$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft File: lUpwG6oMkx0BduSFt6KHwTFlJg4.mft (raw, json) Hash identifier: LyoKDEiCjBxJ/AffmmRvJ47QZJJQhLl8Ru1+uswjvmM= Subject key identifier: FF:0E:62:EB:B0:94:BB:01:AF:C4:8B:45:46:E5:FE:98:C9:A8:D7:55 Authority key identifier: 95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E Certificate issuer: /CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Certificate serial: 06DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft Manifest number: 06D8 Signing time: Sat 04 Apr 2026 21:59:47 +0000 Manifest this update: Sat 04 Apr 2026 21:59:46 +0000 Manifest next update: Sat 11 Apr 2026 21:59:46 +0000 Files and hashes: 1: lUpwG6oMkx0BduSFt6KHwTFlJg4.crl (hash: WQKsm9G9UJoBnhhCSBIA7RFmY8UnLoE6n87FHbapthE=) 2: 3A84DC2C44E411EFB0C1A135C4F9AE02.roa (hash: ANO9ATvmrYILQmlhem8z7fcbouBAL7kvJgnxQnAu8ss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:59:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1757 (0x6dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CED, serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Validity Not Before: Apr 4 21:59:46 2026 GMT Not After : Apr 11 21:59:46 2026 GMT Subject: CN=69d189d3-e307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c6:95:9d:63:da:4e:79:35:3e:5e:ce:21:64: 2c:95:e9:65:c5:86:4b:94:47:53:47:b2:7e:c0:6d: b2:56:d8:59:4d:35:d3:88:02:ff:c2:d8:c7:27:5d: 01:7e:4d:d9:63:e3:c2:f1:d5:4d:36:b6:5c:6f:3e: ef:83:08:44:70:e1:2c:37:09:38:6c:90:f5:67:18: 5d:a2:93:c6:43:d9:ac:7a:ec:87:7b:a0:bf:13:5a: 6e:24:ba:e5:ed:16:80:d7:9c:72:15:c9:cd:b6:91: 5c:8d:be:62:f0:88:6c:10:92:dd:71:e5:a2:37:f9: fb:94:fc:81:c4:a7:dd:0d:b3:fb:c4:98:ed:ca:3c: 64:f3:56:ba:71:c6:d8:9e:ad:03:d7:39:f1:89:70: 34:d5:57:d8:f1:24:ee:26:46:c8:3c:0a:80:e2:2b: 80:de:ec:c5:26:c3:e7:5f:52:5a:db:0b:de:f1:21: 7b:75:ee:7c:9a:6a:f4:39:fd:3d:34:61:dc:3f:6c: c3:5f:37:84:6b:39:f7:8b:62:fa:16:00:f2:45:51: 0b:4b:e6:95:6b:70:4f:fe:83:ba:3f:1e:9b:bf:a2: e1:ba:bc:a7:a2:db:cc:46:a1:70:91:a3:6b:8c:c8: 0c:c4:2d:0d:55:64:de:4f:53:70:88:28:af:59:d3: 46:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:0E:62:EB:B0:94:BB:01:AF:C4:8B:45:46:E5:FE:98:C9:A8:D7:55 X509v3 Authority Key Identifier: keyid:95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:20:74:de:45:e6:c5:f5:42:a8:dc:28:17:78:c8:26:b8:21: e9:d7:b6:8b:2c:49:75:a6:92:2b:13:a4:96:37:57:8d:81:8a: 6a:5f:ba:9d:b9:f3:37:a3:95:01:dc:af:a0:21:c5:f0:54:c1: bc:b8:6c:a4:af:73:6a:92:ec:58:96:40:76:62:e8:ec:84:fd: 08:78:bf:f6:d3:a0:39:26:63:b9:e4:73:63:07:d4:01:f5:52: 16:67:41:4f:20:42:2a:a2:b0:87:d2:ee:e6:18:a1:1e:3a:2a: b9:0f:1b:5f:e8:83:8d:18:a7:83:21:79:74:e6:a3:32:30:9f: a8:aa:df:04:36:23:fc:4e:0e:b5:83:b3:8b:42:83:f5:44:e1: 83:74:58:28:46:9e:9c:5a:3e:08:e7:ff:99:79:0d:ee:5f:b1: dd:e2:6f:a8:8a:a3:99:4e:28:f3:2c:ad:4a:a0:e0:6e:24:56: 83:89:ec:0a:8a:9c:94:a5:66:85:73:7a:6d:10:40:fa:c0:ec: c8:1e:3c:f0:78:e5:2e:84:e4:03:7d:4d:ac:a3:c1:61:e9:a5: 1a:9e:05:a3:4e:c7:18:fe:aa:78:33:5a:3b:40:ff:f1:5b:76: f7:3d:7d:1c:f3:fe:02:85:ba:35:18:f8:7b:c1:d2:d6:c5:66: 6a:e0:e3:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRUQxMTAvBgNVBAUTKDk1NEE3MDFCQUEwQzkzMUQwMTc2RTQ4NUI3QTI4N0Mx MzE2NTI2MEUwHhcNMjYwNDA0MjE1OTQ2WhcNMjYwNDExMjE1OTQ2WjAYMRYwFAYD VQQDEw02OWQxODlkMy1lMzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8aVnWPaTnk1Pl7OIWQslellxYZLlEdTR7J+wG2yVthZTTXTiAL/wtjHJ10B fk3ZY+PC8dVNNrZcbz7vgwhEcOEsNwk4bJD1ZxhdopPGQ9mseuyHe6C/E1puJLrl 7RaA15xyFcnNtpFcjb5i8IhsEJLdceWiN/n7lPyBxKfdDbP7xJjtyjxk81a6ccbY nq0D1znxiXA01VfY8STuJkbIPAqA4iuA3uzFJsPnX1Ja2wve8SF7de58mmr0Of09 NGHcP2zDXzeEazn3i2L6FgDyRVELS+aVa3BP/oO6Px6bv6LhurynotvMRqFwkaNr jMgMxC0NVWTeT1NwiCivWdNGrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP8OYuuw lLsBr8SLRUbl/pjJqNdVMB8GA1UdIwQYMBaAFJVKcBuqDJMdAXbkhbeih8ExZSYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNFRC8xQUFGN0Q5NDky MjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4MEJkdVNGdDZLSHdURmxK ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVcHdHNm9Na3gwQmR1U0Z0NktId1RGbEpnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUNFRC8xQUFGN0Q5NDkyMjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4 MEJkdVNGdDZLSHdURmxKZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKiB03kXmxfVCqNwoF3jIJrgh6de2iyxJdaaSKxOkljdXjYGKal+6nbnzN6OV AdyvoCHF8FTBvLhspK9zapLsWJZAdmLo7IT9CHi/9tOgOSZjueRzYwfUAfVSFmdB TyBCKqKwh9Lu5hihHjoquQ8bX+iDjRingyF5dOajMjCfqKrfBDYj/E4OtYOzi0KD 9UThg3RYKEaenFo+COf/mXkN7l+x3eJvqIqjmU4o8yytSqDgbiRWg4nsCoqclKVm hXN6bRBA+sDsyB488HjlLoTkA31NrKPBYemlGp4Fo07HGP6qeDNaO0D/8Vt29z19 HPP+AoW6NRj4e8HS1sVmauDj7g== -----END CERTIFICATE-----Generated at Mon Apr 6 09:55:00 2026 by rpki-client