$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: qfjwjcrBFHYF6KYkYppx39Mp2PNYqtc1/km8x+yUAMU= Subject key identifier: AC:E3:CD:F1:32:99:31:F1:F6:08:FC:D5:06:0B:B7:13:6D:C4:51:61 Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 079A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0C9A Signing time: Tue 24 Mar 2026 18:18:30 +0000 Manifest this update: Tue 24 Mar 2026 18:18:29 +0000 Manifest next update: Tue 31 Mar 2026 18:18:29 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: dk7t67lMCd1nzaRgy0O6T352+pPfzzBl19BGwUPI4cA=) 2: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: ZlqFcYcT6pIlzRDg6ZnJ/8IVNFun6dYuHQ2aoW0BchI=) 3: D6F76118231C11EF84144357C4F9AE02.roa (hash: yUneVRwb6AK5oOkcJJhtc6mqN9EGhX27fjT+u8BimTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1946 (0x79a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Mar 24 18:18:29 2026 GMT Not After : Mar 31 18:18:29 2026 GMT Subject: CN=69c2d576-45d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b9:ac:97:59:a9:1e:86:9c:07:08:56:85:b4: 1c:ab:a3:4e:91:f0:e9:e3:05:47:c4:d9:9d:de:d2: c9:3d:d2:b6:e0:8d:04:cf:0c:bb:91:e5:3c:bc:6f: 67:51:d8:c3:fc:80:c9:31:a6:50:8a:16:f5:ba:3a: db:d9:31:82:55:29:41:9a:e6:4f:1c:d7:6e:de:ee: fe:68:df:b8:6d:eb:9b:14:e1:34:3f:e3:9b:29:96: 3c:a0:7a:0b:f5:5b:15:97:57:e6:97:d3:86:c2:d4: 63:f7:ce:5a:09:91:da:d0:56:1e:4d:9c:37:d8:7d: 3c:4d:30:e3:4c:d8:37:c2:32:b8:2b:dc:be:05:04: 6e:05:7d:e4:ff:3e:c1:e5:06:85:3b:49:a0:5d:81: ee:42:3d:ea:ec:e4:1a:d4:cb:93:ae:d5:a6:9d:e6: c5:e3:af:b5:1a:a2:36:7e:71:b9:0c:3c:39:ba:57: 4c:29:24:c9:e2:a1:af:ec:d7:ba:ba:b1:a2:a4:ea: 4e:cb:d0:e6:e3:32:57:27:e1:c0:ae:4e:8e:de:15: bc:9d:57:a8:8d:28:65:30:cb:10:05:a6:bf:65:e0: 0e:ff:02:4f:b5:a9:26:a7:fc:13:ae:a0:80:e7:20: 25:21:21:1a:8d:0b:2f:7b:4a:08:b3:03:06:22:09: 1c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:E3:CD:F1:32:99:31:F1:F6:08:FC:D5:06:0B:B7:13:6D:C4:51:61 X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:f3:45:e8:c7:dd:6a:c0:ae:2f:6a:22:b6:c7:a6:96:bf:ae: df:b3:1b:8c:4c:0e:a4:7e:01:ab:db:b6:14:28:22:a1:16:89: 89:ff:57:88:65:58:2d:61:6f:34:b8:00:5f:45:16:f0:fe:e7: 8f:00:cc:b3:65:6c:12:2a:79:93:88:61:30:9c:f1:81:63:a1: aa:89:1e:f6:25:c4:b1:52:df:88:9b:a5:21:d7:96:83:c5:2a: 4e:f5:34:5b:01:05:72:98:d0:d0:71:41:fc:ba:f4:5f:4b:61: 7d:fd:c7:99:be:df:89:67:5a:78:ce:8e:78:8f:1b:fa:2a:f3: 07:84:df:b5:1c:4d:05:d2:ea:6b:a2:0e:28:13:81:b1:d9:6c: 4a:e9:96:9a:02:6c:03:66:ca:ec:c8:0a:17:15:e1:75:7a:80: ec:48:1d:4f:ca:73:80:09:4a:d1:ee:e2:b0:6f:36:d5:7e:aa: 56:dc:42:ad:c2:21:13:42:7a:e7:a1:a0:76:c6:01:c4:e6:57: 04:ea:5a:a7:b6:d0:a8:c1:0e:7c:c8:11:b6:2f:8d:02:6a:32: d4:b3:f0:4b:e0:4d:33:74:f7:85:07:fa:86:14:69:06:8d:c9: 8b:fb:95:42:e6:8a:87:e1:20:42:d2:73:3d:eb:3d:9b:fc:5c: 94:8f:58:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjYwMzI0MTgxODI5WhcNMjYwMzMxMTgxODI5WjAYMRYwFAYD VQQDEw02OWMyZDU3Ni00NWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6rmsl1mpHoacBwhWhbQcq6NOkfDp4wVHxNmd3tLJPdK24I0Ezwy7keU8vG9n UdjD/IDJMaZQihb1ujrb2TGCVSlBmuZPHNdu3u7+aN+4beubFOE0P+ObKZY8oHoL 9VsVl1fml9OGwtRj985aCZHa0FYeTZw32H08TTDjTNg3wjK4K9y+BQRuBX3k/z7B 5QaFO0mgXYHuQj3q7OQa1MuTrtWmnebF46+1GqI2fnG5DDw5uldMKSTJ4qGv7Ne6 urGipOpOy9Dm4zJXJ+HArk6O3hW8nVeojShlMMsQBaa/ZeAO/wJPtakmp/wTrqCA 5yAlISEajQsve0oIswMGIgkcBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKzjzfEy mTHx9gj81QYLtxNtxFFhMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARfNF6MfdasCuL2oitsemlr+u37MbjEwOpH4Bq9u2FCgioRaJif9XiGVYLWFv NLgAX0UW8P7njwDMs2VsEip5k4hhMJzxgWOhqoke9iXEsVLfiJulIdeWg8UqTvU0 WwEFcpjQ0HFB/Lr0X0thff3Hmb7fiWdaeM6OeI8b+irzB4TftRxNBdLqa6IOKBOB sdlsSumWmgJsA2bK7MgKFxXhdXqA7EgdT8pzgAlK0e7isG821X6qVtxCrcIhE0J6 56GgdsYBxOZXBOpap7bQqMEOfMgRti+NAmoy1LPwS+BNM3T3hQf6hhRpBo3Ji/uV QuaKh+EgQtJzPes9m/xclI9Yww== -----END CERTIFICATE-----Generated at Thu Mar 26 19:53:14 2026 by rpki-client