$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft File: IRoCHoq99NvyBwgibMgyj9JBMd8.mft (raw, json) Hash identifier: khQOPoz4JyxIoYI709BsUsyaSyxeY6BM1TTNdlDfdJQ= Subject key identifier: 4B:4A:EE:B0:59:64:92:8C:B6:31:9B:41:7A:16:34:B2:A5:9E:D8:38 Authority key identifier: 21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF Certificate issuer: /CN=A9170F11/serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Certificate serial: 0149 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft Manifest number: 0137 Signing time: Sat 13 Jun 2026 05:34:15 +0000 Manifest this update: Sat 13 Jun 2026 05:34:15 +0000 Manifest next update: Sat 20 Jun 2026 05:34:15 +0000 Files and hashes: 1: IRoCHoq99NvyBwgibMgyj9JBMd8.crl (hash: ChNG3OwX9jptFKZ5TeZCOBNLUuM2AhEPCsrco+tU5Zo=) 2: 00926CA2D41F11F092947183C4F9AE02.roa (hash: wqkUfeM+QKVS8qmAEVsiC5c7QZ1bu80LeTA1QCGTnpw=) 3: 0029F6EAD41F11F0B1A47183C4F9AE02.roa (hash: F5fxp0etukBOn3CKrqqukvD42srMqVoYQvkoxd9V4Hk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 05:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11, serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Validity Not Before: Jun 13 05:34:15 2026 GMT Not After : Jun 20 05:34:15 2026 GMT Subject: CN=6a2cebd7-8a83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9d:ca:cc:1e:77:19:61:e0:33:8d:48:a8:25: cd:7e:47:86:5e:d7:39:c3:a5:28:fb:1d:f8:3a:7f: 59:db:5b:c8:c9:20:b0:45:3f:d2:0a:da:0c:08:d4: 4a:22:09:fe:d0:66:9a:11:dc:ab:02:36:d8:5c:47: 1b:0e:3a:42:cc:76:84:8b:25:34:10:56:b0:a8:a4: a8:9a:50:f8:0a:95:96:1f:e6:c7:47:bc:06:2e:43: 85:fa:87:36:e6:fd:5c:61:7c:2e:23:49:b7:b1:78: 3a:94:df:c3:da:ed:a4:27:46:ab:ef:76:6b:a2:24: e8:d5:e3:d1:2d:0c:6d:39:cb:83:f0:d8:de:7f:b9: 3d:85:66:8e:8f:e0:90:23:86:da:ef:1d:bf:9d:ac: b1:7f:33:bd:e6:89:dd:5e:f5:cb:26:7e:8f:e2:f4: 3a:4a:64:76:a1:66:3b:b5:ee:fc:38:f8:57:c6:4c: 0e:86:41:4f:6f:7e:05:6d:10:43:8b:e0:41:e4:9f: f1:fc:f8:3b:f1:81:a3:ee:5d:51:18:48:92:d6:9f: 29:b7:00:dd:26:e8:79:09:7a:ef:7a:da:33:2e:26: 43:dc:1b:5e:34:84:4a:55:d8:da:c3:6b:e8:75:09: cb:d5:e1:e2:88:41:4b:5a:85:1c:01:23:fa:81:c2: 2a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:4A:EE:B0:59:64:92:8C:B6:31:9B:41:7A:16:34:B2:A5:9E:D8:38 X509v3 Authority Key Identifier: keyid:21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:31:c8:c2:98:7a:4f:fa:12:6d:97:41:af:aa:8c:db:aa:9b: