$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: KqP49tFlfadBtQGd6f8OdU9oD3L3sajWYZ+4HE3zF1c= Subject key identifier: B8:77:44:22:CC:06:A2:75:CD:8E:BF:E1:89:E5:DB:1F:6F:0D:85:A5 Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 356A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 3554 Signing time: Wed 20 May 2026 14:47:04 +0000 Manifest this update: Wed 20 May 2026 14:47:04 +0000 Manifest next update: Wed 27 May 2026 14:47:04 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: PCmaqSDE/72nSNosysbNXzTFrChtvDnKDbzcUS4hvng=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: wpF9ptajaxcFCU5XYXYL7kAycTSdDrhOWM0Rnpw1Xnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 14:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13674 (0x356a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581, serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: May 20 14:47:04 2026 GMT Not After : May 27 14:47:04 2026 GMT Subject: CN=6a0dc968-e557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3d:9f:9d:34:c3:c1:e4:9c:21:0e:7d:8a:22: 83:d5:8f:97:ce:91:01:71:5b:6e:3b:48:d7:d7:97: 84:56:09:11:47:d4:f8:20:ce:8f:bd:88:66:f3:3d: 3a:46:d3:90:c7:98:4b:83:24:7f:ed:8d:91:1c:3f: 31:13:2b:ed:c7:40:d8:6b:a0:b3:72:3b:a8:60:e7: 08:68:28:42:01:01:ea:b3:58:2b:0d:34:ae:e8:53: b6:0e:d2:28:b4:a5:cb:46:9b:88:bf:5d:02:e1:ae: 28:72:3c:31:8b:f2:e6:d0:f8:02:57:74:64:cb:12: 83:c5:6b:04:6b:fe:ec:f9:18:89:26:46:6f:ea:45: a6:4e:b4:86:f2:c6:e4:91:77:42:39:e2:3d:65:a8: 9d:a7:a7:db:ae:30:2b:2b:da:8c:e2:50:74:3b:d4: dc:d2:e6:02:ce:37:f1:10:92:f8:55:e0:11:7f:82: 01:6f:35:03:cd:76:bd:0f:17:69:b4:66:5a:b4:41: 84:ec:19:fe:bf:31:33:a6:67:f0:66:52:ed:f7:ce: 74:c8:35:3c:9a:63:61:d3:4a:c1:09:4a:a0:47:66: 8f:6d:c6:3d:3e:4a:7d:86:e5:8c:73:ff:34:39:d3: 22:28:1b:80:51:17:d1:d5:e0:fc:25:04:82:d8:ce: 43:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:77:44:22:CC:06:A2:75:CD:8E:BF:E1:89:E5:DB:1F:6F:0D:85:A5 X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:2d:0d:bd:0b:eb:01:7a:23:ae:bc:05:cb:87:9f:d5:5c:94: af:e2:ee:94:58:e4:eb:46:e2:94:5d:ba:2f:cb:3c:6d:11:f4: 5b:ee:29:19:9c:62:1f:b7:4c:7c:1a:ee:3e:1e:87:c8:b1:a0: f6:b4:7c:ca:05:cc:86:20:66:be:60:b7:dd:82:2f:44:f7:52: fc:8f:5d:ab:a5:68:39:bc:b0:50:a7:cd:08:80:a7:2f:26:49: 04:58:36:6b:c6:05:46:c7:be:78:d6:08:9e:53:c5:c0:81:d2: 8b:16:9c:eb:8e:b5:81:19:a2:35:5f:a4:e7:ba:cf:d0:c2:77: 27:80:99:c5:bf:b7:d9:df:a4:c0:35:cb:f6:72:fa:ce:79:4d: a3:5c:a7:8b:af:ee:77:37:45:0f:1c:44:a4:a7:64:80:f2:88: ba:48:df:01:82:f9:fd:40:4c:7d:4a:37:05:ef:bf:79:b4:95: a0:f2:cf:e8:0c:99:78:fb:84:8a:9e:02:24:d9:28:0d:0b:ff: fd:45:cc:f0:3a:32:fb:48:37:83:28:4f:0b:b2:ac:f6:69:1d: 9e:d0:c7:cf:e8:1d:db:14:3c:cd:39:b8:fa:3a:3f:91:02:79: ac:8f:eb:9f:db:68:6a:25:67:33:22:9f:aa:01:ef:42:c9:51: 26:0b:6c:30 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjYwNTIwMTQ0NzA0WhcNMjYwNTI3MTQ0NzA0WjAYMRYwFAYD VQQDEw02YTBkYzk2OC1lNTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwj2fnTTDweScIQ59iiKD1Y+XzpEBcVtuO0jX15eEVgkRR9T4IM6PvYhm8z06 RtOQx5hLgyR/7Y2RHD8xEyvtx0DYa6CzcjuoYOcIaChCAQHqs1grDTSu6FO2DtIo tKXLRpuIv10C4a4ocjwxi/Lm0PgCV3RkyxKDxWsEa/7s+RiJJkZv6kWmTrSG8sbk kXdCOeI9Zaidp6fbrjArK9qM4lB0O9Tc0uYCzjfxEJL4VeARf4IBbzUDzXa9Dxdp tGZatEGE7Bn+vzEzpmfwZlLt9850yDU8mmNh00rBCUqgR2aPbcY9Pkp9huWMc/80 OdMiKBuAURfR1eD8JQSC2M5DFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLh3RCLM BqJ1zY6/4Ynl2x9vDYWlMB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALC0NvQvrAXojrrwFy4ef1VyUr+LulFjk60bilF26L8s8bRH0W+4pGZxiH7dM fBruPh6HyLGg9rR8ygXMhiBmvmC33YIvRPdS/I9dq6VoObywUKfNCICnLyZJBFg2 a8YFRse+eNYInlPFwIHSixac6461gRmiNV+k57rP0MJ3J4CZxb+32d+kwDXL9nL6 znlNo1yni6/udzdFDxxEpKdkgPKIukjfAYL5/UBMfUo3Be+/ebSVoPLP6AyZePuE ip4CJNkoDQv//UXM8Doy+0g3gyhPC7Ks9mkdntDHz+gd2xQ8zTm4+jo/kQJ5rI/r n9toaiVnMyKfqgHvQslRJgtsMA== -----END CERTIFICATE-----Generated at Thu May 21 09:36:30 2026 by rpki-client