$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft File: IYqKoFAmewgF4_3IqTm_j7ywAQE.mft (raw, json) Hash identifier: mPRxBxpHXsM+f9EVY3WtoXGtJV1UHdr4fAJPJ2pE9UQ= Subject key identifier: ED:34:F5:21:0F:F7:AC:35:76:02:E9:6D:D1:BB:ED:C0:9B:67:EB:FE Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 06CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft Manifest number: 06A4 Signing time: Fri 22 Aug 2025 22:33:10 +0000 Manifest this update: Fri 22 Aug 2025 22:33:09 +0000 Manifest next update: Fri 29 Aug 2025 22:33:09 +0000 Files and hashes: 1: IYqKoFAmewgF4_3IqTm_j7ywAQE.crl (hash: IZbE9lvcuBFtLOVGub4uF3iQM1pPl+YScHH8tSLPxMg=) 2: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (hash: fUw04+Wc6xwoR+YVBY/WLsyng9md/GVTmSyZYwr11zk=) 3: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (hash: MudkEdFQa6C+ndTjapkqJTQJnMUjbCojJJWyr2cOnbw=) 4: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (hash: FzGeC1HGFQjInv7a/tzBBidCqJ5ESeD9M5yJI45g108=) 5: 7DFD24A0A69D11ED970A2E1EC4F9AE02.roa (hash: UXLNG/TKlOwe92B54U28A9vIc0yRc2k66x6iSMWRkzk=) 6: A08AFBB284F211EE89828225C4F9AE02.roa (hash: o0/UmqHBu35TkHikAhbVdhXHi+7hDM8lM9U+g+mEr/c=) 7: ECF2B5A8A72B11EDAC3DA56CC4F9AE02.roa (hash: +kGit6QP9EC8on4uBAyo05LK37M52pka8uD91XBHy+Y=) 8: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (hash: G/rvtZ5T81L1+Ut1wIh+MKSJ0KMlgkIN/JGVODcTotI=) 9: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (hash: 9LXbAzt0/EsGKbz7o7F/OwWTWmMVBzVo73DTWxXTguw=) 10: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (hash: 0R2F7phEKy5EqIJBVAvo5pb/1NzWEpCwpH92++JGH9o=) 11: 005CDC821F1411EC85E08546C4F9AE02.roa (hash: 2LEw81p+Fk53aVNuSL1CxAKcvp9Ob9XvQt2+L6XI7mo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:33:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1743 (0x6cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Aug 22 22:33:09 2025 GMT Not After : Aug 29 22:33:09 2025 GMT Subject: CN=68a8f025-a181 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:33:84:33:3a:20:68:3c:bb:bf:37:8d:f3:b8: c1:ab:9f:1f:88:e4:15:11:64:61:f3:1a:0b:77:9c: 1b:65:61:2f:19:95:b7:76:85:16:1a:45:00:f4:be: 8c:7e:10:90:57:ed:68:09:88:bf:41:0d:d1:33:95: b5:30:47:d9:77:b1:f6:93:37:6c:21:45:a6:18:a5: 85:6a:da:a2:24:2f:fd:53:5b:30:8a:6a:6d:14:4c: c7:04:de:85:e1:34:72:d4:54:35:c9:66:1e:90:fc: f8:76:b1:2b:4e:9a:b4:2d:b6:b1:25:ba:ff:20:7b: b8:63:53:cb:ce:ef:e4:bf:2c:c0:01:67:63:7a:7d: 41:b7:69:2e:d3:cf:2c:59:35:01:05:1a:59:42:ae: 19:bf:0c:60:3c:83:fd:9f:8d:8e:ec:68:8f:c4:fe: