$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: aoPGH7/bS5Y0F4cS7aXPOTTZy/09kuf8NNzhGiZR158= Subject key identifier: 9D:40:0A:86:EC:8B:AF:C7:CE:8C:A0:72:75:07:3C:F3:FC:EB:E8:FA Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 3530 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 3530 Signing time: Thu 16 Apr 2026 14:57:11 +0000 Manifest this update: Thu 16 Apr 2026 14:57:11 +0000 Manifest next update: Thu 23 Apr 2026 14:57:11 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: pOeWZ6V2QffqYR+dhIcZE1NyZhASfvmoirGjxMFawF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:57:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13616 (0x3530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D, serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: Apr 16 14:57:11 2026 GMT Not After : Apr 23 14:57:11 2026 GMT Subject: CN=69e0f8c7-796b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:39:f8:ab:3e:f5:ea:1b:4a:9c:81:37:68:88: 66:ad:6d:d2:65:6b:b9:5f:9d:1c:51:ed:c9:c2:c7: c0:6e:c6:2b:40:c9:49:24:e7:44:e1:f5:04:24:5b: b5:ab:7b:70:78:14:cb:47:7a:27:f0:b0:8b:ea:41: ee:0a:b0:b3:95:aa:b2:35:68:68:1b:d1:f6:ac:f4: e2:27:92:25:3b:83:a1:5a:2c:61:ee:57:71:0a:8f: 53:d0:a6:52:be:a3:67:59:7e:b2:2e:e1:64:8e:c9: 8e:91:7e:ff:53:66:fd:b5:44:34:71:ca:57:44:4f: 16:04:9b:c5:39:af:70:53:37:e1:50:e3:06:9e:d8: 47:c9:f7:9c:72:a5:cd:6d:c1:83:00:ed:ac:a2:6f: 8d:d3:90:bb:ce:c5:60:9f:30:cb:90:e2:34:91:5f: c7:29:5d:9c:a2:13:3b:67:0e:cd:44:91:83:6d:2d: b0:27:ca:92:cd:cc:f1:41:e2:7b:57:76:20:ce:67: 9f:7f:23:37:fe:c5:d0:97:1a:ce:ea:aa:14:2d:01: 3b:da:3a:14:a0:df:14:1e:76:4c:0f:8b:9d:53:20: 75:a4:70:53:be:90:21:9e:85:fd:03:2f:c9:43:8d: c6:64:ad:cc:30:17:d2:f5:52:70:ae:68:6b:41:ab: 91:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:40:0A:86:EC:8B:AF:C7:CE:8C:A0:72:75:07:3C:F3:FC:EB:E8:FA X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:aa:06:02:59:b0:fe:65:7a:a5:d8:ce:1f:9c:1b:4c:7b:11: d2:43:25:7b:20:a9:12:82:10:2c:20:91:f3:99:cc:92:ab:15: 43:f7:99:f5:4e:35:53:2a:13:51:ed:8d:9c:56:ba:a9:fe:2a: 21:8a:b7:17:a0:6e:9a:97:ca:b9:50:c9:ad:d5:cb:a5:11:68: dd:6b:9d:3c:4d:74:54:3e:37:f9:38:1d:39:65:0b:82:e6:d0: b1:3e:e5:8f:e1:ac:0c:33:90:38:97:57:a9:70:04:39:f2:c1: cb:54:09:a0:2b:fb:3c:91:d2:d1:d4:e7:0d:40:fe:4a:97:ab: ca:5a:87:0c:a8:fa:71:97:bd:dc:fd:ca:2f:c6:ce:8e:80:51: ee:ec:cc:aa:4d:9e:d7:43:12:00:ff:97:4b:5a:7b:7e:88:1b: ed:e0:bd:a3:78:e9:c8:ae:ed:b9:cc:e9:70:46:b4:f5:d1:f3: 28:b8:5d:73:08:b2:96:38:a6:fe:e3:e7:f8:52:44:29:71:44: 6a:20:ab:7d:8a:a9:42:b9:0f:b6:b6:44:7c:4a:9c:b8:da:7a: a0:f5:4f:c4:d4:91:3f:eb:d3:c0:98:ee:1c:36:b6:38:77:40: 36:84:0a:37:fe:5f:49:63:a6:aa:03:29:3e:e8:b9:08:28:de: 3c:57:66:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjYwNDE2MTQ1NzExWhcNMjYwNDIzMTQ1NzExWjAYMRYwFAYD VQQDEw02OWUwZjhjNy03OTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjn4qz716htKnIE3aIhmrW3SZWu5X50cUe3JwsfAbsYrQMlJJOdE4fUEJFu1 q3tweBTLR3on8LCL6kHuCrCzlaqyNWhoG9H2rPTiJ5IlO4OhWixh7ldxCo9T0KZS vqNnWX6yLuFkjsmOkX7/U2b9tUQ0ccpXRE8WBJvFOa9wUzfhUOMGnthHyfeccqXN bcGDAO2som+N05C7zsVgnzDLkOI0kV/HKV2cohM7Zw7NRJGDbS2wJ8qSzczxQeJ7 V3YgzmeffyM3/sXQlxrO6qoULQE72joUoN8UHnZMD4udUyB1pHBTvpAhnoX9Ay/J Q43GZK3MMBfS9VJwrmhrQauRRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ1ACobs i6/HzoygcnUHPPP86+j6MB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASKoGAlmw/mV6pdjOH5wbTHsR0kMleyCpEoIQLCCR85nMkqsVQ/eZ9U41UyoT Ue2NnFa6qf4qIYq3F6BumpfKuVDJrdXLpRFo3WudPE10VD43+TgdOWULgubQsT7l j+GsDDOQOJdXqXAEOfLBy1QJoCv7PJHS0dTnDUD+SperylqHDKj6cZe93P3KL8bO joBR7uzMqk2e10MSAP+XS1p7fogb7eC9o3jpyK7tuczpcEa09dHzKLhdcwiyljim /uPn+FJEKXFEaiCrfYqpQrkPtrZEfEqcuNp6oPVPxNSRP+vTwJjuHDa2OHdANoQK N/5fSWOmqgMpPui5CCjePFdmCA== -----END CERTIFICATE-----Generated at Fri Apr 17 09:42:28 2026 by rpki-client