$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft File: IYqKoFAmewgF4_3IqTm_j7ywAQE.mft (raw, json) Hash identifier: XNVCHeWnmthdp0M3YKkBIkVw+58kNnOwMh/syrje/CA= Subject key identifier: 6D:A8:F9:DF:04:81:98:AD:9E:26:08:F9:AE:B7:3C:EA:81:31:90:89 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 0779 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft Manifest number: 072D Signing time: Tue 28 Apr 2026 22:32:12 +0000 Manifest this update: Tue 28 Apr 2026 22:32:11 +0000 Manifest next update: Tue 05 May 2026 22:32:11 +0000 Files and hashes: 1: IYqKoFAmewgF4_3IqTm_j7ywAQE.crl (hash: FKnGOOl2SGbHN/059b2ccXQEvXJySWoBsjfe2L1lbXM=) 2: A08AFBB284F211EE89828225C4F9AE02.roa (hash: vbG5EXXlgYlGq5jnBwc913dKTc7sUfrG2TC/jANpYLY=) 3: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (hash: jQXlUzW3VHeQZYuGACvXU8X1tTMwFhRUqHJL1OYJ9/8=) 4: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (hash: K3aeCKo2mZ2NOnnVOuFmorGAloq7x6dVjZPYqNrpk70=) 5: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (hash: rQhMSDBbxcSI6MB5lHu+8q8Nh6WWXRx41SB2RuJ5eQo=) 6: ECF2B5A8A72B11EDAC3DA56CC4F9AE02.roa (hash: iXLK649RmoeUhSGlA25MdX2Oj5QWfIOM0pF/QXQTaps=) 7: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (hash: GZPk+z2xKk+h7BjajU40ooW3BALI+9amXS7D2eVeUI4=) 8: 005CDC821F1411EC85E08546C4F9AE02.roa (hash: RtrKmXveYib5rppP1DIWCcPNm3D6+Flm33UJR0UA860=) 9: 7DFD24A0A69D11ED970A2E1EC4F9AE02.roa (hash: 6caEdCnhzmI2hwVR8XFxrGjD5Z484ugUGSA346QGS2I=) 10: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (hash: trmRq5WmOXOs/y5qTNJdndK+x4aDzPI8UTGr6I0y6to=) 11: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (hash: 8lXFNalp+VAtXH5P3uOSawpn+k9++H+OieLK+bsEIlU=) 12: 3CEA8114429511F1AFCCDC75B2833773.roa (hash: ZPrkUcTW0dkUrha+IDL+C0J+DeJogup9DGfp3ayHM4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 22:32:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1913 (0x779) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Apr 28 22:32:11 2026 GMT Not After : May 5 22:32:11 2026 GMT Subject: CN=69f1356c-d635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:9c:5f:0c:42:3f:4b:89:3d:91:27:4b:22:cc: e5:3c:20:06:f3:db:fa:11:14:12:44:8b:2a:d9:66: 8f:3e:37:12:3a:86:84:ff:1c:73:b3:9d:89:88:19: 9e:67:96:6b:4f:b6:ba:c7:f2:31:60:27:36:6a:39: 56:9d:bd:21:35:90:29:58:e6:18:99:30:6c:2b:08: 38:30:13:51:c4:ae:a9:22:a3:9c:27:e9:95:ad:dd: 52:93:f6:af:ee:42:76:4c:e0:da:81:ea:9d:3a:c0: a6:e1:dd:30:46:e1:0a:e9:b8:47:60:b5:6d:43:87: 87:31:c5:64:53:fb:05:b7:8d:7e:32:16:71:5a:49: 18:11:4c:77:24:01:9f:ac:52:4e:a2:c6:04:92:16: 