$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: uQAp9vfqM2wmZHdQlW7EOnHH0agb2q7xtM29M1sXdw8= Subject key identifier: D3:D5:8B:95:F7:EB:B8:E4:D7:E0:42:38:A0:FE:CC:83:2D:53:BF:69 Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 0444 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 043B Signing time: Sat 31 May 2025 00:32:17 +0000 Manifest this update: Sat 31 May 2025 00:32:17 +0000 Manifest next update: Sat 07 Jun 2025 00:32:17 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: GyhJHEKlKkSES0916qeOLqNbzIgaEaK1UcGwRlkwI5w=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: bae2h1fyx3Q2HMMVl8xXKrMMVZUAe0Q5kTd+Vb0nl2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:32:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1092 (0x444) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: May 31 00:32:17 2025 GMT Not After : Jun 7 00:32:17 2025 GMT Subject: CN=683a4e11-7ac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:98:ca:17:9f:1a:e8:47:0e:0a:fa:4d:2e:89: ce:e9:75:37:3b:06:2d:41:7a:74:a5:d4:2a:89:ec: ed:a7:23:e3:b9:34:6f:fa:76:4e:28:3b:e3:45:07: 44:16:6f:c9:61:ff:ed:8f:ed:14:f8:e4:98:01:9c: 34:7f:e2:ea:04:3e:05:c8:6b:ad:97:0d:8f:c8:05: 6f:f5:ff:92:7d:f2:58:48:cd:9d:c0:62:cb:09:64: 96:9c:9a:00:9a:0b:dd:f7:1c:bc:cd:31:15:aa:1a: 22:43:9e:61:9c:b8:57:5e:a3:06:2e:f7:cc:52:6d: 36:e4:36:bc:ea:d7:af:22:74:25:68:1d:a6:7f:7c: 72:f5:30:e4:c4:9b:4f:15:46:40:03:89:e3:38:6a: 87:95:b0:dc:69:17:0f:01:4b:3d:ff:7d:d2:7b:59: 98:3a:ae:2e:69:a0:3a:72:3d:ef:2a:02:81:ed:27: a4:a5:e8:67:fe:aa:cf:fe:5a:19:b2:29:41:f6:2a: 24:d9:d5:db:62:f1:33:eb:ad:c5:d2:8f:ff:b1:db: d9:25:d7:49:8a:d2:90:c6:43:2c:b4:85:3a:f2:9e: fe:dd:ae:39:50:63:c7:05:a5:e7:4e:86:a7:bd:37: 3d:09:46:27:7f:f1:55:60:04:4a:b1:4e:d6:53:95: 6e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D5:8B:95:F7:EB:B8:E4:D7:E0:42:38:A0:FE:CC:83:2D:53:BF:69 X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:25:90:03:f1:7f:d2:a6:20:10:a7:59:11:af:27:76:14:89: 1d:3c:ef:31:e4:5b:86:f9:e4:54:3a:39:1d:ab:24:eb:61:45: 13:f1:c6:77:34:84:86:28:45:db:b3:5d:7a:4d:66:53:2a:84: 61:65:c9:01:42:39:1d:cb:28:41:7e:4b:75:2f:e4:80:81:17: c8:b6:f3:e7:01:2a:0d:ca:da:54:9b:4f:3b:b2:e1:0d:17:b8: 7f:f8:d6:27:67:e7:89:a8:fa:49:2d:b6:dd:58:d2:1e:30:97: eb:db:8c:0b:01:10:52:08:5c:d2:f1:b4:7d:f6:b3:57:62:e7: 1c:77:95:5f:f8:59:dc:68:4d:b2:1e:ee:0f:8a:42:74:ec:0e: 75:60:72:da:cf:19:12:08:ed:88:01:f8:a8:d2:58:28:c1:7b: 0a:6a:d1:04:00:24:80:67:2d:aa:b5:3f:dc:d7:0e:27:4f:93: d4:d8:7c:a4:3e:fe:62:93:36:8a:e4:05:f3:5b:73:34:af:f3: bf:37:a2:bf:35:df:c4:31:03:d1:45:79:4e:8e:be:e0:d7:de: 85:d9:19:17:31:ce:e4:9c:be:7d:dc:32:14:d0:2f:fa:bf:eb: 76:f4:35:da:3d:7a:4c:04:47:4c:2b:9c:ca:54:d3:73:be:6a: a9:89:8f:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjUwNTMxMDAzMjE3WhcNMjUwNjA3MDAzMjE3WjAYMRYwFAYD VQQDEw02ODNhNGUxMS03YWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpjKF58a6EcOCvpNLonO6XU3OwYtQXp0pdQqieztpyPjuTRv+nZOKDvjRQdE Fm/JYf/tj+0U+OSYAZw0f+LqBD4FyGutlw2PyAVv9f+SffJYSM2dwGLLCWSWnJoA mgvd9xy8zTEVqhoiQ55hnLhXXqMGLvfMUm025Da86tevInQlaB2mf3xy9TDkxJtP FUZAA4njOGqHlbDcaRcPAUs9/33Se1mYOq4uaaA6cj3vKgKB7Sekpehn/qrP/loZ silB9iok2dXbYvEz663F0o//sdvZJddJitKQxkMstIU68p7+3a45UGPHBaXnToan vTc9CUYnf/FVYARKsU7WU5VuSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNPVi5X3 67jk1+BCOKD+zIMtU79pMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALJZAD8X/SpiAQp1kRryd2FIkdPO8x5FuG+eRUOjkdqyTrYUUT8cZ3 NISGKEXbs116TWZTKoRhZckBQjkdyyhBfkt1L+SAgRfItvPnASoNytpUm087suEN F7h/+NYnZ+eJqPpJLbbdWNIeMJfr24wLARBSCFzS8bR99rNXYuccd5Vf+FncaE2y Hu4PikJ07A51YHLazxkSCO2IAfio0lgowXsKatEEACSAZy2qtT/c1w4nT5PU2Hyk Pv5ikzaK5AXzW3M0r/O/N6K/Nd/EMQPRRXlOjr7g196F2RkXMc7knL593DIU0C/6 v+t29DXaPXpMBEdMK5zKVNNzvmqpiY8K -----END CERTIFICATE-----Generated at Sat May 31 16:30:38 2025 by rpki-client