$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: IYibuH+T39GYOgdcurYEbgOvz2+OaQaBAmLbcs/imnU= Subject key identifier: AD:91:7E:F6:A6:A6:02:49:8A:7A:70:58:5F:48:8F:3E:D5:9C:09:A3 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1E09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1D7C Signing time: Sun 26 Apr 2026 16:04:21 +0000 Manifest this update: Sun 26 Apr 2026 16:04:20 +0000 Manifest next update: Sun 03 May 2026 16:04:20 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: jeQM9jJRyk1sX+mGV4VNApGs//pijE1m+0L4JtmiF80=) 2: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: e2z23i28QBdo2imUKS15DY31HQcf+q8FZJ7ZqEZMi64=) 3: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: n5wlbfzu1nkCUtXLjTCqtermWiOQnIuS2LGZIh8GrSA=) 4: 3322FCF6B8B611F09EE22E11C4F9AE02.roa (hash: vPw7xATzv0O2yNoJH3ofUOV61xAOAH8pdJ0rodOC4Lw=) 5: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: pQIAQO2x1Y98U1wPMfCQmXLie1tIp4nTPRrtQeF4Db8=) 6: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: /vJS5mvYoaeQ7e5TPVVBx64c5yOqiYznmnqStY9GYWY=) 7: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: OyJ386kUL4gGWlM9zenD8Or9GBx/nawzJcbJiadjXEs=) 8: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: Ruxh9vs1IEEY8sUgeoqbiAjkOA3NIO1oE49c/aSiPyo=) 9: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: syfI5VBGCCOaxinq66/rQy0KiVO/nQZm82G8XJ0s/uQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 16:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7689 (0x1e09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Apr 26 16:04:20 2026 GMT Not After : May 3 16:04:20 2026 GMT Subject: CN=69ee3785-de9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:eb:4c:7b:3f:79:d1:33:8b:68:a4:44:ca:5d: 74:92:1c:24:03:a6:0c:9a:30:b5:bd:03:67:b6:f9: 99:62:d9:72:cd:2d:9e:a3:44:c4:53:0f:7f:12:73: ae:28:29:62:43:d6:45:ef:52:fb:30:8b:27:ff:5b: 60:6f:2f:4d:ec:a7:fb:8c:e1:10:b2:5b:84:8b:9e: c4:7a:73:de:cf:ff:20:c1:a9:42:ca:7d:8c:35:04: d4:3c:2d:7c:d9:25:bb:55:69:68:85:fa:ec:be:da: d7:97:da:a9:77:f0:81:4d:ae:bb:89:73:14:b2:83: 10:72:ba:5f:79:40:a3:85:b6:ba:87:55:cf:1c:7f: 8f:4f:d6:06:b6:96:05:13:13:fc:6e:f6:a6:e6:7c: a6:9d:56:d8:31:1f:ee:0e:b4:74:be:c8:8e:ec:87: 79:bb:5e:13:75:bd:9f:50:f2:03:2f:a3:89:cf:23: ba:f3:ef:14:ef:ea:d0:66:0b:b3:d1:c5:60:cc:be: 11:5a:7d:2f:4a:e3:10:00:48:23:a3:e5:44:d6:0c: 15:b7:69:16:af:65:71:b9:17:8b:f5:1b:5d:3b:ac: 78:c7:96:86:bd:ef:9b:84:77:98:36:13:50:45:07: 79:8f:ec:15:6d:24:2c:ff:32:3b:10:de:9f:c8:60: 0f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:91:7E:F6:A6:A6:02:49:8A:7A:70:58:5F:48:8F:3E:D5:9C:09:A3 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:2f:dc:e6:83:35:df:3c:9b:46:ef:05:b5:0f:b5:0a:6d:64: dc:e3:8d:02:6b:a1:61:61:14:34:a7:f8:c5:f1:99:bb:88:35: 15:c3:23:02:82:03:32:32:e6:e1:c7:bc:0f:c3:c3:c8:e3:47: 1f:eb:ef:e4:24:9c:16:53:27:ed:4f:8f:63:3c:db:d0:03:2b: 62:0a:c7:ca:f6:03:ca:3b:0a:2a:02:09:c9:9a:35:b2:f3:cc: 1b:47:f2:0e:75:ae:42:4f:98:49:29:a6:24:70:c3:bd:6d:8b: 6a:9c:a5:75:64:4c:3e:81:c0:ed:83:af:0e:90:d5:0b:f1:f2: 37:40:b2:9f:3c:bc:63:bf:fa:88:ae:1c:c7:9c:1c:09:3f:19: 66:b9:98:b6:49:04:c0:6f:83:d1:4e:74:5f:44:04:90:c3:7a: 39:d6:ec:e5:62:75:45:85:20:3e:a5:f9:3f:75:40:7c:e8:99: 13:ca:d6:60:57:90:61:1e:c5:c7:14:3c:6f:c8:5b:d4:65:1e: ca:e7:a1:85:57:d1:55:dd:f0:3e:38:22:2b:be:b6:3e:c0:e3: 76:c2:36:f0:93:13:ee:75:09:dd:d4:30:4f:99:a5:5b:0a:94: dc:2c:fc:fb:ee:78:1e:05:e1:c1:3d:da:59:cc:c8:75:eb:62: d9:c4:c3:f9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjYwNDI2MTYwNDIwWhcNMjYwNTAzMTYwNDIwWjAYMRYwFAYD VQQDEw02OWVlMzc4NS1kZTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwutMez950TOLaKREyl10khwkA6YMmjC1vQNntvmZYtlyzS2eo0TEUw9/EnOu KCliQ9ZF71L7MIsn/1tgby9N7Kf7jOEQsluEi57EenPez/8gwalCyn2MNQTUPC18 2SW7VWlohfrsvtrXl9qpd/CBTa67iXMUsoMQcrpfeUCjhba6h1XPHH+PT9YGtpYF ExP8bvam5nymnVbYMR/uDrR0vsiO7Id5u14Tdb2fUPIDL6OJzyO68+8U7+rQZguz 0cVgzL4RWn0vSuMQAEgjo+VE1gwVt2kWr2VxuReL9RtdO6x4x5aGve+bhHeYNhNQ RQd5j+wVbSQs/zI7EN6fyGAPdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK2Rfvam pgJJinpwWF9Ijz7VnAmjMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQi/c5oM13zybRu8FtQ+1Cm1k3OONAmuhYWEUNKf4xfGZu4g1FcMjAoIDMjLm 4ce8D8PDyONHH+vv5CScFlMn7U+PYzzb0AMrYgrHyvYDyjsKKgIJyZo1svPMG0fy DnWuQk+YSSmmJHDDvW2LapyldWRMPoHA7YOvDpDVC/HyN0Cynzy8Y7/6iK4cx5wc CT8ZZrmYtkkEwG+D0U50X0QEkMN6Odbs5WJ1RYUgPqX5P3VAfOiZE8rWYFeQYR7F xxQ8b8hb1GUeyuehhVfRVd3wPjgiK762PsDjdsI28JMT7nUJ3dQwT5mlWwqU3Cz8 ++54HgXhwT3aWczIdeti2cTD+Q== -----END CERTIFICATE-----Generated at Tue Apr 28 08:40:50 2026 by rpki-client