$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: xbrWz3M5uKfdzCfYc3gpe7okBboRqlCLXqZjI3YPM6U= Subject key identifier: 80:91:55:73:31:3E:FD:30:D9:2E:F2:83:EF:1D:AC:E5:04:57:40:3B Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 046F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 0466 Signing time: Sat 23 Aug 2025 00:25:55 +0000 Manifest this update: Sat 23 Aug 2025 00:25:54 +0000 Manifest next update: Sat 30 Aug 2025 00:25:54 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: /MAp+N8KFVxLB3D8/7DKa9SCP7H9uEUI5x1lmHzliCY=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: bae2h1fyx3Q2HMMVl8xXKrMMVZUAe0Q5kTd+Vb0nl2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1135 (0x46f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Aug 23 00:25:54 2025 GMT Not After : Aug 30 00:25:54 2025 GMT Subject: CN=68a90a93-5242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:91:43:d2:2f:01:6a:2f:89:71:9f:bf:0c:e4: f0:6a:69:74:9e:e4:36:31:84:99:97:b2:6d:54:51: 09:f5:99:45:14:0c:7a:6f:1d:f7:02:84:e1:19:fe: 0a:eb:ed:0d:26:03:0a:5d:96:3a:85:b7:2d:a3:f6: 1c:2d:91:f4:f4:e7:b0:42:66:6b:3f:12:13:d0:73: ce:92:8e:7e:0a:bd:94:2d:e5:cd:e8:dc:54:3d:31: 20:ab:90:c8:c9:a7:0a:5a:e1:c4:0d:7a:a9:13:da: 4f:5e:5a:cc:d8:94:2d:20:b2:7c:88:56:b6:39:13: d3:79:f8:4d:58:a7:aa:ff:c0:e8:9f:a3:ef:f8:8f: d2:4d:86:db:0e:1a:9b:03:2c:18:e6:a0:e3:d4:bb: 65:55:b2:52:98:aa:99:81:83:6a:ba:3a:34:73:c8: 3a:1f:99:3c:69:a3:42:a1:a6:76:3f:86:5e:7c:2a: 42:05:61:9e:d4:85:d6:1d:c3:36:a2:51:40:7a:ff: 8c:b8:45:93:66:db:b0:ba:38:6c:05:30:5d:47:b2: db:4c:14:8b:04:8f:76:4a:84:74:aa:1c:62:97:93: d2:b2:9f:e3:c2:88:51:cb:7d:82:e0:1b:66:0c:3c: 8c:77:a4:f8:fd:4d:88:ed:7e:0a:27:f4:ee:b4:a9: 3d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:91:55:73:31:3E:FD:30:D9:2E:F2:83:EF:1D:AC:E5:04:57:40:3B X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:c6:18:40:d5:f5:1f:1f:40:20:db:55:37:15:6c:75:fa:dd: 66:25:54:1c:8f:3a:b3:9b:fe:a3:db:b0:4e:a9:4c:2c:be:b6: 2f:1c:a5:a6:24:26:7d:1a:53:73:62:c6:4a:4c:1a:4a:21:c4: e5:77:23:a1:f6:df:2f:ff:e1:3e:7a:18:11:cf:02:cb:e9:f1: fe:c2:6d:67:40:f0:64:76:24:fb:e0:50:d7:92:7e:2d:e9:52: ea:bc:59:81:68:e1:44:bf:32:35:6f:93:b2:e0:31:3e:26:62: 3f:a9:e6:6e:54:e7:20:87:6d:ab:79:96:56:7d:df:c9:4f:89: 22:2e:b1:a9:00:82:86:55:f5:5d:24:d6:48:e1:29:eb:4a:bd: a9:82:8f:d0:b7:ed:5f:23:c3:48:f9:ec:ae:86:24:c4:9d:87: 9f:c1:f7:8d:0e:2d:0f:49:63:a9:f6:44:dd:99:53:99:b8:24: 67:c7:a3:15:3b:28:df:f3:50:f8:2b:6a:03:ee:b8:66:df:45: a7:ed:54:96:d3:81:50:ed:87:fe:c9:8a:e7:e4:41:ce:b7:f6: 45:ff:49:a0:6c:0b:73:0e:f1:33:d1:17:ad:c5:49:fd:e4:68: 77:0d:70:4d:2c:5d:0f:d8:93:96:a6:b1:2d:8f:78:f8:ee:21: 12:43:37:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjUwODIzMDAyNTU0WhcNMjUwODMwMDAyNTU0WjAYMRYwFAYD VQQDEw02OGE5MGE5My01MjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ZFD0i8Bai+JcZ+/DOTwaml0nuQ2MYSZl7JtVFEJ9ZlFFAx6bx33AoThGf4K 6+0NJgMKXZY6hbcto/YcLZH09OewQmZrPxIT0HPOko5+Cr2ULeXN6NxUPTEgq5DI yacKWuHEDXqpE9pPXlrM2JQtILJ8iFa2ORPTefhNWKeq/8Don6Pv+I/STYbbDhqb AywY5qDj1LtlVbJSmKqZgYNqujo0c8g6H5k8aaNCoaZ2P4ZefCpCBWGe1IXWHcM2 olFAev+MuEWTZtuwujhsBTBdR7LbTBSLBI92SoR0qhxil5PSsp/jwohRy32C4Btm DDyMd6T4/U2I7X4KJ/TutKk9iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFICRVXMx Pv0w2S7yg+8drOUEV0A7MB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhxhhA1fUfH0Ag21U3FWx1+t1mJVQcjzqzm/6j27BOqUwsvrYvHKWm JCZ9GlNzYsZKTBpKIcTldyOh9t8v/+E+ehgRzwLL6fH+wm1nQPBkdiT74FDXkn4t 6VLqvFmBaOFEvzI1b5Oy4DE+JmI/qeZuVOcgh22reZZWfd/JT4kiLrGpAIKGVfVd JNZI4SnrSr2pgo/Qt+1fI8NI+eyuhiTEnYefwfeNDi0PSWOp9kTdmVOZuCRnx6MV Oyjf81D4K2oD7rhm30Wn7VSW04FQ7Yf+yYrn5EHOt/ZF/0mgbAtzDvEz0RetxUn9 5Gh3DXBNLF0P2JOWprEtj3j47iESQzf3 -----END CERTIFICATE-----Generated at Sat Aug 23 13:41:24 2025 by rpki-client