$ rpki-client -vvf rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft File: L4dzyVEFOxQ4vCfsxV45KvteK7I.mft (raw, json) Hash identifier: +/CzhansMZqKFYA4PHKyesBg0v1pijpfLfjq+gAp5yE= Subject key identifier: BD:00:93:30:9D:D5:83:38:14:05:20:55:3D:B1:8D:1A:4C:1B:41:78 Authority key identifier: 2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 Certificate issuer: /CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Certificate serial: 0C1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft Manifest number: 0BFF Signing time: Wed 20 May 2026 18:52:59 +0000 Manifest this update: Wed 20 May 2026 18:52:58 +0000 Manifest next update: Wed 27 May 2026 18:52:58 +0000 Files and hashes: 1: L4dzyVEFOxQ4vCfsxV45KvteK7I.crl (hash: 2bdN1IzEMr3RmI/Cxz0Jd45Z3nLSIJLUb7AqWg1/tfY=) 2: 60CAF672CAC211F08083F41BC4F9AE02.roa (hash: kq7sx+cXw+m9S0qiyAa+VcKr/WKvuChbXwIbeJRy3rg=) 3: F90AE9C413AB11F1B2F915E2033D8C67.roa (hash: qP73CAez9BA/Kxf0LXcrxOa4cBuTk6ek4TGHHpeWEII=) 4: 84AC17989B0811EDB5FDAF75C4F9AE02.roa (hash: ZdWgxsTDmp2SCgpKV/pUzjdMnUTtasFIwHsMjvPLzoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3103 (0xc1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B56F0, serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Validity Not Before: May 20 18:52:58 2026 GMT Not After : May 27 18:52:58 2026 GMT Subject: CN=6a0e030b-3932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1b:81:83:60:b8:a7:5d:ab:b4:b0:06:2e:f7: d1:38:55:a6:3b:00:62:29:2b:d4:bd:e9:f8:f7:7c: 01:c7:25:3c:c2:15:61:d9:27:5b:b0:05:3a:16:bb: 33:8f:d5:8a:cd:2c:6f:02:2b:42:7a:ba:19:28:17: c0:e3:dc:fa:50:bb:3d:82:83:2a:a8:bf:ec:0d:1a: 2e:cf:96:ba:f3:a0:23:0b:8d:1b:19:97:8b:64:72: ad:d4:c8:96:a4:93:7c:80:dd:4b:76:6a:84:12:49: bc:1e:0c:f2:09:e5:0c:cf:23:0a:92:d0:d3:c6:e8: 0e:dd:2a:82:82:87:c1:31:f9:8b:c1:cc:fc:ad:35: 99:43:bf:e8:41:09:c2:a3:eb:c8:7a:33:ff:96:5b: 74:4e:b3:cf:3c:dc:14:97:63:de:57:36:0d:19:9e: 57:34:d4:32:7b:5a:f6:5f:86:f9:99:31:c6:d0:59: 3d:f8:a1:6a:21:c6:2b:ec:54:19:61:b5:7a:b2:85: 2a:14:9a:f1:f4:37:77:11:84:81:25:e0:02:97:28: 69:ae:8e:5b:bd:f8:3b:c6:88:b0:f1:ed:03:cc:47: 11:0f:98:c2:d9:0b:c8:8f:61:5c:22:55:3a:40:99: 28:41:bc:9e:23:18:fd:6b:26:bd:e4:d5:8d:c5:7e: c5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:00:93:30:9D:D5:83:38:14:05:20:55:3D:B1:8D:1A:4C:1B:41:78 X509v3 Authority Key Identifier: keyid:2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:bf:fd:c8:cb:68:d5:87:d7:b7:49:9c:b8:d9:0d:37:1e:34: 76:98:c4:01:a6:a4:83:60:cc:c9:5a:88:f7:c6:58:ce:52:dc: 30:50:5d:af:aa:a3:fa:00:64:5a:01:15:23:81:6c:02:a4:63: 5b:92:28:82:83:aa:65:38:3e:e1:e4:09:35:fc:c1:a8:38:84: b6:db:e1:58:7a:40:24:6d:08:cb:56:bc:42:0e:ad:c1:42:1d: 57:8a:a0:6f:26:02:41:40:25:e7:2c:64:95:e8:3d:e9:97:89: 1e:65:e0:3e:e8:33:7f:b8:77:81:bc:55:65:a9:d8:e1:17:8d: f2:e0:4a:fe:3b:77:52:f4:a5:97:84:1c:d3:33:6b:d6:b2:ce: 79:4b:e1:31:f9:f2:78:b2:c4:25:19:39:bf:aa:35:de:25:c4: de:06:54:1d:40:29:e7:bb:4c:31:ed:d2:ba:6e:3b:36:e8:92: 4e:9b:ae:2c:3d:2c:c9:22:c1:9c:22:95:b7:b4:98:19:3d:a5: d5:c6:bf:3a:e9:b3:bb:95:55:8f:3e:56:9b:80:5b:4f:1c:b7: 80:33:01:c7:f6:f2:65:8d:36:c9:64:d7:8e:e4:da:af:73:d2: 78:f6:76:73:4b:7d:a5:41:d4:4b:f1:9b:85:fc:62:f7:94:8e: fa:bb:61:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2RjAxMTAvBgNVBAUTKDJGODc3M0M5NTEwNTNCMTQzOEJDMjdFQ0M1NUUzOTJB RkI1RTJCQjIwHhcNMjYwNTIwMTg1MjU4WhcNMjYwNTI3MTg1MjU4WjAYMRYwFAYD VQQDEw02YTBlMDMwYi0zOTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBuBg2C4p12rtLAGLvfROFWmOwBiKSvUven493wBxyU8whVh2SdbsAU6Frsz j9WKzSxvAitCeroZKBfA49z6ULs9goMqqL/sDRouz5a686AjC40bGZeLZHKt1MiW pJN8gN1LdmqEEkm8HgzyCeUMzyMKktDTxugO3SqCgofBMfmLwcz8rTWZQ7/oQQnC o+vIejP/llt0TrPPPNwUl2PeVzYNGZ5XNNQye1r2X4b5mTHG0Fk9+KFqIcYr7FQZ YbV6soUqFJrx9Dd3EYSBJeAClyhpro5bvfg7xoiw8e0DzEcRD5jC2QvIj2FcIlU6 QJkoQbyeIxj9aya95NWNxX7FxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL0AkzCd 1YM4FAUgVT2xjRpMG0F4MB8GA1UdIwQYMBaAFC+Hc8lRBTsUOLwn7MVeOSr7Xiuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTZGMC83RDY3RTRENDM4 NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94UTR2Q2ZzeFY0NUt2dGVL N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0ZHp5VkVGT3hRNHZDZnN4VjQ1S3Z0ZUs3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTZGMC83RDY3RTRENDM4NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94 UTR2Q2ZzeFY0NUt2dGVLN0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKL/9yMto1YfXt0mcuNkNNx40dpjEAaakg2DMyVqI98ZYzlLcMFBdr6qj+gBk WgEVI4FsAqRjW5IogoOqZTg+4eQJNfzBqDiEttvhWHpAJG0Iy1a8Qg6twUIdV4qg byYCQUAl5yxkleg96ZeJHmXgPugzf7h3gbxVZanY4ReN8uBK/jt3UvSll4Qc0zNr 1rLOeUvhMfnyeLLEJRk5v6o13iXE3gZUHUAp57tMMe3Sum47NuiSTpuuLD0sySLB nCKVt7SYGT2l1ca/Oumzu5VVjz5Wm4BbTxy3gDMBx/byZY02yWTXjuTar3PSePZ2 c0t9pUHUS/Gbhfxi95SO+rthkg== -----END CERTIFICATE-----Generated at Thu May 21 10:14:49 2026 by rpki-client