$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft File: IRoCHoq99NvyBwgibMgyj9JBMd8.mft (raw, json) Hash identifier: Uumz6bdF7TeBqfQyQ9xLvQ9+SOG7j8lk8EOxrpmup1o= Subject key identifier: B4:6F:66:C6:F9:74:58:62:2D:84:16:0F:82:5E:26:D9:EE:D7:D3:21 Authority key identifier: 21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF Certificate issuer: /CN=A9170F11/serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft Manifest number: 011B Signing time: Fri 17 Apr 2026 05:37:02 +0000 Manifest this update: Fri 17 Apr 2026 05:37:01 +0000 Manifest next update: Fri 24 Apr 2026 05:37:01 +0000 Files and hashes: 1: IRoCHoq99NvyBwgibMgyj9JBMd8.crl (hash: MMaARjDJnAE/PDu66FkkE20zNvW+U2nUxS+dfWKFIw4=) 2: 0029F6EAD41F11F0B1A47183C4F9AE02.roa (hash: F5fxp0etukBOn3CKrqqukvD42srMqVoYQvkoxd9V4Hk=) 3: 00926CA2D41F11F092947183C4F9AE02.roa (hash: wqkUfeM+QKVS8qmAEVsiC5c7QZ1bu80LeTA1QCGTnpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:37:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11, serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Validity Not Before: Apr 17 05:37:01 2026 GMT Not After : Apr 24 05:37:01 2026 GMT Subject: CN=69e1c6fd-4639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e9:f4:ac:af:6a:fb:90:45:b5:3d:03:9a:dc: 44:01:1c:ec:09:63:27:63:26:a0:d5:c3:45:1b:c9: 1e:66:bd:be:c7:9b:e7:06:c0:de:c8:ac:b6:41:05: 19:01:10:5b:2e:84:e7:72:16:f3:5b:8f:d9:55:f0: 8a:02:2d:92:57:34:f5:63:87:1c:fd:ca:46:77:70: 93:69:ed:25:7c:17:2a:1f:11:17:51:d5:20:d2:c3: 14:f0:48:af:f8:af:67:89:25:0f:a4:af:dd:ff:a0: 1a:70:e7:ee:55:17:5c:c8:c8:be:fd:c2:64:c8:01: 31:64:95:89:d6:0a:5c:86:51:1d:fa:3f:10:7b:33: f3:a7:46:4e:b1:d1:30:96:9f:7a:6c:53:7b:f3:e7: 7d:ad:88:1b:3b:0e:a2:1d:03:d2:76:2e:5f:db:2e: de:ff:e0:49:b9:95:81:31:e0:b9:e8:74:8a:bd:1f: 42:f0:07:1b:2c:9a:30:b9:60:1e:6b:c8:e5:bd:29: e5:77:06:e5:bf:14:5b:4a:0e:77:59:4e:a5:91:e9: 36:5d:5e:76:7b:76:bc:29:83:a0:34:90:1e:c5:fb: 93:a5:d5:21:c5:45:3a:f3:89:97:8c:76:44:f9:75: 30:12:0f:1f:e5:5d:51:ac:aa:3c:25:b8:a1:7b:f4: 38:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:6F:66:C6:F9:74:58:62:2D:84:16:0F:82:5E:26:D9:EE:D7:D3:21 X509v3 Authority Key Identifier: keyid:21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:bb:77:5f:fe:ff:8f:b4:f2:73:c5:a9:07:1e:d0:4d:e4:72: 9f:ed:ca:95:ff:da:47:03:ab:ac:62:bc:d0:a5:68:11:31:d5: 2f:8d:9a:13:09:a5:21:c2:ad:42:fe:9e:ff:c6:61:a7:71:d8: 61:73:22:1f:25:c7:ae:98:b3:62:38:f5:a0:89:85:be:e1:7c: f3:8f:da:1a:8b:e2:df:6a:c0:a8:0b:84:37:df:9e:f8:d5:08: a6:f2:69:ed:b2:e9:39:26:35:02:6e:53:ba:a0:30:d4:02:dc: 09:98:ae:67:e3:1a:f7:50:5c:e7:d0:50:9d:22:a0:72:f3:de: 3b:c2:70:64:03:ca:2a:da:49:a5:7e:f6:5d:92:f7:94:75:22: 72:7f:02:88:9f:74:dc:99:62:ce:c6:10:72:a6:87:43:d5:ab: ca:ce:52:c1:05:da:10:ac:d5:1e:7c:39:7b:8c:96:3f:d3:b3: b0:c0:08:cb:db:b6:40:ce:56:aa:60:02:37:5a:72:ad:a9:10: 1b:18:ff:f9:a6:4a:97:bf:4d:dd:56:fb:02:0f:27:37:40:15: 7f:f0:07:71:9d:e0:b9:8e:b0:dd:c4:d4:01:19:9c:db:aa:e4: eb:24:dc:27:5b:e1:e7:6f:2c:33:95:44:88:ac:b2:0b:aa:de: df:80:dc:0b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBGMTExMTAvBgNVBAUTKDIxMUEwMjFFOEFCREY0REJGMjA3MDgyMjZDQzgzMjhG RDI0MTMxREYwHhcNMjYwNDE3MDUzNzAxWhcNMjYwNDI0MDUzNzAxWjAYMRYwFAYD VQQDEw02OWUxYzZmZC00NjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOn0rK9q+5BFtT0DmtxEARzsCWMnYyag1cNFG8keZr2+x5vnBsDeyKy2QQUZ ARBbLoTnchbzW4/ZVfCKAi2SVzT1Y4cc/cpGd3CTae0lfBcqHxEXUdUg0sMU8Eiv +K9niSUPpK/d/6AacOfuVRdcyMi+/cJkyAExZJWJ1gpchlEd+j8QezPzp0ZOsdEw lp96bFN78+d9rYgbOw6iHQPSdi5f2y7e/+BJuZWBMeC56HSKvR9C8AcbLJowuWAe a8jlvSnldwblvxRbSg53WU6lkek2XV52e3a8KYOgNJAexfuTpdUhxUU684mXjHZE +XUwEg8f5V1RrKo8Jbihe/Q4jQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLRvZsb5 dFhiLYQWD4JeJtnu19MhMB8GA1UdIwQYMBaAFCEaAh6KvfTb8gcIImzIMo/SQTHf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEYxMS9FMTYzODkxMDlB N0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlOdnlCd2dpYk1neWo5SkJN ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lSb0NIb3E5OU52eUJ3Z2liTWd5ajlKQk1kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEYxMS9FMTYzODkxMDlBN0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlO dnlCd2dpYk1neWo5SkJNZDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd7t3X/7/j7Tyc8WpBx7QTeRyn+3Klf/aRwOrrGK80KVoETHVL42aEwmlIcKt Qv6e/8Zhp3HYYXMiHyXHrpizYjj1oImFvuF884/aGovi32rAqAuEN9+e+NUIpvJp 7bLpOSY1Am5TuqAw1ALcCZiuZ+Ma91Bc59BQnSKgcvPeO8JwZAPKKtpJpX72XZL3 lHUicn8CiJ903JlizsYQcqaHQ9Wrys5SwQXaEKzVHnw5e4yWP9OzsMAIy9u2QM5W qmACN1pyrakQGxj/+aZKl79N3Vb7Ag8nN0AVf/AHcZ3guY6w3cTUARmc26rk6yTc J1vh528sM5VEiKyyC6re34DcCw== -----END CERTIFICATE-----Generated at Fri Apr 17 20:43:11 2026 by rpki-client