$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: ECcEeOKwyZYis6YRDRjBESjNTBgxUey6VXmnVz5Z60U= Subject key identifier: 05:24:32:9E:F5:2C:5B:AE:31:23:49:1F:9F:F5:9A:4D:8E:8D:8F:9D Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1DF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1D64 Signing time: Thu 12 Mar 2026 16:03:07 +0000 Manifest this update: Thu 12 Mar 2026 16:03:06 +0000 Manifest next update: Thu 19 Mar 2026 16:03:06 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: +7dP7pn9/YbMNpN1hbHVELQb4zxre0yTOHV1v/nFVpA=) 2: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: /vJS5mvYoaeQ7e5TPVVBx64c5yOqiYznmnqStY9GYWY=) 3: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: Ruxh9vs1IEEY8sUgeoqbiAjkOA3NIO1oE49c/aSiPyo=) 4: 3322FCF6B8B611F09EE22E11C4F9AE02.roa (hash: vPw7xATzv0O2yNoJH3ofUOV61xAOAH8pdJ0rodOC4Lw=) 5: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: syfI5VBGCCOaxinq66/rQy0KiVO/nQZm82G8XJ0s/uQ=) 6: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: n5wlbfzu1nkCUtXLjTCqtermWiOQnIuS2LGZIh8GrSA=) 7: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: pQIAQO2x1Y98U1wPMfCQmXLie1tIp4nTPRrtQeF4Db8=) 8: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: e2z23i28QBdo2imUKS15DY31HQcf+q8FZJ7ZqEZMi64=) 9: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: OyJ386kUL4gGWlM9zenD8Or9GBx/nawzJcbJiadjXEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7665 (0x1df1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Mar 12 16:03:06 2026 GMT Not After : Mar 19 16:03:06 2026 GMT Subject: CN=69b2e3bb-3fa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ce:33:ac:41:26:66:2e:a2:ae:a4:23:74:bc: 18:05:bb:b5:11:ac:02:05:fe:4b:04:a8:fb:27:0a: c1:17:9a:67:81:0e:f5:6c:d9:a6:b4:3d:6f:bf:bf: 60:2d:2e:59:73:d5:7b:41:07:04:7c:ba:40:a0:19: 8d:77:75:76:b5:e9:b0:ba:93:6a:a7:6c:4f:ce:ec: fb:c9:46:d2:28:e9:f4:e7:7c:40:26:73:93:cc:05: d5:88:c0:30:0c:0b:3f:a0:b3:aa:cd:b7:5e:31:3f: 52:b5:05:e9:41:71:aa:e4:09:a3:df:96:7c:7c:58: 45:ba:aa:49:c1:db:c9:e1:69:c2:ec:68:c2:30:0f: ae:04:b4:45:c9:a4:a9:2c:6a:a1:e6:c0:2b:f4:f1: 93:3d:36:28:bc:b2:81:93:a7:d2:79:70:3e:61:4b: cc:0b:70:e4:af:e6:ce:1d:a3:d7:2d:68:f0:02:dc: 2f:73:09:61:86:ee:ed:b2:1a:5b:bb:b3:2f:85:1d: c6:1d:42:e4:e5:a4:c1:10:92:e9:ff:8f:1f:dd:d1: 44:e9:a9:75:ab:f4:bb:88:0c:33:b3:f3:66:a6:dc: 23:00:6b:42:e4:0f:29:b1:81:08:aa:bf:41:d2:dc: 84:0e:76:94:bb:8a:5c:76:2b:69:82:a7:68:10:54: 1d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:24:32:9E:F5:2C:5B:AE:31:23:49:1F:9F:F5:9A:4D:8E:8D:8F:9D X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:31:f9:5d:72:17:bf:7c:a0:db:16:b4:79:1c:44:9b:06:d9: 63:c4:4c:44:39:ba:15:79:16:3a:7b:30:99:a6:f3:11:9d:a4: e0:a6:c7:eb:fa:53:a0:29:dc:f5:58:75:b0:eb:92:4c:9a:0f: 8d:aa:bf:84:67:47:4b:65:8a:d7:bb:1b:d7:4a:91:84:6b:0a: 28:e6:5d:5d:75:b6:f1:eb:82:af:c7:40:83:f0:4b:88:c6:e8: ef:eb:fb:ad:69:7a:a1:b1:85:2f:a1:6c:60:38:d3:9e:85:40: a0:d3:11:47:2e:c1:59:31:bf:21:60:1c:33:90:c4:16:16:ed: f3:ce:1c:e5:cb:61:e3:59:7a:c7:47:ff:63:2b:7b:03:46:ee: fa:cd:ee:53:af:17:e4:ff:34:81:c0:b3:c2:70:a0:44:92:1d: 8c:d8:88:b7:1d:c2:9a:b9:19:22:03:57:f4:ca:b1:1a:33:1c: d0:a1:38:2d:f4:c7:69:24:b7:b5:6a:eb:87:69:3f:00:7a:1d: 5c:98:c2:fb:03:dd:ac:10:06:ae:ac:c9:9c:c1:20:e7:0a:5a: 4f:1c:47:48:d5:f9:7a:80:c4:f2:73:ae:4b:74:17:14:15:c2: 4d:48:57:1b:6b:5d:e4:8a:87:7f:aa:8d:71:9f:84:af:14:ea: c6:c5:1c:99 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjYwMzEyMTYwMzA2WhcNMjYwMzE5MTYwMzA2WjAYMRYwFAYD VQQDEw02OWIyZTNiYi0zZmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmc4zrEEmZi6irqQjdLwYBbu1EawCBf5LBKj7JwrBF5pngQ71bNmmtD1vv79g LS5Zc9V7QQcEfLpAoBmNd3V2temwupNqp2xPzuz7yUbSKOn053xAJnOTzAXViMAw DAs/oLOqzbdeMT9StQXpQXGq5Amj35Z8fFhFuqpJwdvJ4WnC7GjCMA+uBLRFyaSp LGqh5sAr9PGTPTYovLKBk6fSeXA+YUvMC3Dkr+bOHaPXLWjwAtwvcwlhhu7tshpb u7MvhR3GHULk5aTBEJLp/48f3dFE6al1q/S7iAwzs/NmptwjAGtC5A8psYEIqr9B 0tyEDnaUu4pcditpgqdoEFQd8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAUkMp71 LFuuMSNJH5/1mk2OjY+dMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAATH5XXIXv3yg2xa0eRxEmwbZY8RMRDm6FXkWOnswmabzEZ2k4KbH6/pToCnc 9Vh1sOuSTJoPjaq/hGdHS2WK17sb10qRhGsKKOZdXXW28euCr8dAg/BLiMbo7+v7 rWl6obGFL6FsYDjTnoVAoNMRRy7BWTG/IWAcM5DEFhbt884c5cth41l6x0f/Yyt7 A0bu+s3uU68X5P80gcCzwnCgRJIdjNiItx3CmrkZIgNX9MqxGjMc0KE4LfTHaSS3 tWrrh2k/AHodXJjC+wPdrBAGrqzJnMEg5wpaTxxHSNX5eoDE8nOuS3QXFBXCTUhX G2td5IqHf6qNcZ+ErxTqxsUcmQ== -----END CERTIFICATE-----Generated at Sat Mar 14 02:20:19 2026 by rpki-client