$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: XS9fd4Smy/KIO9iNMN2Sb2/P3rrNqd4DcP15vNhncTM= Subject key identifier: 6F:52:43:62:36:30:17:71:31:18:A5:1C:52:DF:FC:F3:17:D8:D6:67 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1E11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1D84 Signing time: Tue 12 May 2026 16:08:56 +0000 Manifest this update: Tue 12 May 2026 16:08:56 +0000 Manifest next update: Tue 19 May 2026 16:08:56 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: 26KsX2UelbzhbvfQR5OUXLpctCaywJX9C8+oJJ+MWl4=) 2: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: Ruxh9vs1IEEY8sUgeoqbiAjkOA3NIO1oE49c/aSiPyo=) 3: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: syfI5VBGCCOaxinq66/rQy0KiVO/nQZm82G8XJ0s/uQ=) 4: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: e2z23i28QBdo2imUKS15DY31HQcf+q8FZJ7ZqEZMi64=) 5: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: /vJS5mvYoaeQ7e5TPVVBx64c5yOqiYznmnqStY9GYWY=) 6: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: pQIAQO2x1Y98U1wPMfCQmXLie1tIp4nTPRrtQeF4Db8=) 7: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: OyJ386kUL4gGWlM9zenD8Or9GBx/nawzJcbJiadjXEs=) 8: 3322FCF6B8B611F09EE22E11C4F9AE02.roa (hash: vPw7xATzv0O2yNoJH3ofUOV61xAOAH8pdJ0rodOC4Lw=) 9: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: n5wlbfzu1nkCUtXLjTCqtermWiOQnIuS2LGZIh8GrSA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:08:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7697 (0x1e11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: May 12 16:08:56 2026 GMT Not After : May 19 16:08:56 2026 GMT Subject: CN=6a035098-1c4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:90:7c:c0:92:07:66:9a:3c:75:10:30:a4:55: 5b:2e:58:11:0c:d2:43:70:48:a7:82:9e:01:6a:e1: 08:34:03:fc:d8:2f:db:aa:f0:5a:25:fa:51:02:c8: c2:ba:5e:55:65:ea:9e:35:f8:ca:99:15:e0:49:45: d5:c8:74:89:df:05:e0:34:24:5a:79:16:d5:d1:d3: be:13:a5:51:b2:5a:2b:63:48:db:d4:5f:85:10:c6: f4:16:e5:c8:4d:a4:4c:ca:35:fe:8b:8c:a5:de:c9: 52:8f:6f:e8:4b:c5:4a:f8:5b:d2:f8:99:43:20:35: 21:10:2e:f2:9d:6a:bc:ac:ab:f2:45:1a:41:05:ff: 96:a4:bf:52:8c:f3:82:f7:46:0c:ac:d9:1f:63:e1: e9:b4:b1:ba:09:f0:77:c2:c4:09:45:c8:74:c5:c3: 0d:59:22:8f:38:ca:98:0c:07:d2:11:a4:f5:aa:72: 96:b3:f8:00:7d:76:a1:43:6d:77:a5:3d:9f:87:3a: 54:ad:af:b6:ff:f6:c9:db:88:7e:9c:35:2d:c1:3a: a2:10:ca:3e:4e:2d:f9:95:b4:1b:9c:73:3a:0a:25: d0:5c:24:c2:ea:d7:ca:98:1b:01:fa:88:c4:c0:68: 31:15:96:2b:20:de:ed:95:d1:b1:02:85:8a:e8:f7: 95:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:52:43:62:36:30:17:71:31:18:A5:1C:52:DF:FC:F3:17:D8:D6:67 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:4e:01:1d:8c:cb:54:68:1a:9c:04:14:36:f7:77:bb:92:77: 5a:f4:a3:d4:63:3f:51:fd:c8:e9:98:04:e0:d9:b1:bf:57:18: 09:09:1a:ec:58:d5:36:da:fc:13:38:ee:e1:b3:c2:cb:a1:f4: dd:90:d1:c4:be:fe:70:b5:fe:3c:19:08:6f:f6:2d:1c:dd:78: b7:75:a8:6d:5c:72:f2:1d:8c:78:0a:00:4a:ee:1b:2f:48:da: a8:4e:6e:e2:a0:da:dc:30:f1:e0:d1:f8:20:98:a6:00:0a:e7: 47:d3:2c:ce:cf:b9:25:1a:c7:11:38:59:11:e3:b4:80:b7:88: 40:07:c2:94:55:51:65:b8:1b:b5:24:9c:83:97:5f:ce:c8:db: 16:c5:44:e6:d1:ec:88:ac:a2:ca:6e:99:c4:7d:bb:29:62:db: c4:93:5d:63:cd:14:66:f7:22:ef:f5:b5:be:f8:08:73:b7:fe: fa:dd:b9:1b:df:2b:16:7c:c4:7a:55:14:31:10:0d:51:d5:c1: d5:3a:89:38:fd:65:a4:cb:66:21:40:41:15:ed:21:b8:69:2c: ba:fc:85:2e:d7:7f:4e:2f:0a:ba:ec:d1:34:39:22:7e:d9:50: 83:6b:94:66:66:9c:c7:ec:c4:bf:90:63:a5:71:3c:b5:ff:69: 23:f8:73:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjYwNTEyMTYwODU2WhcNMjYwNTE5MTYwODU2WjAYMRYwFAYD VQQDEw02YTAzNTA5OC0xYzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pB8wJIHZpo8dRAwpFVbLlgRDNJDcEingp4BauEINAP82C/bqvBaJfpRAsjC ul5VZeqeNfjKmRXgSUXVyHSJ3wXgNCRaeRbV0dO+E6VRslorY0jb1F+FEMb0FuXI TaRMyjX+i4yl3slSj2/oS8VK+FvS+JlDIDUhEC7ynWq8rKvyRRpBBf+WpL9SjPOC 90YMrNkfY+HptLG6CfB3wsQJRch0xcMNWSKPOMqYDAfSEaT1qnKWs/gAfXahQ213 pT2fhzpUra+2//bJ24h+nDUtwTqiEMo+Ti35lbQbnHM6CiXQXCTC6tfKmBsB+ojE wGgxFZYrIN7tldGxAoWK6PeVLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG9SQ2I2 MBdxMRilHFLf/PMX2NZnMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACk4BHYzLVGganAQUNvd3u5J3WvSj1GM/Uf3I6ZgE4Nmxv1cYCQka7FjVNtr8 Ezju4bPCy6H03ZDRxL7+cLX+PBkIb/YtHN14t3WobVxy8h2MeAoASu4bL0jaqE5u 4qDa3DDx4NH4IJimAArnR9Mszs+5JRrHEThZEeO0gLeIQAfClFVRZbgbtSScg5df zsjbFsVE5tHsiKyiym6ZxH27KWLbxJNdY80UZvci7/W1vvgIc7f++t25G98rFnzE elUUMRANUdXB1TqJOP1lpMtmIUBBFe0huGksuvyFLtd/Ti8KuuzRNDkiftlQg2uU Zmacx+zEv5BjpXE8tf9pI/hzyw== -----END CERTIFICATE-----Generated at Wed May 13 05:49:40 2026 by rpki-client