$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft File: IRoCHoq99NvyBwgibMgyj9JBMd8.mft (raw, json) Hash identifier: bbukv3W2Cne/Jyan9Q9V2QhSNqCAWbWjdpUNn9y67t8= Subject key identifier: 86:82:3F:65:BD:B0:D9:2C:1B:7D:92:CA:45:DF:8E:AA:98:BA:D2:80 Authority key identifier: 21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF Certificate issuer: /CN=A9170F11/serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft Manifest number: 010F Signing time: Wed 25 Mar 2026 05:16:29 +0000 Manifest this update: Wed 25 Mar 2026 05:16:28 +0000 Manifest next update: Wed 01 Apr 2026 05:16:28 +0000 Files and hashes: 1: IRoCHoq99NvyBwgibMgyj9JBMd8.crl (hash: n9zs+x0b/NvRZRnVqkPz7HaR81/iQgsVJHWXnmr6Wro=) 2: 00926CA2D41F11F092947183C4F9AE02.roa (hash: wqkUfeM+QKVS8qmAEVsiC5c7QZ1bu80LeTA1QCGTnpw=) 3: 0029F6EAD41F11F0B1A47183C4F9AE02.roa (hash: F5fxp0etukBOn3CKrqqukvD42srMqVoYQvkoxd9V4Hk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:16:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11, serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Validity Not Before: Mar 25 05:16:28 2026 GMT Not After : Apr 1 05:16:28 2026 GMT Subject: CN=69c36fad-4521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:99:6e:78:74:e0:1e:13:45:78:ad:56:3c:9f: 49:41:3c:fc:e0:9d:0b:3d:97:8a:74:bf:94:d0:c0: d9:d2:28:ac:dd:3f:ff:6e:83:5a:bd:2b:d1:dd:4d: 22:94:45:4c:1c:27:85:bd:4c:ed:17:d9:da:a2:97: a0:7f:40:0e:53:e2:32:8b:43:30:70:2f:e2:91:3f: af:90:81:85:c1:cc:6b:8b:9e:03:56:d4:76:12:cc: 33:05:96:50:41:6f:cb:46:5a:cf:09:82:21:51:56: 4d:d3:2d:59:c6:c1:d0:93:43:1f:e7:a6:b0:86:2b: ab:04:6d:f3:d0:cf:1e:f1:04:c1:e7:82:48:de:d1: f2:9c:de:24:62:d1:65:8c:c1:ad:36:35:7c:f7:df: 4d:c6:3f:8a:be:db:04:0b:b7:25:e5:18:32:94:30: 7d:9c:8f:b7:8c:43:71:f3:68:f1:86:ab:cf:75:90: 75:3e:b1:79:56:e6:69:9f:92:20:0d:f8:52:59:25: 7a:5a:00:81:b6:63:7a:47:7a:b5:36:66:97:95:dd: e4:d5:91:04:e4:4b:bb:9e:f0:a5:e8:ba:6d:0e:7a: 76:02:ab:85:22:9b:8c:c0:ea:26:61:de:57:45:39: d3:1c:80:46:47:85:8d:66:d4:57:fe:2e:5c:c9:ab: 6b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:82:3F:65:BD:B0:D9:2C:1B:7D:92:CA:45:DF:8E:AA:98:BA:D2:80 X509v3 Authority Key Identifier: keyid:21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:33:56:e9:f5:b8:32:3e:86:f0:7d:75:24:b3:d8:34:01:4b: 68:31:9a:9d:55:ab:4e:17:1d:58:e1:94:62:ea:89:fe:1d:5a: d5:00:10:6a:cc:e6:cf:61:b3:9a:a2:5f:bb:f8:79:ff:f5:0e: 23:15:02:f3:a4:ea:23:8f:6c:1f:18:48:18:82:34:a1:1a:b6: 96:2e:da:c6:d2:c8:45:1c:10:a3:2e:4d:2f:42:98:3b:7c:56: 75:8e:75:3e:e5:c1:2d:ce:eb:59:fc:41:c1:24:49:a4:5c:e7: b5:de:7c:92:02:08:92:b4:71:9f:b6:33:97:23:c4:00:d4:1f: b1:4f:20:d1:d8:00:84:39:af:5a:87:43:2e:2d:06:e9:de:04: db:ea:92:3e:9e:87:3c:32:68:71:8b:34:f8:dd:68:14:ae:b5: 2d:66:ef:3c:2f:08:e4:da:fd:38:2f:63:6c:32:53:24:a6:47: 7e:ab:5b:b7:3b:9a:04:a5:24:5b:1f:a3:0c:f6:82:92:e7:13: 2b:70:61:ff:72:40:3d:e8:37:85:c5:7c:b3:c8:dd:86:e8:55: 86:cb:3f:24:10:fb:e5:71:02:d9:5b:71:1d:a0:bd:ad:d1:da: 49:37:ca:a6:56:a7:ca:be:90:4c:0f:82:4c:22:64:44:a4:83: 5c:f1:73:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBGMTExMTAvBgNVBAUTKDIxMUEwMjFFOEFCREY0REJGMjA3MDgyMjZDQzgzMjhG RDI0MTMxREYwHhcNMjYwMzI1MDUxNjI4WhcNMjYwNDAxMDUxNjI4WjAYMRYwFAYD VQQDEw02OWMzNmZhZC00NTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2plueHTgHhNFeK1WPJ9JQTz84J0LPZeKdL+U0MDZ0iis3T//boNavSvR3U0i lEVMHCeFvUztF9naopegf0AOU+Iyi0MwcC/ikT+vkIGFwcxri54DVtR2EswzBZZQ QW/LRlrPCYIhUVZN0y1ZxsHQk0Mf56awhiurBG3z0M8e8QTB54JI3tHynN4kYtFl jMGtNjV8999Nxj+KvtsEC7cl5RgylDB9nI+3jENx82jxhqvPdZB1PrF5VuZpn5Ig DfhSWSV6WgCBtmN6R3q1NmaXld3k1ZEE5Eu7nvCl6LptDnp2AquFIpuMwOomYd5X RTnTHIBGR4WNZtRX/i5cyatrFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIaCP2W9 sNksG32SykXfjqqYutKAMB8GA1UdIwQYMBaAFCEaAh6KvfTb8gcIImzIMo/SQTHf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEYxMS9FMTYzODkxMDlB N0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlOdnlCd2dpYk1neWo5SkJN ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lSb0NIb3E5OU52eUJ3Z2liTWd5ajlKQk1kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEYxMS9FMTYzODkxMDlBN0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlO dnlCd2dpYk1neWo5SkJNZDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkDNW6fW4Mj6G8H11JLPYNAFLaDGanVWrThcdWOGUYuqJ/h1a1QAQaszmz2Gz mqJfu/h5//UOIxUC86TqI49sHxhIGII0oRq2li7axtLIRRwQoy5NL0KYO3xWdY51 PuXBLc7rWfxBwSRJpFzntd58kgIIkrRxn7YzlyPEANQfsU8g0dgAhDmvWodDLi0G 6d4E2+qSPp6HPDJocYs0+N1oFK61LWbvPC8I5Nr9OC9jbDJTJKZHfqtbtzuaBKUk Wx+jDPaCkucTK3Bh/3JAPeg3hcV8s8jdhuhVhss/JBD75XEC2VtxHaC9rdHaSTfK planyr6QTA+CTCJkRKSDXPFzAg== -----END CERTIFICATE-----Generated at Thu Mar 26 19:15:37 2026 by rpki-client