$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: 1oZWYLeCR0Pke2DvzYrK4OWOlpHUDcU52UqfteGAd2g= Subject key identifier: 84:B2:F6:87:0F:F7:01:3D:68:2D:63:1F:98:36:33:80:41:23:CE:CD Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 04FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 04F0 Signing time: Tue 12 May 2026 23:53:20 +0000 Manifest this update: Tue 12 May 2026 23:53:19 +0000 Manifest next update: Tue 19 May 2026 23:53:19 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: k+n4cEQf3f6iVtUziOtEtlZSXK0w0/tJ3CPI+J6ECa8=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: 8RK3wMUcaIlDFax8CoO7B3J+G4IwltOjR9G0Tg+XrZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:31:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1276 (0x4fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: May 12 23:53:19 2026 GMT Not After : May 19 23:53:19 2026 GMT Subject: CN=6a03bd70-5c53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d4:99:87:46:58:6f:dd:bc:c6:82:a2:70:d6: c1:5f:dc:72:24:a2:7c:0f:89:f9:f6:01:e5:66:96: 41:5b:12:9a:0b:83:02:41:67:87:5c:57:43:36:1c: 56:b1:e7:43:2f:20:72:f0:6c:ae:c2:f5:ba:de:99: 8f:61:a2:29:23:36:8e:44:4b:c3:c6:28:4c:5a:d7: 64:98:7f:e6:c5:33:5e:4a:af:2f:df:5e:b8:cb:69: 45:72:fd:47:51:0c:50:e6:12:c7:70:a9:d6:3e:c6: 6c:a8:e3:d8:66:3d:3d:d8:c9:5d:5a:f3:94:c5:98: af:44:1e:df:f6:8c:7b:f4:e6:aa:fa:a9:45:3b:06: 6a:da:cc:64:97:6a:9a:1c:e4:31:44:1a:3f:7e:d9: 80:45:58:7d:cb:5c:57:53:12:97:52:6f:7d:6b:7d: fc:30:db:93:f0:52:09:88:14:7a:aa:ec:95:76:09: 08:f1:29:a2:61:f7:a8:03:43:5d:20:b0:c9:9a:ac: 6f:38:94:be:a9:e3:b2:98:10:3e:18:6c:f8:4f:ef: 97:37:4d:88:2b:42:85:6c:75:b9:3e:a4:da:9d:80: e4:38:ec:6a:cd:81:2d:29:2c:ad:2c:9e:a5:88:77: af:61:73:91:0c:b2:b6:cd:6a:08:b9:05:a0:5c:c4: af:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B2:F6:87:0F:F7:01:3D:68:2D:63:1F:98:36:33:80:41:23:CE:CD X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:c8:59:d7:83:7a:03:5a:34:6a:ce:56:08:81:9d:61:28:7c: 21:f3:29:92:b7:6b:7f:25:43:94:a4:61:a8:c8:1e:eb:51:b5: 51:2f:46:21:ff:31:7d:a4:84:c5:f8:16:05:91:2b:26:42:f0: cc:56:98:83:51:ec:c7:b5:b9:10:02:b8:fd:34:ac:6a:d7:40: 32:1b:2a:01:fc:a3:2e:e7:81:66:1e:8a:77:0e:b9:0d:b4:31: 9b:24:da:19:2c:ea:b1:0d:90:21:5c:39:81:5a:1c:2b:37:7f: a7:c2:84:93:fc:3c:f9:04:38:3a:44:18:91:c4:a2:1c:eb:5d: bb:54:cc:44:82:9e:06:4f:da:0c:1c:cb:91:b4:4b:c7:2d:a9: 41:e8:cf:46:37:e8:1d:37:d5:f0:1b:f5:81:08:66:cb:78:a2: c1:d0:2c:ae:5f:86:4f:2d:fb:f0:c7:0b:be:f8:35:3e:c8:b1: 7c:95:56:3a:2c:34:33:fb:c2:d7:f9:66:68:59:79:5e:e8:d9: 64:a0:3a:95:28:89:8d:4b:f3:a4:0e:90:da:e3:ac:5f:a7:73: 39:35:0a:e1:31:58:ac:3f:f4:e7:e1:bb:a6:8f:f5:24:c7:d7: 38:d0:49:78:b6:0f:0d:32:67:7a:46:39:5e:82:db:e8:96:f2: 3a:f3:df:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjYwNTEyMjM1MzE5WhcNMjYwNTE5MjM1MzE5WjAYMRYwFAYD VQQDEw02YTAzYmQ3MC01YzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAodSZh0ZYb928xoKicNbBX9xyJKJ8D4n59gHlZpZBWxKaC4MCQWeHXFdDNhxW sedDLyBy8GyuwvW63pmPYaIpIzaOREvDxihMWtdkmH/mxTNeSq8v3164y2lFcv1H UQxQ5hLHcKnWPsZsqOPYZj092MldWvOUxZivRB7f9ox79Oaq+qlFOwZq2sxkl2qa HOQxRBo/ftmARVh9y1xXUxKXUm99a338MNuT8FIJiBR6quyVdgkI8SmiYfeoA0Nd ILDJmqxvOJS+qeOymBA+GGz4T++XN02IK0KFbHW5PqTanYDkOOxqzYEtKSytLJ6l iHevYXORDLK2zWoIuQWgXMSvpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFISy9ocP 9wE9aC1jH5g2M4BBI87NMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAl8hZ14N6A1o0as5WCIGdYSh8IfMpkrdrfyVDlKRhqMge61G1US9GIf8xfaSE xfgWBZErJkLwzFaYg1Hsx7W5EAK4/TSsatdAMhsqAfyjLueBZh6Kdw65DbQxmyTa GSzqsQ2QIVw5gVocKzd/p8KEk/w8+QQ4OkQYkcSiHOtdu1TMRIKeBk/aDBzLkbRL xy2pQejPRjfoHTfV8Bv1gQhmy3iiwdAsrl+GTy378McLvvg1PsixfJVWOiw0M/vC 1/lmaFl5XujZZKA6lSiJjUvzpA6Q2uOsX6dzOTUK4TFYrD/05+G7po/1JMfXONBJ eLYPDTJnekY5XoLb6JbyOvPfeQ== -----END CERTIFICATE-----Generated at Wed May 13 03:20:36 2026 by rpki-client