e1:76:ea:c8:de:d6:00:77:ba:0b:61:e5:87:4a:c8: b4:a0:0c:d4:52:bd:ca:10:d6:c0:12:77:3a:e3:c0: 76:a5:37:8b:4d:ff:3f:92:f2:71:c9:69:98:d3:87: 7d:c7:9f:af:30:57:6f:f9:ee:12:59:df:85:69:80: f6:23:af:1e:bc:21:60:3d:09:ae:a0:42:40:95:a5: 76:d8:1c:cc:12:d4:c7:c4:e3:b0:5b:f1:50:f4:66: 36:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:34:F5:21:0F:F7:AC:35:76:02:E9:6D:D1:BB:ED:C0:9B:67:EB:FE X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:94:5f:ca:bb:4e:b7:85:f5:d9:b7:8b:22:a2:3f:21:4c:6e: 88:2c:7d:7a:27:c8:6d:02:8b:aa:36:5c:7e:e9:d6:41:43:34: 9a:23:fb:35:6d:77:1c:9a:0e:0e:a5:4c:7c:c7:fd:4b:5a:5a: 58:07:97:31:73:84:1e:fa:80:8e:db:c8:46:78:27:46:8a:eb: 90:1f:99:21:69:d3:c4:cb:3a:7e:43:75:a3:c7:51:12:81:90: 6c:54:a0:12:1d:4b:91:1b:c6:2e:af:18:9f:2f:2f:40:1c:75: d4:4c:e4:53:3a:87:6a:d2:17:07:a0:29:c6:45:37:2f:e9:b1: 40:4b:f3:ee:1a:e0:40:0c:bf:e6:6e:e6:7e:29:52:96:f1:e0: 72:e1:aa:bf:8d:e5:50:9d:72:87:35:55:52:74:80:d5:b9:0f: a9:14:30:da:e8:49:31:ec:4a:a6:f1:fc:b7:15:99:07:e5:02: ae:a5:76:05:a5:0d:35:79:8a:5f:88:54:98:d5:6d:d0:4d:6e: 45:5c:00:87:9d:85:d4:f9:ea:09:43:5a:96:99:19:01:af:ba: 04:79:c0:9b:86:74:91:0d:ce:cd:cd:de:14:6e:44:3e:92:41: 0a:ee:e3:34:24:85:82:93:5f:82:0f:b5:cc:be:8d:1e:e5:ba: 80:9f:21:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjUwODIyMjIzMzA5WhcNMjUwODI5MjIzMzA5WjAYMRYwFAYD VQQDEw02OGE4ZjAyNS1hMTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojOEMzogaDy7vzeN87jBq58fiOQVEWRh8xoLd5wbZWEvGZW3doUWGkUA9L6M fhCQV+1oCYi/QQ3RM5W1MEfZd7H2kzdsIUWmGKWFatqiJC/9U1swimptFEzHBN6F 4TRy1FQ1yWYekPz4drErTpq0LbaxJbr/IHu4Y1PLzu/kvyzAAWdjen1Bt2ku088s WTUBBRpZQq4ZvwxgPIP9n42O7GiPxP7hdurI3tYAd7oLYeWHSsi0oAzUUr3KENbA Enc648B2pTeLTf8/kvJxyWmY04d9x5+vMFdv+e4SWd+FaYD2I68evCFgPQmuoEJA laV22BzMEtTHxOOwW/FQ9GY2hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO009SEP 96w1dgLpbdG77cCbZ+v+MB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDZBQS84NjU4RTQ2Njg2QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3 Z0Y0XzNJcVRtX2o3eXdBUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBlF/Ku063hfXZt4sioj8hTG6ILH16J8htAouqNlx+6dZBQzSaI/s1 bXccmg4OpUx8x/1LWlpYB5cxc4Qe+oCO28hGeCdGiuuQH5khadPEyzp+Q3Wjx1ES gZBsVKASHUuRG8YurxifLy9AHHXUTORTOodq0hcHoCnGRTcv6bFAS/PuGuBADL/m buZ+KVKW8eBy4aq/jeVQnXKHNVVSdIDVuQ+pFDDa6Ekx7Eqm8fy3FZkH5QKupXYF pQ01eYpfiFSY1W3QTW5FXACHnYXU+eoJQ1qWmRkBr7oEecCbhnSRDc7Nzd4UbkQ+ kkEK7uM0JIWCk1+CD7XMvo0e5bqAnyED -----END CERTIFICATE-----Generated at Sat Aug 23 20:35:02 2025 by rpki-client