$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json) Hash identifier: kfdhk5qqswdKRO0r3F82q6awnB7paBELn6SJ2HCaf1Y= Subject key identifier: 4E:AC:00:78:FD:9C:00:1B:12:58:E4:77:EA:E1:58:6E:23:8C:9E:17 Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft Manifest number: 01A9 Signing time: Mon 01 Jun 2026 05:00:30 +0000 Manifest this update: Mon 01 Jun 2026 05:00:29 +0000 Manifest next update: Mon 08 Jun 2026 05:00:29 +0000 Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: aTlSyJbFugRpK+up2R6clsN6pY8GqpJaZa+zaOo8X48=) 2: 10771E5497C211F0A9D40817C4F9AE02.roa (hash: Ih6CUVzbaPRdHejVQvZNcYEMy1tnq4yUXbGOoq+u3g0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 05:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD2D, serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Validity Not Before: Jun 1 05:00:29 2026 GMT Not After : Jun 8 05:00:29 2026 GMT Subject: CN=6a1d11ee-d950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5c:79:ce:ba:60:74:fc:3a:f4:a9:ac:22:c4: ce:8a:85:04:b4:5c:b2:40:c7:0d:64:23:01:8e:46: ad:ef:fe:45:5b:57:e1:3d:24:ff:78:97:27:33:6e: 82:7c:dd:26:b8:9b:2c:2b:68:e4:14:c6:03:48:3a: c8:a8:65:37:c6:23:ea:a4:8c:61:36:cb:d6:be:da: e3:66:a7:ee:a4:32:6b:5c:47:38:7d:46:b2:72:09: 5a:31:78:ff:27:cd:8a:09:37:88:b4:e2:57:88:b9: 70:76:bb:9a:8c:da:61:9e:8d:dd:44:34:be:4a:b6: fa:cc:d6:79:4f:b9:52:7e:f6:c7:cd:1e:68:c1:ef: b4:b2:37:4c:a1:2b:6b:db:38:78:28:1d:84:12:4e: 99:55:19:98:9d:1d:87:9f:29:04:2a:64:c4:42:de: 56:1f:2d:2f:e9:f4:76:bc:66:71:28:53:ad:2e:f9: 25:e9:b9:48:31:82:1b:89:63:82:5e:92:5b:0d:da: a4:66:ad:89:84:ba:ca:97:a8:1e:a0:d7:27:13:d2: 2a:0f:11:25:9d:e4:a6:2e:c6:e5:ad:88:61:49:82: 77:e6:e5:41:d7:f7:7c:4a:89:5f:9b:69:2b:fd:ab: f6:d0:9d:5b:5a:20:be:a7:a7:54:27:75:6d:1f:5a: 09:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:AC:00:78:FD:9C:00:1B:12:58:E4:77:EA:E1:58:6E:23:8C:9E:17 X509v3 Authority Key Identifier: keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:af:ac:fd:56:78:92:16:81:3a:4a:23:1c:91:36:2e:f7:3f: 32:97:1e:7c:83:7d:12:55:96:1a:da:43:43:6b:3d:2f:6d:6d: 56:f9:ae:a9:a3:00:74:a4:6f:85:f8:15:34:57:4d:7e:1c:1d: 09:d4:e9:07:af:f7:d1:8a:63:79:a9:7b:d8:29:e1:b9:55:b2: 44:2b:19:bc:92:56:5e:2d:f6:0b:95:31:53:50:27:44:70:ae: 8e:b4:25:09:90:6f:db:10:48:79:41:89:29:49:20:79:8b:05: 10:95:3f:2e:a3:e4:63:5d:5c:ed:d9:0c:26:ac:67:0f:22:8b: 16:06:ae:1c:30:f7:df:cb:a4:14:82:7c:cc:4b:7f:e9:1f:a7: d5:4c:0f:e5:3d:42:b1:05:0b:68:02:52:6c:5f:7b:9f:d1:17: 34:fc:6c:57:85:61:e1:34:2c:ec:f1:99:1e:43:33:28:5d:67: 4b:0e:91:30:96:d6:98:8c:f5:f9:33:5c:e7:ef:3d:d5:09:2a: 1a:64:6e:fa:4e:dd:af:28:5b:b5:22:12:72:ea:b7:68:95:6e: ca:d3:f1:35:6c:1a:9e:87:ff:12:15:fb:21:01:96:a2:6f:f0: 0f:5c:10:89:3d:6f:d2:b8:9d:40:65:f3:64:56:be:a5:8a:9a: 43:b8:75:3b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEMkQxMTAvBgNVBAUTKDk0QTk1MEIzMDNCNDY5MDBERDVBMzA2MTAzMEM4OUE0 ODk2ODAzQUYwHhcNMjYwNjAxMDUwMDI5WhcNMjYwNjA4MDUwMDI5WjAYMRYwFAYD VQQDEw02YTFkMTFlZS1kOTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlx5zrpgdPw69KmsIsTOioUEtFyyQMcNZCMBjkat7/5FW1fhPST/eJcnM26C fN0muJssK2jkFMYDSDrIqGU3xiPqpIxhNsvWvtrjZqfupDJrXEc4fUaycglaMXj/ J82KCTeItOJXiLlwdruajNphno3dRDS+Srb6zNZ5T7lSfvbHzR5owe+0sjdMoStr 2zh4KB2EEk6ZVRmYnR2HnykEKmTEQt5WHy0v6fR2vGZxKFOtLvkl6blIMYIbiWOC XpJbDdqkZq2JhLrKl6geoNcnE9IqDxElneSmLsblrYhhSYJ35uVB1/d8Solfm2kr /av20J1bWiC+p6dUJ3VtH1oJKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE6sAHj9 nAAbEljkd+rhWG4jjJ4XMB8GA1UdIwQYMBaAFJSpULMDtGkA3VowYQMMiaSJaAOv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQyRC85MDg4RUU1QUU4 MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFRRGRXakJoQXd5SnBJbG9B NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLbFFzd08wYVFEZFdqQmhBd3lKcElsb0E2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQyRC85MDg4RUU1QUU4MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFR RGRXakJoQXd5SnBJbG9BNjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAla+s/VZ4khaBOkojHJE2Lvc/MpcefIN9ElWWGtpDQ2s9L21tVvmuqaMAdKRv hfgVNFdNfhwdCdTpB6/30Ypjeal72CnhuVWyRCsZvJJWXi32C5UxU1AnRHCujrQl CZBv2xBIeUGJKUkgeYsFEJU/LqPkY11c7dkMJqxnDyKLFgauHDD338ukFIJ8zEt/ 6R+n1UwP5T1CsQULaAJSbF97n9EXNPxsV4Vh4TQs7PGZHkMzKF1nSw6RMJbWmIz1 +TNc5+891QkqGmRu+k7dryhbtSIScuq3aJVuytPxNWwanof/EhX7IQGWom/wD1wQ iT1v0ridQGXzZFa+pYqaQ7h1Ow== -----END CERTIFICATE-----Generated at Tue Jun 2 22:24:44 2026 by rpki-client