$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft File: IYqKoFAmewgF4_3IqTm_j7ywAQE.mft (raw, json) Hash identifier: kiFbxCXxgJsDTRwJjxwk483x0vppF12huiWzsL8RJh0= Subject key identifier: 24:48:93:BD:19:0E:43:4C:03:9E:B5:51:39:22:97:74:D8:57:B2:46 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 06B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft Manifest number: 0688 Signing time: Wed 02 Jul 2025 22:45:54 +0000 Manifest this update: Wed 02 Jul 2025 22:45:54 +0000 Manifest next update: Wed 09 Jul 2025 22:45:54 +0000 Files and hashes: 1: IYqKoFAmewgF4_3IqTm_j7ywAQE.crl (hash: Jgx3CWSy4Lm7jm32iBckjRByz3po2a7hxGvsnIKOn6s=) 2: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (hash: fUw04+Wc6xwoR+YVBY/WLsyng9md/GVTmSyZYwr11zk=) 3: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (hash: MudkEdFQa6C+ndTjapkqJTQJnMUjbCojJJWyr2cOnbw=) 4: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (hash: FzGeC1HGFQjInv7a/tzBBidCqJ5ESeD9M5yJI45g108=) 5: 7DFD24A0A69D11ED970A2E1EC4F9AE02.roa (hash: UXLNG/TKlOwe92B54U28A9vIc0yRc2k66x6iSMWRkzk=) 6: A08AFBB284F211EE89828225C4F9AE02.roa (hash: o0/UmqHBu35TkHikAhbVdhXHi+7hDM8lM9U+g+mEr/c=) 7: ECF2B5A8A72B11EDAC3DA56CC4F9AE02.roa (hash: +kGit6QP9EC8on4uBAyo05LK37M52pka8uD91XBHy+Y=) 8: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (hash: G/rvtZ5T81L1+Ut1wIh+MKSJ0KMlgkIN/JGVODcTotI=) 9: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (hash: 9LXbAzt0/EsGKbz7o7F/OwWTWmMVBzVo73DTWxXTguw=) 10: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (hash: 0R2F7phEKy5EqIJBVAvo5pb/1NzWEpCwpH92++JGH9o=) 11: 005CDC821F1411EC85E08546C4F9AE02.roa (hash: 2LEw81p+Fk53aVNuSL1CxAKcvp9Ob9XvQt2+L6XI7mo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1715 (0x6b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Jul 2 22:45:54 2025 GMT Not After : Jul 9 22:45:54 2025 GMT Subject: CN=6865b6a2-e8e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0e:aa:77:e5:59:16:52:13:7c:93:ce:b6:da: f1:b7:eb:c6:cd:46:11:cd:61:60:7c:b2:f5:60:f6: 50:c9:5b:54:7f:f4:35:e3:4b:76:4e:8d:93:19:6c: e7:96:39:b6:24:1e:52:a5:dd:6d:76:5c:29:ea:59: f4:dd:c4:6c:cb:9e:32:1a:02:bd:66:72:1b:ae:de: 80:42:c1:88:e8:c4:b9:61:fc:6b:7b:9b:6e:d0:c0: c2:4b:93:fa:e0:d4:0d:e2:85:ac:8f:8d:5d:e5:7b: ea:d1:35:dd:3d:7f:95:3d:49:25:3a:ca:b6:60:ae: 90:77:cf:9a:45:21:22:f5:71:d5:8c:63:f3:e8:f2: 9b:68:f6:27:ed:ef:a6:c8:3c:37:fd:27:29:a4:59: b1:bd:64:69:f7:4c:44:ce:40:08:8c:01:6d:35:c8: