$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: OFAQXNaoOuMmCTAr6O1rpKecu0vyeMwuvDFEW3n21+k= Subject key identifier: 6D:86:D7:4A:BD:D4:CF:95:68:5A:58:5D:A4:3F:25:E1:9D:19:AC:1C Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 0825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 0818 Signing time: Sat 28 Feb 2026 21:24:32 +0000 Manifest this update: Sat 28 Feb 2026 21:24:31 +0000 Manifest next update: Sat 07 Mar 2026 21:24:31 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: BgFnRCRlTM2KlnUWO6vlPjPCcVRsJhRINF9M120JTaQ=) 2: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: faGNUns0UIB/6rsiDFhIe2V0V3MDd2DqirXM6CF0Z8Q=) 3: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: x1swDqDbdRpW1YcvJW4XZPVqkw29NgcBcxcpOtDQ400=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 21:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2085 (0x825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: Feb 28 21:24:31 2026 GMT Not After : Mar 7 21:24:31 2026 GMT Subject: CN=69a35d10-1af6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a0:45:07:0b:a8:57:f6:1f:00:65:76:f4:97: 64:c7:f9:1d:f0:0f:b4:bb:c6:75:78:eb:08:ae:a1: cd:e9:e4:b7:e9:e3:ad:01:e8:c6:22:5d:23:5f:c4: 04:53:77:4c:09:56:5d:2b:ef:e4:e8:c1:df:fa:c4: 87:c6:23:18:c1:d4:b2:4e:33:ca:3f:a0:e5:df:41: 69:6d:cb:15:e8:b9:3c:99:00:21:a5:b3:38:1a:e7: b9:25:49:21:ea:e8:ad:56:95:73:d2:7c:e1:77:7a: c8:24:8b:e8:99:74:94:55:a2:d7:6f:c0:47:e2:3d: ae:48:ad:20:bd:36:ac:5d:56:61:bd:17:ab:af:01: ab:fa:ed:57:05:e7:2c:c4:8c:24:4d:a4:ef:9b:50: c4:87:31:d5:12:ac:2f:31:34:b0:d9:aa:e3:2e:c4: 66:ca:18:c7:ea:fe:49:d3:77:57:a4:27:14:0a:ad: 0e:47:51:09:53:de:74:87:0e:d6:23:0d:2a:63:5e: a3:f0:e6:5d:f6:a3:03:1a:b7:df:16:4e:bb:99:81: 2c:fa:c7:dc:cc:0f:35:14:08:b3:18:bc:49:4e:4e: 81:19:dc:10:e3:81:7c:a8:ce:c2:16:c8:b6:c6:be: dc:eb:7a:d1:24:be:e0:fa:f0:ce:cf:97:32:e1:80: 7d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:86:D7:4A:BD:D4:CF:95:68:5A:58:5D:A4:3F:25:E1:9D:19:AC:1C X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:9b:46:f4:31:45:2e:2f:bf:5f:16:1b:43:58:3d:e3:a5:f7: d0:30:2f:ad:73:f0:e0:76:79:a7:3c:6c:b2:73:62:e2:ea:b1: 0e:79:38:a9:0c:b4:48:7f:a8:7d:f9:17:48:c5:b3:2b:6d:c8: 73:b3:4d:2d:c6:7b:bc:78:c5:45:94:03:3a:c9:be:b0:0a:2c: 45:86:16:49:bd:11:44:8e:58:32:ac:ad:74:e5:d6:93:86:ba: 12:48:da:c3:db:f9:6d:fb:2f:0b:17:ea:9d:50:31:60:89:bc: fe:c3:58:44:4f:50:a0:d6:29:1b:97:91:49:8f:7b:23:12:9b: 54:05:b0:52:89:03:28:25:92:03:32:f7:3b:c3:15:3a:4c:21: 09:52:b3:cb:ee:c6:74:8c:2f:a8:73:e5:4e:45:0f:85:7c:90: 65:bc:c1:ce:61:e7:5b:00:14:36:93:2e:58:09:69:6b:06:2b: ed:0e:6e:ed:8a:38:44:9d:14:39:db:80:7f:a4:39:92:71:0c: 7d:29:eb:2e:20:5e:f1:1b:9d:94:a4:30:e7:fe:60:e4:62:68: be:ae:9d:57:2f:29:5c:e6:87:d6:94:dc:e2:e4:6c:70:bd:d4: bb:1f:c3:5b:f2:93:ee:6c:c1:2e:7f:0a:98:9b:43:86:87:66: 8f:f1:e5:1a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjYwMjI4MjEyNDMxWhcNMjYwMzA3MjEyNDMxWjAYMRYwFAYD VQQDDA02OWEzNWQxMC0xYWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA46BFBwuoV/YfAGV29Jdkx/kd8A+0u8Z1eOsIrqHN6eS36eOtAejGIl0jX8QE U3dMCVZdK+/k6MHf+sSHxiMYwdSyTjPKP6Dl30FpbcsV6Lk8mQAhpbM4Gue5JUkh 6uitVpVz0nzhd3rIJIvomXSUVaLXb8BH4j2uSK0gvTasXVZhvRerrwGr+u1XBecs xIwkTaTvm1DEhzHVEqwvMTSw2arjLsRmyhjH6v5J03dXpCcUCq0OR1EJU950hw7W Iw0qY16j8OZd9qMDGrffFk67mYEs+sfczA81FAizGLxJTk6BGdwQ44F8qM7CFsi2 xr7c63rRJL7g+vDOz5cy4YB99QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG2G10q9 1M+VaFpYXaQ/JeGdGawcMB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkJtG9DFFLi+/XxYbQ1g946X30DAvrXPw4HZ5pzxssnNi4uqxDnk4qQy0SH+o ffkXSMWzK23Ic7NNLcZ7vHjFRZQDOsm+sAosRYYWSb0RRI5YMqytdOXWk4a6Ekja w9v5bfsvCxfqnVAxYIm8/sNYRE9QoNYpG5eRSY97IxKbVAWwUokDKCWSAzL3O8MV OkwhCVKzy+7GdIwvqHPlTkUPhXyQZbzBzmHnWwAUNpMuWAlpawYr7Q5u7Yo4RJ0U OduAf6Q5knEMfSnrLiBe8RudlKQw5/5g5GJovq6dVy8pXOaH1pTc4uRscL3Uux/D W/KT7mzBLn8KmJtDhodmj/HlGg== -----END CERTIFICATE-----Generated at Sun Mar 1 21:11:30 2026 by rpki-client