$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: /LiscCG9rUlkssg5PnonwqPmm2aYw+LUFe8J+Svm/9g= Subject key identifier: 7F:29:3D:94:98:8A:A9:EC:CF:BB:D5:F5:9D:3B:59:1E:40:A4:57:CD Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 0840 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 0827 Signing time: Tue 24 Mar 2026 20:44:11 +0000 Manifest this update: Tue 24 Mar 2026 20:44:11 +0000 Manifest next update: Tue 31 Mar 2026 20:44:11 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: 47fQBPlQX3Q/NfkHeHWP/I7nqUed+YLPiVdLhnVEpuM=) 2: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: leO2JqGKVdqcNczUkd0IAjGki7oPjl2kK1j+hgCcFLQ=) 3: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: /CLRSnh9CYZydXvA+OqGb8vFSm9uhhWBDEam371xnzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2112 (0x840) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: Mar 24 20:44:11 2026 GMT Not After : Mar 31 20:44:11 2026 GMT Subject: CN=69c2f79b-6e21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d0:3f:e1:8c:40:11:ca:f2:79:64:e5:84:f7: 42:aa:f7:b3:5e:91:5f:1c:27:e0:b6:b6:f9:ff:b9: 9f:e6:41:0d:8c:4a:34:6b:2d:40:e8:a5:b3:e6:03: e9:cc:11:e1:2b:79:5c:45:fc:85:75:d0:ce:37:00: da:ca:99:ec:61:a0:cb:89:4d:bb:bd:c1:8b:41:c7: 4f:58:54:46:1e:5b:8c:e1:fb:45:f4:9a:39:80:7d: 3e:44:c4:79:78:21:86:33:9c:6e:03:61:b8:d1:dc: 74:77:e4:74:23:b7:9b:2b:f4:8f:6a:6c:be:3a:f2: 85:51:3d:e8:38:92:cf:4d:86:2b:0e:cf:06:6f:10: f6:63:bd:0c:26:eb:6d:9a:f1:7b:0b:40:c8:90:09: 3b:3e:1e:e7:84:ae:e7:ba:97:8c:11:6b:68:b1:dd: 69:de:70:5a:9d:68:e9:e0:99:fc:fd:06:27:bd:b6: 11:f2:44:9b:bb:97:b4:8a:1d:f6:d7:9b:02:f9:77: 89:19:d7:7f:0d:fa:23:78:df:55:4a:80:34:a2:a7: 8e:4f:89:31:03:c1:7f:d5:3a:31:40:52:22:b9:2a: 6a:01:28:cb:a6:81:02:e7:ab:5a:e6:51:e8:4e:c2: 57:95:d5:52:5a:2c:dc:ad:6c:ed:4b:8d:8f:93:ad: 67:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:29:3D:94:98:8A:A9:EC:CF:BB:D5:F5:9D:3B:59:1E:40:A4:57:CD X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:10:30:86:86:d5:59:15:ac:7a:db:6d:8d:64:b8:04:45:75: 90:9c:c3:6c:6e:e7:4c:6a:9d:a7:ee:23:7f:f0:3e:dd:c1:1a: 4e:d5:61:6d:e3:fc:fd:f8:81:93:2d:9a:49:77:a0:d0:48:0b: 96:ec:10:f3:9b:59:97:c3:20:08:15:f1:f4:29:6b:fd:f5:6f: 2c:a8:f3:54:30:4f:3e:7c:e8:fe:14:4b:6f:e8:83:81:76:4e: f6:28:d8:8a:ac:81:77:79:60:48:c3:0c:5b:55:d5:bd:03:66: 14:fa:f4:05:45:af:09:f6:8c:52:01:eb:4a:4b:93:4a:3e:99: 3f:13:09:c5:d3:67:26:93:61:1e:0a:6f:f7:ec:b8:80:f4:3f: 57:5d:6a:35:94:9a:ec:59:47:b2:1a:c8:74:3e:c8:c0:aa:00: d7:2b:78:1a:34:ae:20:c5:33:53:49:6b:fa:22:6e:e4:8f:ec: 72:54:0d:26:da:f6:c9:23:6b:35:dc:d9:1c:f8:89:43:25:31: 68:52:cc:30:90:94:7a:93:d4:02:4d:34:ed:64:ab:45:55:92: d5:33:8a:88:87:c1:0f:cf:ae:1f:48:e8:6f:0e:00:0b:d7:0d: 6f:38:4a:c9:7d:17:bf:1c:49:10:98:f4:d0:b9:f7:a2:61:6a: b2:24:82:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjYwMzI0MjA0NDExWhcNMjYwMzMxMjA0NDExWjAYMRYwFAYD VQQDEw02OWMyZjc5Yi02ZTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNA/4YxAEcryeWTlhPdCqvezXpFfHCfgtrb5/7mf5kENjEo0ay1A6KWz5gPp zBHhK3lcRfyFddDONwDaypnsYaDLiU27vcGLQcdPWFRGHluM4ftF9Jo5gH0+RMR5 eCGGM5xuA2G40dx0d+R0I7ebK/SPamy+OvKFUT3oOJLPTYYrDs8GbxD2Y70MJutt mvF7C0DIkAk7Ph7nhK7nupeMEWtosd1p3nBanWjp4Jn8/QYnvbYR8kSbu5e0ih32 15sC+XeJGdd/DfojeN9VSoA0oqeOT4kxA8F/1ToxQFIiuSpqASjLpoEC56ta5lHo TsJXldVSWizcrWztS42Pk61nmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH8pPZSY iqnsz7vV9Z07WR5ApFfNMB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALhAwhobVWRWsetttjWS4BEV1kJzDbG7nTGqdp+4jf/A+3cEaTtVhbeP8/fiB ky2aSXeg0EgLluwQ85tZl8MgCBXx9Clr/fVvLKjzVDBPPnzo/hRLb+iDgXZO9ijY iqyBd3lgSMMMW1XVvQNmFPr0BUWvCfaMUgHrSkuTSj6ZPxMJxdNnJpNhHgpv9+y4 gPQ/V11qNZSa7FlHshrIdD7IwKoA1yt4GjSuIMUzU0lr+iJu5I/sclQNJtr2ySNr NdzZHPiJQyUxaFLMMJCUepPUAk007WSrRVWS1TOKiIfBD8+uH0jobw4AC9cNbzhK yX0XvxxJEJj00Ln3omFqsiSCbQ== -----END CERTIFICATE-----Generated at Thu Mar 26 20:43:31 2026 by rpki-client