$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft File: IYqKoFAmewgF4_3IqTm_j7ywAQE.mft (raw, json) Hash identifier: 3fAfvpgNYb3SKo+eXAyZ6Yi4i/1dqJqfl2oxThVKcTI= Subject key identifier: CD:D7:4C:53:D6:2A:51:0D:CE:DD:A1:63:D0:D3:72:56:ED:CA:87:CB Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 06D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft Manifest number: 06AC Signing time: Thu 04 Sep 2025 22:38:53 +0000 Manifest this update: Thu 04 Sep 2025 22:38:52 +0000 Manifest next update: Thu 11 Sep 2025 22:38:52 +0000 Files and hashes: 1: IYqKoFAmewgF4_3IqTm_j7ywAQE.crl (hash: J+GqMRrNjZPN4wCaXlN+1uKqZEOKvh049gZH9ITd0m0=) 2: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (hash: fUw04+Wc6xwoR+YVBY/WLsyng9md/GVTmSyZYwr11zk=) 3: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (hash: MudkEdFQa6C+ndTjapkqJTQJnMUjbCojJJWyr2cOnbw=) 4: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (hash: FzGeC1HGFQjInv7a/tzBBidCqJ5ESeD9M5yJI45g108=) 5: 7DFD24A0A69D11ED970A2E1EC4F9AE02.roa (hash: UXLNG/TKlOwe92B54U28A9vIc0yRc2k66x6iSMWRkzk=) 6: A08AFBB284F211EE89828225C4F9AE02.roa (hash: o0/UmqHBu35TkHikAhbVdhXHi+7hDM8lM9U+g+mEr/c=) 7: ECF2B5A8A72B11EDAC3DA56CC4F9AE02.roa (hash: +kGit6QP9EC8on4uBAyo05LK37M52pka8uD91XBHy+Y=) 8: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (hash: G/rvtZ5T81L1+Ut1wIh+MKSJ0KMlgkIN/JGVODcTotI=) 9: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (hash: 9LXbAzt0/EsGKbz7o7F/OwWTWmMVBzVo73DTWxXTguw=) 10: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (hash: 0R2F7phEKy5EqIJBVAvo5pb/1NzWEpCwpH92++JGH9o=) 11: 005CDC821F1411EC85E08546C4F9AE02.roa (hash: 2LEw81p+Fk53aVNuSL1CxAKcvp9Ob9XvQt2+L6XI7mo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1751 (0x6d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Sep 4 22:38:52 2025 GMT Not After : Sep 11 22:38:52 2025 GMT Subject: CN=68ba14fd-6e9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:39:dd:55:91:70:ba:e7:20:e2:32:45:f3:79: e7:07:a9:5a:52:ae:f8:f1:09:1a:91:6c:68:6c:12: 36:c3:04:44:a8:b0:0c:97:41:b3:68:b3:6c:7a:76: 7a:a2:de:86:90:3c:8d:cc:ec:9d:f7:3d:ce:63:1e: 1d:79:c4:a2:72:7c:c4:c2:54:86:c0:21:3e:59:1a: fc:e3:f5:fd:6c:bf:20:23:69:df:24:76:e3:d5:35: 32:70:b0:a1:5f:54:90:3e:7f:58:1a:aa:3c:4f:ec: 6a:14:af:93:80:10:83:e5:60:dd:65:c8:c0:0e:95: 72:a8:73:26:cd:74:e0:6a:24:c6:73:e7:67:f1:c8: 4f:da:fa:86:3a:b0:e1:6d:6d:27:21:e2:24:82:26: 9c:9c:3c:76:fd:e0:f2:6b:91:eb:3d:9e:d2:f7:e4: