$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft File: IYqKoFAmewgF4_3IqTm_j7ywAQE.mft (raw, json) Hash identifier: ZyBod9X3kuafpmIWdiOmbmuxgMqTiThW3dNYSWPysUI= Subject key identifier: 8B:12:E3:C7:00:1F:8F:A6:00:5D:FE:10:4C:E4:16:4A:2A:15:27:90 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 069A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft Manifest number: 066F Signing time: Wed 14 May 2025 22:35:49 +0000 Manifest this update: Wed 14 May 2025 22:35:49 +0000 Manifest next update: Wed 21 May 2025 22:35:49 +0000 Files and hashes: 1: IYqKoFAmewgF4_3IqTm_j7ywAQE.crl (hash: I/esWwJJEo0wSb4yoaeXOONTnxPWE49MHer4vPuPMhQ=) 2: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (hash: fUw04+Wc6xwoR+YVBY/WLsyng9md/GVTmSyZYwr11zk=) 3: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (hash: MudkEdFQa6C+ndTjapkqJTQJnMUjbCojJJWyr2cOnbw=) 4: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (hash: FzGeC1HGFQjInv7a/tzBBidCqJ5ESeD9M5yJI45g108=) 5: 7DFD24A0A69D11ED970A2E1EC4F9AE02.roa (hash: UXLNG/TKlOwe92B54U28A9vIc0yRc2k66x6iSMWRkzk=) 6: A08AFBB284F211EE89828225C4F9AE02.roa (hash: o0/UmqHBu35TkHikAhbVdhXHi+7hDM8lM9U+g+mEr/c=) 7: ECF2B5A8A72B11EDAC3DA56CC4F9AE02.roa (hash: +kGit6QP9EC8on4uBAyo05LK37M52pka8uD91XBHy+Y=) 8: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (hash: G/rvtZ5T81L1+Ut1wIh+MKSJ0KMlgkIN/JGVODcTotI=) 9: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (hash: 9LXbAzt0/EsGKbz7o7F/OwWTWmMVBzVo73DTWxXTguw=) 10: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (hash: 0R2F7phEKy5EqIJBVAvo5pb/1NzWEpCwpH92++JGH9o=) 11: 005CDC821F1411EC85E08546C4F9AE02.roa (hash: 2LEw81p+Fk53aVNuSL1CxAKcvp9Ob9XvQt2+L6XI7mo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:35:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1690 (0x69a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: May 14 22:35:49 2025 GMT Not After : May 21 22:35:49 2025 GMT Subject: CN=68251ac5-ae00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:62:6f:9d:74:7d:41:7f:90:21:43:11:20:49: 07:ea:80:52:65:91:cd:fc:fa:d2:13:e7:88:da:8e: a7:66:8c:83:a5:5e:54:88:fe:b4:9a:e9:96:1a:70: 15:4a:dc:af:04:b5:0e:4a:b4:85:a5:bc:bd:6d:ed: ce:cf:c5:ca:bf:43:6d:b3:20:a3:cb:e8:4c:79:8a: 18:0b:e4:ad:0b:ba:2a:ee:29:cc:e6:70:bf:a1:f2: 38:b7:c6:8a:92:36:b9:d4:d9:6a:4f:69:1a:4f:29: ae:55:de:dd:48:63:6d:68:6b:17:ae:ff:9e:80:a9: 48:30:ad:dd:43:55:f8:36:2a:79:0f:bf:40:14:a4: 43:01:ce:64:98:38:df:4c:4e:d6:34:e2:b9:c9:56: 68:0c:39:4a:90:ab:ff:cd:7e:a5:98:7e:a6:56:3c: 