$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: jtU5b/gK+ns0PtIcbuYEzgYCqwnXuUqV1OPoeMUb2Oc= Subject key identifier: A8:B4:5B:3C:D0:0C:8F:9B:87:A9:6E:14:FA:68:14:DD:F6:57:B3:02 Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 07A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0CA0 Signing time: Sat 04 Apr 2026 18:18:17 +0000 Manifest this update: Sat 04 Apr 2026 18:18:17 +0000 Manifest next update: Sat 11 Apr 2026 18:18:17 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: yU2ijGPZ0WbST1nwu2DkTTYDM8VUlttBmRfBA6Q1HYM=) 2: D6F76118231C11EF84144357C4F9AE02.roa (hash: yUneVRwb6AK5oOkcJJhtc6mqN9EGhX27fjT+u8BimTY=) 3: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: ZlqFcYcT6pIlzRDg6ZnJ/8IVNFun6dYuHQ2aoW0BchI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1952 (0x7a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Apr 4 18:18:17 2026 GMT Not After : Apr 11 18:18:17 2026 GMT Subject: CN=69d155e9-9f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4f:d0:77:26:ba:79:aa:f2:4e:93:b0:63:4f: 78:c1:b7:ee:8d:ed:6e:57:8d:d3:fd:37:b2:b9:eb: 84:1e:ef:91:e3:90:88:98:78:66:2b:78:4b:a4:27: 63:e1:d7:e3:a4:6d:b4:e2:d5:af:8b:f0:7d:b4:70: 42:dc:85:18:35:fd:85:bd:ee:8d:6c:b8:8e:99:c1: 43:a4:18:12:f2:a8:bc:04:63:c7:8f:9e:80:e2:58: 1c:79:24:88:37:0e:89:31:bb:72:08:b7:bf:1b:b8: 88:2b:ab:7c:d7:08:ab:e2:03:11:66:98:78:51:78: 06:b2:21:c2:2e:24:19:8d:c1:5b:1a:63:35:a8:7d: b5:a7:02:5c:ac:8a:5a:1a:7c:64:4d:5b:3c:d1:4c: 43:01:8f:5f:16:47:3e:85:ca:32:bd:bb:60:22:f9: af:a6:00:61:be:a3:9e:6f:50:a4:c9:85:ca:e8:a8: 20:55:21:01:3a:81:c8:bf:17:1b:a0:80:ad:76:68: 28:d2:b5:c5:e7:9d:c1:75:b1:d3:f2:fd:d9:a3:63: 51:60:13:b8:d1:99:b6:b6:77:ff:ed:7c:d9:93:97: 89:da:a4:b4:95:47:95:1f:17:5d:ed:46:53:a9:08: 0f:68:12:a9:c4:29:00:0c:30:31:f1:a3:58:47:7e: 82:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:B4:5B:3C:D0:0C:8F:9B:87:A9:6E:14:FA:68:14:DD:F6:57:B3:02 X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:8a:d3:e1:9c:c9:d7:5b:71:3b:d9:25:a5:23:70:99:e6:18: f1:2c:97:12:7f:50:e8:aa:2b:82:e0:20:c6:84:94:90:a1:7d: 84:97:70:7b:b4:2d:3a:71:f7:29:19:57:50:04:73:70:3c:93: 55:17:e3:c4:7f:10:81:71:7f:32:0f:38:38:f3:8f:97:f7:ef: fb:f8:46:70:ff:ef:1d:31:8a:36:93:47:d5:2f:73:58:93:3f: 3d:7d:b4:4a:10:15:30:b4:0a:06:bf:2b:57:f2:e4:d2:59:00: d0:b2:35:d0:40:c7:f0:d1:62:2f:70:d7:db:7f:bf:33:cc:30: f7:82:2c:93:5e:aa:ba:9b:6f:50:1a:d3:6b:0f:b8:85:69:a1: d7:89:83:ce:2b:e2:8d:e7:23:08:70:c1:67:70:48:2b:9c:54: b8:8e:91:83:6c:9f:a8:ad:20:41:47:b4:42:4b:97:9d:3b:de: f2:80:8d:2b:c3:7a:dc:e8:7e:4f:82:80:ac:e5:4d:66:e2:81: 61:03:c5:fa:37:34:b1:03:35:5a:b7:3b:ff:70:f0:f3:f6:08: 4f:00:c6:d2:1b:be:73:86:2e:65:71:c5:d6:30:22:3a:d5:88: 84:b0:34:ae:b7:74:68:8e:89:71:33:33:5c:27:93:ed:24:31: 32:7c:43:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjYwNDA0MTgxODE3WhcNMjYwNDExMTgxODE3WjAYMRYwFAYD VQQDEw02OWQxNTVlOS05ZjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxk/Qdya6earyTpOwY094wbfuje1uV43T/TeyueuEHu+R45CImHhmK3hLpCdj 4dfjpG204tWvi/B9tHBC3IUYNf2Fve6NbLiOmcFDpBgS8qi8BGPHj56A4lgceSSI Nw6JMbtyCLe/G7iIK6t81wir4gMRZph4UXgGsiHCLiQZjcFbGmM1qH21pwJcrIpa GnxkTVs80UxDAY9fFkc+hcoyvbtgIvmvpgBhvqOeb1CkyYXK6KggVSEBOoHIvxcb oICtdmgo0rXF553BdbHT8v3Zo2NRYBO40Zm2tnf/7XzZk5eJ2qS0lUeVHxdd7UZT qQgPaBKpxCkADDAx8aNYR36CZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKi0WzzQ DI+bh6luFPpoFN32V7MCMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAD4rT4ZzJ11txO9klpSNwmeYY8SyXEn9Q6KorguAgxoSUkKF9hJdwe7QtOnH3 KRlXUARzcDyTVRfjxH8QgXF/Mg84OPOPl/fv+/hGcP/vHTGKNpNH1S9zWJM/PX20 ShAVMLQKBr8rV/Lk0lkA0LI10EDH8NFiL3DX23+/M8ww94Isk16quptvUBrTaw+4 hWmh14mDzivijecjCHDBZ3BIK5xUuI6Rg2yfqK0gQUe0QkuXnTve8oCNK8N63Oh+ T4KArOVNZuKBYQPF+jc0sQM1Wrc7/3Dw8/YITwDG0hu+c4YuZXHF1jAiOtWIhLA0 rrd0aI6JcTMzXCeT7SQxMnxDqQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:06:04 2026 by rpki-client