$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft File: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft (raw, json) Hash identifier: SoI0q0mSUgJvgVRgYw8YIi9dqoMmADzKq2xoxn7n8t8= Subject key identifier: A8:9A:22:4D:BC:17:3E:A8:52:AB:63:DB:41:DC:86:05:0C:9E:C4:57 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 072F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft Manifest number: 071C Signing time: Sat 18 Oct 2025 23:16:32 +0000 Manifest this update: Sat 18 Oct 2025 23:16:31 +0000 Manifest next update: Sat 25 Oct 2025 23:16:31 +0000 Files and hashes: 1: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl (hash: VNJtuPtIaCa0PAdddfSnCZBg5MAr6pukDiDyfF2VCtk=) 2: 0DDC2C14776F11ED8E7B8775C4F9AE02.roa (hash: TMdvekGhsYRkD7vQxOC9M1BNi4ODftadLHkHNnnsSEE=) 3: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (hash: wIAUJo6pLOtcdDl/q+XVckYcgHnVKsYs5npKOOs0/x0=) 4: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (hash: Ac+21perclmyIdH4cwpABd4VrpSu8D0aj/0rXmLovJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:16:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1839 (0x72f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314, serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Oct 18 23:16:31 2025 GMT Not After : Oct 25 23:16:31 2025 GMT Subject: CN=68f41fd0-2894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:17:40:8a:7d:1b:8e:70:6b:64:e7:17:53:7e: 66:e1:19:44:34:ba:07:db:64:04:58:04:65:be:d5: 39:7c:e3:4b:71:32:7a:14:87:4c:09:0e:3f:af:32: 8c:10:e3:81:dc:56:71:98:73:68:c5:5c:17:2b:3a: a2:e9:e6:df:b2:e2:fd:27:11:33:62:fa:a5:06:e5: 71:59:8d:aa:43:36:d0:64:e4:72:f1:69:c3:ba:6f: 75:e4:de:0a:3a:3e:fb:ff:f9:23:20:43:55:6f:73: f3:31:a5:df:5c:2e:1d:3f:4d:a3:33:6f:71:74:3f: 3a:7c:c2:7f:b8:8a:54:82:b9:40:c1:69:0f:8d:05: 19:12:d9:46:2f:a0:76:8d:ed:ff:05:b6:c6:1c:8a: dd:78:06:97:af:d8:41:ee:a8:f0:6d:a9:43:90:f1: 99:27:2b:17:29:b4:37:53:27:01:b7:e0:41:40:fe: 2a:68:13:6f:88:28:d1:b7:15:f2:7e:a6:c8:83:ec: 25:69:d2:d9:6f:52:ae:4f:4e:85:85:6c:7d:93:85: ad:63:1a:43:c2:1a:02:90:ed:11:ea:26:50:c3:06: df:b0:8d:34:27:9e:26:ed:ae:08:16:1f:19:4d:3c: 9a:55:95:35:5d:6c:c4:2c:b9:3f:1e:27:89:e7:5d: a0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:9A:22:4D:BC:17:3E:A8:52:AB:63:DB:41:DC:86:05:0C:9E:C4:57 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:ef:77:38:68:0c:57:37:7e:86:63:6b:57:23:45:82:15:04: fa:3d:fc:03:7e:4d:c5:e0:ea:8c:0f:9e:2a:b6:53:cd:8b:ed: 6c:7f:dc:87:22:5f:90:6a:09:2a:c0:5a:9b:8c:19:08:16:8d: 68:ec:90:59:04:70:38:3c:19:7d:a3:66:ef:fd:da:7a:c8:4a: 86:09:b0:81:5c:18:a2:fe:14:d7:04:f5:0c:bc:46:1c:93:67: d0:7a:7c:88:87:c0:e9:8b:7f:df:26:8c:34:ed:30:82:b9:42: ab:0e:b6:d0:c2:6a:5b:a2:3c:e2:73:ca:33:73:3f:11:2f:34: 52:2d:f5:ff:fc:4d:5a:72:40:91:c1:07:f2:5b:ad:23:da:cb: 7d:6a:55:27:c4:fb:d4:0f:49:cf:16:b1:9f:86:43:36:50:88: 56:5d:22:0d:a2:3f:32:1d:3e:8c:ae:66:0a:75:f1:c7:47:e3: 3c:e2:ad:71:0d:d7:53:b1:67:b2:42:80:6f:35:50:3d:72:e4: 61:70:3e:ba:fd:96:e9:65:aa:c0:f4:fe:3b:f6:f5:c7:74:a6: 1e:5a:bf:3e:d7:73:bd:3e:4a:a9:b3:34:b5:95:c8:f2:0f:ea: 1e:aa:dc:2d:05:e3:9d:38:d0:a3:3b:27:64:9b:ce:29:c4:85: e3:6a:73:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjUxMDE4MjMxNjMxWhcNMjUxMDI1MjMxNjMxWjAYMRYwFAYD VQQDEw02OGY0MWZkMC0yODk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlhdAin0bjnBrZOcXU35m4RlENLoH22QEWARlvtU5fONLcTJ6FIdMCQ4/rzKM EOOB3FZxmHNoxVwXKzqi6ebfsuL9JxEzYvqlBuVxWY2qQzbQZORy8WnDum915N4K Oj77//kjIENVb3PzMaXfXC4dP02jM29xdD86fMJ/uIpUgrlAwWkPjQUZEtlGL6B2 je3/BbbGHIrdeAaXr9hB7qjwbalDkPGZJysXKbQ3UycBt+BBQP4qaBNviCjRtxXy fqbIg+wladLZb1KuT06FhWx9k4WtYxpDwhoCkO0R6iZQwwbfsI00J54m7a4IFh8Z TTyaVZU1XWzELLk/HieJ512g0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKiaIk28 Fz6oUqtj20HchgUMnsRXMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxNC83MEQzQjM2QTU5NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5 R0xEbUFWMGVEN29jamtQeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj73c4aAxXN36GY2tXI0WCFQT6PfwDfk3F4OqMD54qtlPNi+1sf9yH Il+QagkqwFqbjBkIFo1o7JBZBHA4PBl9o2bv/dp6yEqGCbCBXBii/hTXBPUMvEYc k2fQenyIh8Dpi3/fJow07TCCuUKrDrbQwmpbojzic8ozcz8RLzRSLfX//E1ackCR wQfyW60j2st9alUnxPvUD0nPFrGfhkM2UIhWXSINoj8yHT6MrmYKdfHHR+M84q1x DddTsWeyQoBvNVA9cuRhcD66/ZbpZarA9P479vXHdKYeWr8+13O9PkqpszS1lcjy D+oeqtwtBeOdONCjOydkm84pxIXjanOf -----END CERTIFICATE-----Generated at Mon Oct 20 08:55:28 2025 by rpki-client