$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: fxna8h3xbVzgXhOZw1TDLTNb0ulUdE72BkMwXf54Axw= Subject key identifier: FD:3E:84:50:24:46:AC:62:B0:3F:5C:F9:8E:00:A5:6A:4A:0C:51:F3 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1DDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1D5C Signing time: Sat 28 Feb 2026 16:11:18 +0000 Manifest this update: Sat 28 Feb 2026 16:11:17 +0000 Manifest next update: Sat 07 Mar 2026 16:11:17 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: 6+gLRCoan0DdjHNG692urCoOyikp9mX4LU/417xcW7E=) 2: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: AkhO60SNFyTg9WciYKqi3vhEF3h9kd5WtxlSK6krnU0=) 3: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: AffWt9J6no4G+h1FpGfN0NTkhva8z6z11If0wdojgPY=) 4: 3322FCF6B8B611F09EE22E11C4F9AE02.roa (hash: nkQmProxyP6YQNqCslU/7lr0b3AmBz1GRwsmzYE8/fI=) 5: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: y+uJHyht1alI7ZPC3JmvnuhjGbEy3LzzaLiSY5fiRNU=) 6: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: ETR2zwPyd2A7y4UYuOybCcuJB7a9x37gwBrY0zAjMjI=) 7: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: nZuM2ubXC1l5NKfMUi8/1WxtFNha0sL4E6iO4pxzxgc=) 8: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: /m1lXjaboioF2x7MUrTWDdQH9KVsmd4C/ofOTcRyOPg=) 9: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: pnMyT26PaWSPhc4xLktPGQAXbwWHq3wiOavqQNjLHrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 16:11:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7642 (0x1dda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Feb 28 16:11:17 2026 GMT Not After : Mar 7 16:11:17 2026 GMT Subject: CN=69a313a5-7e6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fe:df:ab:00:c8:3a:bc:c6:04:37:eb:35:be: 9d:fe:fc:53:98:70:67:f1:10:e7:cc:bd:4c:15:1b: 51:1f:87:fe:2f:b3:1d:03:5d:fb:0e:a3:4e:d1:63: 6b:b9:10:d1:92:9b:bd:fb:a1:fb:cd:29:45:11:3b: c5:aa:91:a7:9e:73:d9:51:f8:a2:a7:36:90:d6:cb: d5:5a:c7:45:12:53:75:aa:f0:2a:84:33:e2:8c:f7: ab:ab:b4:e3:c5:49:fb:6c:9d:9a:32:d0:2e:65:42: 11:4b:d4:85:a0:16:3e:0f:1a:cd:75:9a:79:83:52: 06:9d:c8:56:1f:9c:30:d2:4b:0c:f9:5a:c0:f8:4b: e5:28:c2:47:92:77:f5:72:13:da:b8:c1:b9:7d:7c: e3:89:6f:f2:93:64:b4:18:00:9e:ae:77:ea:8b:e0: ba:98:7f:5d:f2:e9:e7:51:44:4d:1b:64:78:b0:d2: c2:fc:58:5e:a4:83:38:01:31:44:9c:a7:04:5f:eb: 50:8c:5c:71:21:34:0f:d7:e6:f7:a8:17:b9:4e:fc: c9:fd:a6:21:ca:2b:ed:48:ca:27:57:10:4d:c2:8b: 66:56:24:9e:9f:42:24:66:06:55:a0:1c:76:6c:85: 88:ba:4d:87:5e:c8:4b:a1:37:77:05:1f:71:52:9d: 9f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:3E:84:50:24:46:AC:62:B0:3F:5C:F9:8E:00:A5:6A:4A:0C:51:F3 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:7b:d7:b4:3a:79:a4:1c:1a:37:5f:06:be:f7:de:d8:05:94: 17:48:f1:bb:84:f4:f5:48:8d:3d:3a:d0:e9:4b:4e:55:2b:b3: f0:83:fd:00:ff:31:a3:2a:30:73:a5:d4:37:99:9d:76:02:a7: 90:c2:5b:a2:cf:02:ac:c1:6c:61:ad:41:f8:2b:05:c8:cd:b6: f3:a1:a1:87:13:e3:f6:c5:d1:4b:b7:b7:99:52:cd:72:6b:fd: 54:ce:b0:44:71:07:f6:63:a5:fe:8e:40:66:65:e8:9c:89:97: 2b:06:07:92:1c:68:e2:8c:83:bf:cc:7b:11:ab:c1:a8:a3:00: b5:10:c7:03:53:d7:61:03:29:11:8a:78:25:79:f2:80:0e:21: 78:8c:df:d5:7e:55:5c:c4:4a:d8:56:a9:73:e0:b8:a4:2e:28: 18:13:a5:d9:4d:e6:5f:18:a4:b2:b0:2d:cf:ca:2c:5f:ee:3c: 6e:05:63:91:1e:86:54:ff:07:69:86:9a:fc:d9:55:8b:5b:71: fc:24:66:1b:3e:86:10:56:87:b2:72:33:d1:18:ff:88:23:bd: c2:3e:0b:2d:4b:d3:e0:26:7a:dd:6d:95:de:97:d2:23:9f:7d: 92:3e:a5:57:cb:c9:05:2d:be:27:6f:e3:c3:52:24:3f:a5:e8: 11:b1:69:4b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjYwMjI4MTYxMTE3WhcNMjYwMzA3MTYxMTE3WjAYMRYwFAYD VQQDDA02OWEzMTNhNS03ZTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2P7fqwDIOrzGBDfrNb6d/vxTmHBn8RDnzL1MFRtRH4f+L7MdA137DqNO0WNr uRDRkpu9+6H7zSlFETvFqpGnnnPZUfiipzaQ1svVWsdFElN1qvAqhDPijPerq7Tj xUn7bJ2aMtAuZUIRS9SFoBY+DxrNdZp5g1IGnchWH5ww0ksM+VrA+EvlKMJHknf1 chPauMG5fXzjiW/yk2S0GACernfqi+C6mH9d8unnUURNG2R4sNLC/FhepIM4ATFE nKcEX+tQjFxxITQP1+b3qBe5TvzJ/aYhyivtSMonVxBNwotmViSen0IkZgZVoBx2 bIWIuk2HXshLoTd3BR9xUp2f8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP0+hFAk RqxisD9c+Y4ApWpKDFHzMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAonvXtDp5pBwaN18Gvvfe2AWUF0jxu4T09UiNPTrQ6UtOVSuz8IP9AP8xoyow c6XUN5mddgKnkMJbos8CrMFsYa1B+CsFyM2286GhhxPj9sXRS7e3mVLNcmv9VM6w RHEH9mOl/o5AZmXonImXKwYHkhxo4oyDv8x7EavBqKMAtRDHA1PXYQMpEYp4JXny gA4heIzf1X5VXMRK2Fapc+C4pC4oGBOl2U3mXxiksrAtz8osX+48bgVjkR6GVP8H aYaa/NlVi1tx/CRmGz6GEFaHsnIz0Rj/iCO9wj4LLUvT4CZ63W2V3pfSI599kj6l V8vJBS2+J2/jw1IkP6XoEbFpSw== -----END CERTIFICATE-----Generated at Mon Mar 2 02:39:58 2026 by rpki-client