$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft File: IYqKoFAmewgF4_3IqTm_j7ywAQE.mft (raw, json) Hash identifier: iN65onyxTcVhChs4yf7/wwzKyV1aCp145zChQNz1k3g= Subject key identifier: 0D:CA:A4:59:4B:80:F2:EE:9C:67:A2:70:7F:25:E6:D6:BA:72:7F:1D Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 0701 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft Manifest number: 06CC Signing time: Sun 02 Nov 2025 22:16:17 +0000 Manifest this update: Sun 02 Nov 2025 22:16:16 +0000 Manifest next update: Sun 09 Nov 2025 22:16:16 +0000 Files and hashes: 1: IYqKoFAmewgF4_3IqTm_j7ywAQE.crl (hash: KGy3mqiOxhhvKaHp+LTJcwLOeBm8AvMkSNNOQ0AGS1k=) 2: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (hash: s8KDuc2GwuTam8uLkRKj65TwjJKxip9pxFU2PqilzJk=) 3: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (hash: uv9fFw+pkg9pgF9/d+q2xTVafbCWlh0YWB4iJUOPl98=) 4: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (hash: PNBgm38gEmoFv4lqFvpAuI8EsQlFaIm9tEIE9Q4A0Q8=) 5: 7DFD24A0A69D11ED970A2E1EC4F9AE02.roa (hash: eCzZBGM4yO3X43+DBBXORK5pWKKgJ5ykZOExObNr3Lw=) 6: A08AFBB284F211EE89828225C4F9AE02.roa (hash: +rlXfE57KQq96FSve4vj7ymxepa9D4fVPV/TYC7d4nQ=) 7: ECF2B5A8A72B11EDAC3DA56CC4F9AE02.roa (hash: EbkFTiXwUuM4uKc+Le4LDTESLEZ3plcvfpf4GyS68jQ=) 8: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (hash: MaAskf0TRxO3f2o7SBOUwJQzY2TsNLzK4Ofbrs+UHf4=) 9: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (hash: SjDNqIV8bfIECZ7LITLY5GAVFbuQWPpjP+0XRPHjJnM=) 10: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (hash: wn/BM8TotG6wUb8Xjf5M9ZHwY2tRk82b/jlK0HvYDSc=) 11: 005CDC821F1411EC85E08546C4F9AE02.roa (hash: UjSbQygt5LC2l7V88EjIn2A0ZEggmitZY+iL8OvjiZ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:16:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1793 (0x701) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Nov 2 22:16:16 2025 GMT Not After : Nov 9 22:16:16 2025 GMT Subject: CN=6907d831-bb6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fa:a6:25:78:7a:24:81:8f:93:b0:e2:43:66: 16:4e:5f:e6:3e:83:47:8d:e0:a8:18:ff:a9:67:11: a3:d3:80:a4:c2:4b:25:ed:de:00:29:8d:52:fd:05: b5:2b:cf:f0:d1:7d:95:37:ac:88:1e:ab:c9:01:2e: 12:bd:16:67:01:bd:15:f2:08:a7:5e:84:22:91:69: 87:73:0b:5a:94:bd:c4:57:19:aa:37:3f:0a:1e:a8: 67:e6:d3:b9:e1:dd:70:5b:ca:85:ec:47:d2:54:5c: d2:32:2a:21:4f:1a:ad:e4:d6:85:44:64:79:9f:f9: 49:28:d7:8d:39:3a:da:bc:df:8f:72:3b:a5:61:a6: d0:10:4a:0a:e4:ed:97:b8:18:74:f3:94:df:4c:f6: 18:59:dd:28:5a:94:5e:23:fb:e0:f4:ba:94:be:18: 