$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: dhDDOo/sp1AyzZcd/hNqceGIrGR115ujJtalGh/uy+I= Subject key identifier: 1D:B5:E1:0E:FB:9D:E7:E8:E0:08:8D:64:7F:89:A4:9F:E3:EA:95:5F Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 044B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 0442 Signing time: Thu 12 Jun 2025 23:53:22 +0000 Manifest this update: Thu 12 Jun 2025 23:53:21 +0000 Manifest next update: Thu 19 Jun 2025 23:53:21 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: V2yQPkIVrlOCr6hEIKww6OkveDlavIAnkwrYxVwc8WY=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: bae2h1fyx3Q2HMMVl8xXKrMMVZUAe0Q5kTd+Vb0nl2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1099 (0x44b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Jun 12 23:53:21 2025 GMT Not After : Jun 19 23:53:21 2025 GMT Subject: CN=684b6871-928e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e9:62:23:fa:88:a6:f3:04:3e:d7:75:bf:c5: f8:b8:d0:c9:cb:36:92:af:6e:68:12:ef:a6:6d:2a: 7f:14:43:ac:72:b3:6b:39:c2:4d:e6:14:d4:a3:c7: a3:de:ea:98:01:92:93:b2:b1:f4:0d:a9:c9:d3:24: 0f:54:13:40:9b:b5:3b:f6:6f:36:e9:d7:f8:eb:fd: de:fd:1a:c4:d0:c6:7e:1e:d9:be:a5:fe:aa:36:cf: 46:c8:6f:a2:0f:44:0f:67:eb:a3:d0:de:50:d7:42: 63:f0:94:51:bc:be:8d:42:13:05:4b:1c:b5:51:00: 76:97:6b:18:3e:b7:eb:b3:88:a9:35:1a:fd:8a:33: 26:72:89:89:e7:19:24:87:6d:73:9f:49:23:dc:4f: ec:51:f1:ec:c9:a9:66:ca:9a:02:f2:28:80:e2:55: d0:3d:18:b2:4e:b9:06:48:19:fc:47:c7:48:85:ba: b5:37:f7:30:56:a7:76:52:a2:e1:53:1d:f4:7e:1d: a5:64:c4:a4:4a:18:ab:a4:30:7b:80:bd:e3:ef:99: dc:06:df:37:8b:71:e1:b4:26:a6:f9:4b:65:e2:11: 9e:6e:79:06:8e:c3:b6:07:df:65:25:ce:a0:c5:7d: 99:2b:3e:4a:88:69:35:9f:f9:4d:32:b4:10:42:93: b6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:B5:E1:0E:FB:9D:E7:E8:E0:08:8D:64:7F:89:A4:9F:E3:EA:95:5F X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:fe:66:7e:36:d9:bb:93:12:07:cd:7f:79:b8:88:ae:93:32: 23:da:03:83:9c:d1:bc:6d:d1:ae:f4:e1:5c:e8:c3:47:5c:f1: 80:f4:85:4a:2c:cc:cf:eb:1a:75:44:3b:f8:bf:50:67:32:68: 98:0f:4a:f0:0c:da:09:a5:45:77:d7:9d:c3:1d:bd:46:41:d2: ee:d7:27:18:b1:07:cf:22:fd:43:de:ca:1e:a2:43:8d:78:e5: 9b:88:b5:d7:d0:ee:51:0b:93:7b:f6:3c:14:94:35:56:60:ce: 1a:43:38:50:c9:68:cf:9a:01:41:ac:20:bd:0f:71:25:87:33: cc:26:7d:70:f0:5f:b7:c2:6d:3f:74:f9:97:9f:77:7e:50:c7: 90:af:fb:cd:1b:f9:4d:7a:64:84:da:94:55:c1:6d:99:59:53: 59:67:49:d2:35:1b:1e:4b:e6:ca:ec:11:37:4c:36:4f:1e:6c: d4:5d:53:88:d0:9b:5e:e1:ed:38:77:a1:a7:e9:c0:09:ab:62: 1c:c5:9c:be:41:64:e3:84:a4:5a:27:8a:ea:7b:f7:2c:56:d1: f3:7b:6f:f8:7d:58:d5:a4:01:c2:bb:76:11:6c:c0:8f:42:cd: ea:88:63:0f:d1:b0:41:02:e9:80:3e:7e:51:a2:0a:4a:8d:84: ca:ec:d3:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjUwNjEyMjM1MzIxWhcNMjUwNjE5MjM1MzIxWjAYMRYwFAYD VQQDEw02ODRiNjg3MS05MjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uliI/qIpvMEPtd1v8X4uNDJyzaSr25oEu+mbSp/FEOscrNrOcJN5hTUo8ej 3uqYAZKTsrH0DanJ0yQPVBNAm7U79m826df46/3e/RrE0MZ+Htm+pf6qNs9GyG+i D0QPZ+uj0N5Q10Jj8JRRvL6NQhMFSxy1UQB2l2sYPrfrs4ipNRr9ijMmcomJ5xkk h21zn0kj3E/sUfHsyalmypoC8iiA4lXQPRiyTrkGSBn8R8dIhbq1N/cwVqd2UqLh Ux30fh2lZMSkShirpDB7gL3j75ncBt83i3HhtCam+Utl4hGebnkGjsO2B99lJc6g xX2ZKz5KiGk1n/lNMrQQQpO2dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB214Q77 nefo4AiNZH+JpJ/j6pVfMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG/mZ+Ntm7kxIHzX95uIiukzIj2gODnNG8bdGu9OFc6MNHXPGA9IVK LMzP6xp1RDv4v1BnMmiYD0rwDNoJpUV3153DHb1GQdLu1ycYsQfPIv1D3soeokON eOWbiLXX0O5RC5N79jwUlDVWYM4aQzhQyWjPmgFBrCC9D3ElhzPMJn1w8F+3wm0/ dPmXn3d+UMeQr/vNG/lNemSE2pRVwW2ZWVNZZ0nSNRseS+bK7BE3TDZPHmzUXVOI 0Jte4e04d6Gn6cAJq2IcxZy+QWTjhKRaJ4rqe/csVtHze2/4fVjVpAHCu3YRbMCP Qs3qiGMP0bBBAumAPn5RogpKjYTK7NNu -----END CERTIFICATE-----Generated at Sat Jun 14 17:25:39 2025 by rpki-client