$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: iAEDlECRHaqMEe+EjlARaazC8n9o6zy9C1uYdP/Zohc= Subject key identifier: 1B:54:B5:01:98:A6:BE:CE:A7:F2:B9:CB:22:73:66:84:E1:FA:A7:EF Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 0859 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 0840 Signing time: Tue 12 May 2026 20:59:37 +0000 Manifest this update: Tue 12 May 2026 20:59:37 +0000 Manifest next update: Tue 19 May 2026 20:59:37 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: YpxwX9tbpTUyxIAB1s75MzG/NaaInplKpoMzkp/a7MY=) 2: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: /CLRSnh9CYZydXvA+OqGb8vFSm9uhhWBDEam371xnzI=) 3: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: leO2JqGKVdqcNczUkd0IAjGki7oPjl2kK1j+hgCcFLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2137 (0x859) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: May 12 20:59:37 2026 GMT Not After : May 19 20:59:37 2026 GMT Subject: CN=6a0394b9-036e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:85:76:f9:69:3e:1d:57:a3:b8:e5:f9:df:c4: 23:0b:c5:f5:db:e2:62:ef:db:3c:53:78:99:64:42: c1:e2:d8:03:28:6b:7d:ed:d8:f0:7c:42:81:7c:ca: a1:37:53:fa:69:76:40:e0:37:07:43:a9:f6:40:dc: fc:1b:df:5a:b8:ff:92:93:88:23:af:5f:82:12:7a: ed:a3:7d:a6:ad:19:5d:16:4f:0d:2b:57:66:df:43: c7:25:1e:90:6c:3e:a9:0a:84:94:9c:c7:6a:07:65: c7:8e:91:90:76:94:71:dd:7c:08:53:28:e2:f2:e4: 88:dc:90:b7:65:15:88:b5:94:df:e9:e0:61:bf:07: 68:29:94:58:e8:44:16:81:f4:8d:db:9d:5f:f6:54: 49:48:0a:4f:a7:ab:37:7a:37:16:85:d6:cb:1b:eb: 3d:3e:35:68:8b:61:d1:dc:2f:5d:1f:12:71:15:37: 51:90:0e:e8:dc:b8:4b:5a:b9:c7:91:20:d2:ea:81: 70:da:22:47:58:c9:c9:25:f0:40:3f:ad:8b:a8:ae: b7:4c:13:59:8d:6a:a5:5e:4b:a5:bd:c5:b5:fa:f2: 5a:25:2c:45:6d:29:86:4e:eb:29:bd:d8:8c:41:c7: 1a:8b:59:98:e3:2b:ed:1c:78:57:8a:44:a9:64:63: bc:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:54:B5:01:98:A6:BE:CE:A7:F2:B9:CB:22:73:66:84:E1:FA:A7:EF X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:4f:fa:f6:46:75:48:2e:04:ab:70:39:b3:b5:7f:46:76:9e: 3f:76:98:5a:c5:73:ae:4b:c8:66:ab:e3:46:0e:23:6d:42:3b: 8c:03:4b:83:ca:9d:74:6a:5e:cf:f7:44:10:cf:91:a5:8f:20: 83:40:eb:d4:70:04:7c:c0:73:c0:86:cb:4f:77:02:4e:92:85: 49:ca:13:75:61:50:e6:d9:13:f5:aa:17:34:28:4f:fb:09:0b: 3f:ea:72:7c:14:c4:2a:dc:05:07:e1:34:d4:f8:8b:c0:63:b6: 3d:61:d0:f7:6b:b6:c9:2a:a7:2c:f8:17:8c:d8:15:87:94:eb: 22:33:0a:29:5d:0a:46:84:39:20:c9:ac:19:2e:99:65:b6:46: 0f:73:11:45:b5:32:12:64:2d:77:1b:32:86:3d:84:03:ec:40: e5:b2:43:13:1c:ce:15:27:14:ed:06:5e:53:c5:9c:0a:25:7d: dd:dc:45:03:17:eb:01:22:b1:eb:d5:0b:14:16:55:48:50:e6: 9b:37:85:27:e2:07:65:c9:97:df:bb:52:4d:5b:a7:59:b4:09: a9:29:ea:47:15:7d:68:17:fb:3d:a0:44:fb:3c:be:5a:80:de: b9:17:ca:3c:81:ca:50:a4:1f:75:a7:92:68:ef:ba:e7:f1:48: 55:5d:c3:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjYwNTEyMjA1OTM3WhcNMjYwNTE5MjA1OTM3WjAYMRYwFAYD VQQDEw02YTAzOTRiOS0wMzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoV2+Wk+HVejuOX538QjC8X12+Ji79s8U3iZZELB4tgDKGt97djwfEKBfMqh N1P6aXZA4DcHQ6n2QNz8G99auP+Sk4gjr1+CEnrto32mrRldFk8NK1dm30PHJR6Q bD6pCoSUnMdqB2XHjpGQdpRx3XwIUyji8uSI3JC3ZRWItZTf6eBhvwdoKZRY6EQW gfSN251f9lRJSApPp6s3ejcWhdbLG+s9PjVoi2HR3C9dHxJxFTdRkA7o3LhLWrnH kSDS6oFw2iJHWMnJJfBAP62LqK63TBNZjWqlXkulvcW1+vJaJSxFbSmGTuspvdiM Qccai1mY4yvtHHhXikSpZGO8RwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBtUtQGY pr7Op/K5yyJzZoTh+qfvMB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdk/69kZ1SC4Eq3A5s7V/RnaeP3aYWsVzrkvIZqvjRg4jbUI7jANLg8qddGpe z/dEEM+RpY8gg0Dr1HAEfMBzwIbLT3cCTpKFScoTdWFQ5tkT9aoXNChP+wkLP+py fBTEKtwFB+E01PiLwGO2PWHQ92u2ySqnLPgXjNgVh5TrIjMKKV0KRoQ5IMmsGS6Z ZbZGD3MRRbUyEmQtdxsyhj2EA+xA5bJDExzOFScU7QZeU8WcCiV93dxFAxfrASKx 69ULFBZVSFDmmzeFJ+IHZcmX37tSTVunWbQJqSnqRxV9aBf7PaBE+zy+WoDeuRfK PIHKUKQfdaeSaO+65/FIVV3DDg== -----END CERTIFICATE-----Generated at Wed May 13 14:54:11 2026 by rpki-client