$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft File: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft (raw, json) Hash identifier: XErCGMNPGH5xIF/DOg2/d8t9zMHSNQ/+c4FK9OfFDpQ= Subject key identifier: EA:3D:38:4F:B1:CA:71:DA:0D:21:2B:57:DA:EB:AD:04:9D:F0:20:C4 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 06E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft Manifest number: 06D2 Signing time: Fri 30 May 2025 22:17:14 +0000 Manifest this update: Fri 30 May 2025 22:17:14 +0000 Manifest next update: Fri 06 Jun 2025 22:17:14 +0000 Files and hashes: 1: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl (hash: f8Gfir6Uyo7R/2s13ngIi2rPP3uSRjUTWxm8OIFoqKw=) 2: 0DDC2C14776F11ED8E7B8775C4F9AE02.roa (hash: P4RG3Y6nQyOth1GOf+cUq+m33EkNoZAP7s5DUsSNA08=) 3: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (hash: rMVk1ga9cfh7Qo/jkI958sU0c+kJJEruOUO08Z/4CDQ=) 4: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (hash: 0kvZ3EdSky7ksqvtASBmr2Ki7hEXQRI9ENpHrPAoPC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1762 (0x6e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314, serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: May 30 22:17:14 2025 GMT Not After : Jun 6 22:17:14 2025 GMT Subject: CN=683a2e6a-df9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f7:8e:40:b7:9f:1c:4c:61:c2:c5:4c:33:3d: 7a:1f:5e:e5:de:66:91:e4:ba:84:c8:4d:d8:a8:53: 3c:23:e5:a0:58:35:95:ed:cb:04:84:a5:92:ec:5b: 25:11:ac:97:bb:e8:17:ef:84:46:7f:69:b0:73:bf: 38:83:9c:5f:f4:94:97:89:fb:29:ef:f2:46:f0:e9: 20:5d:c6:2b:17:f9:b7:a7:ea:51:74:6d:18:09:50: d2:98:c6:20:83:5a:2f:71:f9:20:8c:fc:45:ac:4c: 2a:45:d9:14:92:3c:a1:d0:b8:4b:0c:8d:72:17:b2: ca:00:a4:e2:a0:78:11:8e:3d:13:86:b1:00:ed:91: db:c3:83:23:d9:e8:61:fa:d3:f5:2a:fa:cf:e0:30: a3:48:55:89:f3:1f:cf:01:70:73:76:5b:63:54:42: 23:34:d6:77:ac:6d:9e:1c:f8:ff:23:c4:1e:53:3e: 90:1b:71:dc:0b:d3:9c:cf:06:4f:0d:9b:c0:02:aa: 53:2b:00:07:b5:6b:26:b3:cf:d1:db:24:46:cb:ba: 8d:db:83:83:52:52:aa:22:51:0c:3f:b6:20:03:d6: 26:40:a8:ca:89:47:b2:f3:f0:91:4e:f6:33:d5:00: 8d:8d:42:8c:4f:7f:6f:c9:10:c7:c4:ee:86:7c:3b: f0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:3D:38:4F:B1:CA:71:DA:0D:21:2B:57:DA:EB:AD:04:9D:F0:20:C4 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:ad:a5:3b:36:89:63:0c:e5:70:91:0b:8f:7a:71:34:ec:99: 8f:01:2f:23:4c:c6:61:4a:f4:67:03:15:c3:94:4e:4e:9e:1d: e8:96:e1:21:ac:bb:96:ef:7a:d0:bf:8e:89:5b:15:18:33:1d: 99:4f:8d:c1:65:9b:0e:ba:48:4a:48:82:0e:44:05:3d:e1:7a: f6:5e:47:83:ea:8f:59:3b:e8:49:1a:6d:14:30:60:5b:cd:e6: 97:46:25:cf:98:ce:d0:c2:90:2b:55:e2:f6:4a:b1:ee:d6:d9: 81:6b:ba:a3:be:bf:b9:1d:4d:ef:0b:f9:3b:0f:8b:7d:6e:ef: 1a:7c:8a:7f:a9:a7:e8:2f:49:0e:3d:92:0b:50:de:86:05:0c: 66:ce:cf:9e:55:d3:5e:f2:ee:00:ce:49:82:f5:a1:43:48:22: 0d:96:58:21:a3:49:3c:58:56:db:eb:bd:26:31:38:c5:23:e2: d1:9a:86:0e:c5:0f:24:e1:5c:4a:fa:92:42:33:c3:ce:71:82: a5:eb:1d:cc:b7:22:c8:a1:b3:56:84:2b:8a:69:a8:9a:29:7a: 0e:82:26:d9:4a:ad:dc:f8:f7:d8:55:e2:0f:20:32:8d:da:d9: d3:40:c9:cf:36:a1:b5:96:90:7d:53:f2:28:e8:3a:e8:95:18: cd:56:ca:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjUwNTMwMjIxNzE0WhcNMjUwNjA2MjIxNzE0WjAYMRYwFAYD VQQDEw02ODNhMmU2YS1kZjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArveOQLefHExhwsVMMz16H17l3maR5LqEyE3YqFM8I+WgWDWV7csEhKWS7Fsl EayXu+gX74RGf2mwc784g5xf9JSXifsp7/JG8OkgXcYrF/m3p+pRdG0YCVDSmMYg g1ovcfkgjPxFrEwqRdkUkjyh0LhLDI1yF7LKAKTioHgRjj0ThrEA7ZHbw4Mj2ehh +tP1KvrP4DCjSFWJ8x/PAXBzdltjVEIjNNZ3rG2eHPj/I8QeUz6QG3HcC9OczwZP DZvAAqpTKwAHtWsms8/R2yRGy7qN24ODUlKqIlEMP7YgA9YmQKjKiUey8/CRTvYz 1QCNjUKMT39vyRDHxO6GfDvwfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOo9OE+x ynHaDSErV9rrrQSd8CDEMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxNC83MEQzQjM2QTU5NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5 R0xEbUFWMGVEN29jamtQeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUraU7NoljDOVwkQuPenE07JmPAS8jTMZhSvRnAxXDlE5Onh3oluEh rLuW73rQv46JWxUYMx2ZT43BZZsOukhKSIIORAU94Xr2XkeD6o9ZO+hJGm0UMGBb zeaXRiXPmM7QwpArVeL2SrHu1tmBa7qjvr+5HU3vC/k7D4t9bu8afIp/qafoL0kO PZILUN6GBQxmzs+eVdNe8u4AzkmC9aFDSCINllgho0k8WFbb670mMTjFI+LRmoYO xQ8k4VxK+pJCM8POcYKl6x3MtyLIobNWhCuKaaiaKXoOgibZSq3c+PfYVeIPIDKN 2tnTQMnPNqG1lpB9U/Io6DrolRjNVsqd -----END CERTIFICATE-----Generated at Sat May 31 15:49:59 2025 by rpki-client