$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: BNgbIjJSzvc3Z7YEUP1d2Du0hXBwI18Kj/jg4wE/exM= Subject key identifier: FB:AB:84:AB:D3:B1:FD:89:2E:A8:6A:CE:83:F4:20:8F:BB:17:C5:E4 Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 0453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 044A Signing time: Sat 28 Jun 2025 23:51:45 +0000 Manifest this update: Sat 28 Jun 2025 23:51:45 +0000 Manifest next update: Sat 05 Jul 2025 23:51:45 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: vvH22I9PtiZ9AiUcC3E7ErZ3eK/+PmN5UmxUn/dn4Bw=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: bae2h1fyx3Q2HMMVl8xXKrMMVZUAe0Q5kTd+Vb0nl2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 23:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1107 (0x453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Jun 28 23:51:45 2025 GMT Not After : Jul 5 23:51:45 2025 GMT Subject: CN=68608011-0458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e3:7d:1e:27:07:9a:ac:bb:a2:55:60:56:1d: a0:65:07:b4:75:e2:a0:f9:1b:2c:30:11:4b:49:67: 90:5c:94:5d:fe:09:22:d8:b3:bc:9b:19:b7:ef:b7: ee:dd:e5:62:14:39:63:16:12:33:e4:86:1d:32:53: 20:d8:25:d6:8c:d4:5b:11:9e:74:be:c2:0e:1b:9e: f3:cc:c3:80:09:b7:b3:54:20:7d:90:e8:54:3f:37: 1c:89:09:e3:46:b5:c6:54:73:e8:c6:74:56:ec:6f: 97:80:2f:43:a9:f8:f1:79:e5:2e:33:68:ea:d3:bb: 9b:be:1b:55:a6:fc:27:2d:0b:65:f7:7c:1b:3f:92: a2:65:42:3c:83:fb:41:ac:cf:62:d3:d1:df:f4:9b: c1:6e:30:6a:95:3e:57:ed:87:45:82:f6:2d:43:35: b1:a7:f9:7b:fc:16:19:ae:e7:ef:f9:a0:78:e4:75: 7c:f9:5e:01:c1:22:fe:53:dc:a8:9d:d4:1a:53:cb: 81:69:7a:51:a4:e5:d3:92:b1:de:74:04:b7:25:dc: d1:73:a8:20:2f:d4:05:0c:0a:44:e1:50:50:ca:96: 28:4c:b1:70:40:8d:72:22:42:bf:51:5e:e3:2e:a7: cc:42:cd:45:94:d2:06:f6:93:16:4f:8d:bf:ed:3e: d1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:AB:84:AB:D3:B1:FD:89:2E:A8:6A:CE:83:F4:20:8F:BB:17:C5:E4 X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:b6:62:c8:b2:39:3e:b0:1c:45:d8:9c:f3:73:71:c4:d5:17: a8:d5:d9:d7:80:5a:79:ee:b9:31:21:63:06:a1:ab:5b:3d:18: 71:41:cd:da:93:73:da:fb:7e:9f:c7:12:bb:bb:3c:c4:15:50: bd:e4:b1:a5:b1:34:90:d6:85:96:06:97:e0:bd:50:41:25:55: 15:18:ed:38:01:63:bf:39:5e:0f:b8:de:00:ac:3a:e0:cf:a2: 13:15:07:51:c1:48:9a:e5:15:a0:c4:60:a5:6e:3e:73:bd:a1: 7a:be:28:a0:b8:86:cb:f6:63:e4:bd:34:52:90:d5:ba:46:cf: af:58:9e:37:f1:63:95:2f:79:34:48:a3:f7:bf:95:b3:f5:0e: 37:01:e8:38:c6:a3:0c:a1:85:9c:a2:77:2b:41:d6:ea:a0:02: d3:9a:6f:6e:18:f5:c6:5e:3f:52:0b:7a:23:c4:94:90:a8:1c: 6a:ae:74:21:0a:8f:42:92:d4:e4:58:d8:8e:37:f6:04:7f:8a: 34:f5:b1:34:ae:db:22:f0:cf:db:c1:9f:03:d3:a7:e6:d1:e8: b2:19:69:63:97:b8:46:8e:45:98:bd:46:39:b7:d8:fa:65:8f: d9:49:14:f1:9f:44:03:a0:db:be:3c:d0:91:cf:74:70:f8:f2: 28:c7:8f:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjUwNjI4MjM1MTQ1WhcNMjUwNzA1MjM1MTQ1WjAYMRYwFAYD VQQDEw02ODYwODAxMS0wNDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqON9HicHmqy7olVgVh2gZQe0deKg+RssMBFLSWeQXJRd/gki2LO8mxm377fu 3eViFDljFhIz5IYdMlMg2CXWjNRbEZ50vsIOG57zzMOACbezVCB9kOhUPzcciQnj RrXGVHPoxnRW7G+XgC9DqfjxeeUuM2jq07ubvhtVpvwnLQtl93wbP5KiZUI8g/tB rM9i09Hf9JvBbjBqlT5X7YdFgvYtQzWxp/l7/BYZrufv+aB45HV8+V4BwSL+U9yo ndQaU8uBaXpRpOXTkrHedAS3JdzRc6ggL9QFDApE4VBQypYoTLFwQI1yIkK/UV7j LqfMQs1FlNIG9pMWT42/7T7RXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPurhKvT sf2JLqhqzoP0II+7F8XkMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJtmLIsjk+sBxF2Jzzc3HE1Reo1dnXgFp57rkxIWMGoatbPRhxQc3a k3Pa+36fxxK7uzzEFVC95LGlsTSQ1oWWBpfgvVBBJVUVGO04AWO/OV4PuN4ArDrg z6ITFQdRwUia5RWgxGClbj5zvaF6viiguIbL9mPkvTRSkNW6Rs+vWJ438WOVL3k0 SKP3v5Wz9Q43Aeg4xqMMoYWconcrQdbqoALTmm9uGPXGXj9SC3ojxJSQqBxqrnQh Co9CktTkWNiON/YEf4o09bE0rtsi8M/bwZ8D06fm0eiyGWljl7hGjkWYvUY5t9j6 ZY/ZSRTxn0QDoNu+PNCRz3Rw+PIox4+a -----END CERTIFICATE-----Generated at Sun Jun 29 17:38:16 2025 by rpki-client