$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft File: IRoCHoq99NvyBwgibMgyj9JBMd8.mft (raw, json) Hash identifier: pzPVblQm0TjgsCJpr0LG3YyIGNRoi9a0gKwqLPK7yPM= Subject key identifier: E0:BD:92:BD:47:11:BB:5B:F3:86:6A:61:BC:10:E1:7E:1E:E6:6B:14 Authority key identifier: 21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF Certificate issuer: /CN=A9170F11/serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft Manifest number: 0132 Signing time: Mon 01 Jun 2026 06:24:32 +0000 Manifest this update: Mon 01 Jun 2026 06:24:32 +0000 Manifest next update: Mon 08 Jun 2026 06:24:32 +0000 Files and hashes: 1: IRoCHoq99NvyBwgibMgyj9JBMd8.crl (hash: RH0jqja62NIc9IRdMUx1RKOLOCuJLJpfEWIQB3QRTIM=) 2: 0029F6EAD41F11F0B1A47183C4F9AE02.roa (hash: F5fxp0etukBOn3CKrqqukvD42srMqVoYQvkoxd9V4Hk=) 3: 00926CA2D41F11F092947183C4F9AE02.roa (hash: wqkUfeM+QKVS8qmAEVsiC5c7QZ1bu80LeTA1QCGTnpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 06:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11, serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Validity Not Before: Jun 1 06:24:32 2026 GMT Not After : Jun 8 06:24:32 2026 GMT Subject: CN=6a1d25a0-2f2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:fa:79:36:05:cd:62:02:dd:2e:32:fa:d8:7f: 9d:d3:22:9e:b8:2f:47:91:bf:8d:41:4a:bd:1c:5b: eb:6d:1f:54:bb:c6:46:6f:4b:c2:f4:f2:16:ec:b8: 11:cd:5d:2e:ce:18:af:00:b6:02:a5:09:6f:dd:1e: 05:a6:60:bf:d1:06:fe:ca:d4:7e:6a:4a:b8:a4:81: 59:01:bd:00:b7:88:f0:b0:f4:19:d2:b3:73:42:48: b5:1c:d1:6b:32:b8:1f:25:ca:42:e0:86:ff:b2:12: 52:3e:e9:70:0f:49:79:a1:6a:f2:ad:1c:9c:65:b2: ce:a5:e9:5a:a1:00:b5:57:66:4e:fc:af:82:06:e6: 33:11:fe:98:33:6b:5d:a5:8a:cf:7a:a2:b8:24:52: 83:0d:4c:d7:95:3a:14:da:25:10:67:db:32:21:d3: b9:03:56:54:ea:cf:86:8b:43:98:57:aa:6c:d1:38: af:ea:50:a4:2a:19:4d:de:14:76:13:d4:11:15:cf: c9:17:ae:f4:ab:04:54:c8:3e:81:60:2a:a8:15:45: 4f:0f:e2:fa:5c:df:ba:f0:31:d3:78:39:6d:5a:9a: f5:2f:7a:7d:60:de:73:d8:58:33:8f:31:f3:e3:77: 25:15:0b:e3:f8:f7:ad:f9:b6:f9:d7:61:1c:03:9f: f6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:BD:92:BD:47:11:BB:5B:F3:86:6A:61:BC:10:E1:7E:1E:E6:6B:14 X509v3 Authority Key Identifier: keyid:21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:dd:93:41:f3:1c:74:15:36:17:e7:87:20:ea:54:6e:e4:dd: 66:ab:17:4f:53:ad:48:75:46:c5:7e:47:0f:24:a3:b4:62:b8: 7c:b7:b2:5a:f3:10:e4:cb:41:97:2a:12:66:d1:29:cc:db:d9: f5:22:dd:23:91:60:2d:b1:af:40:d2:f8:92:4f:91:02:ef:83: ef:e9:fe:6c:a5:b5:b3:76:9a:cd:18:f6:4a:88:06:9b:13:91: 34:f1:28:b4:58:8a:c3:49:48:45:9d:a5:22:49:c3:01:22:28: 20:33:e3:36:19:eb:37:30:e6:48:1f:c3:3b:1a:83:05:5c:81: bb:1e:de:bf:bc:8d:75:8f:35:1a:47:73:1b:7c:53:4e:9f:10: 28:4f:86:44:32:79:11:61:05:3c:fe:32:fa:dc:57:19:2d:31: 07:c6:ad:1b:9e:56:1c:88:c8:1d:85:5a:25:a0:47:7c:66:c9: 8d:39:03:ad:42:67:8e:3c:d4:a2:fb:73:17:6b:61:af:43:da: 25:5b:b5:fb:a9:7a:2d:67:55:9f:42:ad:e5:28:bf:07:c0:d7: b6:0b:a3:1e:8f:52:d1:18:9c:48:2e:a1:2b:b9:49:7c:51:39: 41:1d:6b:5d:41:ee:45:81:f2:7a:51:e8:fa:87:f0:f3:ec:e7: ff:43:c5:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBGMTExMTAvBgNVBAUTKDIxMUEwMjFFOEFCREY0REJGMjA3MDgyMjZDQzgzMjhG RDI0MTMxREYwHhcNMjYwNjAxMDYyNDMyWhcNMjYwNjA4MDYyNDMyWjAYMRYwFAYD VQQDEw02YTFkMjVhMC0yZjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk/p5NgXNYgLdLjL62H+d0yKeuC9Hkb+NQUq9HFvrbR9Uu8ZGb0vC9PIW7LgR zV0uzhivALYCpQlv3R4FpmC/0Qb+ytR+akq4pIFZAb0At4jwsPQZ0rNzQki1HNFr MrgfJcpC4Ib/shJSPulwD0l5oWryrRycZbLOpelaoQC1V2ZO/K+CBuYzEf6YM2td pYrPeqK4JFKDDUzXlToU2iUQZ9syIdO5A1ZU6s+Gi0OYV6ps0Tiv6lCkKhlN3hR2 E9QRFc/JF670qwRUyD6BYCqoFUVPD+L6XN+68DHTeDltWpr1L3p9YN5z2FgzjzHz 43clFQvj+Pet+bb512EcA5/2QwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOC9kr1H Ebtb84ZqYbwQ4X4e5msUMB8GA1UdIwQYMBaAFCEaAh6KvfTb8gcIImzIMo/SQTHf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEYxMS9FMTYzODkxMDlB N0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlOdnlCd2dpYk1neWo5SkJN ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lSb0NIb3E5OU52eUJ3Z2liTWd5ajlKQk1kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEYxMS9FMTYzODkxMDlBN0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlO dnlCd2dpYk1neWo5SkJNZDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAD92TQfMcdBU2F+eHIOpUbuTdZqsXT1OtSHVGxX5HDySjtGK4fLeyWvMQ5MtB lyoSZtEpzNvZ9SLdI5FgLbGvQNL4kk+RAu+D7+n+bKW1s3aazRj2SogGmxORNPEo tFiKw0lIRZ2lIknDASIoIDPjNhnrNzDmSB/DOxqDBVyBux7ev7yNdY81GkdzG3xT Tp8QKE+GRDJ5EWEFPP4y+txXGS0xB8atG55WHIjIHYVaJaBHfGbJjTkDrUJnjjzU ovtzF2thr0PaJVu1+6l6LWdVn0Kt5Si/B8DXtgujHo9S0RicSC6hK7lJfFE5QR1r XUHuRYHyelHo+ofw8+zn/0PF0w== -----END CERTIFICATE-----Generated at Tue Jun 2 21:23:39 2026 by rpki-client