cc:76:fb:d0:04:ff:ea:d3:10:8d:67:d2:64:69:f3:45:dc:8a: d8:f9:1e:fa:7b:34:53:7c:ae:02:2d:2e:1a:38:fd:3d:60:da: 46:57:ec:3f:1d:66:da:39:9b:a9:d9:fb:6e:84:9f:f8:3d:2f: b1:f8:d1:b8:90:6b:01:71:86:51:72:2a:8b:e0:2b:c5:c7:ea: 3c:6b:5d:d0:c9:a0:70:08:8c:38:7b:8d:0d:bf:41:d3:8c:ac: 91:76:3f:c2:33:d7:ec:4a:70:5d:9f:4c:dc:7c:9b:fb:e0:09: a8:bb:ae:33:c3:0e:80:b7:2a:e8:3f:e5:38:33:47:ea:42:f9: 94:4b:ea:55:c6:63:56:1c:0c:1d:04:e1:13:b7:90:73:55:81: 2f:d7:7c:ce:2b:ee:55:fb:62:4d:84:12:c9:6f:61:0f:f2:45: af:cd:67:7b:74:ec:05:d4:71:e5:84:d8:02:a9:38:0d:33:ca: 40:ea:dd:e1:5b:c9:c7:3b:6e:cb:6b:5d:d5:33:ac:8d:17:1d: 62:2f:17:b7:3c:1b:51:3e:17:2e:d2:b8:e0:b4:d4:84:9a:76: b0:16:ab:c2:76:4e:7c:cf:e4:4c:7e:e3:4d:08:b0:d3:8a:35: 91:24:64:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBGMTExMTAvBgNVBAUTKDIxMUEwMjFFOEFCREY0REJGMjA3MDgyMjZDQzgzMjhG RDI0MTMxREYwHhcNMjYwNjEzMDUzNDE1WhcNMjYwNjIwMDUzNDE1WjAYMRYwFAYD VQQDEw02YTJjZWJkNy04YTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZ3KzB53GWHgM41IqCXNfkeGXtc5w6Uo+x34On9Z21vIySCwRT/SCtoMCNRK Ign+0GaaEdyrAjbYXEcbDjpCzHaEiyU0EFawqKSomlD4CpWWH+bHR7wGLkOF+oc2 5v1cYXwuI0m3sXg6lN/D2u2kJ0ar73ZroiTo1ePRLQxtOcuD8Njef7k9hWaOj+CQ I4ba7x2/nayxfzO95ondXvXLJn6P4vQ6SmR2oWY7te78OPhXxkwOhkFPb34FbRBD i+BB5J/x/Pg78YGj7l1RGEiS1p8ptwDdJuh5CXrvetozLiZD3BteNIRKVdjaw2vo dQnL1eHiiEFLWoUcASP6gcIqJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEtK7rBZ ZJKMtjGbQXoWNLKlntg4MB8GA1UdIwQYMBaAFCEaAh6KvfTb8gcIImzIMo/SQTHf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEYxMS9FMTYzODkxMDlB N0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlOdnlCd2dpYk1neWo5SkJN ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lSb0NIb3E5OU52eUJ3Z2liTWd5ajlKQk1kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEYxMS9FMTYzODkxMDlBN0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlO dnlCd2dpYk1neWo5SkJNZDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQTHIwph6T/oSbZdBr6qM26qbzHb70AT/6tMQjWfSZGnzRdyK2Pke+ns0U3yu Ai0uGjj9PWDaRlfsPx1m2jmbqdn7boSf+D0vsfjRuJBrAXGGUXIqi+ArxcfqPGtd 0MmgcAiMOHuNDb9B04yskXY/wjPX7EpwXZ9M3Hyb++AJqLuuM8MOgLcq6D/lODNH 6kL5lEvqVcZjVhwMHQThE7eQc1WBL9d8zivuVftiTYQSyW9hD/JFr81ne3TsBdRx 5YTYAqk4DTPKQOrd4VvJxztuy2td1TOsjRcdYi8XtzwbUT4XLtK44LTUhJp2sBar wnZOfM/kTH7jTQiw04o1kSRkNQ== -----END CERTIFICATE-----Generated at Sun Jun 14 02:40:02 2026 by rpki-client