$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft File: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft (raw, json) Hash identifier: dnJltsoQCjcBnwib0Xeuo6OUOS9kLDUTT4qWiRB4VSE= Subject key identifier: 6A:A2:52:58:24:6B:3E:F0:43:FF:06:70:F2:22:23:14:C7:68:31:81 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 06D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft Manifest number: 06C9 Signing time: Mon 12 May 2025 21:53:08 +0000 Manifest this update: Mon 12 May 2025 21:53:08 +0000 Manifest next update: Mon 19 May 2025 21:53:08 +0000 Files and hashes: 1: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl (hash: V8uR9fn+XwuQk3JFWoUyowhhqm7jgm/9nrNmwg/w87A=) 2: 0DDC2C14776F11ED8E7B8775C4F9AE02.roa (hash: P4RG3Y6nQyOth1GOf+cUq+m33EkNoZAP7s5DUsSNA08=) 3: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (hash: rMVk1ga9cfh7Qo/jkI958sU0c+kJJEruOUO08Z/4CDQ=) 4: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (hash: 0kvZ3EdSky7ksqvtASBmr2Ki7hEXQRI9ENpHrPAoPC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1753 (0x6d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314, serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: May 12 21:53:08 2025 GMT Not After : May 19 21:53:08 2025 GMT Subject: CN=68226dc4-dd23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7b:34:0a:de:49:62:1d:d8:de:04:5b:4a:a3: ea:a0:63:f4:66:08:ee:c7:9e:8c:7f:af:8c:5f:39: cf:6f:71:59:40:f8:ab:ac:62:6d:71:2d:d6:c4:d6: ba:c8:b6:d4:15:89:46:b5:f4:da:10:1a:f0:7e:71: 88:95:f8:2f:d5:82:19:e5:d6:a1:42:dd:dd:44:bd: dd:24:a2:a5:eb:4c:76:d6:38:3c:f1:28:20:59:a7: b0:68:ce:5c:b3:5d:51:f7:e6:37:f8:19:e3:60:4a: b2:1f:27:f0:cb:85:a3:7b:ab:a6:31:31:25:90:69: bf:64:b0:25:84:ca:f5:ae:9f:11:c5:35:30:b1:81: 30:30:3c:bf:35:da:0e:08:2e:40:b2:10:42:37:36: a1:7c:6b:bf:89:7c:34:c1:94:8c:c6:f6:48:6c:83: d7:5d:22:90:80:66:a4:c9:1a:65:75:46:fd:9f:50: 3e:64:49:a3:39:83:4e:ff:46:fc:d5:40:a3:b6:9e: a7:95:57:2e:9b:84:b2:cd:2a:5b:51:e0:c6:09:a3: 48:5e:6d:b2:89:e8:0c:2d:b4:9b:47:78:44:a0:af: 96:82:ba:03:79:26:22:12:9f:ff:56:7d:85:c3:c8: 8d:48:48:d3:6e:6b:75:d2:06:97:32:dd:ca:45:70: 2b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A2:52:58:24:6B:3E:F0:43:FF:06:70:F2:22:23:14:C7:68:31:81 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:78:a7:29:61:c1:b8:86:f6:a0:68:ce:4a:b9:93:c2:66:d5: 5f:4d:7d:be:ae:e9:2f:1d:b0:1f:50:53:18:cb:df:61:29:7b: fd:35:63:13:ab:ea:8c:b0:8c:ad:5e:04:e0:47:ec:5d:08:b4: 2b:3c:c6:83:46:0e:1f:9a:0b:7b:35:2d:e7:18:6b:56:c7:43: c3:c0:c9:be:7a:ec:90:2d:26:a0:b9:eb:0d:ff:14:0f:07:64: 54:27:57:68:96:37:3a:8a:18:93:93:a1:0a:75:57:52:25:8e: bb:09:66:c8:77:39:ee:e4:bb:bf:fb:90:d7:03:25:3a:79:57: 87:d9:2a:3e:b9:ee:60:7d:52:98:21:0b:10:cc:ba:b8:18:23: 27:53:1c:08:19:b0:77:b5:fa:72:3f:73:aa:ab:09:0f:3e:fd: e5:40:9c:98:35:e8:c5:18:04:3b:f3:22:0c:6f:94:ba:a6:84: 2f:d1:24:ce:a9:6a:e6:66:5f:33:06:68:78:0b:6e:bb:a2:09: 5b:4f:83:53:dc:e9:38:95:fc:72:43:4f:fc:46:f9:6c:05:03: d0:ef:29:ad:c1:46:de:fc:9a:79:4b:11:3f:28:99:ee:28:5c: e4:52:c3:db:62:93:9e:f8:a3:92:b9:74:aa:8e:16:2d:32:f2: c8:ed:bf:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjUwNTEyMjE1MzA4WhcNMjUwNTE5MjE1MzA4WjAYMRYwFAYD VQQDEw02ODIyNmRjNC1kZDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAons0Ct5JYh3Y3gRbSqPqoGP0Zgjux56Mf6+MXznPb3FZQPirrGJtcS3WxNa6 yLbUFYlGtfTaEBrwfnGIlfgv1YIZ5dahQt3dRL3dJKKl60x21jg88SggWaewaM5c s11R9+Y3+BnjYEqyHyfwy4Wje6umMTElkGm/ZLAlhMr1rp8RxTUwsYEwMDy/NdoO CC5AshBCNzahfGu/iXw0wZSMxvZIbIPXXSKQgGakyRpldUb9n1A+ZEmjOYNO/0b8 1UCjtp6nlVcum4SyzSpbUeDGCaNIXm2yiegMLbSbR3hEoK+WgroDeSYiEp//Vn2F w8iNSEjTbmt10gaXMt3KRXArqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqiUlgk az7wQ/8GcPIiIxTHaDGBMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxNC83MEQzQjM2QTU5NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5 R0xEbUFWMGVEN29jamtQeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIeKcpYcG4hvagaM5KuZPCZtVfTX2+rukvHbAfUFMYy99hKXv9NWMT q+qMsIytXgTgR+xdCLQrPMaDRg4fmgt7NS3nGGtWx0PDwMm+euyQLSaguesN/xQP B2RUJ1doljc6ihiTk6EKdVdSJY67CWbIdznu5Lu/+5DXAyU6eVeH2So+ue5gfVKY IQsQzLq4GCMnUxwIGbB3tfpyP3OqqwkPPv3lQJyYNejFGAQ78yIMb5S6poQv0STO qWrmZl8zBmh4C267oglbT4NT3Ok4lfxyQ0/8RvlsBQPQ7ymtwUbe/Jp5SxE/KJnu KFzkUsPbYpOe+KOSuXSqjhYtMvLI7b+y -----END CERTIFICATE-----Generated at Tue May 13 19:21:47 2025 by rpki-client