$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft File: LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft (raw, json) Hash identifier: afrvGThLGD0ppkT9w1QO9pp0qqAx1f61JoBvmfuc2ok= Subject key identifier: 6D:FD:F5:BE:8F:7B:08:C3:D5:70:A8:F5:E0:37:B2:3F:C9:9A:A8:BD Authority key identifier: 2E:16:4D:B4:5B:84:6B:BA:E6:8C:27:7D:43:F8:82:F6:40:92:28:1E Certificate issuer: /CN=A91A9467/serialNumber=2E164DB45B846BBAE68C277D43F882F64092281E Certificate serial: 19AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft Manifest number: 1996 Signing time: Fri 12 Jun 2026 16:22:13 +0000 Manifest this update: Fri 12 Jun 2026 16:22:13 +0000 Manifest next update: Fri 19 Jun 2026 16:22:13 +0000 Files and hashes: 1: LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl (hash: 8sU3N6PY71qChLpZj4E2m+b9vEFK+vznvZyA6+T5UiM=) 2: 0EDA10A4A9A011EE96DCBB4FC4F9AE02.roa (hash: DzKmtYCdBRynloESEDJ88OdtBxNoXDc9M+RZzPAZ8/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 16:22:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6573 (0x19ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9467, serialNumber=2E164DB45B846BBAE68C277D43F882F64092281E Validity Not Before: Jun 12 16:22:13 2026 GMT Not After : Jun 19 16:22:13 2026 GMT Subject: CN=6a2c3235-2327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:1a:24:2e:ea:33:13:3e:ec:2f:5f:5a:00:8d: c4:cc:c3:13:bd:96:ac:6c:dd:5d:96:7d:f2:e0:d2: 73:ee:0d:9a:74:1b:f4:ac:b5:4c:d2:30:0a:20:36: b9:67:22:e4:32:e0:29:9e:5e:e4:b3:4b:c9:9f:4a: f1:24:85:7a:4f:9b:a1:ae:4c:22:e2:74:53:6c:5c: 8b:c7:8e:6e:de:1e:67:1e:d6:dd:1b:54:39:39:ad: d5:09:4f:79:4c:00:d6:17:3c:f4:ff:27:47:b7:9f: 49:6b:39:85:b1:2c:30:1c:48:07:fb:04:ae:c7:71: 7a:c6:cb:0a:76:fb:be:c3:13:d9:a1:5c:a0:ac:b0: 61:6c:26:6c:2a:80:f0:2a:25:1b:23:04:42:d8:82: 4b:d4:ef:ea:95:fc:06:39:6c:00:d1:44:fd:c7:b4: b8:0c:73:40:08:39:67:f8:5e:72:5c:8e:79:f5:75: d3:c9:fa:e5:3a:e1:7f:17:51:37:94:be:cf:69:a4: 95:3b:75:86:8f:84:ff:d7:6e:1f:d7:22:97:aa:90: 05:86:18:47:d5:a9:c8:c7:36:4f:60:13:b6:e4:4d: 8e:21:68:0b:34:31:a9:b4:18:17:fc:df:f7:47:2b: 78:46:1f:c4:26:2c:bf:07:9b:80:89:f0:30:80:bf: 69:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:FD:F5:BE:8F:7B:08:C3:D5:70:A8:F5:E0:37:B2:3F:C9:9A:A8:BD X509v3 Authority Key Identifier: keyid:2E:16:4D:B4:5B:84:6B:BA:E6:8C:27:7D:43:F8:82:F6:40:92:28:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:40:09:3a:ab:5b:00:f8:fa:45:d3:ea:6a:89:9f:7a:8d:fe: 