$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: RfeoInGw2MOa2CDKJl5BgNFmRFMZsUR2pF5bfG/B7HQ= Subject key identifier: 46:62:49:24:1C:2C:38:4E:32:69:38:96:BF:5D:15:99:24:EA:4B:30 Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 04D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 04CB Signing time: Mon 02 Mar 2026 00:28:09 +0000 Manifest this update: Mon 02 Mar 2026 00:28:06 +0000 Manifest next update: Mon 09 Mar 2026 00:28:06 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: q3PtuWbA0hDmCyZXdCk8l+b4uU0K78Kf7Ve0Q39Pp3A=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: 8RK3wMUcaIlDFax8CoO7B3J+G4IwltOjR9G0Tg+XrZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:28:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1239 (0x4d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Mar 2 00:28:06 2026 GMT Not After : Mar 9 00:28:06 2026 GMT Subject: CN=69a4d999-566b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:df:7a:62:c5:08:c3:db:2a:7b:7c:b9:da:39: 3f:a7:e5:b3:6a:42:56:61:ad:75:45:72:54:50:f4: 05:cf:71:38:1e:01:40:63:43:3f:49:df:74:1b:77: 50:72:25:39:04:3b:4a:fe:bd:5e:61:14:ca:13:8c: b2:30:6b:e8:51:46:51:bd:21:03:9b:1f:b3:6a:a5: 5c:3a:80:26:72:81:61:0b:a9:a6:3d:02:fa:2a:45: 58:ac:37:d8:c6:72:fc:d2:08:89:4b:46:56:69:cc: 66:4b:d6:ee:6b:bb:00:98:69:d3:a1:38:53:7e:da: 52:3a:d2:34:16:df:a6:71:01:5d:f3:ec:14:62:19: 63:c7:96:59:6d:44:5d:3b:b3:d7:0d:32:98:8a:a9: 34:09:88:13:20:02:8e:5d:d0:cc:b4:1b:c8:9e:a6: 94:32:c5:d9:d2:e1:db:84:5b:2e:59:5e:be:ca:26: 44:fc:a7:1f:cf:a5:76:21:14:ca:67:f4:4c:66:77: 82:81:34:1c:4f:c6:a8:15:5f:95:5d:4d:d7:0b:64: c7:bf:38:28:fb:0b:96:a8:97:71:0c:b5:33:92:90: 81:23:c5:34:a7:7e:ee:99:7e:98:b0:ab:91:28:ce: 6f:66:76:37:9c:55:8e:47:25:0a:23:d5:f9:8b:82: 78:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:62:49:24:1C:2C:38:4E:32:69:38:96:BF:5D:15:99:24:EA:4B:30 X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:fb:85:a9:40:81:35:84:0f:e2:e6:6a:68:9f:84:61:d5:9d: 0c:67:aa:a2:ba:10:ee:43:4c:ab:d3:ba:87:b3:55:c1:dc:e6: 2e:3c:3d:72:bc:cb:83:7b:e7:70:93:ab:10:45:7c:b8:44:f6: 53:e2:16:83:e0:a9:3b:66:ca:1f:65:ec:1e:13:ba:a6:f2:4b: 97:9c:69:e8:74:84:c5:18:13:12:5e:9b:26:af:47:bd:d4:74: 15:79:ec:7c:1d:92:a6:e6:65:e3:c3:24:c6:8c:32:fa:12:35: 26:78:f4:4f:ca:1b:89:26:3d:10:db:ef:8c:77:fb:f1:41:ef: c3:10:3f:1a:2c:67:c6:d1:bd:5b:93:f8:d8:c6:60:38:3b:cb: 62:7b:d2:8c:56:36:02:45:78:9e:08:69:1b:9f:ef:5b:fa:c6: 50:ca:ad:10:47:e9:e7:39:5e:51:d3:1a:de:61:25:59:4a:4c: f1:9a:09:0a:f0:53:79:5e:a2:2d:9b:d5:05:fb:da:4c:4d:6f: d7:d2:50:fd:d3:5c:99:09:41:b0:98:f9:ee:00:52:b7:26:27: 66:b1:65:e6:b4:b5:f3:c4:b9:6f:d7:3c:fd:8e:60:52:86:09: f0:6c:66:71:c7:b0:64:06:92:fb:95:70:da:80:4d:8f:a0:80: f6:76:ba:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjYwMzAyMDAyODA2WhcNMjYwMzA5MDAyODA2WjAYMRYwFAYD VQQDEw02OWE0ZDk5OS01NjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArt96YsUIw9sqe3y52jk/p+WzakJWYa11RXJUUPQFz3E4HgFAY0M/Sd90G3dQ ciU5BDtK/r1eYRTKE4yyMGvoUUZRvSEDmx+zaqVcOoAmcoFhC6mmPQL6KkVYrDfY xnL80giJS0ZWacxmS9bua7sAmGnToThTftpSOtI0Ft+mcQFd8+wUYhljx5ZZbURd O7PXDTKYiqk0CYgTIAKOXdDMtBvInqaUMsXZ0uHbhFsuWV6+yiZE/Kcfz6V2IRTK Z/RMZneCgTQcT8aoFV+VXU3XC2THvzgo+wuWqJdxDLUzkpCBI8U0p37umX6YsKuR KM5vZnY3nFWORyUKI9X5i4J4/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEZiSSQc LDhOMmk4lr9dFZkk6kswMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIvuFqUCBNYQP4uZqaJ+EYdWdDGeqoroQ7kNMq9O6h7NVwdzmLjw9crzLg3vn cJOrEEV8uET2U+IWg+CpO2bKH2XsHhO6pvJLl5xp6HSExRgTEl6bJq9HvdR0FXns fB2SpuZl48Mkxowy+hI1Jnj0T8obiSY9ENvvjHf78UHvwxA/GixnxtG9W5P42MZg ODvLYnvSjFY2AkV4nghpG5/vW/rGUMqtEEfp5zleUdMa3mElWUpM8ZoJCvBTeV6i LZvVBfvaTE1v19JQ/dNcmQlBsJj57gBStyYnZrFl5rS188S5b9c8/Y5gUoYJ8Gxm ccewZAaS+5Vw2oBNj6CA9na6gg== -----END CERTIFICATE-----Generated at Mon Mar 2 07:29:02 2026 by rpki-client