$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft File: IYqKoFAmewgF4_3IqTm_j7ywAQE.mft (raw, json) Hash identifier: q7BtqdKf4SW2C3nrCmDyI3LaeLvVTd79Mxicxoecj0k= Subject key identifier: ED:60:7B:A7:AE:82:B0:BF:76:A8:22:93:EE:6D:A2:47:8C:DC:61:08 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 06C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft Manifest number: 069D Signing time: Sun 10 Aug 2025 22:29:19 +0000 Manifest this update: Sun 10 Aug 2025 22:29:19 +0000 Manifest next update: Sun 17 Aug 2025 22:29:19 +0000 Files and hashes: 1: IYqKoFAmewgF4_3IqTm_j7ywAQE.crl (hash: I89OJMRWcd+ToqHBNgDESGeyFZOQbQNUY6K5jjNi7j8=) 2: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (hash: fUw04+Wc6xwoR+YVBY/WLsyng9md/GVTmSyZYwr11zk=) 3: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (hash: MudkEdFQa6C+ndTjapkqJTQJnMUjbCojJJWyr2cOnbw=) 4: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (hash: FzGeC1HGFQjInv7a/tzBBidCqJ5ESeD9M5yJI45g108=) 5: 7DFD24A0A69D11ED970A2E1EC4F9AE02.roa (hash: UXLNG/TKlOwe92B54U28A9vIc0yRc2k66x6iSMWRkzk=) 6: A08AFBB284F211EE89828225C4F9AE02.roa (hash: o0/UmqHBu35TkHikAhbVdhXHi+7hDM8lM9U+g+mEr/c=) 7: ECF2B5A8A72B11EDAC3DA56CC4F9AE02.roa (hash: +kGit6QP9EC8on4uBAyo05LK37M52pka8uD91XBHy+Y=) 8: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (hash: G/rvtZ5T81L1+Ut1wIh+MKSJ0KMlgkIN/JGVODcTotI=) 9: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (hash: 9LXbAzt0/EsGKbz7o7F/OwWTWmMVBzVo73DTWxXTguw=) 10: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (hash: 0R2F7phEKy5EqIJBVAvo5pb/1NzWEpCwpH92++JGH9o=) 11: 005CDC821F1411EC85E08546C4F9AE02.roa (hash: 2LEw81p+Fk53aVNuSL1CxAKcvp9Ob9XvQt2+L6XI7mo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Aug 10 22:29:19 2025 GMT Not After : Aug 17 22:29:19 2025 GMT Subject: CN=68991d3f-3c0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8d:e0:71:a3:76:9a:ac:fa:8c:4a:59:27:75: b7:90:dd:43:93:ae:1c:1d:04:96:47:03:0b:e2:0f: 84:d7:dc:e1:e5:72:f8:55:0c:2d:ff:de:24:a7:d8: 82:ea:6a:70:6c:85:8c:00:1b:03:ee:9f:09:ab:67: f5:7f:2d:35:04:2d:4a:1e:62:1e:9c:ae:50:0e:e9: d1:d6:04:9f:01:93:80:ba:18:4a:73:af:d3:a3:76: 2d:62:8a:75:68:18:ad:90:a1:d5:99:8a:77:b2:2b: f6:8f:08:43:cc:22:be:60:f6:b7:9e:22:48:ad:8e: ef:58:64:a8:80:29:e3:14:ca:3d:23:25:a8:99:21: 89:a9:fd:9c:ef:6b:a1:a6:a6:ad:2f:dc:ee:91:a9: 65:ba:0c:b8:c0:b0:cc:ec:29:e5:1c:c0:ad:43:4c: ac:98:83:43:2a:45:65:04:5e:52:a6:9b:06:59:ca: