$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft File: IYqKoFAmewgF4_3IqTm_j7ywAQE.mft (raw, json) Hash identifier: YxJaH9FFrR/ldtWV3/DeTPqdHOZq3LaghQudPoTlzbo= Subject key identifier: E3:3F:3C:68:1E:12:20:16:32:E3:77:5C:7D:04:00:6F:B9:FF:43:C7 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 076D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft Manifest number: 0724 Signing time: Thu 16 Apr 2026 21:57:41 +0000 Manifest this update: Thu 16 Apr 2026 21:57:40 +0000 Manifest next update: Thu 23 Apr 2026 21:57:40 +0000 Files and hashes: 1: IYqKoFAmewgF4_3IqTm_j7ywAQE.crl (hash: 41/EXnc4TveI/mQ/dtXVzeVZkRW34Y/e7NgirlavE1w=) 2: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (hash: jQXlUzW3VHeQZYuGACvXU8X1tTMwFhRUqHJL1OYJ9/8=) 3: A08AFBB284F211EE89828225C4F9AE02.roa (hash: vbG5EXXlgYlGq5jnBwc913dKTc7sUfrG2TC/jANpYLY=) 4: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (hash: GZPk+z2xKk+h7BjajU40ooW3BALI+9amXS7D2eVeUI4=) 5: ECF2B5A8A72B11EDAC3DA56CC4F9AE02.roa (hash: iXLK649RmoeUhSGlA25MdX2Oj5QWfIOM0pF/QXQTaps=) 6: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (hash: rQhMSDBbxcSI6MB5lHu+8q8Nh6WWXRx41SB2RuJ5eQo=) 7: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (hash: K3aeCKo2mZ2NOnnVOuFmorGAloq7x6dVjZPYqNrpk70=) 8: 7DFD24A0A69D11ED970A2E1EC4F9AE02.roa (hash: 6caEdCnhzmI2hwVR8XFxrGjD5Z484ugUGSA346QGS2I=) 9: 005CDC821F1411EC85E08546C4F9AE02.roa (hash: RtrKmXveYib5rppP1DIWCcPNm3D6+Flm33UJR0UA860=) 10: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (hash: trmRq5WmOXOs/y5qTNJdndK+x4aDzPI8UTGr6I0y6to=) 11: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (hash: 8lXFNalp+VAtXH5P3uOSawpn+k9++H+OieLK+bsEIlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:57:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1901 (0x76d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Apr 16 21:57:40 2026 GMT Not After : Apr 23 21:57:40 2026 GMT Subject: CN=69e15b55-d156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:79:4b:81:c7:16:dc:68:8f:5f:51:ec:75:65: 81:ed:b8:85:73:31:42:cb:3c:73:03:02:bb:f2:3f: 83:fd:cd:ba:70:56:5f:5a:b8:90:74:b0:22:ab:5b: 06:fd:92:ac:31:c9:69:cd:d5:a7:f2:f3:47:bf:56: 60:b5:7d:d6:93:44:05:2d:b4:62:75:e9:58:14:2d: 5b:c0:5f:67:71:f4:76:dc:cd:dd:41:72:39:ac:29: 7b:51:a4:0e:3b:29:dc:a8:2b:97:d1:e5:5d:8f:ff: a9:13:cb:69:ca:5d:b4:c2:fa:0f:4e:57:ac:9e:4d: e7:12:42:4f:59:0c:45:6c:d4:ef:71:2f:8f:f6:26: ee:34:77:6e:ea:a2:c3:8b:7e:01:d8:42:67:00:e0: 10:78:c8:87:4a:0f:f1:e1:58:8c:9d:f5:67:21:7b: 