$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: DZtoRaQCNhwWbNu/eUmuLqjDqqXsTkI5aEINbk3NEv4= Subject key identifier: 6B:2B:10:20:E8:05:38:7F:AD:A5:97:76:84:F0:C6:6A:0B:44:95:C4 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1E2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1D99 Signing time: Fri 12 Jun 2026 16:06:25 +0000 Manifest this update: Fri 12 Jun 2026 16:06:24 +0000 Manifest next update: Fri 19 Jun 2026 16:06:24 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: COCdHgx3WYlVPX50xJwVEfwvO0aSxTtcbx1FSuNi7IM=) 2: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: Ruxh9vs1IEEY8sUgeoqbiAjkOA3NIO1oE49c/aSiPyo=) 3: 89D77C1263E611F1A397C3898947A888.roa (hash: +LtnAMRUFK3JIOi8M+DYcqqrXZEkdeiHfttYzNgdVsY=) 4: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: syfI5VBGCCOaxinq66/rQy0KiVO/nQZm82G8XJ0s/uQ=) 5: 3322FCF6B8B611F09EE22E11C4F9AE02.roa (hash: vPw7xATzv0O2yNoJH3ofUOV61xAOAH8pdJ0rodOC4Lw=) 6: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: e2z23i28QBdo2imUKS15DY31HQcf+q8FZJ7ZqEZMi64=) 7: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: OyJ386kUL4gGWlM9zenD8Or9GBx/nawzJcbJiadjXEs=) 8: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: /vJS5mvYoaeQ7e5TPVVBx64c5yOqiYznmnqStY9GYWY=) 9: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: FZUA9ujh5y+qedLhZYHjBMCqwCiia7dWK5HBk6r/R3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 14:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7722 (0x1e2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Jun 12 16:06:24 2026 GMT Not After : Jun 19 16:06:24 2026 GMT Subject: CN=6a2c2e80-07e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ff:da:53:2c:30:b3:0b:e1:ae:d8:0c:5d:d3: 36:35:94:3d:2a:6d:fa:1c:15:57:f1:26:65:ff:95: 06:50:10:77:27:a5:2f:0f:7b:f0:26:81:16:70:79: c8:1e:1d:6c:9f:de:36:b5:09:71:29:eb:c8:2f:8c: 19:2b:af:2a:61:c9:a6:f5:94:13:a5:50:84:71:a1: cc:b3:3f:77:ad:bc:5c:f3:6f:60:4f:5a:15:d9:42: e8:fd:74:f0:02:af:19:a0:07:e6:cd:86:df:05:0f: bb:67:1c:e4:f0:f5:41:bb:bd:d7:2b:77:03:c5:1b: 38:c3:5c:e8:ea:26:95:40:1a:4e:74:56:42:9b:e9: 01:c0:d1:d6:71:98:62:c7:a9:3c:b6:8f:8b:ff:0b: 68:cd:23:fe:90:f8:2c:17:8c:ff:fa:9d:03:b6:16: 0e:74:d4:61:68:f3:94:23:49:e4:78:78:62:16:52: 7b:1a:0f:0a:1b:21:26:ee:b1:33:b1:b3:04:60:96: 33:75:30:b4:4a:f1:ac:0e:22:b0:2c:df:d8:da:71: f5:c8:fb:ad:fe:0f:53:e8:1c:d7:5b:4a:2a:37:54: b7:8e:71:15:2d:7a:fa:12:a2:03:e9:fb:07:7c:d4: 51:3f:41:2a:67:c1:a9:16:89:44:8d:ba:53:eb:0d: 22:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2B:10:20:E8:05:38:7F:AD:A5:97:76:84:F0:C6:6A:0B:44:95:C4 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:68:c9:80:f7:f0:9a:35:96:c4:5a:ed:25:4a:d8:3b:9d:fe: 89:b7:41:3e:40:32:2b:54:28:c7:ef:22:77:e3:1d:ec:b3:b4: 00:d3:1d:b4:48:e6:4c:53:ed:bd:de:2e:82:36:50:75:e9:60: 7f:50:ec:7f:cd:c3:57:24:c4:63:90:85:6e:43:46:be:b3:32: 17:cc:86:ee:4e:f7:1c:9d:f9:f2:eb:f1:d5:b7:ce:dc:6d:da: cc:a5:b6:94:b1:11:cf:5b:1e:8e:df:11:a1:ab:17:e1:01:0c: 02:9a:eb:57:c3:43:52:70:de:38:51:02:b5:a8:41:20:d2:6f: 05:9d:b8:e2:01:b7:1a:98:34:f9:a7:5b:0d:4f:34:c5:d8:b1: 9f:d5:f7:3b:b1:20:ce:0c:f6:6a:dc:c1:92:2d:bd:94:b1:41: f5:66:54:f1:27:ba:4c:96:a5:68:ac:05:ba:0e:47:9f:14:62: 90:7c:07:9b:88:51:bc:c1:ba:8b:f9:e4:6f:0d:4f:ae:d6:93: ba:1b:b9:0f:18:2b:f9:15:44:4d:92:a4:2d:ed:c5:9e:30:9e: c0:22:8c:7b:63:ff:fe:1e:ca:db:b1:a9:2b:29:3c:81:c5:01: ef:ae:07:0e:a0:e8:2f:b0:cc:1a:07:41:e6:8a:0a:e0:40:86: 26:06:19:0a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjYwNjEyMTYwNjI0WhcNMjYwNjE5MTYwNjI0WjAYMRYwFAYD VQQDEw02YTJjMmU4MC0wN2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq//aUywwswvhrtgMXdM2NZQ9Km36HBVX8SZl/5UGUBB3J6UvD3vwJoEWcHnI Hh1sn942tQlxKevIL4wZK68qYcmm9ZQTpVCEcaHMsz93rbxc829gT1oV2ULo/XTw Aq8ZoAfmzYbfBQ+7Zxzk8PVBu73XK3cDxRs4w1zo6iaVQBpOdFZCm+kBwNHWcZhi x6k8to+L/wtozSP+kPgsF4z/+p0DthYOdNRhaPOUI0nkeHhiFlJ7Gg8KGyEm7rEz sbMEYJYzdTC0SvGsDiKwLN/Y2nH1yPut/g9T6BzXW0oqN1S3jnEVLXr6EqID6fsH fNRRP0EqZ8GpFolEjbpT6w0iSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGsrECDo BTh/raWXdoTwxmoLRJXEMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxGjJgPfwmjWWxFrtJUrYO53+ibdBPkAyK1Qox+8id+Md7LO0ANMdtEjmTFPt vd4ugjZQdelgf1Dsf83DVyTEY5CFbkNGvrMyF8yG7k73HJ358uvx1bfO3G3azKW2 lLERz1sejt8RoasX4QEMAprrV8NDUnDeOFECtahBINJvBZ244gG3Gpg0+adbDU80 xdixn9X3O7Egzgz2atzBki29lLFB9WZU8Se6TJalaKwFug5HnxRikHwHm4hRvMG6 i/nkbw1PrtaTuhu5Dxgr+RVETZKkLe3FnjCewCKMe2P//h7K27GpKyk8gcUB764H DqDoL7DMGgdB5ooK4ECGJgYZCg== -----END CERTIFICATE-----Generated at Fri Jun 12 18:35:11 2026 by rpki-client