61:19:f4:22:c5:18:e7:c9:f3:57:79:a8:de:cc:ce:16:a9:6f: 0e:43:4f:05:4a:98:12:35:77:6c:6a:71:c0:08:d4:6c:e7:4b: ea:54:e7:d2:38:76:c0:0c:e1:cf:01:89:a2:e9:67:dc:d3:7b: 5f:44:43:9b:5e:5c:82:f9:ee:fc:84:79:48:8b:6b:8d:66:77: db:6e:c7:68:35:e4:a1:89:5d:52:b2:3a:4a:5b:56:4e:bc:43: aa:4a:04:20:ea:3a:48:f5:13:a0:89:a7:8c:45:86:ca:01:42: 8f:12:ae:db:b8:a2:93:86:9c:f6:64:eb:a1:46:55:b6:92:26: ee:0e:99:49:f1:2a:c7:0d:68:92:55:94:e7:13:bf:9e:89:08: 9b:53:25:e3:02:dd:fc:d8:0e:3b:32:e6:c7:45:e7:ee:70:5e: ae:9d:10:c2:5f:53:a7:4f:42:90:95:5c:97:82:38:84:fe:84: 49:aa:72:b4:8d:4f:8b:03:fc:e2:4d:58:81:4c:6e:e7:cb:8d: de:1f:2d:b2:5a:3d:e2:9d:31:ac:23:74:d8:c0:e0:e8:c1:62: f8:3d:ff:87:1b:df:8c:ac:a6:58:84:93:0a:67:72:bc:db:56: b5:e8:d4:05 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk0NjcxMTAvBgNVBAUTKDJFMTY0REI0NUI4NDZCQkFFNjhDMjc3RDQzRjg4MkY2 NDA5MjI4MUUwHhcNMjYwNjEyMTYyMjEzWhcNMjYwNjE5MTYyMjEzWjAYMRYwFAYD VQQDEw02YTJjMzIzNS0yMzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmBokLuozEz7sL19aAI3EzMMTvZasbN1dln3y4NJz7g2adBv0rLVM0jAKIDa5 ZyLkMuApnl7ks0vJn0rxJIV6T5uhrkwi4nRTbFyLx45u3h5nHtbdG1Q5Oa3VCU95 TADWFzz0/ydHt59JazmFsSwwHEgH+wSux3F6xssKdvu+wxPZoVygrLBhbCZsKoDw KiUbIwRC2IJL1O/qlfwGOWwA0UT9x7S4DHNACDln+F5yXI559XXTyfrlOuF/F1E3 lL7PaaSVO3WGj4T/124f1yKXqpAFhhhH1anIxzZPYBO25E2OIWgLNDGptBgX/N/3 Ryt4Rh/EJiy/B5uAifAwgL9pUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG399b6P ewjD1XCo9eA3sj/Jmqi9MB8GA1UdIwQYMBaAFC4WTbRbhGu65ownfUP4gvZAkige MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTQ2Ny85MTVDMDdFNjkx RUExMUU3OUQwRDBBMkJDNEY5QUUwMi9MaFpOdEZ1RWE3cm1qQ2Q5UV9pQzlrQ1NL QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xoWk50RnVFYTdybWpDZDlRX2lDOWtDU0tCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTQ2Ny85MTVDMDdFNjkxRUExMUU3OUQwRDBBMkJDNEY5QUUwMi9MaFpOdEZ1RWE3 cm1qQ2Q5UV9pQzlrQ1NLQjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhEAJOqtbAPj6RdPqaomfeo3+YRn0IsUY58nzV3mo3szOFqlvDkNPBUqYEjV3 bGpxwAjUbOdL6lTn0jh2wAzhzwGJouln3NN7X0RDm15cgvnu/IR5SItrjWZ3227H aDXkoYldUrI6SltWTrxDqkoEIOo6SPUToImnjEWGygFCjxKu27iik4ac9mTroUZV tpIm7g6ZSfEqxw1oklWU5xO/nokIm1Ml4wLd/NgOOzLmx0Xn7nBerp0Qwl9Tp09C kJVcl4I4hP6ESapytI1PiwP84k1YgUxu58uN3h8tslo94p0xrCN02MDg6MFi+D3/ hxvfjKymWISTCmdyvNtWtejUBQ== -----END CERTIFICATE-----Generated at Sat Jun 13 11:18:21 2026 by rpki-client