$ rpki-client -vvf rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft File: mKWpVZLATr7Thxa8Hc41F7exLQg.mft (raw, json) Hash identifier: c8kPCge8VNp8yBdowheV6g+78TqvmOc/6sJvEer3Sns= Subject key identifier: 24:E3:5F:46:85:23:62:76:E2:8A:F8:BC:5D:60:2D:0C:4F:79:87:0A Authority key identifier: 98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 Certificate issuer: /CN=A917B647/serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Certificate serial: 05E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft Manifest number: 05E1 Signing time: Sun 19 Oct 2025 00:37:55 +0000 Manifest this update: Sun 19 Oct 2025 00:37:54 +0000 Manifest next update: Sun 26 Oct 2025 00:37:54 +0000 Files and hashes: 1: mKWpVZLATr7Thxa8Hc41F7exLQg.crl (hash: vOaRxQIKoJsJkj8K8tTEyEtCWMPUlAOeZhoh/8jabIQ=) 2: BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa (hash: v0ecUflCYhVKX7WWipZns2LjtpkfsuPLOo5CXM1V1Zo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:37:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1511 (0x5e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B647, serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Validity Not Before: Oct 19 00:37:54 2025 GMT Not After : Oct 26 00:37:54 2025 GMT Subject: CN=68f432e3-e421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8d:42:a4:58:4a:61:e8:a6:de:fe:e0:40:06: 3f:ab:73:08:2b:50:4c:ce:b2:3b:d8:eb:4f:eb:e1: 1f:e4:18:e4:50:a5:5f:e6:8e:22:d3:2e:87:7e:e0: 2b:df:53:a1:49:b1:15:b3:50:0d:36:4c:da:9c:e1: 00:93:f1:ab:d4:69:f2:41:61:3e:a8:7f:47:07:3e: 32:78:9b:1e:b8:c1:9b:06:e4:8e:94:99:64:40:07: e8:74:2f:6a:76:0b:6c:0a:ba:18:5d:3b:11:11:17: 85:01:78:7d:67:19:48:77:37:67:6c:0b:91:67:d9: d6:c5:4a:98:64:23:e2:45:4c:0f:71:82:89:90:2f: b8:7f:b6:bb:5a:e6:55:23:f8:1b:fe:ea:c6:2c:0f: f7:fa:4d:4e:b7:28:d0:a2:7f:04:d6:ca:68:79:a9: 31:fa:64:fb:e1:40:89:0a:aa:05:55:76:e6:1c:37: 20:85:c7:8d:51:c7:c0:0e:7a:85:f0:4e:c7:67:72: 57:cc:28:4d:11:db:5f:51:b1:e8:62:9f:32:81:49: 64:a5:de:d8:f3:a3:63:c9:68:2e:71:ca:f0:21:c1: af:37:5a:96:20:73:0b:f5:d4:cc:d3:26:12:4f:be: 3b:a2:93:e9:e2:83:db:d6:ee:96:0c:e4:c4:9c:bd: b3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E3:5F:46:85:23:62:76:E2:8A:F8:BC:5D:60:2D:0C:4F:79:87:0A X509v3 Authority Key Identifier: keyid:98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:14:a7:a7:12:fc:30:4b:03:89:25:43:5a:dc:b7:7c:24:7c: ae:95:f0:7a:58:be:13:6a:af:28:0d:4d:56:85:8d:55:cc:ef: 71:6b:60:a3:9a:a1:eb:f9:c6:db:f2:21:8d:16:be:3f:b4:25: dc:a0:13:3d:33:a4:2c:8e:3a:c7:1c:7e:1d:d0:dd:00:8f:b4: 3e:d4:0a:32:90:d3:99:20:9c:bc:77:d4:00:15:b7:75:15:1e: ea:f0:54:5b:ca:0e:d2:11:a6:47:b2:66:c9:3f:f3:d1:b4:2c: 27:6c:ba:46:37:97:78:68:6a:fd:66:42:1b:8c:ca:3a:13:27: 33:7e:6e:9e:08:0f:3a:26:50:dc:60:30:f8:09:48:4d:b2:d8: 53:e3:98:54:70:df:72:ae:18:a3:51:86:bf:72:21:91:c5:bc: 5b:32:27:cb:ed:2d:af:c4:44:b2:f5:58:48:b0:e1:0d:99:39: 2f:d2:df:4d:9c:5c:66:b3:d6:7b:7d:70:10:00:75:55:0d:6d: 44:b7:81:ee:2f:e7:7f:80:2c:30:34:36:1d:29:20:59:ba:25: f6:18:c2:2a:ad:5b:bf:c9:48:93:5f:3a:fe:46:40:2f:0f:62: d8:97:09:f3:83:b8:3d:5a:e1:89:82:02:ee:46:17:5c:18:46: 08:81:49:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2NDcxMTAvBgNVBAUTKDk4QTVBOTU1OTJDMDRFQkVEMzg3MTZCQzFEQ0UzNTE3 QjdCMTJEMDgwHhcNMjUxMDE5MDAzNzU0WhcNMjUxMDI2MDAzNzU0WjAYMRYwFAYD VQQDEw02OGY0MzJlMy1lNDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsI1CpFhKYeim3v7gQAY/q3MIK1BMzrI72OtP6+Ef5BjkUKVf5o4i0y6HfuAr 31OhSbEVs1ANNkzanOEAk/Gr1GnyQWE+qH9HBz4yeJseuMGbBuSOlJlkQAfodC9q dgtsCroYXTsREReFAXh9ZxlIdzdnbAuRZ9nWxUqYZCPiRUwPcYKJkC+4f7a7WuZV I/gb/urGLA/3+k1OtyjQon8E1spoeakx+mT74UCJCqoFVXbmHDcghceNUcfADnqF 8E7HZ3JXzChNEdtfUbHoYp8ygUlkpd7Y86NjyWguccrwIcGvN1qWIHML9dTM0yYS T747opPp4oPb1u6WDOTEnL2z5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTjX0aF I2J24or4vF1gLQxPeYcKMB8GA1UdIwQYMBaAFJilqVWSwE6+04cWvB3ONRe3sS0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjY0Ny8wMTU3QkFERUQy NDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRyN1RoeGE4SGM0MUY3ZXhM UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21LV3BWWkxBVHI3VGh4YThIYzQxRjdleExRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjY0Ny8wMTU3QkFERUQyNDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRy N1RoeGE4SGM0MUY3ZXhMUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7FKenEvwwSwOJJUNa3Ld8JHyulfB6WL4Taq8oDU1WhY1VzO9xa2Cj mqHr+cbb8iGNFr4/tCXcoBM9M6QsjjrHHH4d0N0Aj7Q+1AoykNOZIJy8d9QAFbd1 FR7q8FRbyg7SEaZHsmbJP/PRtCwnbLpGN5d4aGr9ZkIbjMo6Eyczfm6eCA86JlDc YDD4CUhNsthT45hUcN9yrhijUYa/ciGRxbxbMifL7S2vxESy9VhIsOENmTkv0t9N nFxms9Z7fXAQAHVVDW1Et4HuL+d/gCwwNDYdKSBZuiX2GMIqrVu/yUiTXzr+RkAv D2LYlwnzg7g9WuGJggLuRhdcGEYIgUnF -----END CERTIFICATE-----Generated at Mon Oct 20 10:47:33 2025 by rpki-client