$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft File: IYqKoFAmewgF4_3IqTm_j7ywAQE.mft (raw, json) Hash identifier: H11w5PqKmyhj4PJQYDe0i51iMWRKnNL8EUNKRM0nLG0= Subject key identifier: 5E:FD:DC:2D:A3:BE:12:B6:DD:7D:FC:CD:B7:27:20:1B:3F:50:D6:8B Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 06A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft Manifest number: 0677 Signing time: Sat 31 May 2025 22:34:55 +0000 Manifest this update: Sat 31 May 2025 22:34:54 +0000 Manifest next update: Sat 07 Jun 2025 22:34:54 +0000 Files and hashes: 1: IYqKoFAmewgF4_3IqTm_j7ywAQE.crl (hash: AZvAomp+FJkswGJnjMiY2tmM8t6fiwKMOhzaE6EPbec=) 2: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (hash: fUw04+Wc6xwoR+YVBY/WLsyng9md/GVTmSyZYwr11zk=) 3: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (hash: MudkEdFQa6C+ndTjapkqJTQJnMUjbCojJJWyr2cOnbw=) 4: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (hash: FzGeC1HGFQjInv7a/tzBBidCqJ5ESeD9M5yJI45g108=) 5: 7DFD24A0A69D11ED970A2E1EC4F9AE02.roa (hash: UXLNG/TKlOwe92B54U28A9vIc0yRc2k66x6iSMWRkzk=) 6: A08AFBB284F211EE89828225C4F9AE02.roa (hash: o0/UmqHBu35TkHikAhbVdhXHi+7hDM8lM9U+g+mEr/c=) 7: ECF2B5A8A72B11EDAC3DA56CC4F9AE02.roa (hash: +kGit6QP9EC8on4uBAyo05LK37M52pka8uD91XBHy+Y=) 8: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (hash: G/rvtZ5T81L1+Ut1wIh+MKSJ0KMlgkIN/JGVODcTotI=) 9: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (hash: 9LXbAzt0/EsGKbz7o7F/OwWTWmMVBzVo73DTWxXTguw=) 10: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (hash: 0R2F7phEKy5EqIJBVAvo5pb/1NzWEpCwpH92++JGH9o=) 11: 005CDC821F1411EC85E08546C4F9AE02.roa (hash: 2LEw81p+Fk53aVNuSL1CxAKcvp9Ob9XvQt2+L6XI7mo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 22:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1698 (0x6a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: May 31 22:34:54 2025 GMT Not After : Jun 7 22:34:54 2025 GMT Subject: CN=683b840f-4720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ea:72:c8:fe:c2:6e:fc:f2:22:cd:cd:e9:c6: cc:5a:1e:6b:37:79:cc:36:56:91:7b:11:5d:00:4a: 49:8b:23:35:6c:32:96:80:d6:a3:2d:b2:d9:d4:ed: 72:04:35:24:97:5e:f8:d2:7c:8a:83:04:5f:39:74: 64:8b:6c:2e:81:57:9c:16:fd:7c:1b:69:35:6b:16: 35:56:7b:1c:58:c3:a1:dd:ff:0b:0c:fc:0c:24:58: 1f:ca:e0:ca:60:f4:75:52:55:3e:3b:5e:43:6d:e1: a1:23:13:9e:ba:77:55:2b:b4:ff:b5:84:a2:7f:73: b1:12:d4:08:75:b9:b4:a9:92:68:6f:56:aa:43:2c: 46:54:ad:57:ea:c1:1c:5d:98:7c:b7:af:c9:b3:1d: ce:c0:47:08:e2:04:7b:ce:47:90:fe:21:25:ba:34: