$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: OYqA/rnjHJMfqRRcX+05Y23PTCSUx/+itkGZHHkXQIY= Subject key identifier: 3D:55:39:C6:16:96:F6:A0:BB:C4:B9:9F:D4:35:4A:14:56:FF:4F:93 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1E04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1D77 Signing time: Thu 16 Apr 2026 16:06:00 +0000 Manifest this update: Thu 16 Apr 2026 16:05:59 +0000 Manifest next update: Thu 23 Apr 2026 16:05:59 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: wpajLs1b6CY291GJL7QBksSmEMEycGcSUmrlOIfd8z8=) 2: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: pQIAQO2x1Y98U1wPMfCQmXLie1tIp4nTPRrtQeF4Db8=) 3: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: OyJ386kUL4gGWlM9zenD8Or9GBx/nawzJcbJiadjXEs=) 4: 3322FCF6B8B611F09EE22E11C4F9AE02.roa (hash: vPw7xATzv0O2yNoJH3ofUOV61xAOAH8pdJ0rodOC4Lw=) 5: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: n5wlbfzu1nkCUtXLjTCqtermWiOQnIuS2LGZIh8GrSA=) 6: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: /vJS5mvYoaeQ7e5TPVVBx64c5yOqiYznmnqStY9GYWY=) 7: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: syfI5VBGCCOaxinq66/rQy0KiVO/nQZm82G8XJ0s/uQ=) 8: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: e2z23i28QBdo2imUKS15DY31HQcf+q8FZJ7ZqEZMi64=) 9: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: Ruxh9vs1IEEY8sUgeoqbiAjkOA3NIO1oE49c/aSiPyo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7684 (0x1e04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Apr 16 16:05:59 2026 GMT Not After : Apr 23 16:05:59 2026 GMT Subject: CN=69e108e8-7d4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:54:0c:ff:4b:f7:1d:af:e5:39:05:86:01:22: 12:98:aa:34:6e:05:fb:2c:4a:14:49:8e:5b:80:eb: 02:30:86:9d:22:63:d9:45:d9:b0:7e:e9:cd:98:23: 62:ec:a2:66:29:57:11:f8:7f:2e:b7:ae:cd:74:95: 75:10:5b:2b:4f:e3:08:b3:63:36:00:02:8e:2a:bf: a3:72:4c:96:e4:64:d1:b0:5c:34:2e:b3:7b:bf:46: 9a:97:66:85:e2:00:01:7f:88:a1:bd:40:8f:47:25: a2:c9:4c:03:f3:98:10:99:5e:db:a2:6d:9b:b5:01: 9c:98:b3:87:67:64:9b:fa:a8:16:1f:22:38:45:26: 5f:08:a6:d6:6a:9a:a1:ad:68:59:a3:7c:94:37:5d: 70:3c:de:6c:e3:b9:1a:6a:9f:ef:d4:10:ad:19:92: 31:0a:4b:a9:36:bd:cf:b8:14:f4:46:c9:81:cd:55: 98:12:a8:01:d7:14:af:cb:29:6c:33:fe:86:e3:45: c9:61:5b:2f:00:70:4d:50:5f:17:94:a1:a5:67:84: 1d:d5:80:7f:e4:fe:40:a8:54:cc:96:7e:ff:87:9a: f2:c8:62:75:8b:f1:2b:fe:6e:b2:61:d4:14:57:66: 4d:cd:d9:5a:aa:dc:c2:bf:1e:58:b1:a6:b4:4c:0b: 4d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:55:39:C6:16:96:F6:A0:BB:C4:B9:9F:D4:35:4A:14:56:FF:4F:93 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:07:a5:fc:25:03:85:4d:60:59:84:eb:60:6d:b3:63:76:d2: e5:bc:e8:c5:90:1a:2b:b3:0f:4c:08:54:73:13:86:2a:e7:da: d0:6c:62:8c:f1:86:50:e4:e6:0b:68:9b:80:a0:43:ec:cf:d1: fb:8b:e7:64:18:80:8e:99:b8:a1:d0:7f:cd:20:85:26:2b:81: 3f:93:92:38:69:b6:39:1d:32:f1:db:f0:24:82:e4:2b:10:ae: 82:5d:4a:fc:e4:bf:26:35:27:5f:d0:24:0a:23:cf:9c:c9:fc: 9b:6c:a1:ad:b9:da:df:06:72:29:e5:a1:d0:9e:29:2b:29:5d: 40:ef:ae:60:74:39:88:04:92:65:f4:9b:52:8b:76:e0:21:eb: fc:69:6a:3a:2f:5f:f8:56:f3:ae:8a:f8:e8:e7:81:05:99:bb: 7e:87:06:8e:ef:18:f8:5f:6e:16:50:dc:80:11:67:af:03:92: e0:23:a3:77:95:88:f7:90:14:29:78:74:9f:6d:7e:5c:49:c4: 13:c0:30:1c:98:f7:62:b2:eb:08:f0:e1:6e:60:85:36:9b:36: b7:31:dd:02:9c:56:c1:98:8a:07:1a:ad:37:dc:d6:a6:9e:5f: fa:8f:37:0b:d8:b3:1b:00:3f:c7:21:2d:18:8f:55:79:77:8b: f1:56:f7:3e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjYwNDE2MTYwNTU5WhcNMjYwNDIzMTYwNTU5WjAYMRYwFAYD VQQDEw02OWUxMDhlOC03ZDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVQM/0v3Ha/lOQWGASISmKo0bgX7LEoUSY5bgOsCMIadImPZRdmwfunNmCNi 7KJmKVcR+H8ut67NdJV1EFsrT+MIs2M2AAKOKr+jckyW5GTRsFw0LrN7v0aal2aF 4gABf4ihvUCPRyWiyUwD85gQmV7bom2btQGcmLOHZ2Sb+qgWHyI4RSZfCKbWapqh rWhZo3yUN11wPN5s47kaap/v1BCtGZIxCkupNr3PuBT0RsmBzVWYEqgB1xSvyyls M/6G40XJYVsvAHBNUF8XlKGlZ4Qd1YB/5P5AqFTMln7/h5ryyGJ1i/Er/m6yYdQU V2ZNzdlaqtzCvx5Ysaa0TAtNZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD1VOcYW lvagu8S5n9Q1ShRW/0+TMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKQel/CUDhU1gWYTrYG2zY3bS5bzoxZAaK7MPTAhUcxOGKufa0GxijPGGUOTm C2ibgKBD7M/R+4vnZBiAjpm4odB/zSCFJiuBP5OSOGm2OR0y8dvwJILkKxCugl1K /OS/JjUnX9AkCiPPnMn8m2yhrbna3wZyKeWh0J4pKyldQO+uYHQ5iASSZfSbUot2 4CHr/GlqOi9f+Fbzror46OeBBZm7focGju8Y+F9uFlDcgBFnrwOS4COjd5WI95AU KXh0n21+XEnEE8AwHJj3YrLrCPDhbmCFNps2tzHdApxWwZiKBxqtN9zWpp5f+o83 C9izGwA/xyEtGI9VeXeL8Vb3Pg== -----END CERTIFICATE-----Generated at Fri Apr 17 12:50:40 2026 by rpki-client