$ rpki-client -vvf rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft File: mKWpVZLATr7Thxa8Hc41F7exLQg.mft (raw, json) Hash identifier: WL1CR5yE0cxBo6BNiXEO1FO1ZjfMXX0tkyNBTnAoAlM= Subject key identifier: 2E:12:8F:07:FC:06:C3:26:95:8F:E4:E1:12:AE:C4:98:62:AB:BC:D5 Authority key identifier: 98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 Certificate issuer: /CN=A917B647/serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Certificate serial: 05AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft Manifest number: 05A9 Signing time: Mon 30 Jun 2025 23:33:24 +0000 Manifest this update: Mon 30 Jun 2025 23:33:24 +0000 Manifest next update: Mon 07 Jul 2025 23:33:24 +0000 Files and hashes: 1: mKWpVZLATr7Thxa8Hc41F7exLQg.crl (hash: TD38S/XUa3fWvA9lXFgnCBKHhhItFr4jpRz2C7EiWNc=) 2: BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa (hash: v0ecUflCYhVKX7WWipZns2LjtpkfsuPLOo5CXM1V1Zo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:33:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1455 (0x5af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B647, serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Validity Not Before: Jun 30 23:33:24 2025 GMT Not After : Jul 7 23:33:24 2025 GMT Subject: CN=68631ec4-3ad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1b:f9:ed:a2:57:b5:e9:78:ef:56:ec:63:b6: 20:f6:aa:61:ce:3c:b1:98:f6:d0:79:f3:84:a8:32: db:54:50:3d:88:ab:3e:b9:1e:c9:b9:dc:2b:9b:85: 52:df:6c:70:59:83:d7:97:e9:79:4b:f6:59:96:c8: e8:ab:91:a1:c5:15:20:ae:0d:52:a8:58:ea:32:f5: c1:a6:c9:38:d0:a4:de:9d:26:1f:eb:b9:4d:09:bd: 3b:99:c6:7e:2c:e9:a0:b4:ed:eb:05:c1:0a:1d:bc: b0:db:9f:34:54:86:19:b4:d3:06:e1:a7:15:61:0b: 44:94:33:a5:60:03:f4:98:56:2a:f7:6f:38:1b:10: eb:42:d1:59:d8:f5:f4:bf:1f:58:c2:d2:9b:1b:c8: de:ae:ad:7a:96:88:a5:fa:ac:a9:e2:20:76:91:58: 84:87:d5:d4:f6:60:df:a8:59:84:f6:e0:3b:0d:19: e1:69:42:dc:8b:12:9d:34:7e:85:04:04:ee:44:c3: 94:71:bd:74:18:d3:87:dc:fc:a5:af:e9:3f:21:b3: dd:03:ba:36:92:22:64:99:3f:6e:f8:c0:63:f1:5c: 54:2c:b2:cf:56:d7:6b:da:a2:7d:f1:7d:4c:f7:a2: a0:81:b7:cc:ef:68:76:a4:6f:3e:ca:1b:c9:5e:11: e6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:12:8F:07:FC:06:C3:26:95:8F:E4:E1:12:AE:C4:98:62:AB:BC:D5 X509v3 Authority Key Identifier: keyid:98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:fb:81:99:1f:ec:6c:07:2d:3b:7f:c2:d3:2b:0e:6d:0e:c4: c0:e5:86:e1:cb:50:af:0c:7b:70:77:d2:19:71:29:a6:21:1c: c8:f1:42:a2:48:fa:2b:cb:f1:ad:55:c1:f1:e9:06:96:d9:69: 7d:1b:a8:06:e9:b6:24:3e:20:aa:71:af:c1:7c:58:aa:6e:ee: d4:c4:d7:95:89:26:22:8b:bf:3e:d6:c8:f1:1c:91:49:6b:6b: fe:e0:93:0a:65:58:66:17:58:89:67:ea:f6:70:35:7f:5c:d1: db:e1:f4:aa:42:fc:a8:72:f2:a1:f1:6f:cf:c4:61:f4:54:31: 0b:ae:48:9a:e2:a6:59:0b:99:f0:49:41:5f:c4:60:6d:38:6d: 33:b0:0b:8f:57:4a:f4:31:11:0f:12:82:47:d2:f5:f9:d5:bc: e2:b5:d2:87:c9:73:07:3b:e8:3c:ac:72:74:45:ca:83:de:da: 9a:bf:13:38:08:2f:86:c8:c9:f5:c4:76:6b:8c:4e:59:49:a7: 15:06:07:20:62:12:18:1d:c4:d6:95:3d:78:49:7e:01:19:dd: db:58:fc:5f:6e:da:83:43:d6:a3:69:af:28:78:0a:6a:3d:3b: 0a:ee:57:c7:82:f2:8e:74:62:a0:11:99:4b:b3:f0:c2:57:fd: c6:3f:56:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2NDcxMTAvBgNVBAUTKDk4QTVBOTU1OTJDMDRFQkVEMzg3MTZCQzFEQ0UzNTE3 QjdCMTJEMDgwHhcNMjUwNjMwMjMzMzI0WhcNMjUwNzA3MjMzMzI0WjAYMRYwFAYD VQQDEw02ODYzMWVjNC0zYWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRv57aJXtel471bsY7Yg9qphzjyxmPbQefOEqDLbVFA9iKs+uR7Judwrm4VS 32xwWYPXl+l5S/ZZlsjoq5GhxRUgrg1SqFjqMvXBpsk40KTenSYf67lNCb07mcZ+ LOmgtO3rBcEKHbyw2580VIYZtNMG4acVYQtElDOlYAP0mFYq9284GxDrQtFZ2PX0 vx9YwtKbG8jerq16loil+qyp4iB2kViEh9XU9mDfqFmE9uA7DRnhaULcixKdNH6F BATuRMOUcb10GNOH3Pylr+k/IbPdA7o2kiJkmT9u+MBj8VxULLLPVtdr2qJ98X1M 96KggbfM72h2pG8+yhvJXhHmGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4Sjwf8 BsMmlY/k4RKuxJhiq7zVMB8GA1UdIwQYMBaAFJilqVWSwE6+04cWvB3ONRe3sS0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjY0Ny8wMTU3QkFERUQy NDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRyN1RoeGE4SGM0MUY3ZXhM UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21LV3BWWkxBVHI3VGh4YThIYzQxRjdleExRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjY0Ny8wMTU3QkFERUQyNDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRy N1RoeGE4SGM0MUY3ZXhMUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl+4GZH+xsBy07f8LTKw5tDsTA5Ybhy1CvDHtwd9IZcSmmIRzI8UKi SPory/GtVcHx6QaW2Wl9G6gG6bYkPiCqca/BfFiqbu7UxNeViSYii78+1sjxHJFJ a2v+4JMKZVhmF1iJZ+r2cDV/XNHb4fSqQvyocvKh8W/PxGH0VDELrkia4qZZC5nw SUFfxGBtOG0zsAuPV0r0MREPEoJH0vX51bzitdKHyXMHO+g8rHJ0RcqD3tqavxM4 CC+GyMn1xHZrjE5ZSacVBgcgYhIYHcTWlT14SX4BGd3bWPxfbtqDQ9ajaa8oeApq PTsK7lfHgvKOdGKgEZlLs/DCV/3GP1bz -----END CERTIFICATE-----Generated at Tue Jul 1 22:49:28 2025 by rpki-client