$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: /HUkXT68wSNwwaHp1eZrrxAasKQmhV4sSPvI1ngKBCk= Subject key identifier: 72:F0:12:41:DF:E4:49:E2:B6:78:51:9C:49:B8:39:B5:25:AD:76:F2 Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 048C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 0483 Signing time: Sun 19 Oct 2025 01:58:51 +0000 Manifest this update: Sun 19 Oct 2025 01:58:50 +0000 Manifest next update: Sun 26 Oct 2025 01:58:50 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: E7W3FO4CbB2c1wFAGanWGtlw6v0SVwy3ZsgKXRAKKbk=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: bae2h1fyx3Q2HMMVl8xXKrMMVZUAe0Q5kTd+Vb0nl2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1164 (0x48c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Oct 19 01:58:50 2025 GMT Not After : Oct 26 01:58:50 2025 GMT Subject: CN=68f445da-d033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e8:51:37:df:ac:27:53:eb:3c:be:e2:b2:04: bb:1d:01:56:e1:52:4b:ea:20:d7:cd:8a:9e:11:13: d0:65:e9:ad:23:cb:d2:80:b6:91:17:9e:36:ce:68: 95:66:f4:ee:5f:8e:31:c8:ca:68:b7:18:d8:5e:72: a0:81:43:d6:4a:ae:67:b7:83:0d:ca:60:29:37:42: 02:15:2a:89:83:c4:40:37:86:b9:6c:e8:12:7c:bc: e8:56:6d:6f:fb:d4:10:3f:31:36:78:59:5c:fa:b3: a9:7e:21:b9:14:ac:1d:44:ce:51:80:fa:05:c6:a0: 20:d3:68:e4:45:2b:25:6a:a4:0f:77:67:e2:4f:31: 03:24:a1:ad:89:c0:28:d2:04:5c:df:26:90:03:7b: e0:a7:e0:fd:5c:59:a9:b6:72:cf:38:01:6a:55:d7: 5a:bf:52:8c:37:f2:06:1e:8a:9f:16:aa:5f:89:98: 04:9b:21:6b:9d:92:ea:aa:6b:06:2b:4e:22:80:ef: a3:ef:ca:d9:62:27:d9:4b:6e:59:ec:0f:89:22:94: 9a:d5:5e:5f:89:a7:ad:ad:ce:1c:8c:f3:9c:ed:fd: dc:31:f4:46:fe:36:27:95:20:04:26:f3:58:33:37: 19:f8:42:bb:22:5a:fb:a8:1c:47:8a:09:20:83:73: 2f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F0:12:41:DF:E4:49:E2:B6:78:51:9C:49:B8:39:B5:25:AD:76:F2 X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:e0:2d:19:4a:55:c4:36:dc:a8:38:09:77:c6:e9:22:22:c2: ed:38:5a:cc:9f:6a:9f:58:ab:44:29:3f:2a:e0:07:98:4c:cd: 87:01:64:35:be:1e:45:c1:ae:d1:42:28:dd:a7:9f:3e:8a:c9: 76:08:66:44:61:6c:6b:86:30:95:f4:d8:88:8e:0c:2a:af:9a: 10:e4:15:89:72:7d:10:81:79:75:20:f5:0a:32:73:ed:b1:ea: ee:39:83:b8:37:36:03:99:1f:ea:a6:91:f9:6a:16:07:87:ba: 81:bd:eb:51:39:60:0b:8c:45:e3:38:20:bc:36:e2:e7:3e:00: 4b:ea:20:84:28:45:30:ac:09:a2:13:6d:27:56:4d:d2:f9:07: bc:cf:86:6b:fe:a6:40:8b:5c:aa:43:1c:d6:bd:ec:2b:7d:b6: 0f:43:41:9c:0f:70:0a:84:03:5c:8b:cc:51:96:ca:dc:b8:7c: 88:5d:86:59:98:98:a6:76:48:6a:81:2c:03:88:6a:3d:24:9a: b8:b1:34:c2:53:ac:7a:e4:8f:5c:ec:89:bc:a5:39:b6:9c:8c: 47:97:5d:d1:80:bb:4b:a7:77:cc:5a:dc:be:0a:40:ed:0c:a0: 7f:36:d8:a8:8f:3b:b1:42:1b:9b:d3:f8:e9:36:f0:8f:ac:5f: d0:f6:b3:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjUxMDE5MDE1ODUwWhcNMjUxMDI2MDE1ODUwWjAYMRYwFAYD VQQDEw02OGY0NDVkYS1kMDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ehRN9+sJ1PrPL7isgS7HQFW4VJL6iDXzYqeERPQZemtI8vSgLaRF542zmiV ZvTuX44xyMpotxjYXnKggUPWSq5nt4MNymApN0ICFSqJg8RAN4a5bOgSfLzoVm1v +9QQPzE2eFlc+rOpfiG5FKwdRM5RgPoFxqAg02jkRSslaqQPd2fiTzEDJKGticAo 0gRc3yaQA3vgp+D9XFmptnLPOAFqVddav1KMN/IGHoqfFqpfiZgEmyFrnZLqqmsG K04igO+j78rZYifZS25Z7A+JIpSa1V5fiaetrc4cjPOc7f3cMfRG/jYnlSAEJvNY MzcZ+EK7Ilr7qBxHigkgg3MvMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLwEkHf 5EnitnhRnEm4ObUlrXbyMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg4C0ZSlXENtyoOAl3xukiIsLtOFrMn2qfWKtEKT8q4AeYTM2HAWQ1 vh5Fwa7RQijdp58+isl2CGZEYWxrhjCV9NiIjgwqr5oQ5BWJcn0QgXl1IPUKMnPt seruOYO4NzYDmR/qppH5ahYHh7qBvetROWALjEXjOCC8NuLnPgBL6iCEKEUwrAmi E20nVk3S+Qe8z4Zr/qZAi1yqQxzWvewrfbYPQ0GcD3AKhANci8xRlsrcuHyIXYZZ mJimdkhqgSwDiGo9JJq4sTTCU6x65I9c7Im8pTm2nIxHl13RgLtLp3fMWty+CkDt DKB/NtiojzuxQhub0/jpNvCPrF/Q9rPu -----END CERTIFICATE-----Generated at Mon Oct 20 09:41:34 2025 by rpki-client