c4:91:44:7e:51:58:85:38:38:d6:31:da:94:f5:14: 00:fc:22:e0:0b:00:2e:cc:81:1a:e6:84:dd:78:22: c8:2c:21:b9:39:5f:eb:c3:f5:44:03:b2:78:48:f7: ea:57:62:7f:15:9d:65:88:92:60:2d:68:39:ac:5a: e1:5f:49:43:84:e6:15:51:d1:93:ac:db:43:80:8e: cb:16:d5:0f:b2:cb:f3:a8:3b:14:88:50:3c:24:ed: ae:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:FD:DC:2D:A3:BE:12:B6:DD:7D:FC:CD:B7:27:20:1B:3F:50:D6:8B X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:9b:92:d8:8f:12:0e:dd:02:c4:11:ef:da:a6:73:20:2a:14: 0c:0a:83:c8:70:b1:11:e3:62:58:55:45:af:85:f5:82:de:ca: eb:58:1a:be:5b:43:bf:1c:31:34:6a:f6:03:c7:ae:99:9c:d0: fe:74:26:bf:a6:4a:03:1e:92:f0:f4:8d:a5:38:f3:ba:8e:41: 05:68:6b:29:fb:7c:2f:aa:0c:f3:e6:62:88:c8:07:a4:3b:0e: 5b:eb:cf:25:63:ba:70:d7:28:78:61:fb:29:e2:78:02:1c:8f: c6:f3:2e:1c:6c:2a:e2:93:78:c4:2c:db:f6:66:98:c8:12:80: 61:77:44:67:f8:3e:8f:d2:32:02:c3:18:45:65:40:19:f2:ce: ed:ee:d9:b5:fd:92:bc:c9:01:44:cc:72:84:7a:16:db:e1:7f: 9d:7f:c6:b1:51:f5:bb:10:cc:26:f5:ab:da:6a:28:09:e3:04: 90:27:ab:1a:f1:07:bf:08:79:5c:a0:09:a0:98:1d:ed:88:71: bc:4a:d0:c5:5a:4c:ce:45:d3:8c:25:ef:55:29:c9:98:44:3d: 7e:96:27:66:cb:f4:22:f7:55:1f:35:29:9e:0e:b5:4c:3a:88: 16:6d:e4:34:91:a3:b0:09:e9:eb:35:86:01:13:fe:82:36:0a: 20:0f:66:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjUwNTMxMjIzNDU0WhcNMjUwNjA3MjIzNDU0WjAYMRYwFAYD VQQDEw02ODNiODQwZi00NzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2upyyP7CbvzyIs3N6cbMWh5rN3nMNlaRexFdAEpJiyM1bDKWgNajLbLZ1O1y BDUkl1740nyKgwRfOXRki2wugVecFv18G2k1axY1VnscWMOh3f8LDPwMJFgfyuDK YPR1UlU+O15DbeGhIxOeundVK7T/tYSif3OxEtQIdbm0qZJob1aqQyxGVK1X6sEc XZh8t6/Jsx3OwEcI4gR7zkeQ/iElujTEkUR+UViFODjWMdqU9RQA/CLgCwAuzIEa 5oTdeCLILCG5OV/rw/VEA7J4SPfqV2J/FZ1liJJgLWg5rFrhX0lDhOYVUdGTrNtD gI7LFtUPssvzqDsUiFA8JO2ubwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF793C2j vhK23X38zbcnIBs/UNaLMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDZBQS84NjU4RTQ2Njg2QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3 Z0Y0XzNJcVRtX2o3eXdBUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8m5LYjxIO3QLEEe/apnMgKhQMCoPIcLER42JYVUWvhfWC3srrWBq+ W0O/HDE0avYDx66ZnND+dCa/pkoDHpLw9I2lOPO6jkEFaGsp+3wvqgzz5mKIyAek Ow5b688lY7pw1yh4Yfsp4ngCHI/G8y4cbCrik3jELNv2ZpjIEoBhd0Rn+D6P0jIC wxhFZUAZ8s7t7tm1/ZK8yQFEzHKEehbb4X+df8axUfW7EMwm9avaaigJ4wSQJ6sa 8Qe/CHlcoAmgmB3tiHG8StDFWkzORdOMJe9VKcmYRD1+lidmy/Qi91UfNSmeDrVM OogWbeQ0kaOwCenrNYYBE/6CNgogD2aS -----END CERTIFICATE-----Generated at Mon Jun 2 22:18:04 2025 by rpki-client