$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft File: IYqKoFAmewgF4_3IqTm_j7ywAQE.mft (raw, json) Hash identifier: kymjm0w29meyk+hLIRXkqPMqP6aQLywtfxJ46N9z4c4= Subject key identifier: 92:7B:06:E0:F7:B6:AF:7F:8E:3C:3B:14:02:5F:14:72:72:02:39:23 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 075B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft Manifest number: 0712 Signing time: Thu 12 Mar 2026 21:43:02 +0000 Manifest this update: Thu 12 Mar 2026 21:43:02 +0000 Manifest next update: Thu 19 Mar 2026 21:43:02 +0000 Files and hashes: 1: IYqKoFAmewgF4_3IqTm_j7ywAQE.crl (hash: czCrNJelqC6gEAdbEvYioVBaCvDQBskNeomxFnZe5pM=) 2: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (hash: K3aeCKo2mZ2NOnnVOuFmorGAloq7x6dVjZPYqNrpk70=) 3: 005CDC821F1411EC85E08546C4F9AE02.roa (hash: RtrKmXveYib5rppP1DIWCcPNm3D6+Flm33UJR0UA860=) 4: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (hash: 8lXFNalp+VAtXH5P3uOSawpn+k9++H+OieLK+bsEIlU=) 5: 7DFD24A0A69D11ED970A2E1EC4F9AE02.roa (hash: 6caEdCnhzmI2hwVR8XFxrGjD5Z484ugUGSA346QGS2I=) 6: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (hash: rQhMSDBbxcSI6MB5lHu+8q8Nh6WWXRx41SB2RuJ5eQo=) 7: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (hash: jQXlUzW3VHeQZYuGACvXU8X1tTMwFhRUqHJL1OYJ9/8=) 8: A08AFBB284F211EE89828225C4F9AE02.roa (hash: vbG5EXXlgYlGq5jnBwc913dKTc7sUfrG2TC/jANpYLY=) 9: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (hash: GZPk+z2xKk+h7BjajU40ooW3BALI+9amXS7D2eVeUI4=) 10: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (hash: trmRq5WmOXOs/y5qTNJdndK+x4aDzPI8UTGr6I0y6to=) 11: ECF2B5A8A72B11EDAC3DA56CC4F9AE02.roa (hash: iXLK649RmoeUhSGlA25MdX2Oj5QWfIOM0pF/QXQTaps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 21:43:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1883 (0x75b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Mar 12 21:43:02 2026 GMT Not After : Mar 19 21:43:02 2026 GMT Subject: CN=69b33366-5468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:3a:90:c6:e2:61:16:e5:02:24:bd:71:99:80: 12:7e:8c:7b:9c:9a:8c:34:10:42:b7:9e:df:e7:0e: 89:dd:fa:19:93:ca:4e:3a:52:3a:01:5f:6e:dd:72: 67:27:56:64:29:ff:bf:10:2c:8c:e4:4d:69:84:ce: 0c:cb:bb:f5:a3:11:5b:98:dc:93:1d:e9:6e:73:99: 4b:49:2d:5b:0d:01:91:0f:93:9d:a9:c7:83:b6:71: 89:c0:07:a9:19:06:12:1b:ab:b7:b4:ba:b8:d5:30: b8:85:cf:2f:49:33:57:dd:4c:46:5c:94:71:a1:55: c9:63:67:e7:84:58:56:73:b9:88:5c:c6:96:b0:eb: 9c:55:92:ef:93:61:09:36:8f:ff:a1:23:d3:68:c6: b0:ce:6d:4c:eb:05:ea:8f:af:ef:34:2b:8e:f6:d9: 