$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft File: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft (raw, json) Hash identifier: JDA5haJjMyRsncVa+Sal5u97afnLRPdODmfBVJHP9cs= Subject key identifier: 9C:3A:90:83:E6:7F:AE:F3:A0:1A:56:CF:19:A6:BF:A0:6F:F0:8F:C3 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 0719 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft Manifest number: 0706 Signing time: Thu 04 Sep 2025 22:11:51 +0000 Manifest this update: Thu 04 Sep 2025 22:11:51 +0000 Manifest next update: Thu 11 Sep 2025 22:11:51 +0000 Files and hashes: 1: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl (hash: T0186RwSdmm5C9VXK7zJx6C/vug6q1Y68N3L6mfy/0A=) 2: 0DDC2C14776F11ED8E7B8775C4F9AE02.roa (hash: TMdvekGhsYRkD7vQxOC9M1BNi4ODftadLHkHNnnsSEE=) 3: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (hash: wIAUJo6pLOtcdDl/q+XVckYcgHnVKsYs5npKOOs0/x0=) 4: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (hash: Ac+21perclmyIdH4cwpABd4VrpSu8D0aj/0rXmLovJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:11:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1817 (0x719) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314, serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Sep 4 22:11:51 2025 GMT Not After : Sep 11 22:11:51 2025 GMT Subject: CN=68ba0ea7-de21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c5:ad:59:35:0b:df:c7:9a:fb:49:b2:43:8d: 7e:5b:54:2c:e2:20:94:8d:79:bd:02:1e:64:c6:ac: 36:1e:13:31:0c:01:cd:3c:df:62:08:ca:ce:62:31: 0a:fe:41:89:1e:2d:3f:2a:72:e5:80:81:74:33:bf: 3e:53:1c:c5:63:6e:ab:cb:cc:d9:da:0f:85:cc:2e: a6:4a:ef:ab:f6:30:be:e7:30:b3:04:08:7d:07:2a: 1d:f4:ad:23:55:9c:82:dd:54:4c:bc:1c:c8:0c:df: b2:a8:92:5b:41:47:c9:29:30:d3:b5:d7:f9:c7:5e: f6:cd:4a:74:8e:9b:47:cf:0e:84:6d:8f:05:0a:27: 8d:88:24:1c:ef:37:84:65:61:1f:73:7f:fd:03:4c: 48:24:07:1c:9a:81:48:40:6d:64:d3:2e:60:0a:3f: 3c:93:bb:f4:9b:cb:49:b4:ef:0b:1c:32:37:6d:04: 31:6e:e8:0b:7a:0e:14:2b:86:73:68:99:7f:89:32: cf:2c:a0:9f:2f:7e:32:8a:02:e9:bc:c3:20:1e:4d: fa:b8:02:a7:48:2f:53:5b:f9:5e:17:a7:bd:cc:8d: 70:88:35:28:0d:0a:fc:62:cb:28:2e:95:ba:c4:44: ee:ce:ee:bf:fc:0f:fe:47:a0:0a:d0:d9:f2:b0:08: 4e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:3A:90:83:E6:7F:AE:F3:A0:1A:56:CF:19:A6:BF:A0:6F:F0:8F:C3 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:bc:a4:6d:91:4a:96:46:1e:9b:d3:d6:84:1c:94:9a:98:62: 1c:f8:7d:23:8f:84:db:cd:3a:d8:82:1b:c0:60:b4:04:c6:ac: c9:b2:1b:e4:7d:8b:83:a1:ca:db:ef:a4:c3:71:c5:a2:3a:b2: c3:f6:05:12:35:5b:27:8e:ea:51:65:ad:7f:8b:32:18:82:12: 4a:cb:01:f1:50:1e:35:22:02:7d:c8:cf:f8:9e:bf:bb:5a:50: f4:62:ca:ae:b6:b1:02:70:45:f2:36:8e:0f:19:86:9c:ab:70: db:a1:03:4c:c3:bf:1b:99:f7:78:20:6f:4b:ee:93:96:e1:a7: 04:f2:4f:84:0e:be:65:73:2a:e4:73:cd:2e:7b:29:16:5a:68: b5:d0:b9:f2:d1:8d:64:d0:b6:1b:cd:68:0d:9a:f6:40:54:37: 8b:93:e4:a4:55:37:b1:ec:2c:83:ea:98:dc:cd:be:88:9f:cc: 65:e1:c5:10:7a:5d:b0:a5:c0:79:85:be:ba:ec:d9:e5:7d:6b: 25:0b:cf:a5:e7:79:b0:5c:1e:de:fa:4e:f5:82:bc:c3:b4:b7: f5:aa:1b:99:99:e6:1a:76:ff:c2:93:2e:cb:29:14:1d:b3:79: 0f:63:27:88:97:f0:66:ae:53:14:bf:3f:07:0c:68:ae:22:9c: 39:dd:0f:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjUwOTA0MjIxMTUxWhcNMjUwOTExMjIxMTUxWjAYMRYwFAYD VQQDEw02OGJhMGVhNy1kZTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMWtWTUL38ea+0myQ41+W1Qs4iCUjXm9Ah5kxqw2HhMxDAHNPN9iCMrOYjEK /kGJHi0/KnLlgIF0M78+UxzFY26ry8zZ2g+FzC6mSu+r9jC+5zCzBAh9Byod9K0j VZyC3VRMvBzIDN+yqJJbQUfJKTDTtdf5x172zUp0jptHzw6EbY8FCieNiCQc7zeE ZWEfc3/9A0xIJAccmoFIQG1k0y5gCj88k7v0m8tJtO8LHDI3bQQxbugLeg4UK4Zz aJl/iTLPLKCfL34yigLpvMMgHk36uAKnSC9TW/leF6e9zI1wiDUoDQr8YssoLpW6 xETuzu6//A/+R6AK0NnysAhOAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJw6kIPm f67zoBpWzxmmv6Bv8I/DMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxNC83MEQzQjM2QTU5NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5 R0xEbUFWMGVEN29jamtQeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWvKRtkUqWRh6b09aEHJSamGIc+H0jj4TbzTrYghvAYLQExqzJshvk fYuDocrb76TDccWiOrLD9gUSNVsnjupRZa1/izIYghJKywHxUB41IgJ9yM/4nr+7 WlD0YsqutrECcEXyNo4PGYacq3DboQNMw78bmfd4IG9L7pOW4acE8k+EDr5lcyrk c80ueykWWmi10Lny0Y1k0LYbzWgNmvZAVDeLk+SkVTex7CyD6pjczb6In8xl4cUQ el2wpcB5hb667NnlfWslC8+l53mwXB7e+k71grzDtLf1qhuZmeYadv/Cky7LKRQd s3kPYyeIl/BmrlMUvz8HDGiuIpw53Q+k -----END CERTIFICATE-----Generated at Sat Sep 6 11:50:02 2025 by rpki-client