$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: zJeQIZYCh4BWGU6qd1eF4QJj2HKV6QxHc7doMRhpZSs= Subject key identifier: 8D:2B:88:0B:90:DD:95:5F:B1:B0:C6:99:B6:55:2C:A8:AF:C4:D6:EE Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 04AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 049D Signing time: Sat 13 Jun 2026 00:01:45 +0000 Manifest this update: Sat 13 Jun 2026 00:01:44 +0000 Manifest next update: Sat 20 Jun 2026 00:01:44 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: TTKVrwqMwRfxL7zAGSWgzS82z7CSPlvOlx8g39nvWNw=) 2: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: 1pV5x+wzFKlIURLdK4W0ATECc1pPeoL8XQh/coLs8yw=) 3: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: 89nb39WeO+2Ub6Nf3O9bYYBJxsIA87zSaSarp1B+j1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1194 (0x4aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Jun 13 00:01:44 2026 GMT Not After : Jun 20 00:01:44 2026 GMT Subject: CN=6a2c9de8-950a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4d:70:bd:7e:65:75:50:71:dc:f2:13:3a:c3: 5e:c5:46:e9:cf:de:43:1e:9a:78:7b:90:5f:01:03: a8:a1:47:20:8f:a9:3a:12:70:1a:9c:62:ff:4c:00: ae:73:a8:69:80:0c:dd:d8:c8:3e:7a:c4:1b:be:fc: 14:a4:3b:e0:99:ca:60:8e:8d:0c:63:80:75:12:c0: 00:9d:d1:68:63:3a:4f:1b:da:82:53:42:17:0e:56: 57:62:27:8b:7f:03:a8:a8:12:a5:34:f3:dd:71:04: 38:78:cd:cc:c0:dd:7b:3d:b7:70:52:fd:96:14:3e: b3:15:fb:30:46:f4:3b:9b:5f:60:dc:04:bd:f3:1a: fb:20:b9:8f:39:05:ba:f1:ca:46:12:e3:f4:10:de: 9c:34:68:bc:95:03:16:ce:26:d3:33:36:34:bb:10: 97:db:7b:33:7c:02:fb:75:3c:a3:f2:23:16:5c:ec: ca:d5:51:5c:97:b1:46:15:41:cc:e3:81:ec:5e:d9: 1a:bb:c9:03:fb:9a:81:6c:dd:fe:8d:f1:f7:91:bc: 86:34:9c:da:af:d2:e6:03:26:15:3a:9f:fa:d2:22: 16:d8:e9:bb:01:b4:4e:15:67:23:71:be:9a:3d:a9: a4:e8:ea:78:fd:35:78:ff:49:1b:5c:a7:b3:7a:e9: a2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:2B:88:0B:90:DD:95:5F:B1:B0:C6:99:B6:55:2C:A8:AF:C4:D6:EE X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:99:88:d9:33:65:e0:59:c6:ee:b0:d4:7c:d1:a4:11:cf:c5: 15:09:21:f8:f9:09:fe:96:a3:46:0e:11:96:0c:c4:48:7d:77: 99:9e:a5:eb:8c:31:a2:a3:30:87:58:7e:8e:72:54:c6:db:0b: ac:fc:dc:8d:ae:45:58:31:8b:4d:9e:40:76:d3:a6:bd:f2:0e: b2:81:14:1c:3b:10:db:37:44:b4:8d:96:58:39:cd:0d:c6:fe: bf:5e:3e:85:3d:f1:66:3d:ae:ab:5d:c5:86:69:f8:8a:70:b9: 43:e8:48:97:44:a9:03:c1:65:14:bf:7d:9d:e2:b4:35:a0:8b: c3:92:bf:9a:db:a0:78:00:c6:7e:5f:d7:41:23:ff:a9:56:0d: a4:a3:0a:2c:ba:7f:a5:78:1a:3d:91:f9:31:b7:04:a5:63:39: 63:38:fb:3b:18:06:fe:d5:e7:86:cf:e3:ea:08:b0:d0:0f:4c: 35:66:50:f7:b0:3f:04:b0:e0:35:db:17:a3:8a:99:68:12:1e: 5a:94:08:ae:67:19:cd:6a:27:82:7c:7f:d7:c2:bd:e3:47:83: ad:e2:86:d7:9f:71:8e:8a:5a:aa:e4:bc:a2:9a:92:fb:c3:07: ef:b8:04:db:ed:05:b3:3b:73:2d:09:98:f6:31:2f:14:db:0d: 64:45:a6:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjYwNjEzMDAwMTQ0WhcNMjYwNjIwMDAwMTQ0WjAYMRYwFAYD VQQDEw02YTJjOWRlOC05NTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr01wvX5ldVBx3PITOsNexUbpz95DHpp4e5BfAQOooUcgj6k6EnAanGL/TACu c6hpgAzd2Mg+esQbvvwUpDvgmcpgjo0MY4B1EsAAndFoYzpPG9qCU0IXDlZXYieL fwOoqBKlNPPdcQQ4eM3MwN17PbdwUv2WFD6zFfswRvQ7m19g3AS98xr7ILmPOQW6 8cpGEuP0EN6cNGi8lQMWzibTMzY0uxCX23szfAL7dTyj8iMWXOzK1VFcl7FGFUHM 44HsXtkau8kD+5qBbN3+jfH3kbyGNJzar9LmAyYVOp/60iIW2Om7AbROFWcjcb6a Pamk6Op4/TV4/0kbXKezeumiXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI0riAuQ 3ZVfsbDGmbZVLKivxNbuMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPZmI2TNl4FnG7rDUfNGkEc/FFQkh+PkJ/pajRg4RlgzESH13mZ6l64wxoqMw h1h+jnJUxtsLrPzcja5FWDGLTZ5AdtOmvfIOsoEUHDsQ2zdEtI2WWDnNDcb+v14+ hT3xZj2uq13Fhmn4inC5Q+hIl0SpA8FlFL99neK0NaCLw5K/mtugeADGfl/XQSP/ qVYNpKMKLLp/pXgaPZH5MbcEpWM5Yzj7OxgG/tXnhs/j6giw0A9MNWZQ97A/BLDg NdsXo4qZaBIeWpQIrmcZzWongnx/18K940eDreKG159xjopaquS8opqS+8MH77gE 2+0FsztzLQmY9jEvFNsNZEWm8Q== -----END CERTIFICATE-----Generated at Sat Jun 13 09:48:32 2026 by rpki-client