49:d4:33:50:33:a2:2b:a2:fc:10:84:8c:73:87:30: 0e:d5:d6:80:36:80:11:0e:f8:6e:2c:51:4d:5f:f4: 5c:21:5b:9f:b4:58:93:b3:76:4c:af:6e:de:16:d8: fd:83:db:36:f5:97:79:f1:bd:d6:81:f3:34:48:9b: 1b:72:ce:7b:40:97:51:36:d2:2a:e0:df:dc:4a:43: 05:c2:70:2e:8d:83:c8:a4:4a:70:98:39:d9:0e:cf: 84:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:7B:06:E0:F7:B6:AF:7F:8E:3C:3B:14:02:5F:14:72:72:02:39:23 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:7e:a3:03:64:2f:9b:4f:e7:a7:7b:43:59:40:41:9b:cd:47: 98:8f:16:01:a5:ad:f4:e9:c2:61:cd:28:d6:a6:d7:e0:b9:67: e2:3a:66:cb:23:fe:ba:0b:9d:23:e5:aa:6f:ab:70:a4:1f:c3: cd:18:e2:2e:78:d7:a7:8d:7f:66:02:4e:a0:16:8e:49:66:79: 36:a1:ad:7b:da:37:f2:a3:e7:c7:f7:d7:2d:58:d7:d1:33:f8: a6:b0:42:67:19:cf:93:7d:a9:84:36:16:49:88:21:f9:32:5d: 88:2a:ab:ea:1c:8c:97:ed:78:8e:95:dc:1b:7d:da:38:6a:38: a0:4d:0c:2f:87:ed:78:f1:66:b7:da:3f:15:0d:8f:18:6d:4e: 7a:6c:df:c8:f4:5d:62:e8:43:54:eb:fe:48:d6:62:9c:79:58: f3:a3:91:8e:4f:3b:c8:f2:cf:82:ed:99:ae:be:d2:aa:db:c7: 36:6d:68:be:a6:8c:56:4f:56:07:e7:28:c2:ef:b6:d5:56:ee: 88:cc:d8:98:5b:04:82:90:1f:73:c1:03:d9:eb:55:b4:1a:c8: e9:b2:82:0c:8f:a3:58:18:05:68:29:87:c7:dd:49:ce:38:34: 7b:87:97:42:00:14:6a:81:d8:39:54:5f:d0:59:70:ca:51:93: 98:c5:a1:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjYwMzEyMjE0MzAyWhcNMjYwMzE5MjE0MzAyWjAYMRYwFAYD VQQDEw02OWIzMzM2Ni01NDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zqQxuJhFuUCJL1xmYASfox7nJqMNBBCt57f5w6J3foZk8pOOlI6AV9u3XJn J1ZkKf+/ECyM5E1phM4My7v1oxFbmNyTHeluc5lLSS1bDQGRD5OdqceDtnGJwAep GQYSG6u3tLq41TC4hc8vSTNX3UxGXJRxoVXJY2fnhFhWc7mIXMaWsOucVZLvk2EJ No//oSPTaMawzm1M6wXqj6/vNCuO9tlJ1DNQM6IrovwQhIxzhzAO1daANoARDvhu LFFNX/RcIVuftFiTs3ZMr27eFtj9g9s29Zd58b3WgfM0SJsbcs57QJdRNtIq4N/c SkMFwnAujYPIpEpwmDnZDs+E5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJJ7BuD3 tq9/jjw7FAJfFHJyAjkjMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDZBQS84NjU4RTQ2Njg2QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3 Z0Y0XzNJcVRtX2o3eXdBUUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABX6jA2Qvm0/np3tDWUBBm81HmI8WAaWt9OnCYc0o1qbX4Lln4jpmyyP+ugud I+Wqb6twpB/DzRjiLnjXp41/ZgJOoBaOSWZ5NqGte9o38qPnx/fXLVjX0TP4prBC ZxnPk32phDYWSYgh+TJdiCqr6hyMl+14jpXcG33aOGo4oE0ML4ftePFmt9o/FQ2P GG1OemzfyPRdYuhDVOv+SNZinHlY86ORjk87yPLPgu2Zrr7SqtvHNm1ovqaMVk9W B+cowu+21VbuiMzYmFsEgpAfc8ED2etVtBrI6bKCDI+jWBgFaCmHx91Jzjg0e4eX QgAUaoHYOVRf0FlwylGTmMWhXw== -----END CERTIFICATE-----Generated at Fri Mar 13 07:26:12 2026 by rpki-client