$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: hzlFQ6JnIIMEDWJqigNRc6TaEfvO36UmqcO5YXD1CDQ= Subject key identifier: 7F:3B:AB:29:AA:BC:F0:73:B1:5F:3F:09:DF:25:E2:A9:46:A0:3B:0A Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 0294 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 0433 Signing time: Sat 13 Jun 2026 01:47:57 +0000 Manifest this update: Sat 13 Jun 2026 01:47:57 +0000 Manifest next update: Sat 20 Jun 2026 01:47:57 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: pR82Ep65Exlnb80oLtP/nMa+AW7otg0HJCPlSyTngGc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 01:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: Jun 13 01:47:57 2026 GMT Not After : Jun 20 01:47:57 2026 GMT Subject: CN=6a2cb6cd-157c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9f:01:24:8c:a5:d4:8a:c4:79:29:fd:7e:b5: 5c:0d:39:79:cf:44:88:2d:ae:44:79:51:9a:2f:aa: 19:89:4e:b4:54:ca:4b:58:d9:13:ba:d1:69:5d:f8: 52:61:f2:60:4d:63:7b:fa:d9:93:3a:92:e6:11:58: 74:d1:c2:13:53:fb:a1:60:e1:c1:6d:22:c5:6d:0e: dc:2d:b1:47:bd:97:37:f3:e0:61:58:77:43:22:c1: bd:ef:34:b3:19:93:6b:37:c4:b3:6d:cb:92:ec:aa: d6:8d:01:aa:93:cc:2a:08:57:ae:fe:53:8b:b6:78: f9:ae:5d:0e:e6:f7:36:00:48:70:78:ac:55:d8:43: ae:2f:db:d2:55:78:48:38:d9:bd:64:85:ce:58:99: 5d:50:48:5a:a4:4d:97:5f:01:54:16:14:d6:88:92: 25:b3:0c:02:76:9c:9e:fb:ba:44:80:cb:c2:9a:cb: d1:3e:f3:f6:a0:f0:26:2d:0a:85:cb:db:63:14:9e: 22:e4:f5:9f:c7:eb:a1:80:b0:e2:b6:00:c2:9f:09: 56:18:68:65:31:a7:58:2a:5a:17:ff:4b:ae:f7:bd: 5d:7e:65:80:38:74:cf:b5:75:3d:b5:b5:b2:45:35: 32:ce:16:ea:bc:70:95:8a:c4:1a:a4:ee:02:11:9a: a3:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:3B:AB:29:AA:BC:F0:73:B1:5F:3F:09:DF:25:E2:A9:46:A0:3B:0A X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:8e:25:fc:85:0c:38:ac:f5:04:e6:ea:e5:66:05:c9:a2:98: 46:a4:b6:04:84:5e:2e:fb:13:94:88:3b:79:c6:f4:4f:f0:51: 05:ca:95:53:70:82:ba:a6:ae:7d:c0:b2:b6:b2:f3:8a:af:56: 20:6a:07:2f:44:41:43:8d:d4:05:78:d4:c5:bd:b7:a8:b2:5c: 2d:ff:c1:c5:21:f3:4c:21:ae:54:2d:68:69:a9:ce:56:7b:99: fa:dd:ec:fc:4e:2c:1b:10:50:76:cb:9b:de:e5:01:fe:ba:97: 00:91:09:44:a8:76:9e:19:62:ab:2c:6d:c5:9d:0a:44:93:56: c0:68:7d:fe:36:dc:f8:fa:5f:ef:65:3c:51:db:0a:87:6c:2d: b9:1a:15:c9:38:9a:a1:97:c2:a9:33:6b:91:ee:eb:6c:35:0f: 1f:5c:9b:00:64:98:49:7f:ba:d3:5f:ec:b5:29:48:f2:5f:26: a1:e3:2d:14:4e:64:16:b4:d7:bd:88:62:78:f7:85:aa:06:f8: 28:e0:43:69:27:18:43:f6:a2:2f:83:29:5b:89:09:1a:39:85: 88:c7:02:0b:b4:f1:8d:e1:d8:cb:9c:66:8d:aa:4c:09:12:63: bf:f2:57:05:98:67:12:72:c4:ef:d2:6e:63:db:e8:89:e6:16: 9e:78:1c:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjYwNjEzMDE0NzU3WhcNMjYwNjIwMDE0NzU3WjAYMRYwFAYD VQQDEw02YTJjYjZjZC0xNTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZ8BJIyl1IrEeSn9frVcDTl5z0SILa5EeVGaL6oZiU60VMpLWNkTutFpXfhS YfJgTWN7+tmTOpLmEVh00cITU/uhYOHBbSLFbQ7cLbFHvZc38+BhWHdDIsG97zSz GZNrN8SzbcuS7KrWjQGqk8wqCFeu/lOLtnj5rl0O5vc2AEhweKxV2EOuL9vSVXhI ONm9ZIXOWJldUEhapE2XXwFUFhTWiJIlswwCdpye+7pEgMvCmsvRPvP2oPAmLQqF y9tjFJ4i5PWfx+uhgLDitgDCnwlWGGhlMadYKloX/0uu971dfmWAOHTPtXU9tbWy RTUyzhbqvHCVisQapO4CEZqjNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH87qymq vPBzsV8/Cd8l4qlGoDsKMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASo4l/IUMOKz1BObq5WYFyaKYRqS2BIReLvsTlIg7ecb0T/BRBcqVU3CCuqau fcCytrLziq9WIGoHL0RBQ43UBXjUxb23qLJcLf/BxSHzTCGuVC1oaanOVnuZ+t3s /E4sGxBQdsub3uUB/rqXAJEJRKh2nhliqyxtxZ0KRJNWwGh9/jbc+Ppf72U8UdsK h2wtuRoVyTiaoZfCqTNrke7rbDUPH1ybAGSYSX+601/stSlI8l8moeMtFE5kFrTX vYhiePeFqgb4KOBDaScYQ/aiL4MpW4kJGjmFiMcCC7TxjeHYy5xmjapMCRJjv/JX BZhnEnLE79JuY9voieYWnngckw== -----END CERTIFICATE-----Generated at Sat Jun 13 17:45:05 2026 by rpki-client