$ rpki-client -vvf rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.mft File: ihHrdksVeFOdbtOykDv2H0wIAHw.mft (raw, json) Hash identifier: kdtvuxhiJ7kdwOGqwJbXYE9Rf8wspDTAGNQY1V8BPR0= Subject key identifier: 19:20:44:D9:FB:C1:87:59:0D:59:47:FD:3A:44:1D:BE:8B:9F:7E:C2 Authority key identifier: 8A:11:EB:76:4B:15:78:53:9D:6E:D3:B2:90:3B:F6:1F:4C:08:00:7C Certificate issuer: /CN=A914CC0F/serialNumber=8A11EB764B1578539D6ED3B2903BF61F4C08007C Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ihHrdksVeFOdbtOykDv2H0wIAHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.mft Manifest number: AA Signing time: Tue 24 Mar 2026 19:38:02 +0000 Manifest this update: Tue 24 Mar 2026 19:38:01 +0000 Manifest next update: Tue 31 Mar 2026 19:38:01 +0000 Files and hashes: 1: ihHrdksVeFOdbtOykDv2H0wIAHw.crl (hash: ZVMMIm2Ns9N6xoNKA94Pqk4dAgAWSunYqBJtgoGhMw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.crl rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ihHrdksVeFOdbtOykDv2H0wIAHw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:38:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CC0F, serialNumber=8A11EB764B1578539D6ED3B2903BF61F4C08007C Validity Not Before: Mar 24 19:38:01 2026 GMT Not After : Mar 31 19:38:01 2026 GMT Subject: CN=69c2e81a-f9b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1e:dd:ac:50:15:54:0b:e6:a8:b0:0e:90:00: ee:a6:33:37:39:0e:60:e2:92:01:98:51:6d:e0:18: 86:6e:9e:e3:33:93:72:69:40:de:5b:d7:ca:91:e3: f7:01:f8:a1:b6:b6:8b:b1:fb:2a:0b:44:02:da:77: 49:11:8a:cb:81:fe:23:49:eb:0f:71:b8:b7:9b:e7: 8e:a3:53:cc:a0:90:ed:f1:37:4f:34:b9:7d:76:0b: 4f:86:36:53:97:41:e2:c5:ff:34:53:8a:2a:84:3e: 8a:25:87:01:0a:50:5e:3b:a4:95:90:1c:f8:8e:2b: d0:49:df:fd:33:42:b4:0b:30:18:5e:06:83:d4:30: 28:3b:79:9b:4d:04:d9:9c:00:a6:94:6a:a7:b2:bc: 1f:cd:44:5e:32:52:22:f0:88:3b:25:7d:2e:5e:e2: 3d:86:cd:f7:68:da:59:0f:b1:3b:93:6f:9e:03:41: 56:ba:4f:17:8f:f3:f8:5a:6a:c6:bf:5c:5e:c2:f6: 77:26:c5:16:62:85:f1:e8:4b:ed:d4:3d:d5:d5:ac: 57:c6:14:0d:29:f4:47:d9:84:8a:24:0f:84:6e:09: 43:e3:51:7a:2d:cb:a9:84:ee:de:83:18:69:1f:08: fe:a6:58:cb:44:83:51:10:ff:44:20:6b:fb:0e:09: 27:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:20:44:D9:FB:C1:87:59:0D:59:47:FD:3A:44:1D:BE:8B:9F:7E:C2 X509v3 Authority Key Identifier: keyid:8A:11:EB:76:4B:15:78:53:9D:6E:D3:B2:90:3B:F6:1F:4C:08:00:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ihHrdksVeFOdbtOykDv2H0wIAHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:d7:2e:6f:60:38:4d:b8:65:c8:d4:dd:d9:de:bf:f9:3b:05: b9:20:bb:93:af:f1:9b:7a:a0:b7:f1:5a:55:c2:46:a2:9c:da: 7b:0d:83:44:bd:17:a0:3f:78:83:7c:24:fe:52:c7:fd:3c:e0: 0d:c3:cb:34:4e:ec:fd:66:5b:29:90:d9:db:16:bd:a9:9a:9a: d2:de:d7:94:29:d9:e1:a6:79:25:a0:73:cc:09:a9:d9:f7:73: e6:04:62:4d:3f:45:02:2d:e1:ae:58:33:aa:05:1c:28:53:43: ee:08:e3:99:79:2c:a9:ef:01:1b:d8:6a:63:a7:81:f8:6d:fc: 8c:7b:f7:17:59:b1:53:9e:ac:bd:77:0c:4c:d1:5f:91:e8:49: 06:4b:ab:3b:20:c6:68:de:71:84:15:39:c1:dc:9c:56:db:83: 7e:6d:1b:36:75:83:e8:b7:8d:6c:9a:9b:98:4c:4a:aa:31:de: 89:d4:12:c8:d8:1d:58:e4:b1:d0:09:66:31:b2:41:ff:cf:39: ac:8b:79:21:a8:88:f9:80:0d:3a:bf:71:a0:57:1d:38:d3:34: 4d:07:1b:76:60:0d:f0:2e:c5:82:00:19:bd:23:60:d9:5c:3b: c8:8e:2e:af:00:6c:91:20:8c:f3:e9:d0:73:46:97:f9:11:a0: 72:42:17:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDMEYxMTAvBgNVBAUTKDhBMTFFQjc2NEIxNTc4NTM5RDZFRDNCMjkwM0JGNjFG NEMwODAwN0MwHhcNMjYwMzI0MTkzODAxWhcNMjYwMzMxMTkzODAxWjAYMRYwFAYD VQQDEw02OWMyZTgxYS1mOWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3h7drFAVVAvmqLAOkADupjM3OQ5g4pIBmFFt4BiGbp7jM5NyaUDeW9fKkeP3 AfihtraLsfsqC0QC2ndJEYrLgf4jSesPcbi3m+eOo1PMoJDt8TdPNLl9dgtPhjZT l0Hixf80U4oqhD6KJYcBClBeO6SVkBz4jivQSd/9M0K0CzAYXgaD1DAoO3mbTQTZ nACmlGqnsrwfzUReMlIi8Ig7JX0uXuI9hs33aNpZD7E7k2+eA0FWuk8Xj/P4WmrG v1xewvZ3JsUWYoXx6Evt1D3V1axXxhQNKfRH2YSKJA+EbglD41F6LcuphO7egxhp Hwj+pljLRINREP9EIGv7DgknNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBkgRNn7 wYdZDVlH/TpEHb6Ln37CMB8GA1UdIwQYMBaAFIoR63ZLFXhTnW7TspA79h9MCAB8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0MwRi80OUU5OTZDNDJD NjIxMUYwQTlCMUM2NUFDNEY5QUUwMi9paEhyZGtzVmVGT2RidE95a0R2Mkgwd0lB SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2loSHJka3NWZUZPZGJ0T3lrRHYySDB3SUFIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0MwRi80OUU5OTZDNDJDNjIxMUYwQTlCMUM2NUFDNEY5QUUwMi9paEhyZGtzVmVG T2RidE95a0R2Mkgwd0lBSHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi9cub2A4TbhlyNTd2d6/+TsFuSC7k6/xm3qgt/FaVcJGopzaew2DRL0XoD94 g3wk/lLH/TzgDcPLNE7s/WZbKZDZ2xa9qZqa0t7XlCnZ4aZ5JaBzzAmp2fdz5gRi TT9FAi3hrlgzqgUcKFND7gjjmXksqe8BG9hqY6eB+G38jHv3F1mxU56svXcMTNFf kehJBkurOyDGaN5xhBU5wdycVtuDfm0bNnWD6LeNbJqbmExKqjHeidQSyNgdWOSx 0AlmMbJB/885rIt5IaiI+YANOr9xoFcdONM0TQcbdmAN8C7FggAZvSNg2Vw7yI4u rwBskSCM8+nQc0aX+RGgckIX7g== -----END CERTIFICATE-----Generated at Thu Mar 26 17:30:34 2026 by rpki-client