$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: vgyByJmQX3GWDPfrxcaJdCIuQcY/YrmJ4qeRYwwu3ic= Subject key identifier: 77:A2:26:10:81:16:87:1C:1F:55:09:1D:F8:AA:8B:95:3C:B3:09:EE Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 0478 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 046F Signing time: Tue 09 Sep 2025 00:14:48 +0000 Manifest this update: Tue 09 Sep 2025 00:14:47 +0000 Manifest next update: Tue 16 Sep 2025 00:14:47 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: 04nliE40Y7K4LFKGOK3jtF31N2lmoB92hlcuq3xKSag=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: bae2h1fyx3Q2HMMVl8xXKrMMVZUAe0Q5kTd+Vb0nl2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:14:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1144 (0x478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Sep 9 00:14:47 2025 GMT Not After : Sep 16 00:14:47 2025 GMT Subject: CN=68bf7178-d9dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:bc:1b:90:99:26:06:fc:6a:ad:03:2e:5a:4a: d0:69:03:36:2b:53:91:bd:6d:58:b4:68:78:89:40: 27:cb:c3:85:14:61:d0:6f:d5:be:a1:24:0c:5a:f3: 5f:94:66:fa:02:45:78:e7:ea:db:3a:2c:fd:25:5e: db:e2:0c:55:53:16:88:6d:f4:31:4d:f1:f2:77:af: aa:8a:6f:9f:81:f8:c0:c1:ed:fe:b1:99:58:f0:23: 37:53:59:9b:17:a1:c5:47:5d:57:9d:9b:1b:72:37: 3c:93:46:53:75:c4:74:10:98:10:ed:a8:95:cb:11: e3:ca:3c:cb:88:22:9b:e3:e8:41:fd:f5:54:e0:a3: 6c:28:4c:68:b0:89:45:24:d7:9c:19:a8:75:a0:b6: cd:c2:5b:33:cc:b2:1a:68:e9:52:67:ca:49:47:d4: 41:ec:cd:4a:5d:63:0c:28:40:58:c4:b5:36:3b:5f: f4:fe:9b:2c:66:bf:b2:92:3f:3e:a0:05:de:8f:c0: 65:91:25:bf:29:12:98:a9:53:66:7d:04:16:57:6d: 54:65:0b:e3:b5:16:31:56:18:e0:79:f9:8f:0c:c0: 1c:ae:e9:df:31:22:50:f0:c7:de:68:8d:16:cb:5c: 75:66:d0:79:a9:0e:ab:22:97:53:64:9f:99:01:45: 4b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A2:26:10:81:16:87:1C:1F:55:09:1D:F8:AA:8B:95:3C:B3:09:EE X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:e3:30:0f:1f:59:bb:6f:98:3b:f7:66:b9:70:57:44:85:d2: 7a:a7:5d:08:56:9d:f3:d1:7b:48:0e:c2:45:08:08:01:cc:fb: 68:f0:1b:37:87:0f:bf:c9:18:3b:a7:3c:28:09:fa:f3:34:be: 9f:06:00:ab:01:d0:ee:8c:f9:d7:2a:19:83:c7:69:f4:75:85: fd:a4:9b:5a:80:ac:0b:5d:2f:73:1e:9e:ba:eb:1c:9f:88:48: dc:92:a0:66:93:b4:2c:12:6e:6d:5e:ae:90:7c:24:8e:3d:8d: 3a:7c:31:68:f3:5f:f0:db:52:79:0f:3e:99:f9:a6:94:0c:f4: 53:bb:a5:ff:11:8c:85:0b:76:4c:14:c0:0e:dd:37:4d:c1:71: fc:a8:d1:41:86:af:ca:74:f5:88:0c:73:1f:59:6c:15:56:56: e6:35:bd:1e:b3:a2:b1:ae:82:9e:fb:e3:a3:3f:01:38:aa:e1: 52:11:29:7b:b8:a7:0f:0b:9e:46:a8:4b:9c:eb:22:99:ff:7b: 67:2f:05:c5:01:c6:e4:0c:53:03:86:dc:53:83:a7:6c:ee:de: 47:8b:52:a0:62:28:65:32:04:4f:63:ef:4e:3c:85:1b:04:ef: 4c:eb:69:bd:d4:91:0e:6c:01:5b:04:25:d4:e9:d1:3e:7b:05: 28:a9:74:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjUwOTA5MDAxNDQ3WhcNMjUwOTE2MDAxNDQ3WjAYMRYwFAYD VQQDEw02OGJmNzE3OC1kOWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrwbkJkmBvxqrQMuWkrQaQM2K1ORvW1YtGh4iUAny8OFFGHQb9W+oSQMWvNf lGb6AkV45+rbOiz9JV7b4gxVUxaIbfQxTfHyd6+qim+fgfjAwe3+sZlY8CM3U1mb F6HFR11XnZsbcjc8k0ZTdcR0EJgQ7aiVyxHjyjzLiCKb4+hB/fVU4KNsKExosIlF JNecGah1oLbNwlszzLIaaOlSZ8pJR9RB7M1KXWMMKEBYxLU2O1/0/pssZr+ykj8+ oAXej8BlkSW/KRKYqVNmfQQWV21UZQvjtRYxVhjgefmPDMAcrunfMSJQ8MfeaI0W y1x1ZtB5qQ6rIpdTZJ+ZAUVLLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHeiJhCB FoccH1UJHfiqi5U8swnuMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa4zAPH1m7b5g792a5cFdEhdJ6p10IVp3z0XtIDsJFCAgBzPto8Bs3 hw+/yRg7pzwoCfrzNL6fBgCrAdDujPnXKhmDx2n0dYX9pJtagKwLXS9zHp666xyf iEjckqBmk7QsEm5tXq6QfCSOPY06fDFo81/w21J5Dz6Z+aaUDPRTu6X/EYyFC3ZM FMAO3TdNwXH8qNFBhq/KdPWIDHMfWWwVVlbmNb0es6KxroKe++OjPwE4quFSESl7 uKcPC55GqEuc6yKZ/3tnLwXFAcbkDFMDhtxTg6ds7t5Hi1KgYihlMgRPY+9OPIUb BO9M62m91JEObAFbBCXU6dE+ewUoqXR/ -----END CERTIFICATE-----Generated at Tue Sep 9 13:31:27 2025 by rpki-client