$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: yizBKdJWxn/0+jXCmkPcd1gGWKHWJtPbA/dfdzmau+E= Subject key identifier: E1:FD:30:E6:40:C4:86:7F:A9:BD:4E:2C:8E:FF:B1:00:A4:A0:74:CC Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 078E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0C8E Signing time: Mon 02 Mar 2026 00:42:25 +0000 Manifest this update: Mon 02 Mar 2026 00:42:24 +0000 Manifest next update: Mon 09 Mar 2026 00:42:24 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: CRKz22+J6CLXtOhWK6sK5U6ZZp3d/Ra9g9XunfI3xEg=) 2: D6F76118231C11EF84144357C4F9AE02.roa (hash: yUneVRwb6AK5oOkcJJhtc6mqN9EGhX27fjT+u8BimTY=) 3: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: ZlqFcYcT6pIlzRDg6ZnJ/8IVNFun6dYuHQ2aoW0BchI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1934 (0x78e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Mar 2 00:42:24 2026 GMT Not After : Mar 9 00:42:24 2026 GMT Subject: CN=69a4dcf0-d964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:35:c6:e4:12:19:ae:a2:bb:9d:3d:5b:a5:a1: 5c:14:fc:df:6f:d3:11:00:bf:5a:b7:92:9d:f0:8b: 85:06:66:02:93:e2:08:f9:c8:55:96:96:1c:b0:f5: 52:cc:fb:db:da:2c:37:74:95:c3:35:a6:d1:ef:c7: ad:30:f4:56:ad:4d:08:8e:1f:02:94:dc:3d:0e:99: b3:99:a9:4c:79:e6:0d:09:fc:e3:7f:94:6f:2b:99: 81:51:0f:9a:b9:a8:c6:06:54:5e:a5:44:c8:f0:73: 1f:e7:28:39:d9:4c:00:e7:3c:b6:43:e0:98:9c:9e: c3:d5:ff:67:93:d9:3c:7e:2e:7c:d2:8d:6f:01:1b: 7b:89:5c:9b:e1:89:37:aa:45:41:6d:c9:34:f8:6d: 9e:57:65:64:ee:45:1e:bf:5f:38:2e:36:27:38:8a: 94:f2:78:69:f0:22:3a:73:85:a1:25:61:e3:84:70: 61:79:07:72:16:e1:99:c7:7d:aa:28:be:da:6a:02: c7:ef:69:24:b9:2b:55:72:ac:9e:ce:44:87:ec:27: d9:28:ab:9e:fe:1e:b0:98:7e:e1:e9:69:32:12:74: 4c:5d:ba:e3:45:6b:3b:e8:32:60:10:37:54:dc:24: 3f:f6:80:1b:a3:fe:17:2d:de:9b:48:6a:e5:29:ac: de:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:FD:30:E6:40:C4:86:7F:A9:BD:4E:2C:8E:FF:B1:00:A4:A0:74:CC X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:16:14:e1:c0:4d:99:0b:7f:48:ae:23:c1:93:1d:96:81:3a: 0d:7a:14:f8:0b:58:a9:54:fc:97:86:3a:58:81:5f:70:4a:db: bd:91:c7:76:b8:c2:fb:ff:7a:11:c4:be:03:a2:ce:28:5f:72: a7:b1:e2:61:f9:f7:27:6a:0f:e3:07:df:54:66:d8:3a:ba:ea: 4f:98:7e:4b:55:3a:ef:67:59:87:22:48:4b:c7:4e:e8:6b:f2: 76:c7:b0:fb:04:f6:d7:a3:35:4e:91:7e:91:64:9f:db:85:99: d4:f8:70:6e:3d:57:24:6d:70:54:da:d6:52:34:fa:c2:83:71: f8:b1:0b:52:c1:49:2d:08:07:14:41:f3:98:14:b5:7a:3c:a8: d0:6d:e7:4c:0d:26:6a:26:cf:22:45:75:e1:d2:7c:c5:05:69: d9:93:db:9b:46:67:d0:12:81:15:d3:0f:d3:8c:15:69:fb:a7: 36:06:82:11:43:8e:cd:6a:e2:2c:84:ba:3e:a0:ac:45:da:90: 5c:e8:93:e7:cb:0f:c3:3d:22:93:e3:6b:7d:a5:9e:ab:91:3b: 3d:79:82:fc:70:a7:d0:42:28:99:73:86:f3:aa:19:89:e7:90: 66:4c:97:f9:c2:5c:35:cf:64:fa:8c:76:4c:95:41:34:0e:b4: d6:15:8d:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjYwMzAyMDA0MjI0WhcNMjYwMzA5MDA0MjI0WjAYMRYwFAYD VQQDEw02OWE0ZGNmMC1kOTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1TXG5BIZrqK7nT1bpaFcFPzfb9MRAL9at5Kd8IuFBmYCk+II+chVlpYcsPVS zPvb2iw3dJXDNabR78etMPRWrU0Ijh8ClNw9DpmzmalMeeYNCfzjf5RvK5mBUQ+a uajGBlRepUTI8HMf5yg52UwA5zy2Q+CYnJ7D1f9nk9k8fi580o1vARt7iVyb4Yk3 qkVBbck0+G2eV2Vk7kUev184LjYnOIqU8nhp8CI6c4WhJWHjhHBheQdyFuGZx32q KL7aagLH72kkuStVcqyezkSH7CfZKKue/h6wmH7h6WkyEnRMXbrjRWs76DJgEDdU 3CQ/9oAbo/4XLd6bSGrlKazeiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOH9MOZA xIZ/qb1OLI7/sQCkoHTMMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAyRYU4cBNmQt/SK4jwZMdloE6DXoU+AtYqVT8l4Y6WIFfcErbvZHHdrjC+/96 EcS+A6LOKF9yp7HiYfn3J2oP4wffVGbYOrrqT5h+S1U672dZhyJIS8dO6Gvydsew +wT216M1TpF+kWSf24WZ1Phwbj1XJG1wVNrWUjT6woNx+LELUsFJLQgHFEHzmBS1 ejyo0G3nTA0maibPIkV14dJ8xQVp2ZPbm0Zn0BKBFdMP04wVafunNgaCEUOOzWri LIS6PqCsRdqQXOiT58sPwz0ik+NrfaWeq5E7PXmC/HCn0EIomXOG86oZieeQZkyX +cJcNc9k+ox2TJVBNA601hWN0w== -----END CERTIFICATE-----Generated at Mon Mar 2 17:58:27 2026 by rpki-client