a4:2c:63:cb:ee:74:ef:6f:7c:85:33:f3:49:8a:4c: f0:b1:36:40:8d:84:38:1d:7a:a4:c4:6c:54:61:99: 9b:61:e5:d0:5b:2b:02:71:a2:00:d3:19:4e:37:88: e8:8f:81:9a:95:e3:04:b1:43:dd:2f:c4:70:5f:d8: 9a:6c:e0:31:c3:24:0c:74:ac:ec:44:b5:3f:1e:a1: 3f:9f:e4:01:68:72:3e:a9:5d:13:9e:68:ac:75:46: 11:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D7:4C:53:D6:2A:51:0D:CE:DD:A1:63:D0:D3:72:56:ED:CA:87:CB X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:96:89:69:17:ff:2c:be:02:a8:15:76:2d:06:6a:18:45:0f: 07:83:82:4b:79:0a:48:03:dd:c4:88:b4:fd:bb:3a:8e:ca:24: 1a:7e:49:d4:dd:db:9a:a4:93:fd:ac:41:88:2f:c0:d7:20:02: 2e:6a:ac:bf:72:e9:95:24:02:08:a3:5d:f8:7d:a9:32:71:03: 9e:a7:ff:00:d1:19:d4:df:75:df:fe:b9:55:0d:4d:a8:dc:41: f7:95:6d:1a:37:dd:b5:06:61:56:93:55:c2:a7:56:35:f6:54: f6:f3:10:11:11:c3:e1:0c:09:3f:a2:5b:fc:06:29:15:35:ac: 69:04:c5:1d:2f:3b:9c:c0:8b:3e:5e:16:39:5a:88:36:0d:25: bf:c6:86:1f:92:c6:5d:10:62:26:d1:c1:68:88:d8:95:a1:e6: 97:4a:9a:c3:2c:20:49:e5:a2:34:54:7e:a2:61:2d:18:ee:ac: 49:86:e5:88:42:0f:86:15:1e:55:c9:b3:68:72:1e:ba:15:cc: 6b:f2:05:c6:74:c9:d9:09:64:77:e6:00:25:00:ae:e1:93:0a: ca:d4:d2:e9:b9:10:d6:53:25:9c:4c:b5:f7:84:73:54:b0:18: 38:be:91:1b:ef:56:37:be:cd:47:d4:19:18:61:d8:35:2f:1a: d8:f9:c8:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjUwOTA0MjIzODUyWhcNMjUwOTExMjIzODUyWjAYMRYwFAYD VQQDEw02OGJhMTRmZC02ZTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTndVZFwuucg4jJF83nnB6laUq748QkakWxobBI2wwREqLAMl0GzaLNsenZ6 ot6GkDyNzOyd9z3OYx4decSicnzEwlSGwCE+WRr84/X9bL8gI2nfJHbj1TUycLCh X1SQPn9YGqo8T+xqFK+TgBCD5WDdZcjADpVyqHMmzXTgaiTGc+dn8chP2vqGOrDh bW0nIeIkgiacnDx2/eDya5HrPZ7S9+SkLGPL7nTvb3yFM/NJikzwsTZAjYQ4HXqk xGxUYZmbYeXQWysCcaIA0xlON4joj4GaleMEsUPdL8RwX9iabOAxwyQMdKzsRLU/ HqE/n+QBaHI+qV0TnmisdUYRPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3XTFPW KlENzt2hY9DTclbtyofLMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDZBQS84NjU4RTQ2Njg2QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3 Z0Y0XzNJcVRtX2o3eXdBUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDlolpF/8svgKoFXYtBmoYRQ8Hg4JLeQpIA93EiLT9uzqOyiQafknU 3duapJP9rEGIL8DXIAIuaqy/cumVJAIIo134fakycQOep/8A0RnU33Xf/rlVDU2o 3EH3lW0aN921BmFWk1XCp1Y19lT28xAREcPhDAk/olv8BikVNaxpBMUdLzucwIs+ XhY5Wog2DSW/xoYfksZdEGIm0cFoiNiVoeaXSprDLCBJ5aI0VH6iYS0Y7qxJhuWI Qg+GFR5VybNoch66Fcxr8gXGdMnZCWR35gAlAK7hkwrK1NLpuRDWUyWcTLX3hHNU sBg4vpEb71Y3vs1H1BkYYdg1LxrY+cju -----END CERTIFICATE-----Generated at Sat Sep 6 12:08:08 2025 by rpki-client