$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft File: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft (raw, json) Hash identifier: 3jdaJNFkyq9XK4/NUySEx0IhOII6bEpSWvlZWwJU/Zo= Subject key identifier: AC:2C:8B:B8:9C:D5:08:96:BE:10:29:BD:0A:EF:0D:BC:91:2E:62:54 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 06C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft Manifest number: 06B6 Signing time: Fri 04 Apr 2025 22:17:36 +0000 Manifest this update: Fri 04 Apr 2025 22:17:35 +0000 Manifest next update: Fri 11 Apr 2025 22:17:35 +0000 Files and hashes: 1: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl (hash: bhtoa93RP+RQCPRy1YbKX2Sp5kLXvwm4yqm1AB8wy0s=) 2: 0DDC2C14776F11ED8E7B8775C4F9AE02.roa (hash: P4RG3Y6nQyOth1GOf+cUq+m33EkNoZAP7s5DUsSNA08=) 3: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (hash: rMVk1ga9cfh7Qo/jkI958sU0c+kJJEruOUO08Z/4CDQ=) 4: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (hash: 0kvZ3EdSky7ksqvtASBmr2Ki7hEXQRI9ENpHrPAoPC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1734 (0x6c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314 Validity Not Before: Apr 4 22:17:35 2025 GMT Not After : Apr 11 22:17:35 2025 GMT Subject: CN=67f05a80-44cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e4:47:90:72:32:4c:32:1d:52:81:6f:1d:82: 13:e8:6b:61:11:c7:4c:59:44:fd:2d:1f:46:25:74: ea:47:38:74:6b:c7:48:01:ac:ea:ad:b6:f2:b1:fc: 02:45:fa:8a:32:9f:4d:f6:a2:ff:70:a4:5a:86:55: 8c:66:83:6a:ae:8b:8f:33:e0:d5:6f:b0:8b:13:f3: 54:b5:cd:f2:10:2c:30:fb:f8:53:51:c1:05:16:8f: 76:c9:8e:36:12:32:df:4c:da:a9:d3:97:61:58:18: f8:5c:ed:2a:49:08:6a:ec:95:cd:bf:47:36:22:6f: c3:d3:72:24:8c:71:cb:70:d9:b4:e7:15:b4:d6:3c: 81:a7:97:07:fc:79:f7:55:a5:26:27:ae:92:33:bd: 48:dc:e3:55:6a:ab:4c:73:5b:f7:f6:3c:78:ba:9b: 57:28:bb:9f:92:67:e5:52:80:9f:ee:f2:6b:90:3a: 03:a6:a5:0c:74:72:97:4a:4a:3c:18:f0:89:2f:ae: 60:92:05:c5:70:61:0d:05:ac:05:91:f7:09:e6:33: 45:24:65:57:2a:5a:a6:37:7f:d4:bb:d2:2c:7c:9b: 95:9f:a0:a5:ee:24:04:66:ff:03:3d:94:e8:f5:62: ac:6d:9c:3b:35:d6:d8:ec:c5:32:e5:a0:e1:9b:9b: d9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:2C:8B:B8:9C:D5:08:96:BE:10:29:BD:0A:EF:0D:BC:91:2E:62:54 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:05:5e:01:1e:67:82:d3:b9:05:f6:6e:2c:68:ca:f3:cc:37: 63:80:f0:3c:89:0d:9a:20:e0:6f:2b:d9:a1:e6:15:c0:46:98: 4d:ea:a4:52:bb:a2:e8:39:0b:6f:96:49:b6:1d:40:b1:52:33: 1f:ca:2a:2d:e0:3d:bd:6f:f6:dc:84:51:48:ce:54:26:e7:f5: b1:90:10:e6:3f:a0:94:e2:e7:a8:69:5b:2b:a2:dd:8d:40:83: 76:1f:7c:18:1d:a3:68:3e:84:3a:55:e0:55:47:0b:85:69:66: 01:b6:69:6c:e1:6e:fc:83:cb:17:bd:f9:fd:05:c5:be:17:b6: 9d:53:d6:6d:ef:37:80:e2:48:ec:99:3e:48:a0:9c:0f:1b:6c: 6c:a2:ff:a7:5b:8e:9f:c6:1a:61:0a:8f:cf:d4:90:18:b2:55: 08:4d:71:41:ec:b0:61:f2:68:5d:1f:49:e4:5f:0d:6b:cc:d7: a3:41:5e:34:ac:48:fb:88:64:c7:09:c5:dd:11:17:0b:6f:13: 95:69:15:2a:83:be:a4:db:e3:fb:59:01:5f:aa:e3:89:11:1a: 91:9d:98:a7:7c:5a:09:cb:fd:e3:7b:34:d8:f3:1f:59:40:64: d5:89:28:29:9d:51:c1:b7:7c:9b:2d:08:6f:15:6d:3e:e1:39: 79:13:44:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjUwNDA0MjIxNzM1WhcNMjUwNDExMjIxNzM1WjAYMRYwFAYD VQQDEw02N2YwNWE4MC00NGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uRHkHIyTDIdUoFvHYIT6GthEcdMWUT9LR9GJXTqRzh0a8dIAazqrbbysfwC RfqKMp9N9qL/cKRahlWMZoNqrouPM+DVb7CLE/NUtc3yECww+/hTUcEFFo92yY42 EjLfTNqp05dhWBj4XO0qSQhq7JXNv0c2Im/D03IkjHHLcNm05xW01jyBp5cH/Hn3 VaUmJ66SM71I3ONVaqtMc1v39jx4uptXKLufkmflUoCf7vJrkDoDpqUMdHKXSko8 GPCJL65gkgXFcGENBawFkfcJ5jNFJGVXKlqmN3/Uu9IsfJuVn6Cl7iQEZv8DPZTo 9WKsbZw7NdbY7MUy5aDhm5vZ4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwsi7ic 1QiWvhApvQrvDbyRLmJUMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxNC83MEQzQjM2QTU5NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5 R0xEbUFWMGVEN29jamtQeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjBV4BHmeC07kF9m4saMrzzDdjgPA8iQ2aIOBvK9mh5hXARphN6qRS u6LoOQtvlkm2HUCxUjMfyiot4D29b/bchFFIzlQm5/WxkBDmP6CU4ueoaVsrot2N QIN2H3wYHaNoPoQ6VeBVRwuFaWYBtmls4W78g8sXvfn9BcW+F7adU9Zt7zeA4kjs mT5IoJwPG2xsov+nW46fxhphCo/P1JAYslUITXFB7LBh8mhdH0nkXw1rzNejQV40 rEj7iGTHCcXdERcLbxOVaRUqg76k2+P7WQFfquOJERqRnZinfFoJy/3jezTY8x9Z QGTViSgpnVHBt3ybLQhvFW0+4Tl5E0Q0 -----END CERTIFICATE-----Generated at Sat Apr 5 05:53:54 2025 by rpki-client