$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft File: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft (raw, json) Hash identifier: n8h9K6UUZpRmi2MtKJeV4HH279qwkhFXFffxQ+BjJA8= Subject key identifier: 11:2B:C1:06:DA:B8:A4:D2:A9:DE:C0:E5:86:17:EC:0A:CA:12:85:EE Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 0737 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft Manifest number: 0724 Signing time: Tue 04 Nov 2025 21:55:51 +0000 Manifest this update: Tue 04 Nov 2025 21:55:50 +0000 Manifest next update: Tue 11 Nov 2025 21:55:50 +0000 Files and hashes: 1: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl (hash: ya1d2jtHuH1QjzOQ4mOP1vQOWVqwdwQ2T8P+IA8xcv4=) 2: 0DDC2C14776F11ED8E7B8775C4F9AE02.roa (hash: TMdvekGhsYRkD7vQxOC9M1BNi4ODftadLHkHNnnsSEE=) 3: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (hash: wIAUJo6pLOtcdDl/q+XVckYcgHnVKsYs5npKOOs0/x0=) 4: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (hash: Ac+21perclmyIdH4cwpABd4VrpSu8D0aj/0rXmLovJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:55:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1847 (0x737) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314, serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Nov 4 21:55:50 2025 GMT Not After : Nov 11 21:55:50 2025 GMT Subject: CN=690a7667-88e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7d:c3:ec:bd:0a:c0:04:10:d7:26:d6:c9:a6: fe:77:79:6a:75:30:c3:c8:6d:b5:df:f0:a5:9e:3c: 75:4b:97:e7:8f:59:35:c5:85:26:89:98:07:37:16: 24:2b:a1:83:bd:9d:5d:4c:ca:5e:d5:b4:d5:3e:ff: a6:9a:b0:73:a1:53:dc:94:dc:84:df:90:36:1e:28: 26:42:ed:3a:22:c1:ba:dc:03:5c:95:38:04:41:b0: db:70:93:9c:da:36:f7:dd:1a:6d:23:3a:86:0e:56: 07:32:b7:38:b3:38:c7:de:8c:0b:b1:3b:9d:24:6f: 9e:a3:29:fb:72:96:57:35:de:ba:57:df:8c:90:52: bd:a9:9d:f4:26:78:9d:03:cc:f6:70:79:84:91:1b: 67:f4:7f:6d:ed:d5:c1:02:b5:ec:44:b5:11:fb:58: 4c:be:63:aa:6d:51:47:4f:40:f1:97:3e:e9:5b:c5: c9:ac:25:78:06:24:93:90:2f:24:8f:56:8d:f3:04: 22:0d:8c:9a:a3:02:ba:d7:16:fa:25:e4:50:69:49: 23:33:41:cb:0d:08:a1:66:82:9d:3b:9b:48:54:89: 8e:43:21:91:d3:5e:1b:af:1b:7c:16:b3:0a:7f:41: 35:92:f8:a8:5f:d1:57:b4:d1:51:69:3a:e2:fd:55: e1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:2B:C1:06:DA:B8:A4:D2:A9:DE:C0:E5:86:17:EC:0A:CA:12:85:EE X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:0a:53:9a:ec:54:64:80:0b:55:2c:ec:d0:62:1e:e0:6e:24: 34:b5:d8:02:d3:1d:ea:44:0f:ef:ed:ee:80:3e:20:fe:b2:a4: 48:db:46:77:83:a8:a6:f2:73:22:19:24:6f:c6:4b:27:c6:c3: 69:e1:dd:19:45:26:81:ac:39:3e:a1:bb:e6:2d:cb:31:5b:fc: b6:21:ab:7c:65:91:15:cd:c9:9e:45:69:55:12:d0:53:a1:fe: 04:8d:34:9e:b4:28:e4:c5:a4:92:21:6e:0a:ba:ee:47:96:21: 7e:0b:bc:f4:f9:64:f1:f3:c4:4d:a7:26:85:b8:3b:37:e5:87: 95:00:5c:20:d0:ee:07:1f:0d:60:d7:b1:81:1f:d4:7d:3a:e0: 3f:80:cc:f6:3f:69:91:ff:a0:58:89:2b:5d:60:83:35:8d:d1: ba:22:c5:bc:b9:90:a8:02:67:56:a4:ff:6b:d9:01:57:da:a4: 38:c7:ae:6a:2b:78:58:2b:c9:0e:8f:c4:12:19:60:fb:dd:4d: 41:e6:e1:45:fc:fc:46:59:cb:d7:c2:b4:fb:c9:93:b4:0f:1b: 0e:1d:81:8f:c0:25:ca:f8:23:d3:fe:06:05:eb:c3:b2:71:3c: 11:84:6b:19:8a:43:41:f7:9b:92:e7:c5:9d:73:f7:dc:d9:3b: bb:a6:4b:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjUxMTA0MjE1NTUwWhcNMjUxMTExMjE1NTUwWjAYMRYwFAYD VQQDEw02OTBhNzY2Ny04OGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx33D7L0KwAQQ1ybWyab+d3lqdTDDyG213/Clnjx1S5fnj1k1xYUmiZgHNxYk K6GDvZ1dTMpe1bTVPv+mmrBzoVPclNyE35A2HigmQu06IsG63ANclTgEQbDbcJOc 2jb33RptIzqGDlYHMrc4szjH3owLsTudJG+eoyn7cpZXNd66V9+MkFK9qZ30Jnid A8z2cHmEkRtn9H9t7dXBArXsRLUR+1hMvmOqbVFHT0Dxlz7pW8XJrCV4BiSTkC8k j1aN8wQiDYyaowK61xb6JeRQaUkjM0HLDQihZoKdO5tIVImOQyGR014brxt8FrMK f0E1kvioX9FXtNFRaTri/VXhbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBErwQba uKTSqd7A5YYX7ArKEoXuMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxNC83MEQzQjM2QTU5NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5 R0xEbUFWMGVEN29jamtQeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjClOa7FRkgAtVLOzQYh7gbiQ0tdgC0x3qRA/v7e6APiD+sqRI20Z3 g6im8nMiGSRvxksnxsNp4d0ZRSaBrDk+obvmLcsxW/y2Iat8ZZEVzcmeRWlVEtBT of4EjTSetCjkxaSSIW4Kuu5HliF+C7z0+WTx88RNpyaFuDs35YeVAFwg0O4HHw1g 17GBH9R9OuA/gMz2P2mR/6BYiStdYIM1jdG6IsW8uZCoAmdWpP9r2QFX2qQ4x65q K3hYK8kOj8QSGWD73U1B5uFF/PxGWcvXwrT7yZO0DxsOHYGPwCXK+CPT/gYF68Oy cTwRhGsZikNB95uS58Wdc/fc2Tu7pkuf -----END CERTIFICATE-----Generated at Wed Nov 5 00:24:15 2025 by rpki-client