$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: 7BIMDwpe+XoAXDaa8Whn6QDr6dJeGd4VaY8XgEVVU6M= Subject key identifier: 0E:CD:84:BA:E8:E6:CA:13:BB:53:A3:75:34:87:71:B2:4D:F9:35:51 Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 3559 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 3543 Signing time: Thu 16 Apr 2026 14:46:07 +0000 Manifest this update: Thu 16 Apr 2026 14:46:06 +0000 Manifest next update: Thu 23 Apr 2026 14:46:06 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: 6eSSZQXEfI3VlU6+UlPOzcn90iHxyODed/BSm6RhRhk=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: wpF9ptajaxcFCU5XYXYL7kAycTSdDrhOWM0Rnpw1Xnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13657 (0x3559) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581, serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: Apr 16 14:46:06 2026 GMT Not After : Apr 23 14:46:06 2026 GMT Subject: CN=69e0f62f-2a25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1a:50:3d:ae:fb:ce:a7:fa:b5:1c:3f:e3:bd: 8e:d1:94:51:2e:01:a2:d1:09:4a:fb:f9:d5:f7:f1: 11:11:2f:7e:97:5e:a2:ea:fe:c9:4f:07:8c:da:74: b4:89:3b:c0:1f:11:c9:ec:df:b4:91:5b:ec:fb:ca: ac:22:34:63:31:4f:a5:8e:4b:b0:2d:ab:f1:e1:fa: 1d:e8:f1:c3:2f:da:2b:06:3d:f8:22:e9:de:8d:eb: 49:e4:67:54:3d:b9:17:73:82:e2:51:a0:e0:19:de: b6:88:99:12:c1:f3:4b:1e:0f:7d:46:a8:bd:b0:61: 5c:cd:13:bd:fc:f3:93:03:7d:38:2d:3a:34:cf:5d: 07:53:68:96:54:81:ae:b7:a0:a0:78:06:fe:39:23: 4f:4a:b3:3b:02:12:32:ac:d4:67:d5:52:7a:34:b8: 62:cb:65:8e:87:49:30:e1:e1:b1:88:be:e8:d6:50: 36:47:26:ad:7a:05:23:3e:0c:22:07:fa:19:ed:52: 94:dc:f2:4d:2b:df:31:e3:6f:70:7f:ab:34:b0:02: 84:8f:b8:c7:00:7b:f2:5f:df:56:5e:b5:85:a7:26: 9d:a3:38:c3:19:25:e2:d9:67:c3:a2:cb:8a:ae:18: d1:f5:07:ca:1b:63:b9:aa:d5:a1:bd:d8:43:73:83: 74:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:CD:84:BA:E8:E6:CA:13:BB:53:A3:75:34:87:71:B2:4D:F9:35:51 X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:b1:a2:44:bd:8e:a1:85:0c:2c:6f:20:e6:11:08:53:76:70: a7:c0:df:08:c1:90:ce:a4:f8:15:51:22:7c:7f:65:2e:9d:22: e0:14:f9:3b:0c:ab:e7:e9:3d:66:a7:8e:b6:1b:6e:44:e5:e8: 6a:cf:1f:34:4e:47:a9:26:bc:d8:b0:ad:23:0a:2d:21:83:0b: 7f:89:b4:3b:30:5f:f7:91:5b:e6:45:f8:7a:b0:33:6f:da:2c: f1:5b:ab:e5:93:94:18:95:08:e3:67:11:86:17:ec:ef:c9:95: 2b:99:d5:17:33:c9:71:c3:49:0c:dd:9f:2c:24:60:9a:90:97: ec:7c:96:df:64:0c:47:32:cb:f5:06:b8:09:25:c2:04:27:2c: 20:9e:e6:71:6f:3e:73:d6:d5:67:6e:26:4e:07:53:85:4f:e6: 49:e7:f7:25:67:dc:1e:5a:24:e6:e4:b2:ab:12:98:d7:71:fe: c1:c1:c5:1e:c6:bb:b8:44:d8:ac:90:a6:94:f0:23:46:8d:02: a4:5f:54:56:c3:1c:3f:48:84:fe:d5:11:b7:39:a1:65:e1:9f: 14:e8:22:5d:d1:87:d0:bb:42:cd:8f:51:83:0c:2b:f6:3a:12: 14:c7:54:f1:0a:3f:a0:61:fe:c9:e2:23:07:ed:9b:f9:15:c1: 17:4d:d6:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjYwNDE2MTQ0NjA2WhcNMjYwNDIzMTQ0NjA2WjAYMRYwFAYD VQQDEw02OWUwZjYyZi0yYTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApBpQPa77zqf6tRw/472O0ZRRLgGi0QlK+/nV9/ERES9+l16i6v7JTweM2nS0 iTvAHxHJ7N+0kVvs+8qsIjRjMU+ljkuwLavx4fod6PHDL9orBj34IunejetJ5GdU PbkXc4LiUaDgGd62iJkSwfNLHg99Rqi9sGFczRO9/POTA304LTo0z10HU2iWVIGu t6CgeAb+OSNPSrM7AhIyrNRn1VJ6NLhiy2WOh0kw4eGxiL7o1lA2RyategUjPgwi B/oZ7VKU3PJNK98x429wf6s0sAKEj7jHAHvyX99WXrWFpyadozjDGSXi2WfDosuK rhjR9QfKG2O5qtWhvdhDc4N0BwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA7NhLro 5soTu1OjdTSHcbJN+TVRMB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARbGiRL2OoYUMLG8g5hEIU3Zwp8DfCMGQzqT4FVEifH9lLp0i4BT5Owyr5+k9 ZqeOthtuROXoas8fNE5HqSa82LCtIwotIYMLf4m0OzBf95Fb5kX4erAzb9os8Vur 5ZOUGJUI42cRhhfs78mVK5nVFzPJccNJDN2fLCRgmpCX7HyW32QMRzLL9Qa4CSXC BCcsIJ7mcW8+c9bVZ24mTgdThU/mSef3JWfcHlok5uSyqxKY13H+wcHFHsa7uETY rJCmlPAjRo0CpF9UVsMcP0iE/tURtzmhZeGfFOgiXdGH0LtCzY9Rgwwr9joSFMdU 8Qo/oGH+yeIjB+2b+RXBF03Wbw== -----END CERTIFICATE-----Generated at Fri Apr 17 11:00:29 2026 by rpki-client