$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft File: IRoCHoq99NvyBwgibMgyj9JBMd8.mft (raw, json) Hash identifier: iMjfET4btyJhGy/VJAOHiA1R7jFvaiUIgC8azlID8Iw= Subject key identifier: 39:8A:E1:F0:60:7C:C0:7F:A9:08:5D:D9:81:37:7C:F9:BF:C6:E2:F8 Authority key identifier: 21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF Certificate issuer: /CN=A9170F11/serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft Manifest number: 0128 Signing time: Wed 13 May 2026 05:52:06 +0000 Manifest this update: Wed 13 May 2026 05:52:05 +0000 Manifest next update: Wed 20 May 2026 05:52:05 +0000 Files and hashes: 1: IRoCHoq99NvyBwgibMgyj9JBMd8.crl (hash: YVGdtqBaFWpb+pSahqbwtz+rQeQ0ho4ukSTPJQDXU80=) 2: 00926CA2D41F11F092947183C4F9AE02.roa (hash: wqkUfeM+QKVS8qmAEVsiC5c7QZ1bu80LeTA1QCGTnpw=) 3: 0029F6EAD41F11F0B1A47183C4F9AE02.roa (hash: F5fxp0etukBOn3CKrqqukvD42srMqVoYQvkoxd9V4Hk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11, serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Validity Not Before: May 13 05:52:05 2026 GMT Not After : May 20 05:52:05 2026 GMT Subject: CN=6a041186-49e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a3:41:c2:16:31:7f:bf:ec:66:e9:c2:16:e9: 4c:21:fa:56:aa:53:bd:78:3f:05:96:38:eb:eb:1b: cf:91:4a:45:af:b3:78:40:8d:1d:dd:29:be:59:44: cd:cb:0a:89:f8:87:68:d7:4d:4a:a3:1f:45:ad:94: 7e:f5:53:3d:00:09:0b:20:bf:d5:37:3a:1e:a6:d9: fa:e9:b7:b9:07:0a:6b:ff:5f:e5:72:63:e6:dd:42: cb:46:7c:8c:1d:ae:9f:49:e7:92:f9:f3:08:57:78: 66:ca:d6:0a:c5:0f:f6:fa:78:20:68:f7:c7:b9:8b: 4b:df:79:67:58:99:44:89:1b:c3:b8:46:f5:17:97: 50:d5:8c:8e:af:75:0d:04:f3:e9:b4:51:cc:f7:11: 99:87:3a:ac:c4:19:f2:0e:51:fd:a0:a0:0f:a7:48: 05:ff:59:4b:3c:b3:78:c7:de:cf:e5:31:67:12:46: 8e:60:cf:54:53:82:e6:9d:cc:01:29:f4:e1:e2:62: 66:b6:ca:f0:67:8b:d5:fa:00:79:33:e9:8f:b2:5b: 71:19:a2:57:dc:5a:8c:70:0b:1b:4a:e4:49:36:32: 3c:dc:94:44:ed:7a:f7:c8:41:fa:be:06:f2:82:7a: 41:a6:c2:14:fb:e4:8d:12:bc:c5:30:a4:4d:25:61: 03:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:8A:E1:F0:60:7C:C0:7F:A9:08:5D:D9:81:37:7C:F9:BF:C6:E2:F8 X509v3 Authority Key Identifier: keyid:21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:56:91:65:84:f1:f9:97:9a:a7:0c:84:41:54:f0:73:3a:40: c2:9c:0c:89:38:a3:71:96:f2:75:54:29:af:cf:13:43:c3:c9: e6:e9:53:ce:07:de:fd:74:a9:0f:8d:ec:b0:a8:a5:9b:d8:13: 18:ab:8b:39:84:a7:b4:a0:ff:64:a8:38:27:cf:7c:04:4f:1f: e6:00:e5:0d:23:5d:6d:2b:90:9c:0d:e5:c4:67:62:87:fd:1e: 02:c3:4d:6a:3a:3d:de:17:3d:89:a0:f0:8d:af:dd:ea:c2:d8: 47:c3:b1:ab:80:fe:d5:bc:86:d1:13:95:ab:bd:d4:42:fb:73: 20:fb:2d:fa:e7:16:4f:2f:3a:56:60:a2:a4:30:29:70:da:5e: dc:fa:fb:54:86:5f:d4:12:9c:45:ac:13:41:7e:80:19:b0:29: 6b:69:15:40:83:73:b3:ec:23:46:e0:56:d8:d3:ab:6e:d3:0e: 7c:54:45:1b:c8:2b:86:c9:a5:28:b5:63:94:2a:53:90:0b:a2: a6:f8:93:5d:f9:0f:0b:f8:7a:78:fa:70:2b:ba:fc:dc:45:40: 22:62:67:3c:96:25:50:1e:63:33:2a:32:3a:16:d0:5b:b9:1c: 7a:7e:07:82:cb:dd:0a:89:8e:15:4b:1d:31:62:e8:4c:6a:24: 51:08:9a:d7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBGMTExMTAvBgNVBAUTKDIxMUEwMjFFOEFCREY0REJGMjA3MDgyMjZDQzgzMjhG RDI0MTMxREYwHhcNMjYwNTEzMDU1MjA1WhcNMjYwNTIwMDU1MjA1WjAYMRYwFAYD VQQDEw02YTA0MTE4Ni00OWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoqNBwhYxf7/sZunCFulMIfpWqlO9eD8Fljjr6xvPkUpFr7N4QI0d3Sm+WUTN ywqJ+Ido101Kox9FrZR+9VM9AAkLIL/VNzoeptn66be5Bwpr/1/lcmPm3ULLRnyM Ha6fSeeS+fMIV3hmytYKxQ/2+nggaPfHuYtL33lnWJlEiRvDuEb1F5dQ1YyOr3UN BPPptFHM9xGZhzqsxBnyDlH9oKAPp0gF/1lLPLN4x97P5TFnEkaOYM9UU4LmncwB KfTh4mJmtsrwZ4vV+gB5M+mPsltxGaJX3FqMcAsbSuRJNjI83JRE7Xr3yEH6vgby gnpBpsIU++SNErzFMKRNJWEDawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDmK4fBg fMB/qQhd2YE3fPm/xuL4MB8GA1UdIwQYMBaAFCEaAh6KvfTb8gcIImzIMo/SQTHf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEYxMS9FMTYzODkxMDlB N0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlOdnlCd2dpYk1neWo5SkJN ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lSb0NIb3E5OU52eUJ3Z2liTWd5ajlKQk1kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEYxMS9FMTYzODkxMDlBN0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlO dnlCd2dpYk1neWo5SkJNZDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAw1aRZYTx+ZeapwyEQVTwczpAwpwMiTijcZbydVQpr88TQ8PJ5ulTzgfe/XSp D43ssKilm9gTGKuLOYSntKD/ZKg4J898BE8f5gDlDSNdbSuQnA3lxGdih/0eAsNN ajo93hc9iaDwja/d6sLYR8Oxq4D+1byG0ROVq73UQvtzIPst+ucWTy86VmCipDAp cNpe3Pr7VIZf1BKcRawTQX6AGbApa2kVQINzs+wjRuBW2NOrbtMOfFRFG8grhsml KLVjlCpTkAuipviTXfkPC/h6ePpwK7r83EVAImJnPJYlUB5jMyoyOhbQW7kcen4H gsvdComOFUsdMWLoTGokUQia1w== -----END CERTIFICATE-----Generated at Wed May 13 15:52:12 2026 by rpki-client