$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: SwqGhPvbACdAA1MRd94Q1VKJD6sN5/aGiSSf/Bu6Kec= Subject key identifier: 19:1E:81:2D:10:4C:AD:AF:75:24:3E:D6:6A:02:4D:E2:B5:56:96:43 Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 084C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 0833 Signing time: Thu 16 Apr 2026 20:51:54 +0000 Manifest this update: Thu 16 Apr 2026 20:51:54 +0000 Manifest next update: Thu 23 Apr 2026 20:51:54 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: dOXX1gtDqhgbGObl+bJ2E0FMSSF1agigQUMHn/7RLPw=) 2: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: leO2JqGKVdqcNczUkd0IAjGki7oPjl2kK1j+hgCcFLQ=) 3: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: /CLRSnh9CYZydXvA+OqGb8vFSm9uhhWBDEam371xnzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:51:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2124 (0x84c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: Apr 16 20:51:54 2026 GMT Not After : Apr 23 20:51:54 2026 GMT Subject: CN=69e14bea-218b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:74:5f:41:f4:54:2d:57:3b:a0:36:34:72:b2: 15:cd:be:2d:78:2e:99:52:1d:f4:03:c8:35:6a:4e: f9:2a:3c:56:bb:64:72:07:ec:ea:24:52:d9:dc:e5: 20:db:80:dc:42:0b:05:a5:39:f2:c0:1a:c4:81:2c: af:31:f6:53:28:7a:6e:17:b8:78:21:12:41:a8:64: 4f:8f:78:e2:65:9d:30:1b:ee:65:3f:1b:0c:51:3f: 1b:24:91:13:40:86:e1:2c:00:ac:af:84:4d:d0:ec: 6e:c7:87:24:06:d7:e5:1a:40:a4:81:21:b5:77:aa: fc:36:f7:8c:72:3b:31:6e:5a:66:c1:84:99:5d:30: 12:f5:3a:4f:49:0c:4d:22:40:ed:f9:6f:96:86:12: 9a:1f:35:2b:46:c7:de:10:f8:b7:7d:72:5f:4b:34: 3e:ba:63:f2:15:3f:fb:e3:4e:5b:7d:c4:a3:12:ba: 54:7e:0a:49:62:da:3d:c1:80:c7:ee:f5:19:64:f8: ca:d5:65:16:7a:98:68:32:3c:e9:3a:69:cd:18:f9: ee:3e:a4:6a:92:1d:2d:8c:8d:c3:ad:fe:1a:96:26: 0c:94:64:ef:09:ae:a5:a8:d3:fd:8e:00:33:6a:3a: 6c:f8:41:63:6d:fc:26:bc:16:24:e0:7f:03:d9:72: 47:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:1E:81:2D:10:4C:AD:AF:75:24:3E:D6:6A:02:4D:E2:B5:56:96:43 X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:b6:40:d5:40:7c:56:2b:73:8a:d6:de:2e:4a:a9:7d:a1:4b: ea:00:5c:3c:73:42:65:19:e0:77:4b:4d:86:19:c7:5c:94:35: e7:35:fc:20:c4:7f:b1:2f:7b:d4:d2:30:01:93:87:06:e7:ad: db:66:f6:1e:3b:99:d2:42:04:83:64:3a:81:12:85:2a:aa:dc: 1f:4e:c2:02:77:e6:d6:06:f8:e9:af:6c:49:2a:5e:56:02:8a: 41:30:df:aa:1b:1a:04:bc:3c:16:3a:eb:56:02:84:ee:75:cf: 63:88:03:73:0b:19:2c:f0:6f:39:ba:d6:78:88:c8:df:c4:9b: 8d:ed:71:ff:d7:1c:23:36:b9:13:46:7a:86:3d:07:a5:69:e6: b9:fd:cb:0e:ed:1f:91:55:86:3e:cc:31:4f:67:bc:51:15:33: 8a:51:f5:a9:9a:3b:5b:7b:ac:31:c5:8a:38:1e:0e:2a:76:23: 48:36:ad:35:53:ef:48:16:bf:6e:43:ad:ac:4b:4c:ae:6a:07: 4f:3f:cf:99:a8:56:0e:6c:ce:a3:bc:2b:8a:53:cb:4d:87:cc: ae:47:6c:6f:7a:80:11:91:5c:d8:03:b7:3a:a8:a6:48:ec:e6: c5:70:0e:75:6e:df:f4:c6:90:2a:5e:1a:ba:17:67:69:d6:36: ba:53:64:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjYwNDE2MjA1MTU0WhcNMjYwNDIzMjA1MTU0WjAYMRYwFAYD VQQDEw02OWUxNGJlYS0yMThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3RfQfRULVc7oDY0crIVzb4teC6ZUh30A8g1ak75KjxWu2RyB+zqJFLZ3OUg 24DcQgsFpTnywBrEgSyvMfZTKHpuF7h4IRJBqGRPj3jiZZ0wG+5lPxsMUT8bJJET QIbhLACsr4RN0Oxux4ckBtflGkCkgSG1d6r8NveMcjsxblpmwYSZXTAS9TpPSQxN IkDt+W+WhhKaHzUrRsfeEPi3fXJfSzQ+umPyFT/7405bfcSjErpUfgpJYto9wYDH 7vUZZPjK1WUWephoMjzpOmnNGPnuPqRqkh0tjI3Drf4aliYMlGTvCa6lqNP9jgAz ajps+EFjbfwmvBYk4H8D2XJHXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBkegS0Q TK2vdSQ+1moCTeK1VpZDMB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkLZA1UB8VitzitbeLkqpfaFL6gBcPHNCZRngd0tNhhnHXJQ15zX8IMR/sS97 1NIwAZOHBuet22b2HjuZ0kIEg2Q6gRKFKqrcH07CAnfm1gb46a9sSSpeVgKKQTDf qhsaBLw8FjrrVgKE7nXPY4gDcwsZLPBvObrWeIjI38Sbje1x/9ccIza5E0Z6hj0H pWnmuf3LDu0fkVWGPswxT2e8URUzilH1qZo7W3usMcWKOB4OKnYjSDatNVPvSBa/ bkOtrEtMrmoHTz/PmahWDmzOo7wrilPLTYfMrkdsb3qAEZFc2AO3OqimSOzmxXAO dW7f9MaQKl4auhdnadY2ulNk1g== -----END CERTIFICATE-----Generated at Fri Apr 17 20:04:32 2026 by rpki-client