$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft File: lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json) Hash identifier: M/M4jILozKWbay+b1Z2D6IY2Bm2c12l/VEFIwE3gvuM= Subject key identifier: 81:D5:89:75:75:D4:64:47:E8:3B:F3:23:7D:DE:F9:5A:FC:52:EA:4A Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD Certificate issuer: /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft Manifest number: 0153 Signing time: Mon 01 Jun 2026 05:59:50 +0000 Manifest this update: Mon 01 Jun 2026 05:59:49 +0000 Manifest next update: Mon 08 Jun 2026 05:59:49 +0000 Files and hashes: 1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: r49VF62zixu/TiUylUT3B3KsRL4ZVusNuP/BslJn7+E=) 2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: /fpFKtFcwh7KjBndTGfGIO4WW4Bx9KlPmCwqANIq6FA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 05:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D44BE, serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Validity Not Before: Jun 1 05:59:49 2026 GMT Not After : Jun 8 05:59:49 2026 GMT Subject: CN=6a1d1fd5-626e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f0:9b:9c:c4:8a:7c:c7:94:31:c8:41:51:fd: 8e:d4:6b:84:20:76:9f:22:11:09:bf:be:3d:bf:a1: 49:d7:7b:09:aa:3b:05:03:f8:f5:8d:20:fb:fa:6c: e3:66:49:90:0b:5f:9d:f3:f6:aa:35:ff:c1:83:85: 58:b3:51:2f:61:c8:d2:77:41:0c:fc:f5:d7:2c:74: 0a:56:98:83:f8:bd:84:c1:ab:e1:82:3e:e4:eb:f8: a9:40:07:00:94:b1:77:23:6f:d4:bf:a6:82:1a:1a: b5:51:c6:b1:63:32:a8:b1:8b:6f:b3:bd:5b:cc:b7: 4d:12:9c:c2:70:f9:9c:fa:f3:00:9c:d9:e9:bf:f6: 8a:29:ad:26:ed:b0:b5:9b:32:36:28:8e:b0:cb:27: 52:28:57:f0:de:09:83:ff:64:a7:4e:0d:db:a7:96: 99:0c:48:40:14:06:c7:33:08:69:58:ea:e1:60:84: eb:41:89:61:b6:63:d7:0c:df:aa:c2:b9:20:0e:86: cc:d5:bd:08:0c:ae:49:fa:b9:c6:2f:16:d9:c3:10: df:20:c4:d8:72:44:c2:6d:c0:92:4d:8e:dc:9b:b5: cf:65:7c:2d:6c:c8:62:81:79:3e:bb:ca:51:fa:16: f8:02:a3:e3:8f:e6:f1:6d:b7:cb:2f:f1:b7:9d:3a: 94:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:D5:89:75:75:D4:64:47:E8:3B:F3:23:7D:DE:F9:5A:FC:52:EA:4A X509v3 Authority Key Identifier: keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:07:ca:e5:6f:95:06:a3:15:9a:7f:06:e2:4b:39:3b:0d:8c: 09:33:16:5f:fb:ba:4b:75:ad:e0:9d:9d:83:80:c7:2c:77:02: 82:5f:6c:61:71:06:ba:92:68:eb:8f:43:ed:25:50:ab:d0:05: f9:7c:df:66:3f:f5:a0:2a:51:32:da:70:f5:67:2e:e0:b9:6f: f4:60:9d:fe:c1:23:cc:e6:81:6d:16:c4:b4:18:e4:d7:bf:2a: 8b:30:99:70:20:eb:ea:d8:7a:0f:c8:00:3d:1e:0d:68:f3:da: 8b:0c:e1:e3:aa:51:8f:2d:2f:33:e6:83:0e:b2:3e:86:42:ea: fe:99:84:c7:bb:98:ae:b2:5a:b7:96:41:ae:6f:08:93:71:b0: 53:30:10:51:33:86:d3:76:68:e2:89:8f:6c:31:af:26:6a:89: 96:bf:05:30:c1:b7:de:8e:66:e9:78:29:49:75:e7:80:49:4f: 80:6a:6e:64:16:1c:24:b3:21:88:fc:1e:33:06:82:e0:bf:a3: 60:d8:82:9c:21:85:9b:ea:d8:42:8d:8a:32:73:67:88:2b:0d: 6a:42:0a:72:b2:12:be:db:ee:7c:70:a3:76:cc:3d:98:3a:0d: 99:6e:67:b0:a3:d1:40:9a:59:9a:c2:f5:05:5a:df:70:4b:e1: 58:e6:0e:30 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0QkUxMTAvBgNVBAUTKDk1RjA5RDVFNUI4QkNENkY0QjRENjlCNUM5MzZDOTEy Rjc3RDJDRkQwHhcNMjYwNjAxMDU1OTQ5WhcNMjYwNjA4MDU1OTQ5WjAYMRYwFAYD VQQDEw02YTFkMWZkNS02MjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/CbnMSKfMeUMchBUf2O1GuEIHafIhEJv749v6FJ13sJqjsFA/j1jSD7+mzj ZkmQC1+d8/aqNf/Bg4VYs1EvYcjSd0EM/PXXLHQKVpiD+L2Ewavhgj7k6/ipQAcA lLF3I2/Uv6aCGhq1UcaxYzKosYtvs71bzLdNEpzCcPmc+vMAnNnpv/aKKa0m7bC1 mzI2KI6wyydSKFfw3gmD/2SnTg3bp5aZDEhAFAbHMwhpWOrhYITrQYlhtmPXDN+q wrkgDobM1b0IDK5J+rnGLxbZwxDfIMTYckTCbcCSTY7cm7XPZXwtbMhigXk+u8pR +hb4AqPjj+bxbbfLL/G3nTqUrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIHViXV1 1GRH6DvzI33e+Vr8UupKMB8GA1UdIwQYMBaAFJXwnV5bi81vS01ptck2yRL3fSz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDRCRS8wMjhBQkU0MjY5 MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpXOUxUV20xeVRiSkV2ZDlM UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmQ2RYbHVMelc5TFRXbTF5VGJKRXZkOUxQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDRCRS8wMjhBQkU0MjY5MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpX OUxUV20xeVRiSkV2ZDlMUDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOQfK5W+VBqMVmn8G4ks5Ow2MCTMWX/u6S3Wt4J2dg4DHLHcCgl9sYXEGupJo 649D7SVQq9AF+XzfZj/1oCpRMtpw9Wcu4Llv9GCd/sEjzOaBbRbEtBjk178qizCZ cCDr6th6D8gAPR4NaPPaiwzh46pRjy0vM+aDDrI+hkLq/pmEx7uYrrJat5ZBrm8I k3GwUzAQUTOG03Zo4omPbDGvJmqJlr8FMMG33o5m6XgpSXXngElPgGpuZBYcJLMh iPweMwaC4L+jYNiCnCGFm+rYQo2KMnNniCsNakIKcrISvtvufHCjdsw9mDoNmW5n sKPRQJpZmsL1BVrfcEvhWOYOMA== -----END CERTIFICATE-----Generated at Tue Jun 2 21:19:31 2026 by rpki-client