$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft File: lFlKrsbtZqaAoVv-tc2leC1MLYg.mft (raw, json) Hash identifier: WOCzt7KYBiqe08Dk1YbsI+YZPeGh2S88a+WUlyC0LeI= Subject key identifier: AF:49:CB:D6:2E:3F:1B:85:18:7A:63:45:20:F0:78:4D:B5:ED:99:2F Authority key identifier: 94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 Certificate issuer: /CN=A91E2EF9/serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft Manifest number: 0151 Signing time: Thu 21 May 2026 05:19:18 +0000 Manifest this update: Thu 21 May 2026 05:19:17 +0000 Manifest next update: Thu 28 May 2026 05:19:17 +0000 Files and hashes: 1: lFlKrsbtZqaAoVv-tc2leC1MLYg.crl (hash: /kiWfzhjV5KjaSUmwH1xoTXDh7R5/PXoVPnZEtZ6LAw=) 2: 5D3D752CDBEB11F0A1AC385A536F56BC.roa (hash: d4S5QC9WpRroo4q9uH7u+G1i3yLbKbKg652rT+oJ1eM=) 3: D926DBDA605211EF90C2C621C4F9AE02.roa (hash: jUaYUA+q8jmfLhomac7iMQOSZ4bFSAIAI1vEmJtWXwE=) 4: E7C7DBF8A0E411EF98A7340EC4F9AE02.roa (hash: kjJfld5TN3m5ZabsgjU4rPFFeonEnHjU7OWPFlkhgEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 05:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EF9, serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Validity Not Before: May 21 05:19:17 2026 GMT Not After : May 28 05:19:17 2026 GMT Subject: CN=6a0e95d6-9fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d8:e0:89:22:19:c9:a1:2d:11:19:41:93:c3: 38:5d:17:92:f8:19:bc:ee:62:19:41:25:39:b0:e8: f8:5b:fb:07:14:d3:3b:86:57:57:d5:c3:aa:7e:73: c5:e1:3d:c9:96:94:d8:c2:93:11:f7:8d:b1:d3:b7: 8c:ea:31:44:05:79:5a:81:95:3b:23:d5:bc:0a:01: fd:80:ea:32:2d:45:60:18:d8:ad:78:19:ce:4b:f7: d0:46:e0:a9:3d:c6:76:5e:b1:66:7e:9f:d4:b8:c1: a6:64:34:5e:44:a1:41:9b:79:f2:f3:e4:46:50:3c: 67:1a:a3:84:21:d9:1c:73:c7:31:27:8e:2a:61:26: a3:89:c6:94:e1:39:b9:3f:ad:50:64:52:74:e1:5d: 96:87:d7:a1:d2:56:82:74:8d:ea:93:80:3b:1e:44: 24:16:2f:af:7b:a4:d8:08:66:3c:dd:8e:54:47:c0: 43:83:b6:e6:39:de:37:18:90:14:a6:4e:86:ff:71: ba:96:9a:23:bd:11:59:ae:50:03:d6:4d:d9:fa:79: 9d:7b:4d:77:c5:48:a2:ef:80:a7:58:16:e0:f0:f4: 99:c6:db:35:34:36:58:f3:5c:75:ba:56:74:9e:f4: cf:61:b2:58:2a:cc:dc:28:4e:cc:09:6a:92:9e:05: 57:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:49:CB:D6:2E:3F:1B:85:18:7A:63:45:20:F0:78:4D:B5:ED:99:2F X509v3 Authority Key Identifier: keyid:94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:dd:3a:0d:d6:e1:d3:8f:ca:4b:59:aa:38:59:5a:95:78:c4: 