$ rpki-client -vvf rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft File: 23LIuvHa9pOYGFLuAyIwMF7ICRA.mft (raw, json) Hash identifier: lYUawKzIPK9hL2ZcPNDE+S7WYjTM7d24oGFj1LHqG3A= Subject key identifier: BE:AE:24:79:04:FF:1C:B9:4B:89:9E:9D:87:AE:C5:AB:D1:2C:C4:12 Authority key identifier: DB:72:C8:BA:F1:DA:F6:93:98:18:52:EE:03:22:30:30:5E:C8:09:10 Certificate issuer: /CN=A91B289C/serialNumber=DB72C8BAF1DAF693981852EE032230305EC80910 Certificate serial: 0956 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft Manifest number: 094D Signing time: Wed 20 May 2026 20:10:41 +0000 Manifest this update: Wed 20 May 2026 20:10:41 +0000 Manifest next update: Wed 27 May 2026 20:10:41 +0000 Files and hashes: 1: 23LIuvHa9pOYGFLuAyIwMF7ICRA.crl (hash: /Am69Lig0BgGzONAuGvlzEERvheRJ/9DW7k12SSb3t4=) 2: E6F3687CBCE711EAACD6466CC4F9AE02.roa (hash: AJajG2Lmw5CKAEEdhqoEdtkkiOQieReMgo4pezqlWDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.crl rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2390 (0x956) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B289C, serialNumber=DB72C8BAF1DAF693981852EE032230305EC80910 Validity Not Before: May 20 20:10:41 2026 GMT Not After : May 27 20:10:41 2026 GMT Subject: CN=6a0e1541-95ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e3:a5:fc:9e:1e:18:cd:e2:9e:9c:ca:47:80: 4c:2c:12:3e:ba:2a:14:0d:ad:d6:ac:b6:b1:fb:48: e5:f0:b6:2a:7f:c1:97:66:66:bd:e4:f1:2e:2e:30: 50:c9:75:f0:56:de:c8:f2:f9:86:25:7d:bd:c9:1c: 0c:7c:37:19:a4:1b:87:2d:1a:3c:69:0a:22:a5:dd: b8:4c:b5:af:d1:d8:07:e4:17:11:7e:cf:88:c3:97: a1:23:42:ae:1a:d2:0a:12:3a:f4:31:ac:ad:21:7b: 2d:78:da:87:21:4c:0c:93:a0:11:13:22:5b:e9:2b: 48:01:12:25:8f:40:54:24:c6:81:89:6a:fc:62:00: bb:ca:50:b9:f7:bc:b8:54:b4:31:61:81:46:af:ec: a2:c3:e4:00:ca:d2:70:2c:40:1e:a0:d4:d2:27:db: 07:e8:a0:b3:7e:ac:ff:e7:9d:7e:17:30:9b:0d:d0: c8:31:ff:20:43:ea:51:a2:33:04:2c:a6:64:82:b1: 62:ca:9a:73:22:dd:2b:31:0b:3a:2f:dd:45:6b:de: f9:8e:e1:c2:ed:6e:a2:9f:6f:05:13:1f:46:11:a4: 4a:d4:f2:05:f1:76:fb:33:00:e4:3c:f3:4c:6b:e8: 3b:4d:0d:ba:7a:ab:e0:b8:d3:07:52:56:61:18:01: 4f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:AE:24:79:04:FF:1C:B9:4B:89:9E:9D:87:AE:C5:AB:D1:2C:C4:12 X509v3 Authority Key Identifier: keyid:DB:72:C8:BA:F1:DA:F6:93:98:18:52:EE:03:22:30:30:5E:C8:09:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:50:77:c5:20:d9:ed:ba:ec:07:ca:40:6f:ae:d8:03:c5:4a: 