15:01:71:c6:57:83:a1:a5:a4:22:e3:0f:b7:9f:46: cc:57:70:93:86:0f:d2:c4:41:d1:d5:bd:7b:de:c7: d1:75:01:96:a5:1a:23:38:f1:83:d6:60:d5:83:c2: 2f:7e:7f:6a:f8:2c:3f:07:44:2d:ad:3b:23:f3:80: 08:ae:99:50:4a:a0:b4:92:9a:6c:72:78:35:6d:52: 31:76:16:15:4e:ed:c3:94:c7:05:5a:e2:22:09:6c: f6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:CA:A4:59:4B:80:F2:EE:9C:67:A2:70:7F:25:E6:D6:BA:72:7F:1D X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:eb:e7:86:15:dc:2b:28:8d:62:e5:b4:42:a7:8b:d3:39:50: 46:7d:5a:4e:07:a9:e2:81:e1:ac:e6:64:f1:85:af:0b:88:a2: 5e:78:d5:60:e3:85:bf:6c:87:01:f9:ae:aa:28:00:22:d2:c2: d3:31:18:39:8f:58:99:84:a6:80:a7:e0:35:32:c1:0c:30:2e: 02:ce:5a:33:6a:ce:6a:de:d8:f1:63:71:b9:4d:5d:bc:ec:18: 75:7a:43:e8:18:d5:fb:3c:67:dc:22:5b:fb:b4:42:62:f3:04: 60:b3:69:c3:1b:e9:46:a2:d7:30:d2:22:e6:a6:41:8e:2c:93: 6d:90:a9:5d:65:3f:4b:02:0f:ce:ef:89:2b:a6:cb:2c:d4:f0: 01:61:33:eb:f7:ef:21:4f:62:42:43:d0:6b:f0:4d:bb:b0:6b: 6c:21:36:7e:01:89:41:25:34:a5:64:fc:30:b7:16:d7:58:0a: 22:34:c4:8f:78:f5:98:da:87:c9:62:a4:8f:8d:f6:8b:11:03: 87:1c:40:2b:ec:e4:96:b4:93:89:93:1c:c7:e4:13:eb:dd:a3: 3b:2c:dd:ad:d5:8b:d2:3d:99:05:9e:76:77:d5:e5:b2:8d:7b: ac:e2:24:b2:ac:e6:fa:ca:06:26:e0:8d:e7:5b:a0:10:a9:e8: fc:ad:64:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjUxMTAyMjIxNjE2WhcNMjUxMTA5MjIxNjE2WjAYMRYwFAYD VQQDEw02OTA3ZDgzMS1iYjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfqmJXh6JIGPk7DiQ2YWTl/mPoNHjeCoGP+pZxGj04Ckwksl7d4AKY1S/QW1 K8/w0X2VN6yIHqvJAS4SvRZnAb0V8ginXoQikWmHcwtalL3EVxmqNz8KHqhn5tO5 4d1wW8qF7EfSVFzSMiohTxqt5NaFRGR5n/lJKNeNOTravN+PcjulYabQEEoK5O2X uBh085TfTPYYWd0oWpReI/vg9LqUvhgVAXHGV4OhpaQi4w+3n0bMV3CThg/SxEHR 1b173sfRdQGWpRojOPGD1mDVg8Ivfn9q+Cw/B0QtrTsj84AIrplQSqC0kppscng1 bVIxdhYVTu3DlMcFWuIiCWz2rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3KpFlL gPLunGeicH8l5ta6cn8dMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDZBQS84NjU4RTQ2Njg2QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3 Z0Y0XzNJcVRtX2o3eXdBUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn6+eGFdwrKI1i5bRCp4vTOVBGfVpOB6nigeGs5mTxha8LiKJeeNVg 44W/bIcB+a6qKAAi0sLTMRg5j1iZhKaAp+A1MsEMMC4Czlozas5q3tjxY3G5TV28 7Bh1ekPoGNX7PGfcIlv7tEJi8wRgs2nDG+lGotcw0iLmpkGOLJNtkKldZT9LAg/O 74krpsss1PABYTPr9+8hT2JCQ9Br8E27sGtsITZ+AYlBJTSlZPwwtxbXWAoiNMSP ePWY2ofJYqSPjfaLEQOHHEAr7OSWtJOJkxzH5BPr3aM7LN2t1YvSPZkFnnZ31eWy jXus4iSyrOb6ygYm4I3nW6AQqej8rWQA -----END CERTIFICATE-----Generated at Tue Nov 4 20:23:37 2025 by rpki-client