$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft File: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft (raw, json) Hash identifier: uUT4C6M9Pl89KLPQI+IYHsNUYttEuVMKJDisb31uiPI= Subject key identifier: 29:CC:FC:EE:D0:14:05:E4:B8:C9:A0:60:FA:5B:5B:4D:E6:D0:CB:F5 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 079F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft Manifest number: 0786 Signing time: Sun 10 May 2026 21:36:58 +0000 Manifest this update: Sun 10 May 2026 21:36:57 +0000 Manifest next update: Sun 17 May 2026 21:36:57 +0000 Files and hashes: 1: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl (hash: 0Yd/nDgPZmxttcWc9WTmDLQBvuDMLW3bYOtcsAWuH8w=) 2: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (hash: Uh0sBPuZpoy8sTTNiUroNOAmNS0FTfsDSQBW+NkNyHo=) 3: 0DDC2C14776F11ED8E7B8775C4F9AE02.roa (hash: v2YonyCo9R/dlcaHZ1jfDPJlrOShqZgPxJ5RkLy9g6I=) 4: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (hash: TFtBaz3XXYr53c4KFkqYw9OsCBY/VjjGiRVEIJaG+ss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 May 2026 21:36:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1951 (0x79f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314, serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: May 10 21:36:57 2026 GMT Not After : May 17 21:36:57 2026 GMT Subject: CN=6a00fa7a-d1dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c7:6e:ab:a2:92:c2:8f:79:45:44:be:0f:5f: 50:23:ed:ce:2c:03:5f:b6:90:f3:c2:92:6d:14:db: 7b:15:ae:b6:d0:af:48:fc:a5:14:bb:6f:62:77:9f: e9:7a:b0:71:78:08:a9:03:0c:a6:29:37:40:b4:2f: d1:eb:f7:43:7f:ba:4e:d7:f3:4b:bc:4e:6a:a4:f0: 53:ac:7c:7d:1f:f3:02:e7:99:7e:c5:ea:82:55:18: bf:0a:93:41:0d:f6:a8:71:f3:ff:6a:b5:ae:d3:11: f2:8b:82:62:a2:8b:53:32:a2:64:ca:d6:35:d0:a0: 42:d5:ec:17:76:3e:21:c4:2f:22:86:4c:1d:77:80: ba:97:0b:de:d3:fa:7c:cd:72:00:f2:bf:d2:de:3f: 02:78:a6:1a:7f:2a:02:4f:15:7a:e6:1e:99:84:87: 9f:ba:c5:37:cd:48:5f:49:9c:2e:02:53:d6:65:e3: 6b:71:a6:29:16:81:44:12:f0:ed:e1:6a:f4:51:cf: a3:66:35:df:7f:35:ba:37:2a:3a:00:3e:8b:83:fe: 6d:24:f1:5d:16:f5:35:7a:31:e8:a4:9c:78:78:22: ed:5e:f7:f9:69:2a:1d:f0:70:2d:65:5e:99:f1:9d: d8:1e:f7:28:30:4d:74:54:f0:6f:4f:87:f1:c8:4c: 2a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:CC:FC:EE:D0:14:05:E4:B8:C9:A0:60:FA:5B:5B:4D:E6:D0:CB:F5 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:9f:83:7f:f1:9e:b8:67:66:0b:c1:a3:01:43:e8:25:eb:dc: 90:7a:67:be:9a:72:fd:9b:8d:fe:ec:3d:0a:e8:f5:b6:06:00: 9a:11:34:db:37:de:db:d8:ce:9f:14:22:08:ae:8b:7a:7d:99: 26:64:cb:53:a8:0e:6d:09:bd:5f:4a:25:7e:e6:27:e2:d8:08: 8e:81:2d:d4:27:72:29:21:89:81:df:56:66:9a:49:87:c3:a5: f0:83:93:3e:e5:e3:6f:7d:06:6e:d9:f1:0b:ab:75:40:cc:0c: b6:e6:7a:81:60:48:fc:0e:c6:03:c9:c8:0c:d2:a7:38:9b:30: 3e:d5:55:c9:19:0d:47:91:fd:70:a4:3e:10:07:9e:ad:3b:ed: 93:04:3d:66:59:91:e1:5c:56:44:67:ea:30:65:54:e9:2f:4c: be:34:20:9b:f5:9f:16:f6:a1:44:7b:18:da:03:cb:ae:d1:24: e8:00:0b:9b:20:8b:b7:c2:c3:80:4e:5b:70:7a:90:14:a9:28: e4:35:19:3f:78:f9:02:41:50:3e:b4:6e:b8:00:8a:b7:89:c3: c0:93:95:db:70:51:88:24:f7:43:56:ae:57:00:27:df:ef:92: a4:bf:68:92:2c:35:e2:0f:71:1e:b3:7d:75:60:86:8c:87:06: 92:35:8a:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjYwNTEwMjEzNjU3WhcNMjYwNTE3MjEzNjU3WjAYMRYwFAYD VQQDEw02YTAwZmE3YS1kMWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMduq6KSwo95RUS+D19QI+3OLANftpDzwpJtFNt7Fa620K9I/KUUu29id5/p erBxeAipAwymKTdAtC/R6/dDf7pO1/NLvE5qpPBTrHx9H/MC55l+xeqCVRi/CpNB DfaocfP/arWu0xHyi4JiootTMqJkytY10KBC1ewXdj4hxC8ihkwdd4C6lwve0/p8 zXIA8r/S3j8CeKYafyoCTxV65h6ZhIefusU3zUhfSZwuAlPWZeNrcaYpFoFEEvDt 4Wr0Uc+jZjXffzW6Nyo6AD6Lg/5tJPFdFvU1ejHopJx4eCLtXvf5aSod8HAtZV6Z 8Z3YHvcoME10VPBvT4fxyEwq+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCnM/O7Q FAXkuMmgYPpbW03m0Mv1MB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxNC83MEQzQjM2QTU5NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5 R0xEbUFWMGVEN29jamtQeVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAD5+Df/GeuGdmC8GjAUPoJevckHpnvppy/ZuN/uw9Cuj1tgYAmhE02zfe29jO nxQiCK6Len2ZJmTLU6gObQm9X0olfuYn4tgIjoEt1CdyKSGJgd9WZppJh8Ol8IOT PuXjb30GbtnxC6t1QMwMtuZ6gWBI/A7GA8nIDNKnOJswPtVVyRkNR5H9cKQ+EAee rTvtkwQ9ZlmR4VxWRGfqMGVU6S9MvjQgm/WfFvahRHsY2gPLrtEk6AALmyCLt8LD gE5bcHqQFKko5DUZP3j5AkFQPrRuuACKt4nDwJOV23BRiCT3Q1auVwAn3++SpL9o kiw14g9xHrN9dWCGjIcGkjWKew== -----END CERTIFICATE-----Generated at Tue May 12 23:41:20 2026 by rpki-client