$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: EBWr+nY5CbI553QyAzl5apimOjB7/XeNSNU8+tDFvOE= Subject key identifier: E8:F3:84:A4:C3:01:41:64:07:75:AD:A6:DB:D7:27:A8:33:A6:59:93 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1DF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1D6A Signing time: Tue 24 Mar 2026 16:04:19 +0000 Manifest this update: Tue 24 Mar 2026 16:04:18 +0000 Manifest next update: Tue 31 Mar 2026 16:04:18 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: sUle5Qu9hawSBM8QKg2czOqC+BPXLuvWBfKsRoFZGjs=) 2: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: Ruxh9vs1IEEY8sUgeoqbiAjkOA3NIO1oE49c/aSiPyo=) 3: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: e2z23i28QBdo2imUKS15DY31HQcf+q8FZJ7ZqEZMi64=) 4: 3322FCF6B8B611F09EE22E11C4F9AE02.roa (hash: vPw7xATzv0O2yNoJH3ofUOV61xAOAH8pdJ0rodOC4Lw=) 5: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: OyJ386kUL4gGWlM9zenD8Or9GBx/nawzJcbJiadjXEs=) 6: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: /vJS5mvYoaeQ7e5TPVVBx64c5yOqiYznmnqStY9GYWY=) 7: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: n5wlbfzu1nkCUtXLjTCqtermWiOQnIuS2LGZIh8GrSA=) 8: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: pQIAQO2x1Y98U1wPMfCQmXLie1tIp4nTPRrtQeF4Db8=) 9: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: syfI5VBGCCOaxinq66/rQy0KiVO/nQZm82G8XJ0s/uQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:04:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7671 (0x1df7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Mar 24 16:04:18 2026 GMT Not After : Mar 31 16:04:18 2026 GMT Subject: CN=69c2b602-124b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:85:e9:63:e7:c9:33:01:a6:1a:62:af:76:f6: 0c:d5:d4:74:70:aa:25:08:4e:4f:04:fd:23:10:1c: eb:5c:b2:9e:ee:8a:fd:c0:5b:e0:4a:2a:fa:de:ca: 9a:5b:13:bc:36:63:8a:80:09:80:b9:7c:3a:7e:9d: 42:5a:d1:80:b9:eb:6a:cc:df:92:ee:3e:1a:c6:74: ff:ae:70:43:44:d9:4c:9a:9a:68:42:e9:ab:b8:09: 53:4e:02:47:41:d1:de:0a:0e:8a:84:ce:67:8f:3a: ca:16:30:59:70:2a:5b:9e:0f:f1:4a:8e:40:32:99: c7:eb:6b:23:35:a1:7e:90:db:dc:20:91:33:09:37: 7c:13:dd:3a:3c:0b:c3:36:d2:f4:f5:21:e3:2d:e8: 71:b0:f7:db:b0:35:f0:56:b0:83:1d:54:ef:a3:c6: ff:4e:3a:e8:32:b8:7e:f0:5e:96:76:d3:be:cc:52: 96:a1:ce:4e:bd:c7:db:38:d0:e0:33:4a:8d:a1:9b: f9:2e:54:fd:39:af:7d:a2:16:52:15:10:a1:21:a0: 4e:29:19:32:22:61:2a:a6:97:f6:6c:a0:bb:5d:c1: e1:0e:ed:ee:99:20:10:5e:e3:d8:0b:d1:fb:d5:f2: 69:df:cb:32:7e:43:d1:b2:4b:a8:bd:9b:33:cd:47: c6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:F3:84:A4:C3:01:41:64:07:75:AD:A6:DB:D7:27:A8:33:A6:59:93 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:7e:b0:1b:21:8d:46:d4:2c:b8:4d:a0:06:97:e0:03:06:a5: aa:bf:2e:76:27:b7:86:5c:ee:e5:65:d5:c0:1b:1c:02:0a:c1: 98:ef:bb:88:1f:f1:48:b3:e0:43:f7:bd:a1:f0:23:52:67:7f: 0c:2b:8c:1d:2a:1a:54:04:46:f6:9d:b4:38:e0:ec:04:ed:bc: 5b:c0:58:7c:50:9c:36:2c:3b:41:0c:dd:21:30:b4:bd:a7:d1: f7:a6:6d:a0:69:5a:d8:22:a9:48:3b:92:8e:3c:60:d9:7f:1f: cd:11:5b:e4:02:ad:40:51:4d:90:b5:67:04:6f:90:1d:4c:cf: 00:5a:3f:82:53:80:71:ec:6c:21:45:e6:33:91:72:14:d5:90: e9:87:bb:cc:d3:00:78:f3:37:24:c0:a1:fa:49:82:03:35:50: 36:46:b1:f5:39:a3:f0:e5:66:95:cc:12:ae:82:ec:62:c0:4f: bb:76:fc:d1:21:2e:d2:4c:21:1b:95:e6:dd:f7:ef:f8:48:15: 73:81:ac:69:6e:87:23:c2:a5:dd:61:fb:a2:5a:4c:72:3f:9b: a8:c5:bb:84:94:48:5d:92:7d:d9:b1:0d:14:7a:64:03:3f:8c: 2a:95:08:f1:90:57:2e:ec:a7:63:a5:02:2a:c2:6d:79:16:b3: 89:b9:d5:b9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjYwMzI0MTYwNDE4WhcNMjYwMzMxMTYwNDE4WjAYMRYwFAYD VQQDEw02OWMyYjYwMi0xMjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmoXpY+fJMwGmGmKvdvYM1dR0cKolCE5PBP0jEBzrXLKe7or9wFvgSir63sqa WxO8NmOKgAmAuXw6fp1CWtGAuetqzN+S7j4axnT/rnBDRNlMmppoQumruAlTTgJH QdHeCg6KhM5njzrKFjBZcCpbng/xSo5AMpnH62sjNaF+kNvcIJEzCTd8E906PAvD NtL09SHjLehxsPfbsDXwVrCDHVTvo8b/TjroMrh+8F6WdtO+zFKWoc5OvcfbONDg M0qNoZv5LlT9Oa99ohZSFRChIaBOKRkyImEqppf2bKC7XcHhDu3umSAQXuPYC9H7 1fJp38syfkPRskuovZszzUfGUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOjzhKTD AUFkB3WtptvXJ6gzplmTMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAA36wGyGNRtQsuE2gBpfgAwalqr8udie3hlzu5WXVwBscAgrBmO+7iB/xSLPg Q/e9ofAjUmd/DCuMHSoaVARG9p20OODsBO28W8BYfFCcNiw7QQzdITC0vafR96Zt oGla2CKpSDuSjjxg2X8fzRFb5AKtQFFNkLVnBG+QHUzPAFo/glOAcexsIUXmM5Fy FNWQ6Ye7zNMAePM3JMCh+kmCAzVQNkax9Tmj8OVmlcwSroLsYsBPu3b80SEu0kwh G5Xm3ffv+EgVc4GsaW6HI8Kl3WH7olpMcj+bqMW7hJRIXZJ92bENFHpkAz+MKpUI 8ZBXLuynY6UCKsJteRazibnVuQ== -----END CERTIFICATE-----Generated at Thu Mar 26 17:20:46 2026 by rpki-client