:f0:a6:ac:7e: 73:02:eb:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGNjgxMTAvBgNVBAUTKDk0MDhBMjAxRjAwRTU4RkU5MjU5OEVFMDM5MzkwNzhC QUVGNzc3OTUwHhcNMjYwNjA1MDYzMjAxWhcNMjYwNjEyMDYzMjAxWjAYMRYwFAYD VQQDEw02YTIyNmQ2MS04ODA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDrMIDTxlIVErFDYE055uaKYfpzI9LUNNVAOC0kvvSv4p+9bERAJzvV709o4 HVJltPl8mofcrQDhMbY3WN6ig8uz+6Po+f70F+/Sl5otMCfOycajtEBwKNV5AAbr 2Gg0nUcu6voGkGPg16gLi8PJb6g2MU5IBSPAEh8iLnpaK5lchO/2rijg4EyT2Che 5gl5yPuMisMUljW+vjPdJs/gfPcICx/aiyxGL3JfzUvLQLgz9L9q/Q+qWMDk80Nk eFnulDcFrBX+m+yqHyvoGmTFy48xtkHsVjqegNMXkIQjhPlnmZBRFyaVfn6r7Oz0 M3pWW2WqmJQ3fuqa5+4H5IIGxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO9BFCE1 O4nYpIdm011OE1pYgycFMB8GA1UdIwQYMBaAFJQIogHwDlj+klmO4Dk5B4uu93eV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkY2OC9CQTU2NUY1Q0RG MjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQNlNXWTdnT1RrSGk2NzNk NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xBaWlBZkFPV1A2U1dZN2dPVGtIaTY3M2Q1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkY2OC9CQTU2NUY1Q0RGMjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQ NlNXWTdnT1RrSGk2NzNkNVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIAmpujJa9tQP2aKaxkRlCDolzj1fg1syy4l5MZk35YsvXv8DoDsAv/bCjuty nq/SLfarzxR52swqp4pQ4S+qSBE/7vQnyJ8prlx8eERSSOlWQbMuv7V9sA3nj5zu bFyy6s5EFLE8W++I+0mg0FmtKRmSQjJEdOP/AY7gRKswhC8vNgCq1I+dmanrOiv4 LQcpXfcV5QzUQkDPX5TQTbe/of+j3TeWs9KXLLwTX6QTXfFr2WCsx3kX3o2exi3I eQH2LzpaoPW4V32hMchSkDQGnj57mo6IR9LxmWreOyHjTUW5PSCM2AdSfeLUun5c KrqYkxVltT5O4sPwpqx+cwLrBg== -----END CERTIFICATE-----Generated at Sat Jun 6 10:50:23 2026 by rpki-client