f1:bb:95:48:84:aa:fc:de:05:cd:b5:e5:4b:af:68: b1:84:02:86:e0:0d:4e:4f:1d:87:6c:81:4a:56:49: 70:72:32:2f:99:9d:c3:62:dd:b7:6b:43:ce:75:8a: db:77:e2:d0:2b:bc:75:55:60:e0:50:65:d3:3e:d6: 5e:33:5b:32:44:a9:d4:e7:52:48:e7:35:61:92:63: 79:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:60:7B:A7:AE:82:B0:BF:76:A8:22:93:EE:6D:A2:47:8C:DC:61:08 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:e2:6c:92:c9:4d:2b:ab:8f:94:32:15:b0:42:16:ff:44:f0: bd:6e:77:87:79:51:80:7b:0b:05:08:71:77:41:64:3c:6e:1a: 87:88:4b:cb:56:4d:ff:7f:96:5b:07:e5:85:e7:48:dc:0d:4b: 6d:5f:e8:18:1a:75:6b:55:96:8d:a5:4c:4a:a9:b1:af:7f:a6: 51:39:98:47:7c:ec:e5:fd:6a:b0:a9:fd:28:f5:b3:5b:fc:a2: f5:83:ac:12:14:4f:ea:2b:c0:8a:c3:8c:da:ae:b0:78:d7:a6: 05:82:39:ae:40:cf:5f:ac:bc:ca:a3:53:f3:e6:b0:1e:bb:3a: bc:18:b2:fd:56:6e:48:f1:be:ba:94:c7:81:02:f6:7c:ec:5a: 57:65:01:00:b6:a5:c5:15:9f:ad:9f:1d:29:43:e3:66:1b:17: 95:a7:71:af:f0:f7:db:7d:83:3a:c7:c9:e7:65:57:81:94:ab: 3c:b8:bf:12:d7:3f:e9:42:96:84:84:08:5e:48:4d:ee:f8:b5: ea:8c:d7:37:83:d6:df:6d:be:d5:3c:f2:4c:c4:41:34:9e:ce: c5:4a:e6:19:a5:66:fd:55:3a:ab:e8:a9:a7:60:37:f9:df:d5: 32:53:43:4d:53:73:a1:d2:5a:62:3e:cf:35:65:52:ac:bb:95: c0:b2:7f:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjUwODEwMjIyOTE5WhcNMjUwODE3MjIyOTE5WjAYMRYwFAYD VQQDEw02ODk5MWQzZi0zYzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoY3gcaN2mqz6jEpZJ3W3kN1Dk64cHQSWRwML4g+E19zh5XL4VQwt/94kp9iC 6mpwbIWMABsD7p8Jq2f1fy01BC1KHmIenK5QDunR1gSfAZOAuhhKc6/To3YtYop1 aBitkKHVmYp3siv2jwhDzCK+YPa3niJIrY7vWGSogCnjFMo9IyWomSGJqf2c72uh pqatL9zukallugy4wLDM7CnlHMCtQ0ysmINDKkVlBF5SppsGWcrxu5VIhKr83gXN teVLr2ixhAKG4A1OTx2HbIFKVklwcjIvmZ3DYt23a0POdYrbd+LQK7x1VWDgUGXT PtZeM1syRKnU51JI5zVhkmN5cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1ge6eu grC/dqgik+5tokeM3GEIMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDZBQS84NjU4RTQ2Njg2QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3 Z0Y0XzNJcVRtX2o3eXdBUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa4mySyU0rq4+UMhWwQhb/RPC9bneHeVGAewsFCHF3QWQ8bhqHiEvL Vk3/f5ZbB+WF50jcDUttX+gYGnVrVZaNpUxKqbGvf6ZROZhHfOzl/Wqwqf0o9bNb /KL1g6wSFE/qK8CKw4zarrB416YFgjmuQM9frLzKo1Pz5rAeuzq8GLL9Vm5I8b66 lMeBAvZ87FpXZQEAtqXFFZ+tnx0pQ+NmGxeVp3Gv8PfbfYM6x8nnZVeBlKs8uL8S 1z/pQpaEhAheSE3u+LXqjNc3g9bfbb7VPPJMxEE0ns7FSuYZpWb9VTqr6KmnYDf5 39UyU0NNU3Oh0lpiPs81ZVKsu5XAsn+Z -----END CERTIFICATE-----Generated at Mon Aug 11 10:45:16 2025 by rpki-client