$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft File: LWNAd8yEe1nUBI1D4EszCWmP5jg.mft (raw, json) Hash identifier: xVpUrl3vQOCc+JS2h4ieRa9Ji/6ZyuQA/ymzE/+ZObM= Subject key identifier: FB:A9:EF:BA:20:0A:0E:D1:A8:B6:82:7E:84:0C:88:76:61:FF:C7:22 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 0408 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft Manifest number: 0367 Signing time: Thu 21 May 2026 02:02:25 +0000 Manifest this update: Thu 21 May 2026 02:02:25 +0000 Manifest next update: Thu 28 May 2026 02:02:25 +0000 Files and hashes: 1: LWNAd8yEe1nUBI1D4EszCWmP5jg.crl (hash: OoFoK5p5oN3b6j+NTWd+SKZrM7dfB62TxlkJcPvTOt8=) 2: F9A864386AAB11EF8FEBE576C4F9AE02.roa (hash: YySN/OEFOesvLCn2GkCFn3w0IA8S3T8IMu+C8KUfxLg=) 3: 94C13908C4AF11EDBCC55111C4F9AE02.roa (hash: m+YMSjzVUuc73W6hTfDFbMi0+yUuBUpgBYQofvaW6Ow=) 4: 0B7CEEB07CC911F08411627BC4F9AE02.roa (hash: 6jds39GpIYDWTUvVrxm863ItczOC5PjSQTRWLznhaMU=) 5: 755E6B82D21C11EEA166891AC4F9AE02.roa (hash: lBUP0TSzebAFXmoSTqeDqtFMO8rYhPyrBUR141U167M=) 6: 430E4E387CC311F0A55B2081C4F9AE02.roa (hash: b357DS6un3095ihmJG/1qzltik8hgTz2G2EsqlSGWDw=) 7: E879EE7C144111EFB247B936C4F9AE02.roa (hash: ZeAGLGAA4h+CcuwE4PZxgCpOScaMQUl6R6qDfBF+VLY=) 8: FECE3C3C855711EF8E79C52BC4F9AE02.roa (hash: NNYpj3betzAmhzyg69sOsd+IkKaVWYtVMEooK8d8Jhg=) 9: FDC6A888AEB111EE9A78E132C4F9AE02.roa (hash: HJTu/QaBBUaGGzi25rXbR60EpAJ8f6RdGFNR0tCCt90=) 10: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (hash: P6k6ZFgyd5A01gmUt+7pAxzOrjslbaS8z1K2UjgCjog=) 11: FD124A14CC5811EDBE5D203FC4F9AE02.roa (hash: neeN01r5VZ4YRUPHtpZwodLJIVHlwzKgdZUXHbEsINA=) 12: CA1A46101A5B11EE89B07267C4F9AE02.roa (hash: 2rNOWeXpsmPPeo00gkw3XFog2FCfRkn+qinn6OJcsSU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 02:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1032 (0x408) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: May 21 02:02:25 2026 GMT Not After : May 28 02:02:25 2026 GMT Subject: CN=6a0e67b1-2b6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:19:55:99:77:d0:d2:59:11:07:cf:cf:0c:93: f0:62:1c:27:88:7d:03:0a:2b:8d:fe:6c:cc:2b:3f: 68:ab:37:da:dc:6b:a9:05:a0:bd:26:ff:d5:b9:7a: 5c:a1:a5:a5:a9:6f:9c:9a:7f:b5:30:ff:29:a6:03: 65:88:87:a6:77:49:d6:d9:9a:ca:73:8d:52:df:b7: dd:d4:a0:5d:32:24:02:11:e4:ed:59:41:c0:e4:bc: 26:72:1b:f4:26:00:26:2c:4e:40:a8:6e:8b:c9:75: d6:3d:3f:b7:fb:d2:a5:5a:c2:ff:a6:62:a4:60:c0: 69:4c:ae:a0:f0:0d:42:1a:44:e1:9f:25:90:e2:0e: e2:bf:5e:e1:50:93:e0:9b:5f:29:8a:1e:21:23:8a: 95:52:bf:0f:00:a1:11:01:29:72:8e:99:21:c8:96: 