31:34:c2:7c:b7:e2:42:43:74:a4:8c:0f:0e:e3:19: e6:81:ba:d5:91:0b:dd:92:2c:1b:8b:21:bb:bc:4c: 8d:a5:90:2e:f9:5e:86:f1:7b:1f:ef:e6:cd:c8:51: 9f:c1:1d:e4:53:0d:a1:01:c2:ec:0f:4b:d0:e1:74: 4e:37:94:a5:2b:b3:c9:05:e9:9f:50:1e:f5:ae:ba: e5:4f:17:ad:ce:17:0f:60:d7:79:82:34:7b:82:20: d3:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:3F:3C:68:1E:12:20:16:32:E3:77:5C:7D:04:00:6F:B9:FF:43:C7 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:e4:67:6c:7a:c2:5a:35:7a:7d:40:8f:ed:c1:b6:17:1d:b4: 2c:3e:3f:09:8d:3c:f1:78:42:f0:6b:54:8c:b6:7a:ad:2c:4b: 3b:4d:55:da:b3:28:de:1f:ba:ba:2d:eb:92:81:46:64:d2:ad: e2:7e:1c:43:9f:df:1e:6b:9b:e8:44:80:94:bc:c1:df:bc:f1: ce:1b:b3:9f:53:48:03:92:84:81:c8:00:7d:9f:41:3e:ba:1d: 05:45:60:d9:d9:0c:50:f6:62:aa:db:a0:51:e9:f7:0b:05:f4: 84:25:e6:3e:aa:69:27:4e:f2:1d:ea:14:99:44:78:0f:88:c1: 5d:46:a3:6b:64:a4:94:09:89:48:e7:72:d9:1e:05:22:15:d0: ea:ba:fe:ea:b7:57:f2:51:2f:81:4b:06:42:8c:b9:f4:c6:d2: 77:dc:bf:89:30:71:f4:8c:61:f4:e9:83:65:39:40:52:d0:ac: f3:5c:8a:f1:13:01:d8:58:47:51:46:3d:a0:18:3a:7f:46:a7: 13:12:83:0f:ae:37:53:0f:32:55:88:73:87:b8:91:5e:b5:c2: f4:e0:c9:89:a6:e4:01:a8:70:d3:02:a4:4a:9c:2d:47:28:c2: 83:25:34:9f:b5:82:d0:7b:14:05:cb:7c:62:d5:9f:bd:0e:62: b6:c2:68:1d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjYwNDE2MjE1NzQwWhcNMjYwNDIzMjE1NzQwWjAYMRYwFAYD VQQDEw02OWUxNWI1NS1kMTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA53lLgccW3GiPX1HsdWWB7biFczFCyzxzAwK78j+D/c26cFZfWriQdLAiq1sG /ZKsMclpzdWn8vNHv1ZgtX3Wk0QFLbRidelYFC1bwF9ncfR23M3dQXI5rCl7UaQO OyncqCuX0eVdj/+pE8tpyl20wvoPTlesnk3nEkJPWQxFbNTvcS+P9ibuNHdu6qLD i34B2EJnAOAQeMiHSg/x4ViMnfVnIXsxNMJ8t+JCQ3SkjA8O4xnmgbrVkQvdkiwb iyG7vEyNpZAu+V6G8Xsf7+bNyFGfwR3kUw2hAcLsD0vQ4XRON5SlK7PJBemfUB71 rrrlTxetzhcPYNd5gjR7giDTDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOM/PGge EiAWMuN3XH0EAG+5/0PHMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDZBQS84NjU4RTQ2Njg2QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3 Z0Y0XzNJcVRtX2o3eXdBUUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYeRnbHrCWjV6fUCP7cG2Fx20LD4/CY088XhC8GtUjLZ6rSxLO01V2rMo3h+6 ui3rkoFGZNKt4n4cQ5/fHmub6ESAlLzB37zxzhuzn1NIA5KEgcgAfZ9BProdBUVg 2dkMUPZiqtugUen3CwX0hCXmPqppJ07yHeoUmUR4D4jBXUaja2SklAmJSOdy2R4F IhXQ6rr+6rdX8lEvgUsGQoy59MbSd9y/iTBx9Ixh9OmDZTlAUtCs81yK8RMB2FhH UUY9oBg6f0anExKDD643Uw8yVYhzh7iRXrXC9ODJiabkAahw0wKkSpwtRyjCgyU0 n7WC0HsUBct8YtWfvQ5itsJoHQ== -----END CERTIFICATE-----Generated at Sat Apr 18 00:04:21 2026 by rpki-client