81:ea:2b:81:a0:d7:57:3a:aa:df:46:b0:19:97:1f:0e:76:51: 8c:0f:49:4f:8c:d5:59:3b:eb:6d:a6:5b:ae:0d:c7:2b:30:ae: d4:7a:f1:99:70:f9:a9:50:c4:df:e0:c8:04:53:f9:b9:df:ed: ef:d9:69:4e:5f:e9:eb:1b:e7:14:8a:9a:30:24:c7:c9:4a:e7: aa:6a:4f:73:d7:be:ef:f6:fc:02:fe:80:40:fa:eb:e7:1c:ae: a6:89:da:b8:b5:0a:b9:7b:4b:e9:db:3d:06:ba:db:aa:bf:89: 8f:6b:eb:ad:f2:bd:52:18:93:e3:09:e9:c9:0b:39:d2:bf:ee: d3:5b:d2:57:3c:4e:01:00:e3:fa:90:c3:4d:5c:27:05:ad:c0: c1:d7:c3:2f:29:03:e0:dc:6c:01:63:c1:bf:e9:d3:b9:58:45: d2:20:5b:74:6d:81:59:40:52:1c:e2:dd:17:f4:f6:c2:f2:24: ab:2a:f8:7e:82:9c:11:7a:89:eb:08:d7:32:48:69:d7:29:a7: 71:1f:47:97:9b:f3:81:fb:a6:50:cc:af:0b:6e:c3:42:33:a8: 58:e5:b1:b4:f5:59:c6:82:68:2c:69:e0:da:5f:5a:84:5e:86: c0:86:11:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFRjkxMTAvBgNVBAUTKDk0NTk0QUFFQzZFRDY2QTY4MEExNUJGRUI1Q0RBNTc4 MkQ0QzJEODgwHhcNMjYwNTIxMDUxOTE3WhcNMjYwNTI4MDUxOTE3WjAYMRYwFAYD VQQDEw02YTBlOTVkNi05ZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9jgiSIZyaEtERlBk8M4XReS+Bm87mIZQSU5sOj4W/sHFNM7hldX1cOqfnPF 4T3JlpTYwpMR942x07eM6jFEBXlagZU7I9W8CgH9gOoyLUVgGNiteBnOS/fQRuCp PcZ2XrFmfp/UuMGmZDReRKFBm3ny8+RGUDxnGqOEIdkcc8cxJ44qYSajicaU4Tm5 P61QZFJ04V2Wh9eh0laCdI3qk4A7HkQkFi+ve6TYCGY83Y5UR8BDg7bmOd43GJAU pk6G/3G6lpojvRFZrlAD1k3Z+nmde013xUii74CnWBbg8PSZxts1NDZY81x1ulZ0 nvTPYbJYKszcKE7MCWqSngVX4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK9Jy9Yu PxuFGHpjRSDweE217ZkvMB8GA1UdIwQYMBaAFJRZSq7G7WamgKFb/rXNpXgtTC2I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkVGOS84MDRENkJGMDYw NTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpxYUFvVnYtdGMybGVDMU1M WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xGbEtyc2J0WnFhQW9Wdi10YzJsZUMxTUxZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkVGOS84MDRENkJGMDYwNTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpx YUFvVnYtdGMybGVDMU1MWWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAt906Ddbh04/KS1mqOFlalXjEgeorgaDXVzqq30awGZcfDnZRjA9JT4zVWTvr baZbrg3HKzCu1HrxmXD5qVDE3+DIBFP5ud/t79lpTl/p6xvnFIqaMCTHyUrnqmpP c9e+7/b8Av6AQPrr5xyuponauLUKuXtL6ds9Brrbqr+Jj2vrrfK9UhiT4wnpyQs5 0r/u01vSVzxOAQDj+pDDTVwnBa3AwdfDLykD4NxsAWPBv+nTuVhF0iBbdG2BWUBS HOLdF/T2wvIkqyr4foKcEXqJ6wjXMkhp1ymncR9Hl5vzgfumUMyvC27DQjOoWOWx tPVZxoJoLGng2l9ahF6GwIYRlw== -----END CERTIFICATE-----Generated at Thu May 21 14:13:31 2026 by rpki-client