$ rpki-client -vvf rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft File: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft (raw, json) Hash identifier: h74XDkRxWT6T7TBpn2bIYEFFlSChbsHsaRAvGKr3LGU= Subject key identifier: 2A:B9:BD:D5:8F:E1:D7:A6:CF:42:3D:E1:46:FA:F2:3E:BC:5B:04:92 Authority key identifier: 86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 Certificate issuer: /CN=A916E64F/serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Certificate serial: 17B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft Manifest number: 17A4 Signing time: Tue 24 Mar 2026 16:28:58 +0000 Manifest this update: Tue 24 Mar 2026 16:28:58 +0000 Manifest next update: Tue 31 Mar 2026 16:28:58 +0000 Files and hashes: 1: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl (hash: r3nbYLuQpmeqju71rBw+QtaZAlgehxE8OjzyrDRiwIg=) 2: 89317668E87B11E785247983C4F9AE02.roa (hash: WoT/UgFr2xPvfCqBZ9PJ+h1sxdlnvxIa74Oqq+fRyVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6066 (0x17b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E64F, serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Validity Not Before: Mar 24 16:28:58 2026 GMT Not After : Mar 31 16:28:58 2026 GMT Subject: CN=69c2bbca-7866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:eb:0e:11:9f:5b:34:b1:e0:9a:0e:64:22:f8: f6:a3:77:98:64:48:3c:9e:67:8b:f5:b7:2c:e8:b3: 7e:66:b2:f8:94:fe:21:2d:fb:ec:26:d8:3d:a9:2d: 25:3f:57:8d:b2:16:4d:9a:3c:f4:ef:07:a5:29:2f: b9:47:77:f0:e9:4d:59:0b:b2:27:7d:32:83:ac:c4: 76:ba:89:b0:c3:6d:c7:d0:bc:8e:3c:99:5c:78:79: 8f:a3:c8:61:47:1c:91:37:79:fb:0f:06:b0:1f:7b: 38:46:29:58:63:c1:c2:b0:0e:1d:0b:c5:01:c7:c5: 9a:cb:f5:05:6d:3e:e1:ea:53:12:4f:52:4a:99:e6: b0:49:2c:63:ce:e5:2a:99:b1:6e:26:b2:35:ce:84: 59:1a:78:d4:3c:f0:3f:b8:54:95:65:a7:30:68:aa: ae:f7:95:61:c2:0a:c7:93:64:ed:cc:3a:99:5e:4c: f2:6e:e9:f6:c4:05:5c:ed:84:c7:f0:33:b6:df:c8: fc:11:ef:e6:85:12:99:ba:1e:db:69:4a:5d:e9:20: ea:48:75:f9:16:6c:0b:fe:76:fd:82:5b:b1:e8:10: ad:f1:5d:c1:87:ff:67:94:6d:c0:41:c7:17:22:0e: f9:18:84:61:64:0e:2a:47:fd:dc:f5:3b:5f:bf:7d: d9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B9:BD:D5:8F:E1:D7:A6:CF:42:3D:E1:46:FA:F2:3E:BC:5B:04:92 X509v3 Authority Key Identifier: keyid:86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:83:e5:92:4f:86:d6:b1:4a:4a:ce:8b:9c:60:a4:b6:5e:67: c5:10:35:73:de:3b:90:de:de:1f:dd:16:a3:b2:ae:2d:72:de: dc:5b:42:b0:12:ac:1f:b1:f3:d1:4d:22:f1:9c:75:76:4b:80: 7b:b7:4d:d4:a0:fe:26:57:88:ef:ce:f6:e2:05:c1:66:c4:d2: 83:b1:08:db:64:26:27:ee:28:d1:65:09:28:8f:8b:ee:29:42: f7:14:4d:7f:c6:56:77:11:ac:2c:e8:46:f0:65:7b:9d:0a:0d: f6:d2:84:91:5e:db:0c:bf:dc:a8:8d:55:7b:0d:05:fb:ba:c4: 7f:83:b7:ae:13:03:33:39:b9:e0:2b:dd:bd:25:b6:61:d6:3b: 1b:29:74:85:d1:4e:23:5c:bb:02:8c:71:a7:8c:46:9f:93:a3: b9:f2:13:c9:6e:d0:c6:11:34:39:e1:a1:4e:c7:df:7c:95:b3: 66:d7:1b:32:8a:6a:0e:91:56:a8:e0:d7:01:18:c1:c2:bc:79: 75:a6:4a:90:3f:19:55:01:56:e5:cc:35:65:c7:9b:9e:66:1e: 6e:ce:1c:13:8b:be:fa:71:20:01:a8:d1:a7:cf:c1:fd:42:41: 51:87:bb:3a:5b:c7:43:b9:c9:31:a3:93:f0:ae:93:4f:ba:67: 35:4c:25:59 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICF7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU2NEYxMTAvBgNVBAUTKDg2OEZDOEIxODdCREZEMzBBNzBCNTAyRjZEMTQ5RTY3 ODY5MjUzQjkwHhcNMjYwMzI0MTYyODU4WhcNMjYwMzMxMTYyODU4WjAYMRYwFAYD VQQDEw02OWMyYmJjYS03ODY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1usOEZ9bNLHgmg5kIvj2o3eYZEg8nmeL9bcs6LN+ZrL4lP4hLfvsJtg9qS0l P1eNshZNmjz07welKS+5R3fw6U1ZC7InfTKDrMR2uomww23H0LyOPJlceHmPo8hh RxyRN3n7DwawH3s4RilYY8HCsA4dC8UBx8Way/UFbT7h6lMST1JKmeawSSxjzuUq mbFuJrI1zoRZGnjUPPA/uFSVZacwaKqu95VhwgrHk2TtzDqZXkzybun2xAVc7YTH 8DO238j8Ee/mhRKZuh7baUpd6SDqSHX5FmwL/nb9glux6BCt8V3Bh/9nlG3AQccX Ig75GIRhZA4qR/3c9Ttfv33Z2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCq5vdWP 4demz0I94Ub68j68WwSSMB8GA1UdIwQYMBaAFIaPyLGHvf0wpwtQL20UnmeGklO5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTY0Ri9ERDVDMTU4MkU4 N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9UQ25DMUF2YlJTZVo0YVNV N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvX0lzWWU5X1RDbkMxQXZiUlNlWjRhU1U3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTY0Ri9ERDVDMTU4MkU4N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9U Q25DMUF2YlJTZVo0YVNVN2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACoPlkk+G1rFKSs6LnGCktl5nxRA1c947kN7eH90Wo7KuLXLe3FtCsBKsH7Hz 0U0i8Zx1dkuAe7dN1KD+JleI78724gXBZsTSg7EI22QmJ+4o0WUJKI+L7ilC9xRN f8ZWdxGsLOhG8GV7nQoN9tKEkV7bDL/cqI1Vew0F+7rEf4O3rhMDMzm54CvdvSW2 YdY7Gyl0hdFOI1y7Aoxxp4xGn5OjufITyW7QxhE0OeGhTsfffJWzZtcbMopqDpFW qODXARjBwrx5daZKkD8ZVQFW5cw1ZcebnmYebs4cE4u++nEgAajRp8/B/UJBUYe7 OlvHQ7nJMaOT8K6TT7pnNUwlWQ== -----END CERTIFICATE-----Generated at Thu Mar 26 00:52:35 2026 by rpki-client