$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft File: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft (raw, json) Hash identifier: YUv8/5SBdIJ2NKihZ3JKXbaeweVkapH+ztET/yrSvLw= Subject key identifier: C0:26:C8:3F:19:40:DC:00:D7:04:71:3C:2A:6E:C3:B7:23:88:BB:F5 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 0787 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft Manifest number: 076E Signing time: Tue 24 Mar 2026 21:22:47 +0000 Manifest this update: Tue 24 Mar 2026 21:22:46 +0000 Manifest next update: Tue 31 Mar 2026 21:22:46 +0000 Files and hashes: 1: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl (hash: YA7ircFV+HsWx1sFlhf8D/628bm0bnG5EBXE7xv9r9M=) 2: 0DDC2C14776F11ED8E7B8775C4F9AE02.roa (hash: v2YonyCo9R/dlcaHZ1jfDPJlrOShqZgPxJ5RkLy9g6I=) 3: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (hash: TFtBaz3XXYr53c4KFkqYw9OsCBY/VjjGiRVEIJaG+ss=) 4: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (hash: Uh0sBPuZpoy8sTTNiUroNOAmNS0FTfsDSQBW+NkNyHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1927 (0x787) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314, serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Mar 24 21:22:46 2026 GMT Not After : Mar 31 21:22:46 2026 GMT Subject: CN=69c300a6-3333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7e:91:12:30:61:d1:96:ae:8e:39:97:40:0d: 28:94:c1:bd:c2:2b:f7:21:e0:5f:ca:c8:da:1a:a0: bb:2d:af:c3:88:a7:09:2d:8b:5c:95:a0:de:a9:82: 6d:80:9b:44:c0:6e:5a:98:9e:74:52:0c:4e:ed:f4: d5:2b:d3:c2:b1:bf:88:73:6c:35:21:73:bd:9e:61: 5d:96:74:f2:a8:b5:33:78:43:6e:0f:5b:09:2d:83: 07:65:1d:00:ff:6e:f2:4a:bf:23:fc:e0:53:2c:7f: 20:55:92:96:c8:82:81:26:92:a4:73:cc:bd:3f:7f: 2f:cb:f1:d4:c1:12:47:43:f0:63:e4:09:5c:0b:31: 25:32:8c:c7:18:11:9c:8e:26:77:08:5f:03:02:ed: 7d:ab:f0:43:d3:fe:98:04:84:3f:1d:2f:ea:cb:28: 74:d6:6a:37:9e:a0:59:ae:a4:00:dc:09:82:1c:c2: 52:e7:01:d1:d6:1a:8a:29:17:08:5c:34:ec:eb:50: 4f:2c:c1:2f:bf:81:cf:12:96:2e:3a:ed:4d:54:33: 9c:fa:bf:49:bc:a5:eb:56:dc:3e:2d:a5:c2:58:46: 37:78:49:9c:85:15:c8:87:8d:0b:18:1e:01:f3:af: 49:81:7e:ab:53:a4:76:8f:50:93:3b:20:3e:27:a0: a4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:26:C8:3F:19:40:DC:00:D7:04:71:3C:2A:6E:C3:B7:23:88:BB:F5 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:0b:5a:99:44:34:2f:cf:7e:5e:88:25:c8:5a:65:36:3a:40: 4d:f6:6c:52:cb:6b:ff:b4:2a:eb:e5:21:35:97:2d:b0:48:ea: ea:2e:b6:1b:77:f1:52:26:cc:22:65:96:72:fa:9a:b6:39:71: 12:ea:9c:8f:77:2e:cf:8e:12:71:38:34:b3:35:9d:b5:bd:f6: 70:b4:a2:37:0c:f2:f3:1c:2f:ca:2d:6a:cc:f7:18:3d:65:5d: 6e:64:5c:8a:e7:cf:b8:28:7e:9e:1b:28:fa:6f:b8:a0:28:66: 91:56:e9:6a:a7:95:ae:3e:1b:2f:fc:ee:4e:1d:32:ed:de:37: df:69:68:9e:d3:e7:0b:9f:bc:5a:5c:48:6d:85:7f:d4:04:75: ea:28:19:17:6e:79:40:2d:6a:1c:e8:ed:d2:49:6e:59:09:4d: ca:5e:bc:e1:85:8b:13:ff:57:c3:89:c3:89:aa:f6:a7:71:31: d5:48:6a:38:d9:9a:27:d8:5d:05:a1:a6:f8:da:6f:48:5d:75: 21:8d:d5:8d:7a:22:4e:02:bb:30:a2:3a:75:09:91:c8:7f:00: 3e:fe:7a:fb:cc:d7:0f:14:c1:df:bf:91:46:6f:8c:cb:b3:f4: a4:ec:fd:77:0b:73:b4:b4:41:49:af:63:e6:56:7b:3d:5b:33: 38:93:95:6b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjYwMzI0MjEyMjQ2WhcNMjYwMzMxMjEyMjQ2WjAYMRYwFAYD VQQDEw02OWMzMDBhNi0zMzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy36REjBh0ZaujjmXQA0olMG9wiv3IeBfysjaGqC7La/DiKcJLYtclaDeqYJt gJtEwG5amJ50UgxO7fTVK9PCsb+Ic2w1IXO9nmFdlnTyqLUzeENuD1sJLYMHZR0A /27ySr8j/OBTLH8gVZKWyIKBJpKkc8y9P38vy/HUwRJHQ/Bj5AlcCzElMozHGBGc jiZ3CF8DAu19q/BD0/6YBIQ/HS/qyyh01mo3nqBZrqQA3AmCHMJS5wHR1hqKKRcI XDTs61BPLMEvv4HPEpYuOu1NVDOc+r9JvKXrVtw+LaXCWEY3eEmchRXIh40LGB4B 869JgX6rU6R2j1CTOyA+J6CkfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMAmyD8Z QNwA1wRxPCpuw7cjiLv1MB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxNC83MEQzQjM2QTU5NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5 R0xEbUFWMGVEN29jamtQeVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMwtamUQ0L89+XoglyFplNjpATfZsUstr/7Qq6+UhNZctsEjq6i62G3fxUibM ImWWcvqatjlxEuqcj3cuz44ScTg0szWdtb32cLSiNwzy8xwvyi1qzPcYPWVdbmRc iufPuCh+nhso+m+4oChmkVbpaqeVrj4bL/zuTh0y7d4332lontPnC5+8WlxIbYV/ 1AR16igZF255QC1qHOjt0kluWQlNyl684YWLE/9Xw4nDiar2p3Ex1UhqONmaJ9hd BaGm+NpvSF11IY3VjXoiTgK7MKI6dQmRyH8APv56+8zXDxTB37+RRm+My7P0pOz9 dwtztLRBSa9j5lZ7PVszOJOVaw== -----END CERTIFICATE-----Generated at Thu Mar 26 07:09:53 2026 by rpki-client