$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: s5w/zvfFMos9WxopDoQm8mUDaPKOi7NvJ5QJwQmo9Fc= Subject key identifier: E6:A5:5E:DF:47:55:D4:51:B7:CA:AE:FD:9C:21:59:46:9B:FD:26:49 Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 04E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 04D7 Signing time: Tue 24 Mar 2026 23:32:39 +0000 Manifest this update: Tue 24 Mar 2026 23:32:38 +0000 Manifest next update: Tue 31 Mar 2026 23:32:38 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: 3J07rDJVZSibvsl65OcgfHRKqCI2cowdOxOYGViuQFQ=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: 8RK3wMUcaIlDFax8CoO7B3J+G4IwltOjR9G0Tg+XrZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:32:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1251 (0x4e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Mar 24 23:32:38 2026 GMT Not After : Mar 31 23:32:38 2026 GMT Subject: CN=69c31f16-c0ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b1:36:1f:64:7d:9a:1d:8e:3d:d4:90:a8:0b: b0:53:01:ae:97:95:2f:7d:aa:08:63:44:4a:d0:e5: dd:eb:c6:16:70:04:4f:5f:43:7b:84:f6:1c:4c:c9: c5:d0:82:ae:fb:6b:3c:4a:0c:94:c2:cb:40:b4:fe: d4:8b:52:7d:ac:67:99:f8:ff:2a:ac:27:52:bc:70: e6:45:77:15:c9:6c:1a:3b:06:f4:3d:03:fb:23:2b: 88:6c:ce:fa:67:29:76:a4:7d:27:19:c5:7d:c2:17: 6e:ad:b4:c3:f1:c1:05:43:28:1c:46:93:8e:78:1a: f7:84:23:d4:de:92:ec:40:a6:85:56:ec:50:b7:b8: 4d:80:5b:1a:26:04:52:40:6f:23:9a:ad:40:53:03: 9c:51:2f:4d:97:35:32:5a:76:f0:a1:e9:8c:00:5c: f5:40:aa:d4:4a:0e:60:8b:fb:e7:2e:10:5a:5c:3f: e1:e1:8d:4b:90:79:b9:ab:73:ae:73:52:e4:05:6c: c2:e1:24:12:0f:fb:1d:fb:89:ee:4e:ea:b7:ee:de: 15:9c:e8:a7:87:42:ea:13:77:91:9a:9c:5e:9e:20: 4b:8a:42:83:a5:ad:52:d9:e7:76:f3:9c:11:4c:72: 61:5f:25:5f:57:6c:3a:a6:1b:0a:b1:8e:e5:c8:d8: 8c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:A5:5E:DF:47:55:D4:51:B7:CA:AE:FD:9C:21:59:46:9B:FD:26:49 X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:bf:2c:b6:29:c1:a4:e9:ae:51:c8:c1:81:36:6e:dd:90:b4: f4:01:99:86:fc:3c:e2:24:74:e1:34:2e:56:d8:71:72:12:70: d7:28:63:e6:77:c7:8b:7a:19:99:79:8c:56:34:dd:55:13:6d: 2a:65:de:ec:8d:d2:ea:73:5c:03:27:ea:4b:fd:4c:e3:8c:fe: df:03:17:99:88:ba:af:d2:00:fe:20:29:9e:d9:2c:0e:e4:8f: 74:47:c9:f1:6a:41:51:20:10:ec:2a:26:5a:d4:63:99:23:aa: 3d:30:39:47:ce:8a:bc:ad:30:e9:cf:4d:06:83:55:b4:ec:59: ec:26:48:e8:79:30:5b:30:ac:65:3e:a8:87:d1:4d:2e:16:c6: b5:f1:c2:fa:3e:ed:f2:a5:a4:7d:4a:26:09:e5:e9:5e:a5:e4: f4:ea:76:fe:fd:6e:ff:58:8a:ea:92:aa:9c:37:a0:ec:9b:39: 5b:01:3d:54:8a:c7:cc:8f:91:27:b1:13:2a:ed:82:04:3b:87: ce:aa:ac:0a:2f:61:fb:61:57:51:b6:ee:1d:18:83:c2:1d:4a: bd:ed:95:de:dd:e8:65:dd:b9:d4:99:2e:82:95:6b:da:d0:e0: 23:54:fe:df:22:45:b9:4b:84:2c:d2:df:f0:75:22:93:c2:41: 97:8a:62:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjYwMzI0MjMzMjM4WhcNMjYwMzMxMjMzMjM4WjAYMRYwFAYD VQQDEw02OWMzMWYxNi1jMGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrE2H2R9mh2OPdSQqAuwUwGul5UvfaoIY0RK0OXd68YWcARPX0N7hPYcTMnF 0IKu+2s8SgyUwstAtP7Ui1J9rGeZ+P8qrCdSvHDmRXcVyWwaOwb0PQP7IyuIbM76 Zyl2pH0nGcV9whdurbTD8cEFQygcRpOOeBr3hCPU3pLsQKaFVuxQt7hNgFsaJgRS QG8jmq1AUwOcUS9NlzUyWnbwoemMAFz1QKrUSg5gi/vnLhBaXD/h4Y1LkHm5q3Ou c1LkBWzC4SQSD/sd+4nuTuq37t4VnOinh0LqE3eRmpxeniBLikKDpa1S2ed285wR THJhXyVfV2w6phsKsY7lyNiMbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOalXt9H VdRRt8qu/ZwhWUab/SZJMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh78stinBpOmuUcjBgTZu3ZC09AGZhvw84iR04TQuVthxchJw1yhj5nfHi3oZ mXmMVjTdVRNtKmXe7I3S6nNcAyfqS/1M44z+3wMXmYi6r9IA/iApntksDuSPdEfJ 8WpBUSAQ7ComWtRjmSOqPTA5R86KvK0w6c9NBoNVtOxZ7CZI6HkwWzCsZT6oh9FN LhbGtfHC+j7t8qWkfUomCeXpXqXk9Op2/v1u/1iK6pKqnDeg7Js5WwE9VIrHzI+R J7ETKu2CBDuHzqqsCi9h+2FXUbbuHRiDwh1Kve2V3t3oZd251JkugpVr2tDgI1T+ 3yJFuUuELNLf8HUik8JBl4pivg== -----END CERTIFICATE-----Generated at Thu Mar 26 14:10:09 2026 by rpki-client