$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft File: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft (raw, json) Hash identifier: 8Guee6y2mWiXxItTz/WFBPW4kjrRyw2nU7xMEuBh/as= Subject key identifier: F7:D0:45:0F:61:15:2E:BA:CE:48:56:A1:D8:E2:FB:F7:A8:D2:28:0A Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 06EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft Manifest number: 06DA Signing time: Sat 14 Jun 2025 21:47:44 +0000 Manifest this update: Sat 14 Jun 2025 21:47:43 +0000 Manifest next update: Sat 21 Jun 2025 21:47:43 +0000 Files and hashes: 1: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl (hash: UOXSkKbh9bJiy9s2BVqSR6PAFfSNUGLslsZoyKRyAF0=) 2: 0DDC2C14776F11ED8E7B8775C4F9AE02.roa (hash: P4RG3Y6nQyOth1GOf+cUq+m33EkNoZAP7s5DUsSNA08=) 3: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (hash: rMVk1ga9cfh7Qo/jkI958sU0c+kJJEruOUO08Z/4CDQ=) 4: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (hash: 0kvZ3EdSky7ksqvtASBmr2Ki7hEXQRI9ENpHrPAoPC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:47:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1770 (0x6ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314, serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Jun 14 21:47:43 2025 GMT Not After : Jun 21 21:47:43 2025 GMT Subject: CN=684dee00-97df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2d:e3:c5:13:15:64:aa:84:87:ea:5e:c5:b2: c6:56:11:bb:8d:50:bb:88:1a:73:df:02:d3:01:0a: 77:28:30:f4:5a:6d:44:2c:f3:a7:07:9e:09:2e:45: 30:34:68:95:cc:88:25:7c:72:ca:b4:93:5e:39:d9: 36:a9:3d:75:d3:e8:99:f4:d9:b2:b7:69:3b:83:5c: ae:4d:8a:46:31:93:fd:6a:bc:68:c8:cf:bf:0a:36: cf:ed:32:e4:d1:cf:24:f5:10:bf:a0:e5:8e:ca:cb: ab:f7:db:bc:4d:9c:73:d9:06:45:de:3e:9a:75:31: 5a:92:59:42:30:15:2b:ba:dc:c0:35:b4:b8:ff:13: ff:d0:cd:1e:00:02:c3:c6:7e:d4:82:d3:f7:0b:27: a4:9a:d4:57:0b:24:10:1e:95:8e:69:4b:a0:93:06: a4:10:2f:56:c9:40:c8:67:43:84:39:e8:e8:9d:58: ff:0a:43:bf:41:41:d0:79:92:ec:b4:00:64:5d:f7: e2:f7:71:d9:6a:c3:b2:b2:4a:19:db:11:e9:0f:e8: 28:95:36:2c:20:d3:55:78:d1:14:6e:77:9c:1d:86: 18:f3:45:a3:10:d1:7a:bc:23:e1:b3:ea:07:e5:3d: a6:8b:cd:af:bb:d2:21:52:53:6a:96:93:71:12:96: 29:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D0:45:0F:61:15:2E:BA:CE:48:56:A1:D8:E2:FB:F7:A8:D2:28:0A X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:55:6c:eb:16:0c:b8:67:b2:ea:41:f8:bc:40:3c:23:3b:39: 4f:dc:dd:42:d0:a7:55:d1:09:7d:f7:a4:9b:77:19:13:36:af: 09:d7:57:b5:4b:1f:16:93:56:1e:f4:80:67:f1:12:f8:e6:9f: ed:4a:52:d0:12:22:ff:b6:46:3a:b2:fb:a7:6d:75:b3:42:a3: ec:60:cb:7e:5d:07:78:55:76:bb:36:da:5e:8e:7f:84:10:49: 2e:87:d9:71:4b:b1:c9:9a:54:bc:e3:c8:63:7d:99:b8:1a:15: c7:77:03:b3:6b:43:26:28:1c:e9:8f:4c:e0:15:57:14:3d:53: 9c:c6:20:6f:2e:db:ae:f0:b4:01:5b:75:91:c7:bc:c2:d5:5b: 02:41:67:12:aa:85:55:ce:a5:9f:51:06:31:32:ab:fe:0e:91: 20:4e:3d:63:b9:8d:22:0d:d7:46:7a:d3:c0:c3:9e:64:31:40: 71:69:48:d9:a6:40:38:5c:e6:d4:db:0a:ab:82:4f:b4:99:bc: cb:82:c2:3d:d9:ec:25:f1:8d:93:2b:ae:c2:af:59:70:90:19: f4:84:e7:9a:f4:0e:15:ae:b0:92:f1:94:fc:a4:2b:bb:ac:78: a1:2c:af:4e:35:52:6f:48:93:a8:88:5a:f8:c6:82:47:1a:ca: ff:b6:f9:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjUwNjE0MjE0NzQzWhcNMjUwNjIxMjE0NzQzWjAYMRYwFAYD VQQDEw02ODRkZWUwMC05N2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqS3jxRMVZKqEh+pexbLGVhG7jVC7iBpz3wLTAQp3KDD0Wm1ELPOnB54JLkUw NGiVzIglfHLKtJNeOdk2qT110+iZ9Nmyt2k7g1yuTYpGMZP9arxoyM+/CjbP7TLk 0c8k9RC/oOWOysur99u8TZxz2QZF3j6adTFakllCMBUrutzANbS4/xP/0M0eAALD xn7UgtP3CyekmtRXCyQQHpWOaUugkwakEC9WyUDIZ0OEOejonVj/CkO/QUHQeZLs tABkXffi93HZasOyskoZ2xHpD+golTYsINNVeNEUbnecHYYY80WjENF6vCPhs+oH 5T2mi82vu9IhUlNqlpNxEpYpgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfQRQ9h FS66zkhWodji+/eo0igKMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxNC83MEQzQjM2QTU5NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5 R0xEbUFWMGVEN29jamtQeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcVWzrFgy4Z7LqQfi8QDwjOzlP3N1C0KdV0Ql996SbdxkTNq8J11e1 Sx8Wk1Ye9IBn8RL45p/tSlLQEiL/tkY6svunbXWzQqPsYMt+XQd4VXa7Ntpejn+E EEkuh9lxS7HJmlS848hjfZm4GhXHdwOza0MmKBzpj0zgFVcUPVOcxiBvLtuu8LQB W3WRx7zC1VsCQWcSqoVVzqWfUQYxMqv+DpEgTj1juY0iDddGetPAw55kMUBxaUjZ pkA4XObU2wqrgk+0mbzLgsI92ewl8Y2TK67Cr1lwkBn0hOea9A4VrrCS8ZT8pCu7 rHihLK9ONVJvSJOoiFr4xoJHGsr/tvlS -----END CERTIFICATE-----Generated at Sun Jun 15 08:44:58 2025 by rpki-client