dc:5f:84:9a:75:9c:53:69:13:75:ff:5a:10:17:7e: b8:f8:a0:54:c8:87:39:bb:8e:8c:dc:a4:4d:55:9e: 01:91:ee:91:05:69:8c:38:03:c0:44:c6:15:c3:0f: 63:00:63:5e:94:41:05:41:1d:6d:54:81:ea:ee:a6: e3:7d:c7:02:03:31:79:9b:9c:3f:69:55:07:d5:61: d2:d9:5e:04:6c:84:61:aa:cd:0e:87:44:33:1f:84: 8e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:48:93:BD:19:0E:43:4C:03:9E:B5:51:39:22:97:74:D8:57:B2:46 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:0b:d6:59:53:92:65:b7:ca:35:c3:a9:fb:aa:f4:e9:3b:0a: 08:37:a7:4b:a0:37:6a:dc:1f:86:2c:86:03:b8:27:d6:b4:6f: f3:27:ec:46:e4:da:89:f8:f6:e3:f9:b7:c9:c7:80:e6:da:b0: a9:75:ec:23:77:07:eb:4a:9a:f2:78:5f:7a:c3:f6:c1:99:b8: 56:b8:35:26:ce:d7:f6:bf:e3:25:c2:ea:31:b4:26:6a:a2:f9: da:2a:2e:23:0e:94:d5:25:5b:af:bd:70:51:a6:b0:29:a0:3a: b8:ad:b7:5b:b3:40:77:52:b0:8c:4f:2d:38:57:7d:c5:e3:a2: e1:54:2b:bc:0c:5b:65:56:3a:fc:a3:f1:0a:de:9e:23:2c:92: 29:62:ee:ec:4f:59:3c:55:20:6d:a0:d8:69:cc:2d:03:3c:8c: 93:09:85:07:8a:91:a7:b4:88:99:7c:21:61:23:21:14:61:5c: 0a:07:28:30:03:60:ed:36:7f:f9:23:40:cb:e6:e8:df:32:f1: dd:b3:1b:99:e6:1f:b2:26:38:77:5e:32:e5:27:9e:e4:22:5e: 13:23:04:38:ec:4f:48:85:11:f0:51:d3:c0:35:93:fe:61:e0: 49:14:c0:d0:e0:9d:35:58:77:5a:77:99:de:3a:34:0a:79:03: 54:0e:c8:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjUwNzAyMjI0NTU0WhcNMjUwNzA5MjI0NTU0WjAYMRYwFAYD VQQDEw02ODY1YjZhMi1lOGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyA6qd+VZFlITfJPOttrxt+vGzUYRzWFgfLL1YPZQyVtUf/Q140t2To2TGWzn ljm2JB5Spd1tdlwp6ln03cRsy54yGgK9ZnIbrt6AQsGI6MS5Yfxre5tu0MDCS5P6 4NQN4oWsj41d5Xvq0TXdPX+VPUklOsq2YK6Qd8+aRSEi9XHVjGPz6PKbaPYn7e+m yDw3/ScppFmxvWRp90xEzkAIjAFtNcjcX4SadZxTaRN1/1oQF364+KBUyIc5u46M 3KRNVZ4Bke6RBWmMOAPARMYVww9jAGNelEEFQR1tVIHq7qbjfccCAzF5m5w/aVUH 1WHS2V4EbIRhqs0Oh0QzH4SOfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCRIk70Z DkNMA561UTkil3TYV7JGMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDZBQS84NjU4RTQ2Njg2QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3 Z0Y0XzNJcVRtX2o3eXdBUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCC9ZZU5Jlt8o1w6n7qvTpOwoIN6dLoDdq3B+GLIYDuCfWtG/zJ+xG 5NqJ+Pbj+bfJx4Dm2rCpdewjdwfrSpryeF96w/bBmbhWuDUmztf2v+MlwuoxtCZq ovnaKi4jDpTVJVuvvXBRprApoDq4rbdbs0B3UrCMTy04V33F46LhVCu8DFtlVjr8 o/EK3p4jLJIpYu7sT1k8VSBtoNhpzC0DPIyTCYUHipGntIiZfCFhIyEUYVwKBygw A2DtNn/5I0DL5ujfMvHdsxuZ5h+yJjh3XjLlJ57kIl4TIwQ47E9IhRHwUdPANZP+ YeBJFMDQ4J01WHdad5neOjQKeQNUDsgA -----END CERTIFICATE-----Generated at Thu Jul 3 21:41:59 2025 by rpki-client