52:b3:04:13:c7:76:66:78:45:96:38:9a:9b:4c:41: 17:49:bb:30:46:45:61:60:51:89:58:29:a6:47:ec: 44:4d:b4:48:ec:62:f9:35:31:bf:10:54:59:d1:d7: 03:80:ca:d5:e1:8d:ed:c8:05:ba:bc:fe:74:36:ac: 6d:f2:63:47:2a:57:29:ec:6b:9c:a8:44:7b:1c:31: 92:28:8b:90:b8:83:fa:a0:48:55:08:17:52:13:1f: 80:33:1f:51:42:21:ba:37:e1:cd:e4:02:bb:ea:94: 20:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:A8:F9:DF:04:81:98:AD:9E:26:08:F9:AE:B7:3C:EA:81:31:90:89 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:2d:eb:c3:b3:af:b6:77:72:5a:1c:e7:13:b1:8f:fc:ac:df: 5e:60:ab:47:be:1e:91:a6:dd:fa:6a:9c:77:b6:29:14:0d:8b: c9:86:aa:fd:ab:2d:f4:1a:98:38:3a:ad:e7:d7:01:c7:54:21: 93:17:9e:ac:84:4a:4c:0a:01:c4:0b:23:53:36:92:f2:1d:c8: fd:3b:61:15:ed:0e:ad:ae:aa:fd:b6:aa:34:c3:58:cd:3f:d8: bd:e0:fe:59:a0:7c:aa:90:b8:26:7f:05:a3:e1:b1:e7:9c:fa: 7a:71:63:e2:a7:b2:72:78:32:40:da:dd:12:ad:7b:24:03:af: fb:79:42:1e:06:d2:2d:6b:b5:09:1b:e5:44:1e:b7:a6:7f:07: 15:9e:21:29:6f:68:2f:a4:8d:cd:ea:f5:b5:e7:2d:82:39:78: 7c:e7:4d:4d:80:ef:47:0a:24:de:07:d5:e5:f3:03:d6:42:7a: b2:77:42:9e:35:35:d4:28:e1:c8:ea:06:e2:ff:f2:ea:52:73: ad:af:7f:2b:f4:a7:20:d7:97:04:a2:61:cd:a6:26:a9:ba:b8: 80:82:2b:b7:e8:32:2e:7d:fc:b9:a9:21:87:57:84:d5:5d:78: cb:be:90:b2:82:f8:df:34:55:b3:92:59:15:c1:94:60:34:6e: 5c:e5:87:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjYwNDI4MjIzMjExWhcNMjYwNTA1MjIzMjExWjAYMRYwFAYD VQQDEw02OWYxMzU2Yy1kNjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ZxfDEI/S4k9kSdLIszlPCAG89v6ERQSRIsq2WaPPjcSOoaE/xxzs52JiBme Z5ZrT7a6x/IxYCc2ajlWnb0hNZApWOYYmTBsKwg4MBNRxK6pIqOcJ+mVrd1Sk/av 7kJ2TODageqdOsCm4d0wRuEK6bhHYLVtQ4eHMcVkU/sFt41+MhZxWkkYEUx3JAGf rFJOosYEkhZSswQTx3ZmeEWWOJqbTEEXSbswRkVhYFGJWCmmR+xETbRI7GL5NTG/ EFRZ0dcDgMrV4Y3tyAW6vP50Nqxt8mNHKlcp7GucqER7HDGSKIuQuIP6oEhVCBdS Ex+AMx9RQiG6N+HN5AK76pQgsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG2o+d8E gZitniYI+a63POqBMZCJMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDZBQS84NjU4RTQ2Njg2QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3 Z0Y0XzNJcVRtX2o3eXdBUUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATC3rw7OvtndyWhznE7GP/KzfXmCrR74ekabd+mqcd7YpFA2LyYaq/ast9BqY ODqt59cBx1QhkxeerIRKTAoBxAsjUzaS8h3I/TthFe0Ora6q/baqNMNYzT/YveD+ WaB8qpC4Jn8Fo+Gx55z6enFj4qeycngyQNrdEq17JAOv+3lCHgbSLWu1CRvlRB63 pn8HFZ4hKW9oL6SNzer1tectgjl4fOdNTYDvRwok3gfV5fMD1kJ6sndCnjU11Cjh yOoG4v/y6lJzra9/K/SnINeXBKJhzaYmqbq4gIIrt+gyLn38uakhh1eE1V14y76Q soL43zRVs5JZFcGUYDRuXOWHbw== -----END CERTIFICATE-----Generated at Wed Apr 29 13:47:32 2026 by rpki-client