$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft File: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft (raw, json) Hash identifier: iBzuV5Dm53Fkxr19PAmDaddDK2OSs94/iBteplb51vo= Subject key identifier: F1:0C:F5:0A:67:F1:D2:78:57:95:54:5D:32:46:35:C4:3F:4D:A3:B9 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 06FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft Manifest number: 06EB Signing time: Fri 18 Jul 2025 22:16:56 +0000 Manifest this update: Fri 18 Jul 2025 22:16:55 +0000 Manifest next update: Fri 25 Jul 2025 22:16:55 +0000 Files and hashes: 1: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl (hash: EQXioob1utDYCAy3M9ZVELDZN/ihI86qsAvwgMOcSlI=) 2: 0DDC2C14776F11ED8E7B8775C4F9AE02.roa (hash: P4RG3Y6nQyOth1GOf+cUq+m33EkNoZAP7s5DUsSNA08=) 3: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (hash: rMVk1ga9cfh7Qo/jkI958sU0c+kJJEruOUO08Z/4CDQ=) 4: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (hash: 0kvZ3EdSky7ksqvtASBmr2Ki7hEXQRI9ENpHrPAoPC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:16:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1787 (0x6fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314, serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Jul 18 22:16:55 2025 GMT Not After : Jul 25 22:16:55 2025 GMT Subject: CN=687ac7d7-8be1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d6:d8:64:0c:b1:9c:68:2c:23:2b:5b:10:98: 6b:7b:4e:fd:f2:b4:bd:47:bf:c2:3b:94:79:73:06: e4:fc:63:0e:7f:be:a6:c8:31:8d:e0:6c:e0:ce:71: f9:40:ac:5b:61:58:cd:fd:73:06:ff:55:00:42:83: f4:da:94:4a:03:b5:3e:40:d3:95:6e:9f:d5:90:fe: c0:2e:30:7a:36:d3:ac:6c:13:8b:da:92:64:5b:a2: 60:85:8a:22:50:58:eb:2a:68:77:66:56:93:0b:f8: 8b:48:79:95:a7:11:e3:a4:45:48:c1:c7:5d:37:3f: b4:80:ba:9b:4a:4b:4f:44:62:ed:6b:97:c2:26:e0: 82:29:d4:3e:cf:ad:51:57:2d:4c:99:5f:a6:ed:84: 1e:a3:e8:d0:af:a9:d8:21:84:e7:6a:fb:29:e7:bd: fd:6a:69:48:22:85:ce:63:50:13:7c:7f:1d:3a:31: ce:ce:d0:29:29:13:fe:0f:2f:42:34:d0:ad:6c:af: 3d:79:88:f5:81:27:71:0c:8e:d1:36:4c:cb:3b:d8: 1b:5e:58:64:a5:2c:3e:3c:2b:ba:53:ae:18:e1:eb: 6e:79:13:8c:31:e7:bc:1b:66:1e:4d:65:99:3a:22: 2c:1d:de:e2:eb:60:17:36:08:04:43:cb:30:e3:f4: a2:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:0C:F5:0A:67:F1:D2:78:57:95:54:5D:32:46:35:C4:3F:4D:A3:B9 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:52:c4:a6:6b:5e:73:e8:1c:85:52:b8:60:fe:9f:f0:28:42: 3c:73:54:99:6d:61:06:9e:0c:1e:35:cd:96:d3:ed:ff:84:9a: 4b:06:f8:a8:f3:10:e7:e4:c3:79:c5:31:0a:11:a5:1c:78:db: 75:34:93:c7:fb:aa:75:b2:28:a1:9f:14:75:24:2c:bd:0e:22: ad:41:46:19:05:ab:a3:f6:25:a7:09:63:dd:7b:9c:46:e7:8b: dd:4f:b4:28:0e:5e:7a:64:4b:a0:40:1a:c6:82:0d:c9:c2:64: 29:64:4b:67:db:92:bf:ac:bc:b0:67:38:ea:b0:94:fe:65:76: ee:47:85:86:fc:f8:7e:bf:10:86:a2:75:34:cc:94:7a:bb:1a: a4:21:46:83:00:38:79:49:0a:74:bd:e7:d5:c5:ec:23:e7:19: 19:25:33:d0:96:c7:1d:00:25:81:a8:db:0c:cf:e8:cb:bc:de: f9:a8:54:d4:cd:2f:ed:b7:44:1d:cc:dd:33:5b:83:2e:63:9c: 69:e8:75:93:55:3a:72:8a:5d:cd:f0:a8:50:10:4e:16:6a:bd: be:60:c3:0b:41:1a:d4:e2:72:5d:2c:a8:f1:6c:c7:f1:48:8f: cc:79:85:a0:a1:bd:c1:7e:0d:ef:f5:b0:7a:87:90:a3:71:db: 74:d3:ab:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjUwNzE4MjIxNjU1WhcNMjUwNzI1MjIxNjU1WjAYMRYwFAYD VQQDEw02ODdhYzdkNy04YmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtbYZAyxnGgsIytbEJhre0798rS9R7/CO5R5cwbk/GMOf76myDGN4GzgznH5 QKxbYVjN/XMG/1UAQoP02pRKA7U+QNOVbp/VkP7ALjB6NtOsbBOL2pJkW6JghYoi UFjrKmh3ZlaTC/iLSHmVpxHjpEVIwcddNz+0gLqbSktPRGLta5fCJuCCKdQ+z61R Vy1MmV+m7YQeo+jQr6nYIYTnavsp5739amlIIoXOY1ATfH8dOjHOztApKRP+Dy9C NNCtbK89eYj1gSdxDI7RNkzLO9gbXlhkpSw+PCu6U64Y4etueROMMee8G2YeTWWZ OiIsHd7i62AXNggEQ8sw4/SiBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEM9Qpn 8dJ4V5VUXTJGNcQ/TaO5MB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxNC83MEQzQjM2QTU5NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5 R0xEbUFWMGVEN29jamtQeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoUsSma15z6ByFUrhg/p/wKEI8c1SZbWEGngweNc2W0+3/hJpLBvio 8xDn5MN5xTEKEaUceNt1NJPH+6p1siihnxR1JCy9DiKtQUYZBauj9iWnCWPde5xG 54vdT7QoDl56ZEugQBrGgg3JwmQpZEtn25K/rLywZzjqsJT+ZXbuR4WG/Ph+vxCG onU0zJR6uxqkIUaDADh5SQp0vefVxewj5xkZJTPQlscdACWBqNsMz+jLvN75qFTU zS/tt0QdzN0zW4MuY5xp6HWTVTpyil3N8KhQEE4War2+YMMLQRrU4nJdLKjxbMfx SI/MeYWgob3Bfg3v9bB6h5Cjcdt006uN -----END CERTIFICATE-----Generated at Sun Jul 20 14:29:24 2025 by rpki-client