$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft File: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft (raw, json) Hash identifier: MkQnomnW422F7l1S6aQMx2IOIuykaYkn+ZCbJ89XV3w= Subject key identifier: 0A:17:08:8E:DF:15:0A:0B:F5:2E:D9:F9:3F:D1:52:15:BC:84:16:01 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 06D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft Manifest number: 06C0 Signing time: Thu 24 Apr 2025 21:55:44 +0000 Manifest this update: Thu 24 Apr 2025 21:55:43 +0000 Manifest next update: Thu 01 May 2025 21:55:43 +0000 Files and hashes: 1: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl (hash: HWIwg7aDqnZ55HA1xK1Iz5aXnko3R7ldPTc/ja4M3GA=) 2: 0DDC2C14776F11ED8E7B8775C4F9AE02.roa (hash: P4RG3Y6nQyOth1GOf+cUq+m33EkNoZAP7s5DUsSNA08=) 3: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (hash: rMVk1ga9cfh7Qo/jkI958sU0c+kJJEruOUO08Z/4CDQ=) 4: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (hash: 0kvZ3EdSky7ksqvtASBmr2Ki7hEXQRI9ENpHrPAoPC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:55:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1744 (0x6d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314, serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Apr 24 21:55:43 2025 GMT Not After : May 1 21:55:43 2025 GMT Subject: CN=680ab360-fd37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e2:cc:f1:3f:1b:2f:6b:46:fe:ed:75:6e:f6: cc:6d:83:a0:33:49:01:63:79:47:ed:0a:3a:1f:59: 65:41:52:d2:86:1a:b2:5b:f8:f4:68:c0:ce:e4:62: 92:41:36:c4:3c:cf:59:03:40:b2:a7:ad:ce:a9:8c: 8f:13:98:1d:9a:af:22:56:2e:11:c3:a6:1b:56:f6: 77:97:0a:2b:78:4b:8c:72:a5:d2:50:51:22:d5:b0: 0c:db:00:43:c1:88:a3:ef:be:aa:90:a2:67:6b:31: 93:23:7c:f1:ee:1b:ca:28:8a:9c:51:4a:c8:56:90: db:66:cf:30:ce:cf:96:9b:b2:19:82:07:8c:f5:73: 46:1e:6b:7f:67:82:de:58:e6:0a:13:d3:72:4f:cb: ff:64:7b:71:97:0d:b5:5f:1a:e5:e9:a2:0b:44:cc: c7:88:67:69:85:44:0a:84:1c:36:57:b1:dd:09:02: 6f:86:d6:a6:0f:d3:5e:66:e8:46:5f:55:28:c7:c2: 54:9d:be:2a:72:e9:ac:d6:f8:97:fe:6a:8b:fd:dd: e5:cf:21:7d:c4:82:a8:6b:a1:e3:47:0c:5c:51:41: c1:78:1e:7a:d1:58:22:e0:72:f3:ed:f5:62:1d:1c: c1:fa:e5:65:f9:bb:5e:60:92:09:63:02:52:72:4b: 86:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:17:08:8E:DF:15:0A:0B:F5:2E:D9:F9:3F:D1:52:15:BC:84:16:01 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:a2:08:f5:58:cc:c9:03:5d:e2:61:57:9a:bb:ce:66:2f:99: ac:c8:bd:59:39:50:24:bd:fc:e1:67:08:9f:da:5e:85:21:42: 7a:50:7d:51:33:38:c0:60:4f:3a:a4:64:e0:4a:1b:a7:b3:e3: 8d:c7:40:c8:19:d0:c1:71:c1:5e:72:12:01:bf:52:6b:8f:2e: b2:26:a7:f3:2f:36:f9:0e:7f:80:13:25:10:a4:cb:3a:7e:72: a9:ce:5d:b6:6d:9d:67:f6:d1:f8:3f:3c:e5:8b:bc:bc:af:29: 95:a5:ac:23:ce:ac:ce:dc:8e:da:bb:ae:3a:5d:9b:bd:a3:d1: 60:99:4a:63:c0:3b:d6:11:56:fe:11:56:6c:1d:6d:ac:5c:21: 1e:ae:5d:6a:06:65:df:fd:d2:88:ad:0d:fb:21:fb:59:41:a3: 27:e5:2a:82:cc:51:d0:60:44:66:92:f2:2f:b6:b5:fa:8c:12: 43:82:16:0e:34:fb:1f:8b:d1:b7:3e:ee:fb:95:5a:eb:1c:c4: ee:55:87:d0:bc:b0:8d:2d:11:a7:95:65:da:19:03:ce:cd:e9: bb:6e:78:fd:af:2d:a1:8c:9d:fd:32:6d:a9:13:d5:37:e9:27: 34:e1:ca:13:42:61:ea:2e:ba:00:35:d2:d0:cb:5d:cc:80:28: d7:1e:20:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjUwNDI0MjE1NTQzWhcNMjUwNTAxMjE1NTQzWjAYMRYwFAYD VQQDEw02ODBhYjM2MC1mZDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeLM8T8bL2tG/u11bvbMbYOgM0kBY3lH7Qo6H1llQVLShhqyW/j0aMDO5GKS QTbEPM9ZA0Cyp63OqYyPE5gdmq8iVi4Rw6YbVvZ3lworeEuMcqXSUFEi1bAM2wBD wYij776qkKJnazGTI3zx7hvKKIqcUUrIVpDbZs8wzs+Wm7IZggeM9XNGHmt/Z4Le WOYKE9NyT8v/ZHtxlw21Xxrl6aILRMzHiGdphUQKhBw2V7HdCQJvhtamD9NeZuhG X1Uox8JUnb4qcums1viX/mqL/d3lzyF9xIKoa6HjRwxcUUHBeB560Vgi4HLz7fVi HRzB+uVl+bteYJIJYwJSckuG7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAoXCI7f FQoL9S7Z+T/RUhW8hBYBMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxNC83MEQzQjM2QTU5NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5 R0xEbUFWMGVEN29jamtQeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvogj1WMzJA13iYVeau85mL5msyL1ZOVAkvfzhZwif2l6FIUJ6UH1R MzjAYE86pGTgShuns+ONx0DIGdDBccFechIBv1Jrjy6yJqfzLzb5Dn+AEyUQpMs6 fnKpzl22bZ1n9tH4Pzzli7y8rymVpawjzqzO3I7au646XZu9o9FgmUpjwDvWEVb+ EVZsHW2sXCEerl1qBmXf/dKIrQ37IftZQaMn5SqCzFHQYERmkvIvtrX6jBJDghYO NPsfi9G3Pu77lVrrHMTuVYfQvLCNLRGnlWXaGQPOzem7bnj9ry2hjJ39Mm2pE9U3 6Sc04coTQmHqLroANdLQy13MgCjXHiB6 -----END CERTIFICATE-----Generated at Sat Apr 26 03:51:29 2025 by rpki-client