62:c9:e0:4d:24:04:42:2d:6b:9a:ea:b5:3d:00:d3:b3:4a:fc: 47:c5:cc:ea:28:60:82:f1:20:f9:c9:21:e8:6d:85:a1:09:2b: 5e:4f:b6:37:f3:05:18:09:57:eb:d5:99:33:84:19:6b:24:6f: 41:43:24:3a:f9:ca:53:73:d5:36:df:1e:6f:69:31:1f:5a:c5: e1:38:52:17:56:31:a2:91:38:00:5e:4e:24:73:97:5c:fd:23: 94:58:fa:3b:f2:76:79:b8:fa:b3:9a:65:dc:52:4f:9c:be:fe: cd:4a:8b:f9:e4:48:d6:0c:f6:e6:d2:fb:5d:92:45:9d:f5:0e: 3b:8b:80:7d:c5:af:03:a9:42:53:b1:50:4f:56:33:2a:e5:17: bb:2e:38:f6:26:0e:d8:51:77:a7:4b:e3:e7:18:db:80:e2:56: bd:eb:17:2d:84:b5:4e:c7:b8:82:00:35:f6:34:4c:71:d8:87: a4:48:06:3b:4b:63:fc:05:73:76:e1:0c:d0:c3:6d:20:41:c5: fc:d6:48:fe:45:8d:e3:8f:bc:6e:21:54:67:a5:fc:a2:d7:49: 03:45:43:d3:0d:31:48:19:1e:ac:82:fd:ab:02:a3:3d:e2:fe: 6b:03:cc:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI4OUMxMTAvBgNVBAUTKERCNzJDOEJBRjFEQUY2OTM5ODE4NTJFRTAzMjIzMDMw NUVDODA5MTAwHhcNMjYwNTIwMjAxMDQxWhcNMjYwNTI3MjAxMDQxWjAYMRYwFAYD VQQDEw02YTBlMTU0MS05NWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnuOl/J4eGM3inpzKR4BMLBI+uioUDa3WrLax+0jl8LYqf8GXZma95PEuLjBQ yXXwVt7I8vmGJX29yRwMfDcZpBuHLRo8aQoipd24TLWv0dgH5BcRfs+Iw5ehI0Ku GtIKEjr0MaytIXsteNqHIUwMk6AREyJb6StIARIlj0BUJMaBiWr8YgC7ylC597y4 VLQxYYFGr+yiw+QAytJwLEAeoNTSJ9sH6KCzfqz/551+FzCbDdDIMf8gQ+pRojME LKZkgrFiyppzIt0rMQs6L91Fa975juHC7W6in28FEx9GEaRK1PIF8Xb7MwDkPPNM a+g7TQ26eqvguNMHUlZhGAFPFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL6uJHkE /xy5S4menYeuxavRLMQSMB8GA1UdIwQYMBaAFNtyyLrx2vaTmBhS7gMiMDBeyAkQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjg5Qy8zQUIxRTJEQ0JD RTcxMUVBQkU5NzJDNkNDNEY5QUUwMi8yM0xJdXZIYTlwT1lHRkx1QXlJd01GN0lD UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzTEl1dkhhOXBPWUdGTHVBeUl3TUY3SUNSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Mjg5Qy8zQUIxRTJEQ0JDRTcxMUVBQkU5NzJDNkNDNEY5QUUwMi8yM0xJdXZIYTlw T1lHRkx1QXlJd01GN0lDUkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbVB3xSDZ7brsB8pAb67YA8VKYsngTSQEQi1rmuq1PQDTs0r8R8XM6ihggvEg +ckh6G2FoQkrXk+2N/MFGAlX69WZM4QZayRvQUMkOvnKU3PVNt8eb2kxH1rF4ThS F1YxopE4AF5OJHOXXP0jlFj6O/J2ebj6s5pl3FJPnL7+zUqL+eRI1gz25tL7XZJF nfUOO4uAfcWvA6lCU7FQT1YzKuUXuy449iYO2FF3p0vj5xjbgOJWvesXLYS1Tse4 ggA19jRMcdiHpEgGO0tj/AVzduEM0MNtIEHF/NZI/kWN44+8biFUZ6X8otdJA0VD 0w0xSBkerIL9qwKjPeL+awPMHg== -----END CERTIFICATE-----Generated at Thu May 21 10:18:50 2026 by rpki-client