$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: oFzGoMZBsewYwUf+AyOG9GAzGc2xzR9SR3BCA3F0QhU= Subject key identifier: 25:94:FB:16:7A:4C:CD:DC:1C:03:D4:4F:2B:95:AD:63:A5:F2:2B:E7 Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 0433 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 042A Signing time: Fri 25 Apr 2025 00:09:53 +0000 Manifest this update: Fri 25 Apr 2025 00:09:52 +0000 Manifest next update: Fri 02 May 2025 00:09:52 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: enFiOHrp6C53Ahd/ggq9m7MGRtaU/UziI4Xgh5z7fNE=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: bae2h1fyx3Q2HMMVl8xXKrMMVZUAe0Q5kTd+Vb0nl2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1075 (0x433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Apr 25 00:09:52 2025 GMT Not After : May 2 00:09:52 2025 GMT Subject: CN=680ad2d1-9113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a7:aa:75:d3:77:14:4f:c5:22:cd:2a:d9:a7: 22:a8:d1:92:57:5b:8f:ee:42:ab:6f:ae:90:8d:9f: 11:a3:fa:5d:fc:b7:72:9a:09:46:87:87:09:a6:69: 5d:62:bb:4a:db:2c:f1:9e:df:80:fe:86:f1:d1:8e: ac:3d:6b:8e:79:4b:4c:af:22:84:b7:6e:00:b5:e6: 1c:dc:ad:c8:ef:34:2b:5c:02:06:f3:d3:8b:00:e7: 55:91:ab:2b:19:3a:16:ea:8b:bf:32:e8:3d:1f:c3: 8f:75:2c:7f:8d:ce:ef:5e:0e:3f:16:ec:68:8f:9d: 7c:8f:39:bf:10:d4:44:4a:46:ef:64:0e:f1:fe:86: c7:35:7a:21:66:3b:27:fe:b2:5d:19:ad:f5:30:27: f3:a4:fe:c5:f3:e2:4b:9a:cd:e0:14:68:a3:af:73: e2:9e:f0:1c:6d:9d:24:25:f4:48:7e:cd:47:36:68: 56:ae:58:90:9a:45:d2:f0:d5:6f:0f:b3:70:42:73: fe:28:3c:99:0e:0d:5a:09:0d:23:b6:11:87:99:27: c3:42:47:b2:d0:7a:38:60:c5:2f:4b:19:b0:1e:b1: 7f:89:82:22:e7:ca:5a:6f:e0:10:64:2b:ad:6e:d4: 54:93:00:60:12:51:21:b6:d0:d5:82:a6:51:65:e7: 70:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:94:FB:16:7A:4C:CD:DC:1C:03:D4:4F:2B:95:AD:63:A5:F2:2B:E7 X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:15:f3:bf:98:79:b3:6e:d9:dc:6b:ff:26:7e:fa:da:82:5e: c0:13:cc:20:5f:2b:88:5a:57:75:4d:29:c1:91:8b:71:3f:e6: 07:a2:2e:61:72:c7:1e:b3:69:87:35:8a:08:ff:ad:b5:ce:02: c0:54:91:99:30:83:c6:50:35:86:07:30:88:5d:61:c8:11:f2: 6d:cf:c2:0f:36:8b:24:7e:d0:1a:c3:9c:13:77:74:14:e1:ef: 22:84:08:8c:2c:de:37:46:61:cc:53:0a:cd:03:92:1c:3f:73: 44:18:fb:5c:0f:0a:73:c1:ca:8b:e0:44:2b:d4:e4:5b:e1:e1: 26:58:92:18:e5:4b:93:b3:36:1d:b1:d9:0c:b6:00:78:d7:bf: 78:46:4b:10:b0:61:58:30:31:57:fa:84:5f:9f:50:5b:f1:30: df:0a:5e:be:5f:4d:c5:cf:53:7c:52:31:62:35:36:22:32:74: 0f:39:35:50:08:4e:f1:15:87:e3:c5:9d:2b:56:a2:3a:36:58: 16:b0:cb:ce:6d:7b:7c:0d:32:3f:61:ee:c9:5d:e3:a2:7a:67: a1:84:56:0f:65:14:43:57:65:d0:58:d2:c6:fa:25:83:d7:81: a4:85:0a:b1:dd:66:4c:42:2e:ca:24:68:7f:43:24:81:e0:93: f1:58:99:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjUwNDI1MDAwOTUyWhcNMjUwNTAyMDAwOTUyWjAYMRYwFAYD VQQDEw02ODBhZDJkMS05MTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6eqddN3FE/FIs0q2aciqNGSV1uP7kKrb66QjZ8Ro/pd/LdymglGh4cJpmld YrtK2yzxnt+A/obx0Y6sPWuOeUtMryKEt24AteYc3K3I7zQrXAIG89OLAOdVkasr GToW6ou/Mug9H8OPdSx/jc7vXg4/Fuxoj518jzm/ENRESkbvZA7x/obHNXohZjsn /rJdGa31MCfzpP7F8+JLms3gFGijr3PinvAcbZ0kJfRIfs1HNmhWrliQmkXS8NVv D7NwQnP+KDyZDg1aCQ0jthGHmSfDQkey0Ho4YMUvSxmwHrF/iYIi58pab+AQZCut btRUkwBgElEhttDVgqZRZedw9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCWU+xZ6 TM3cHAPUTyuVrWOl8ivnMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDFfO/mHmzbtnca/8mfvragl7AE8wgXyuIWld1TSnBkYtxP+YHoi5h csces2mHNYoI/621zgLAVJGZMIPGUDWGBzCIXWHIEfJtz8IPNoskftAaw5wTd3QU 4e8ihAiMLN43RmHMUwrNA5IcP3NEGPtcDwpzwcqL4EQr1ORb4eEmWJIY5UuTszYd sdkMtgB41794RksQsGFYMDFX+oRfn1Bb8TDfCl6+X03Fz1N8UjFiNTYiMnQPOTVQ CE7xFYfjxZ0rVqI6NlgWsMvObXt8DTI/Ye7JXeOiemehhFYPZRRDV2XQWNLG+iWD 14GkhQqx3WZMQi7KJGh/QySB4JPxWJn0 -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:04 2025 by rpki-client