
$ rpki-client -vvf rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft
File: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft (raw, json)
Hash identifier: 7CYiEDfVHIoxVhenHeQEhJWQRHSku9wDhRFad2f0EaI=
Subject key identifier: BB:1A:68:47:26:D0:F9:04:8A:32:12:A3:57:0C:BC:83:FF:87:D6:A7
Authority key identifier: 86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9
Certificate issuer: /CN=A916E64F/serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9
Certificate serial: 17BE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft
Manifest number: 17B0
Signing time: Thu 16 Apr 2026 16:30:55 +0000
Manifest this update: Thu 16 Apr 2026 16:30:54 +0000
Manifest next update: Thu 23 Apr 2026 16:30:54 +0000
Files and hashes: 1: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl (hash: B49sVUbeZEqJI4Ld0D10MeeJiO4YPaV2EhQl9U8Fzws=)
2: 89317668E87B11E785247983C4F9AE02.roa (hash: WoT/UgFr2xPvfCqBZ9PJ+h1sxdlnvxIa74Oqq+fRyVY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl
rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Apr 2026 16:30:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6078 (0x17be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916E64F, serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9
Validity
Not Before: Apr 16 16:30:54 2026 GMT
Not After : Apr 23 16:30:54 2026 GMT
Subject: CN=69e10ebf-e790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ab:62:06:55:2b:84:33:34:e1:98:d4:8d:44:
4b:3c:78:32:48:c7:fe:5e:60:bb:b8:f6:da:ff:bc:
d9:50:54:18:9b:c1:72:3d:bb:9c:51:ff:d7:69:d9:
0f:ae:c6:b6:71:48:6d:0c:37:de:d4:50:e8:6a:0f:
04:b0:13:43:7f:16:23:43:69:6d:60:0d:d5:2b:19:
a9:1b:d6:d0:66:b8:f3:73:05:d6:f0:86:a1:7e:dd:
a3:83:5d:2f:a2:8f:eb:60:1d:eb:fa:08:bb:36:4e:
ac:4d:50:db:46:7d:e2:4d:4d:df:26:83:69:f4:92:
6b:33:09:1a:f8:8d:a7:87:68:d8:b6:2f:57:da:22:
50:86:7b:61:99:29:7d:e7:81:fb:00:61:4f:67:2f:
cf:4d:86:73:3a:c8:af:4f:10:4e:08:85:f9:69:16:
af:1a:14:49:08:af:7f:76:0a:7c:08:cb:d9:54:f9:
d3:65:47:e3:9d:92:19:95:b7:d8:2b:64:69:04:f2:
8d:fd:5e:37:da:10:de:d2:77:8c:4f:97:bf:31:25:
95:96:f6:d2:e4:ea:93:29:5f:a8:aa:86:82:43:4f:
e9:6e:03:eb:8e:e4:b3:81:9d:00:64:f4:e7:9e:aa:
27:84:7d:d5:16:83:2e:fc:96:01:fe:9d:83:2d:48:
ef:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:1A:68:47:26:D0:F9:04:8A:32:12:A3:57:0C:BC:83:FF:87:D6:A7
X509v3 Authority Key Identifier:
keyid:86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2f:3e:a0:96:15:aa:c7:e2:c2:57:55:94:88:87:a5:31:4c:0a:
aa:84:71:ca:d8:68:40:9f:3b:63:78:68:37:38:0d:a5:8a:26:
14:b3:82:a3:a3:6d:1d:ee:e4:ee:73:ba:ad:5e:06:16:0f:74:
6d:25:d7:7b:90:91:19:c0:9a:be:4a:ab:f7:8a:f8:1d:7c:65:
90:f2:09:1d:00:7c:f5:70:95:77:ee:e3:8c:cd:e2:41:07:da:
11:64:fa:20:3d:e3:cb:e9:20:00:39:e0:6a:c1:85:37:98:e4:
87:16:1b:75:90:d1:c8:af:bf:f2:e0:d1:82:49:f2:43:c4:20:
35:6f:e9:30:67:3b:4b:49:0d:be:d6:17:9b:b7:5b:03:8d:4d:
4e:5f:e9:06:6f:04:98:42:0a:c2:dd:82:ff:9e:9d:b8:76:8b:
e9:18:dc:75:fc:15:b1:56:28:f7:60:20:6d:87:22:87:48:be:
84:04:04:2b:21:a0:f7:ae:2e:6b:41:b9:3b:78:fc:fc:8e:bb:
80:08:44:6c:7a:c5:3d:cd:77:26:cd:1e:c6:64:6f:ed:1c:25:
a2:a1:50:48:77:50:95:2f:88:ff:a8:6b:41:d6:e4:47:90:61:
37:26:3b:d0:91:0d:17:d2:42:ed:16:43:cd:c6:b8:48:07:5b:
23:2f:b1:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:08:22 2026 by rpki-client