$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: 8Jyq4EEExSdgtR2fcVdLGsVlIfX7znFdO0QWnX4EPcs= Subject key identifier: A0:50:13:EC:7D:6B:00:91:B2:AB:08:24:41:F2:CD:06:71:4A:B0:DE Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 0493 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 048A Signing time: Mon 03 Nov 2025 00:04:03 +0000 Manifest this update: Mon 03 Nov 2025 00:04:03 +0000 Manifest next update: Mon 10 Nov 2025 00:04:03 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: e+9Cp8rkTX6vtJCMSVcNAv37GvmiZfnwNQppT5tvLEo=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: bae2h1fyx3Q2HMMVl8xXKrMMVZUAe0Q5kTd+Vb0nl2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:04:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1171 (0x493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Nov 3 00:04:03 2025 GMT Not After : Nov 10 00:04:03 2025 GMT Subject: CN=6907f173-b212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:76:1c:e2:c4:01:5c:58:d5:9c:7a:45:81:d3: d9:32:77:d2:6a:b4:85:ac:96:6a:87:b5:e8:07:6c: f8:c1:0d:bf:24:0d:ac:23:ee:f9:3b:6c:e9:99:c7: 4a:02:6b:9c:e2:ba:a3:a4:3f:1d:0c:a8:ef:4f:fd: be:02:c0:fe:e0:a9:92:c4:ad:96:f6:df:b6:c9:c3: e6:11:fd:7e:6d:33:3f:ed:04:d9:70:70:11:48:5a: 1c:ae:3a:e7:f8:20:5e:79:33:5d:f1:b8:32:d7:82: 26:7f:c3:3e:34:af:22:6d:21:0a:a9:bb:d1:59:20: 3e:d8:88:b6:c7:d8:18:86:58:9d:2b:7b:b6:f3:b1: 4e:5b:5e:28:cd:2a:d8:b3:01:fa:c4:d8:ee:d3:a7: 58:de:98:bb:94:09:32:3b:83:41:4c:16:ab:9c:2f: e6:55:2d:8e:3e:e1:ff:7a:23:66:64:ef:67:46:86: 9a:3a:e4:e8:08:05:8c:65:34:cc:4c:94:4e:21:a7: 35:6d:c6:24:97:63:1f:d0:08:06:b9:c2:94:a9:56: 94:93:2a:6e:f2:c6:60:95:84:b0:4f:59:3d:d5:ba: 5c:47:db:3e:24:86:67:b4:1a:fe:f5:e0:72:19:aa: 5a:b2:99:d0:9a:64:8b:bd:aa:13:67:26:60:87:57: 8f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:50:13:EC:7D:6B:00:91:B2:AB:08:24:41:F2:CD:06:71:4A:B0:DE X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:68:1e:a0:37:f6:c9:39:99:66:69:43:a6:ba:cf:91:b2:d0: b8:66:87:06:51:dd:00:c6:9b:ba:83:1c:70:16:d4:60:54:a5: 54:27:83:bb:59:b1:f6:26:d8:20:f8:6b:9e:3b:e5:6f:a6:8a: 34:da:36:a5:4d:7f:99:cb:37:6e:9c:4d:74:b1:7e:81:9d:fe: e8:d0:b5:b6:18:2a:44:e0:d7:25:61:83:8f:14:25:96:0a:41: d0:19:71:d7:46:d9:4e:21:b2:07:c4:98:2d:7d:40:33:33:45: 8b:8b:72:9e:b8:51:93:76:de:fc:f4:7b:36:66:3e:f9:73:3d: 7a:be:6a:9a:c1:68:ad:24:df:90:98:f2:a6:d6:4b:cc:c7:e4: 5b:df:1d:08:96:33:a9:f8:1b:39:6a:6f:31:e5:e1:d8:34:bc: d8:a0:b9:58:cf:e3:d5:7f:cc:c3:d1:18:8a:98:11:ad:9c:7f: 04:54:72:dd:3b:a3:5d:bc:c3:04:41:c7:bb:b7:cd:a0:4b:5b: 78:33:23:f9:d8:7b:3e:7a:f9:f6:4c:61:98:29:21:f7:5c:7c: 2a:11:39:95:9d:69:ee:ab:6c:2d:ee:90:bb:78:f6:1b:ce:c5: 1a:11:69:46:db:09:90:ea:05:83:b0:a2:d4:e7:02:65:b0:9a: 40:05:b6:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjUxMTAzMDAwNDAzWhcNMjUxMTEwMDAwNDAzWjAYMRYwFAYD VQQDEw02OTA3ZjE3My1iMjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA53Yc4sQBXFjVnHpFgdPZMnfSarSFrJZqh7XoB2z4wQ2/JA2sI+75O2zpmcdK Amuc4rqjpD8dDKjvT/2+AsD+4KmSxK2W9t+2ycPmEf1+bTM/7QTZcHARSFocrjrn +CBeeTNd8bgy14Imf8M+NK8ibSEKqbvRWSA+2Ii2x9gYhlidK3u287FOW14ozSrY swH6xNju06dY3pi7lAkyO4NBTBarnC/mVS2OPuH/eiNmZO9nRoaaOuToCAWMZTTM TJROIac1bcYkl2Mf0AgGucKUqVaUkypu8sZglYSwT1k91bpcR9s+JIZntBr+9eBy GapaspnQmmSLvaoTZyZgh1eP6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBQE+x9 awCRsqsIJEHyzQZxSrDeMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVaB6gN/bJOZlmaUOmus+RstC4ZocGUd0Axpu6gxxwFtRgVKVUJ4O7 WbH2Jtgg+GueO+Vvpoo02jalTX+ZyzdunE10sX6Bnf7o0LW2GCpE4NclYYOPFCWW CkHQGXHXRtlOIbIHxJgtfUAzM0WLi3KeuFGTdt789Hs2Zj75cz16vmqawWitJN+Q mPKm1kvMx+Rb3x0IljOp+Bs5am8x5eHYNLzYoLlYz+PVf8zD0RiKmBGtnH8EVHLd O6NdvMMEQce7t82gS1t4MyP52Hs+evn2TGGYKSH3XHwqETmVnWnuq2wt7pC7ePYb zsUaEWlG2wmQ6gWDsKLU5wJlsJpABba5 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:24 2025 by rpki-client