$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft File: IRoCHoq99NvyBwgibMgyj9JBMd8.mft (raw, json) Hash identifier: k+yUZMPtLoHuR+/Nj2mbxHNFvXeFB3L//XoWfrUfNQw= Subject key identifier: 83:80:B1:89:91:00:B9:10:D6:62:35:A6:76:88:01:57:38:DC:D9:25 Authority key identifier: 21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF Certificate issuer: /CN=A9170F11/serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft Manifest number: 0104 Signing time: Tue 03 Mar 2026 05:47:07 +0000 Manifest this update: Tue 03 Mar 2026 05:47:06 +0000 Manifest next update: Tue 10 Mar 2026 05:47:06 +0000 Files and hashes: 1: IRoCHoq99NvyBwgibMgyj9JBMd8.crl (hash: MXSDZ0U64iWbCtkCQFjckOxN5TYgu2H7W5wzsrmtsRI=) 2: 00926CA2D41F11F092947183C4F9AE02.roa (hash: wqkUfeM+QKVS8qmAEVsiC5c7QZ1bu80LeTA1QCGTnpw=) 3: 0029F6EAD41F11F0B1A47183C4F9AE02.roa (hash: F5fxp0etukBOn3CKrqqukvD42srMqVoYQvkoxd9V4Hk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:47:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11, serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Validity Not Before: Mar 3 05:47:06 2026 GMT Not After : Mar 10 05:47:06 2026 GMT Subject: CN=69a675da-a793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d3:95:62:0e:7c:a2:f2:31:9e:b3:72:55:fb: 90:a2:da:e8:07:be:15:ad:6f:7d:5a:b1:5e:8b:af: ee:44:c1:53:8e:1d:b6:be:56:88:81:79:96:aa:1f: 6e:37:3a:7e:7a:57:29:a3:09:59:69:2c:e2:b6:21: 79:37:58:56:88:8a:e5:2e:a9:c2:62:64:83:8f:a8: 56:11:6b:10:3e:89:aa:d6:60:79:45:46:a3:0c:26: c2:72:02:d3:78:d2:38:d0:f3:25:4b:8f:b7:fd:0a: de:ce:fb:bd:ec:ad:f4:de:6b:8f:97:7e:a4:52:ed: ff:d7:9c:11:b0:28:41:db:50:e4:df:d5:8c:3e:ea: 78:45:29:ec:22:52:19:99:3c:10:04:81:33:0a:29: 9b:ba:21:fb:8d:33:57:36:6e:4a:7a:46:c8:e8:6a: 44:12:d3:dc:76:d0:30:48:b9:19:19:00:cc:90:51: 4d:41:52:f8:59:67:b7:6e:60:fe:e1:fc:b9:5c:fe: f5:61:d0:e4:c5:03:1c:be:79:2f:37:f8:b2:39:b5: 7f:8e:41:41:fc:80:d5:d9:ae:75:74:80:65:9d:c7: 1a:b9:7d:04:ac:38:1f:36:6c:0c:11:8b:b9:e5:7d: f0:00:e1:32:94:d9:76:55:3a:18:0a:d4:08:99:88: 95:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:80:B1:89:91:00:B9:10:D6:62:35:A6:76:88:01:57:38:DC:D9:25 X509v3 Authority Key Identifier: keyid:21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:79:49:04:3e:d3:25:fd:c8:f1:35:8d:c5:8b:ab:56:79:f0: a6:61:bc:82:b3:e3:96:c8:94:bc:ae:58:a0:69:4d:4e:6e:50: 8d:25:a4:64:f4:bb:c0:ce:6b:59:5a:fa:ab:9a:b0:c4:51:1f: 23:82:62:7c:43:54:f2:32:67:99:27:ab:30:59:c2:31:6f:70: e9:1f:35:5b:58:8a:7a:f2:d0:48:85:13:b5:53:5c:94:c3:dc: 17:a3:82:c0:63:cf:11:f2:cd:3c:b7:6b:39:8a:4e:7f:8c:12: 59:5d:0e:b9:94:df:d3:39:fd:d1:2e:17:f2:07:57:e2:a5:08: 84:04:02:d1:a3:b8:8c:5a:28:21:ee:73:56:58:58:86:8e:16: 4a:7c:43:bd:23:a3:26:2d:5c:7a:9f:2a:5c:44:f0:05:a7:55: 8f:9d:84:f9:80:99:82:94:25:b6:3d:9e:5e:24:0b:34:00:bc: 5f:fb:1b:53:da:9d:6e:00:66:9d:c5:0c:b2:6b:ff:ac:85:fb: 51:7b:c1:02:4f:16:26:1a:e5:a1:67:39:44:07:da:2f:43:9b: 9f:55:fb:64:08:38:44:34:0a:db:7c:36:8c:b4:37:7a:53:3d: 76:5a:37:a3:23:31:ca:a8:a4:26:d5:08:cb:84:d7:a7:03:d6: 44:30:7a:48 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBGMTExMTAvBgNVBAUTKDIxMUEwMjFFOEFCREY0REJGMjA3MDgyMjZDQzgzMjhG RDI0MTMxREYwHhcNMjYwMzAzMDU0NzA2WhcNMjYwMzEwMDU0NzA2WjAYMRYwFAYD VQQDEw02OWE2NzVkYS1hNzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm9OVYg58ovIxnrNyVfuQotroB74VrW99WrFei6/uRMFTjh22vlaIgXmWqh9u Nzp+elcpowlZaSzitiF5N1hWiIrlLqnCYmSDj6hWEWsQPomq1mB5RUajDCbCcgLT eNI40PMlS4+3/Qrezvu97K303muPl36kUu3/15wRsChB21Dk39WMPup4RSnsIlIZ mTwQBIEzCimbuiH7jTNXNm5KekbI6GpEEtPcdtAwSLkZGQDMkFFNQVL4WWe3bmD+ 4fy5XP71YdDkxQMcvnkvN/iyObV/jkFB/IDV2a51dIBlnccauX0ErDgfNmwMEYu5 5X3wAOEylNl2VToYCtQImYiV2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIOAsYmR ALkQ1mI1pnaIAVc43NklMB8GA1UdIwQYMBaAFCEaAh6KvfTb8gcIImzIMo/SQTHf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEYxMS9FMTYzODkxMDlB N0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlOdnlCd2dpYk1neWo5SkJN ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lSb0NIb3E5OU52eUJ3Z2liTWd5ajlKQk1kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEYxMS9FMTYzODkxMDlBN0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlO dnlCd2dpYk1neWo5SkJNZDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX3lJBD7TJf3I8TWNxYurVnnwpmG8grPjlsiUvK5YoGlNTm5QjSWkZPS7wM5r WVr6q5qwxFEfI4JifENU8jJnmSerMFnCMW9w6R81W1iKevLQSIUTtVNclMPcF6OC wGPPEfLNPLdrOYpOf4wSWV0OuZTf0zn90S4X8gdX4qUIhAQC0aO4jFooIe5zVlhY ho4WSnxDvSOjJi1cep8qXETwBadVj52E+YCZgpQltj2eXiQLNAC8X/sbU9qdbgBm ncUMsmv/rIX7UXvBAk8WJhrloWc5RAfaL0Obn1X7ZAg4RDQK23w2jLQ3elM9dlo3 oyMxyqikJtUIy4TXpwPWRDB6SA== -----END CERTIFICATE-----Generated at Wed Mar 4 08:32:25 2026 by rpki-client