$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: fowFed101RR/Ig1CgK8zZzHvRF2rAFwalb/vseES3cs= Subject key identifier: CE:9F:28:B5:20:5D:D9:A7:43:83:65:E2:8E:AE:83:B6:A2:BF:2C:6B Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0EF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0EED Signing time: Wed 20 May 2026 17:38:56 +0000 Manifest this update: Wed 20 May 2026 17:38:56 +0000 Manifest next update: Wed 27 May 2026 17:38:56 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: 4edKMxXuWjNt+pUzoM0YlkFMoBdEwNwWziFb5ACVbOc=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: 8GXHkMu5QhzxhDcgK/hTob055OzXskK4SzGbgPUovhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:38:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3831 (0xef7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: May 20 17:38:56 2026 GMT Not After : May 27 17:38:56 2026 GMT Subject: CN=6a0df1b0-cafa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e1:89:b9:76:6e:54:75:0f:53:b0:4a:09:fe: d0:9a:53:d8:88:3d:da:33:7d:10:5f:e9:45:44:a1: 0f:36:2c:17:e4:96:78:d8:bb:b8:04:98:29:07:cd: 90:e3:2f:66:38:98:3f:df:f6:98:8b:21:9b:72:2f: 6e:45:74:5a:8f:86:02:74:38:00:4f:2b:b6:a8:00: 1a:98:0f:da:cf:84:79:4c:3f:01:c3:62:e5:17:8f: 37:af:d8:d5:b7:e2:89:2d:21:93:36:16:b2:65:55: f7:67:64:26:5f:8f:de:e7:ce:71:f8:9e:2d:a0:a3: ed:07:33:9e:ed:f3:ed:c8:ae:a0:cf:06:91:0d:e4: 8e:86:2c:9e:f0:ef:bf:15:ca:ba:91:a7:9a:0b:1c: 87:bd:ab:40:e7:da:2e:1b:92:76:d9:61:af:6d:e7: 2b:93:52:9a:06:3d:d7:6c:2d:57:7e:c1:b2:42:c8: 53:e4:63:34:e1:0c:f4:b4:50:d1:64:1d:fc:58:98: 0b:6a:5d:63:fe:63:b1:08:c6:94:a2:05:72:8c:4f: 6d:0e:17:14:fc:2c:f3:05:03:8f:46:dc:1c:40:fd: f4:25:13:f4:22:39:a5:a2:41:58:aa:dd:9a:b6:8c: ac:46:1c:2a:e8:be:51:90:0a:9b:41:10:aa:d8:6b: 49:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:9F:28:B5:20:5D:D9:A7:43:83:65:E2:8E:AE:83:B6:A2:BF:2C:6B X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:76:92:cb:cc:93:f7:d7:a4:09:da:5d:1f:20:20:bc:b5:62: 8d:12:80:fc:dd:58:e7:a6:fc:3d:07:50:56:ef:97:f1:7b:93: 22:14:2a:34:5a:6c:72:75:b5:c1:09:d5:68:62:8e:33:49:29: f6:b7:c9:63:6b:fb:d2:88:16:00:e9:2f:90:81:d6:2d:47:94: 4a:05:ea:4c:35:e3:2b:b1:c6:fe:12:eb:29:5d:15:a6:b1:91: a8:f4:f1:a6:cb:76:75:c2:3a:a9:9c:e1:c7:5e:fe:0d:2c:c1: a9:50:2c:92:83:2b:d4:5d:8e:c0:73:15:a7:06:b8:cf:54:dc: e9:d2:f4:dd:7f:da:32:c8:7c:61:b8:be:4a:6a:82:eb:7c:c7: 1f:0c:c1:d8:6e:0c:70:f2:ad:21:68:4a:33:d2:a6:28:47:26: e5:5c:25:6f:e3:aa:ee:cd:05:f6:19:db:4a:09:6d:6b:10:01: 87:51:07:af:b1:e2:d5:39:2d:0c:02:c1:d2:5b:d6:dd:9d:d4: 0a:69:5a:88:c2:c3:01:92:99:4f:99:6b:a5:92:bd:d8:34:57: 16:4c:3c:40:41:a3:c2:c0:a2:97:c6:2a:81:bf:be:f1:2e:b1: 28:9e:d1:5c:16:e0:83:7a:de:b3:cc:bb:52:46:75:c6:0a:dc: 45:fe:bf:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjYwNTIwMTczODU2WhcNMjYwNTI3MTczODU2WjAYMRYwFAYD VQQDEw02YTBkZjFiMC1jYWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+GJuXZuVHUPU7BKCf7QmlPYiD3aM30QX+lFRKEPNiwX5JZ42Lu4BJgpB82Q 4y9mOJg/3/aYiyGbci9uRXRaj4YCdDgATyu2qAAamA/az4R5TD8Bw2LlF483r9jV t+KJLSGTNhayZVX3Z2QmX4/e585x+J4toKPtBzOe7fPtyK6gzwaRDeSOhiye8O+/ Fcq6kaeaCxyHvatA59ouG5J22WGvbecrk1KaBj3XbC1XfsGyQshT5GM04Qz0tFDR ZB38WJgLal1j/mOxCMaUogVyjE9tDhcU/CzzBQOPRtwcQP30JRP0IjmlokFYqt2a toysRhwq6L5RkAqbQRCq2GtJWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM6fKLUg XdmnQ4Nl4o6ug7aivyxrMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAInaSy8yT99ekCdpdHyAgvLVijRKA/N1Y56b8PQdQVu+X8XuTIhQqNFpscnW1 wQnVaGKOM0kp9rfJY2v70ogWAOkvkIHWLUeUSgXqTDXjK7HG/hLrKV0VprGRqPTx pst2dcI6qZzhx17+DSzBqVAskoMr1F2OwHMVpwa4z1Tc6dL03X/aMsh8Ybi+SmqC 63zHHwzB2G4McPKtIWhKM9KmKEcm5Vwlb+Oq7s0F9hnbSgltaxABh1EHr7Hi1Tkt DALB0lvW3Z3UCmlaiMLDAZKZT5lrpZK92DRXFkw8QEGjwsCil8Yqgb++8S6xKJ7R XBbgg3res8y7UkZ1xgrcRf6/xg== -----END CERTIFICATE-----Generated at Thu May 21 09:30:24 2026 by rpki-client