3a:db:f9:16:8c:b0:13:f5:94:8e:04:4c:60:7b:be: 59:9d:b2:e2:ef:c4:bb:76:45:c6:ef:a0:a3:a9:fb: 8c:22:aa:2a:f6:33:31:f3:af:ac:be:27:ce:06:ec: 77:37:95:99:b7:2c:30:d0:dd:7a:a1:17:4f:6b:aa: aa:06:41:88:7e:1d:b6:e3:38:21:44:10:ea:7f:1c: 10:c8:1f:6e:cb:ae:f0:7d:d5:02:b7:9c:e1:bc:6b: 98:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:12:E3:C7:00:1F:8F:A6:00:5D:FE:10:4C:E4:16:4A:2A:15:27:90 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:b8:ae:45:7c:2b:1b:d0:b0:5e:6d:e6:70:8a:e3:e5:04:67: 24:82:99:c2:76:d7:01:df:91:55:18:aa:22:e8:f8:0f:55:b5: 1d:6a:1b:66:85:a8:31:eb:63:1d:1d:f2:73:58:ea:38:a2:69: 0f:8a:38:c1:8f:53:ed:8a:8a:69:bc:82:22:11:da:71:35:d0: 32:29:e1:93:0f:dc:fa:81:9e:f8:da:a8:ed:49:c0:00:ec:d8: 05:a4:92:80:06:cf:bf:a3:48:e0:85:d0:07:5d:f6:6e:b7:58: 9a:ef:87:eb:84:27:d8:36:7c:fb:89:dd:71:a2:5b:59:eb:ae: d0:3b:44:6d:18:6f:3f:ee:25:8f:88:57:54:e7:b7:f8:93:c1: 7e:b2:d2:d6:5b:cd:39:9f:95:5b:0c:9c:a2:35:4b:dd:54:90: 21:ed:e1:84:5c:12:f6:61:d0:12:7b:a6:6f:0f:48:ab:4c:70: ee:84:c4:fd:e8:a8:a9:ee:b0:bc:c6:35:31:da:37:69:be:f1: 45:03:e3:12:ff:94:30:a2:0f:4b:79:28:74:63:b0:29:f4:70: e6:7c:1c:22:ea:5f:e8:5c:f0:f0:c2:bb:52:e6:e9:5d:f0:c8: 6e:45:89:5d:1b:af:12:d6:12:43:19:8d:52:54:b1:3d:9c:74: 30:f3:8e:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjUwNTE0MjIzNTQ5WhcNMjUwNTIxMjIzNTQ5WjAYMRYwFAYD VQQDEw02ODI1MWFjNS1hZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmGJvnXR9QX+QIUMRIEkH6oBSZZHN/PrSE+eI2o6nZoyDpV5UiP60mumWGnAV StyvBLUOSrSFpby9be3Oz8XKv0NtsyCjy+hMeYoYC+StC7oq7inM5nC/ofI4t8aK kja51NlqT2kaTymuVd7dSGNtaGsXrv+egKlIMK3dQ1X4Nip5D79AFKRDAc5kmDjf TE7WNOK5yVZoDDlKkKv/zX6lmH6mVjw62/kWjLAT9ZSOBExge75ZnbLi78S7dkXG 76CjqfuMIqoq9jMx86+svifOBux3N5WZtyww0N16oRdPa6qqBkGIfh224zghRBDq fxwQyB9uy67wfdUCt5zhvGuY9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIsS48cA H4+mAF3+EEzkFkoqFSeQMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDZBQS84NjU4RTQ2Njg2QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3 Z0Y0XzNJcVRtX2o3eXdBUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANuK5FfCsb0LBebeZwiuPlBGckgpnCdtcB35FVGKoi6PgPVbUdahtm hagx62MdHfJzWOo4omkPijjBj1PtioppvIIiEdpxNdAyKeGTD9z6gZ742qjtScAA 7NgFpJKABs+/o0jghdAHXfZut1ia74frhCfYNnz7id1xoltZ667QO0RtGG8/7iWP iFdU57f4k8F+stLWW805n5VbDJyiNUvdVJAh7eGEXBL2YdASe6ZvD0irTHDuhMT9 6Kip7rC8xjUx2jdpvvFFA+MS/5Qwog9LeSh0Y7Ap9HDmfBwi6l/oXPDwwrtS5uld 8MhuRYldG68S1hJDGY1SVLE9nHQw846v -----END CERTIFICATE-----Generated at Sat May 17 00:04:26 2025 by rpki-client