$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: OGXlXMtMdjjaTm2Ff3xziDpY7JHQ7kA4QecZMj0THtM= Subject key identifier: 01:A5:36:99:D7:5C:DB:DF:B7:A4:9E:09:3D:0C:0D:37:7F:6F:86:04 Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 0466 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 045D Signing time: Tue 05 Aug 2025 00:43:27 +0000 Manifest this update: Tue 05 Aug 2025 00:43:26 +0000 Manifest next update: Tue 12 Aug 2025 00:43:26 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: Do6ZfcpIldr1Ykw/QIgYdYX/xsKXNStq1ZLBF9PfKK4=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: bae2h1fyx3Q2HMMVl8xXKrMMVZUAe0Q5kTd+Vb0nl2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 00:43:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1126 (0x466) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Aug 5 00:43:26 2025 GMT Not After : Aug 12 00:43:26 2025 GMT Subject: CN=689153ae-59c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1a:ae:65:c0:7d:6b:8c:c5:16:a0:76:ab:8d: 09:d2:87:b0:02:09:62:3d:99:5b:d4:3d:48:e5:09: 9c:25:5f:70:a7:71:b5:32:5b:f5:ee:bf:e4:da:da: 42:b1:68:e0:89:92:66:c9:49:41:72:60:ec:c3:b2: a6:f7:e3:9c:83:85:1e:b7:b4:3b:46:43:0a:69:6f: 08:5a:59:27:3e:46:24:c0:48:94:9f:85:42:04:9e: b7:ce:af:bb:52:7d:f3:7a:da:e1:82:9c:37:2a:a9: 56:37:a4:26:d8:da:90:e3:97:8a:e0:b0:f8:5c:20: 37:f7:2a:32:23:ef:01:1e:7a:35:ce:78:35:0e:91: f1:ee:c1:12:fe:19:aa:6f:bf:f0:ca:5f:c7:1b:c8: ef:27:e5:19:86:ab:c2:26:b3:74:ef:cd:41:a4:95: 47:e5:b5:8b:48:1b:dd:0b:df:79:9f:a4:7b:96:74: 85:80:b4:56:99:34:ed:6c:ca:5c:b3:ec:9e:70:a2: 97:9e:f5:d1:ae:01:01:87:19:ae:d8:79:d9:b5:95: 23:45:b4:3a:d3:b6:1d:13:f5:d0:c7:8e:75:95:8d: 73:96:82:88:7c:aa:e5:2b:d5:cf:16:14:6b:ed:fd: 71:a8:39:7d:62:61:14:1d:08:12:7f:26:39:3f:ed: 18:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:A5:36:99:D7:5C:DB:DF:B7:A4:9E:09:3D:0C:0D:37:7F:6F:86:04 X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:66:7d:05:19:6d:dc:04:0b:15:13:e9:67:4d:23:72:94:fd: ff:74:22:ab:84:c6:ca:f7:c4:69:84:6e:ad:c5:48:b1:04:e0: d2:98:55:be:9f:48:81:dc:73:6e:f7:97:00:b6:7f:9c:9d:7b: f1:23:fe:21:f4:c2:69:70:fe:07:4c:56:1a:19:2d:6b:0d:de: 5b:9e:87:9a:4f:5b:0b:be:8e:ef:4f:85:83:c9:2a:0c:1b:04: 3b:fc:fe:eb:4d:51:64:06:00:0a:24:4a:ed:3f:95:d2:e5:4b: 1c:4e:b3:cc:37:04:9c:cf:59:e6:64:b6:fe:3d:a9:18:9a:94: 6c:68:ea:54:f9:ca:04:ac:27:97:4d:55:fe:87:18:31:4d:f0: c1:9f:e2:49:51:43:67:5e:27:bf:b2:95:3a:1b:04:bb:34:d0: d3:cb:98:5d:61:ab:12:c9:39:2d:16:f3:54:24:52:ea:7c:48: 25:79:5d:3b:3c:c3:a9:83:6b:6b:9b:de:ef:a3:d2:66:45:76: 6a:7c:da:f9:b1:3c:f3:44:e4:1b:2e:77:6e:81:99:a0:a6:64: 5e:c7:7c:ab:8d:ca:e0:08:63:69:e5:3c:11:ad:35:93:f2:ef: 91:c1:33:9a:ec:82:61:0f:1a:5e:8e:7a:21:81:d2:39:65:b4: f1:54:bf:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjUwODA1MDA0MzI2WhcNMjUwODEyMDA0MzI2WjAYMRYwFAYD VQQDEw02ODkxNTNhZS01OWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhquZcB9a4zFFqB2q40J0oewAgliPZlb1D1I5QmcJV9wp3G1Mlv17r/k2tpC sWjgiZJmyUlBcmDsw7Km9+Ocg4Uet7Q7RkMKaW8IWlknPkYkwEiUn4VCBJ63zq+7 Un3zetrhgpw3KqlWN6Qm2NqQ45eK4LD4XCA39yoyI+8BHno1zng1DpHx7sES/hmq b7/wyl/HG8jvJ+UZhqvCJrN0781BpJVH5bWLSBvdC995n6R7lnSFgLRWmTTtbMpc s+yecKKXnvXRrgEBhxmu2HnZtZUjRbQ607YdE/XQx451lY1zloKIfKrlK9XPFhRr 7f1xqDl9YmEUHQgSfyY5P+0YpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGlNpnX XNvft6SeCT0MDTd/b4YEMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnZn0FGW3cBAsVE+lnTSNylP3/dCKrhMbK98RphG6txUixBODSmFW+ n0iB3HNu95cAtn+cnXvxI/4h9MJpcP4HTFYaGS1rDd5bnoeaT1sLvo7vT4WDySoM GwQ7/P7rTVFkBgAKJErtP5XS5UscTrPMNwScz1nmZLb+PakYmpRsaOpU+coErCeX TVX+hxgxTfDBn+JJUUNnXie/spU6GwS7NNDTy5hdYasSyTktFvNUJFLqfEgleV07 PMOpg2trm97vo9JmRXZqfNr5sTzzROQbLndugZmgpmRex3yrjcrgCGNp5TwRrTWT 8u+RwTOa7IJhDxpejnohgdI5ZbTxVL/6 -----END CERTIFICATE-----Generated at Wed Aug 6 16:06:24 2025 by rpki-client