3a:cf:76:cc:14:2c:1f:64:b3:dc:30:7c:ef:41:7f: 76:19:18:77:fa:98:23:55:42:fa:ab:b7:96:bf:33: 51:95:03:5a:d8:47:6f:f6:a4:93:13:fe:e6:7d:f0: 0a:fa:65:89:48:85:78:6b:81:51:83:3a:1e:28:6e: 90:b8:50:68:b0:79:49:0d:ff:d1:20:54:62:09:03: 7e:f1:1a:94:67:40:40:23:e9:dd:87:81:63:53:00: 74:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A9:EF:BA:20:0A:0E:D1:A8:B6:82:7E:84:0C:88:76:61:FF:C7:22 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:6a:9a:13:8c:39:dd:1d:2a:45:ed:59:4b:41:d7:b9:f6:63: 17:8f:ad:15:8b:ea:35:b6:90:71:79:58:f5:44:ae:5e:fb:6b: cf:1c:04:7e:a0:22:ce:6c:80:ff:73:95:d6:a6:ef:41:e1:e7: b9:b2:7f:c3:cc:88:bb:5a:f8:02:8a:5a:06:f7:f0:83:47:c6: 05:a9:ba:48:b2:f5:86:17:5a:e1:2d:64:ba:00:bb:1a:1c:53: 63:ac:89:07:ac:0d:53:cc:83:6d:31:2c:74:d9:b0:84:65:71: 04:68:9d:9d:89:87:ac:47:c8:bc:4a:16:63:02:94:6f:e0:be: b4:6d:c0:69:8a:27:a5:b0:55:7e:33:df:d3:c7:aa:41:da:73: 2c:3b:20:6c:49:c0:bb:a1:22:05:02:1f:c8:a7:c0:84:43:f8: 69:aa:d7:21:37:4f:0d:89:81:15:9c:d6:cc:2f:49:2d:49:4d: 34:9e:cb:c6:f1:48:8a:e3:7a:e5:36:e0:f4:fd:05:a7:92:a4: 0d:ac:70:cf:d5:12:8a:ea:50:e8:3c:1e:99:ea:33:d8:78:8c: 33:9d:e8:b2:b4:bb:f5:38:17:9b:55:19:e5:c6:9a:f4:79:fc: 19:d0:f0:91:80:07:c2:e9:fb:cd:84:08:b4:a8:0f:4c:49:3f: db:cb:d8:22 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjYwNTIxMDIwMjI1WhcNMjYwNTI4MDIwMjI1WjAYMRYwFAYD VQQDEw02YTBlNjdiMS0yYjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhxlVmXfQ0lkRB8/PDJPwYhwniH0DCiuN/mzMKz9oqzfa3GupBaC9Jv/VuXpc oaWlqW+cmn+1MP8ppgNliIemd0nW2ZrKc41S37fd1KBdMiQCEeTtWUHA5Lwmchv0 JgAmLE5AqG6LyXXWPT+3+9KlWsL/pmKkYMBpTK6g8A1CGkThnyWQ4g7iv17hUJPg m18pih4hI4qVUr8PAKERASlyjpkhyJY6z3bMFCwfZLPcMHzvQX92GRh3+pgjVUL6 q7eWvzNRlQNa2Edv9qSTE/7mffAK+mWJSIV4a4FRgzoeKG6QuFBosHlJDf/RIFRi CQN+8RqUZ0BAI+ndh4FjUwB0kQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPup77og Cg7RqLaCfoQMiHZh/8ciMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjU4Ny80MTdENzFCNDkxODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUx blVCSTFENEVzekNXbVA1amcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO2qaE4w53R0qRe1ZS0HXufZjF4+tFYvqNbaQcXlY9USuXvtrzxwEfqAizmyA /3OV1qbvQeHnubJ/w8yIu1r4AopaBvfwg0fGBam6SLL1hhda4S1kugC7GhxTY6yJ B6wNU8yDbTEsdNmwhGVxBGidnYmHrEfIvEoWYwKUb+C+tG3AaYonpbBVfjPf08eq QdpzLDsgbEnAu6EiBQIfyKfAhEP4aarXITdPDYmBFZzWzC9JLUlNNJ7LxvFIiuN6 5Tbg9P0Fp5KkDaxwz9USiupQ6Dwemeoz2HiMM53osrS79TgXm1UZ5caa9Hn8GdDw kYAHwun7zYQItKgPTEk/28vYIg== -----END CERTIFICATE-----Generated at Thu May 21 10:22:36 2026 by rpki-client