$ rpki-client -vvf rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft File: mKWpVZLATr7Thxa8Hc41F7exLQg.mft (raw, json) Hash identifier: YO167Nd835D4IEQDp/flHJHpx39IceJRnc21cGwavKA= Subject key identifier: 38:E3:43:BF:AE:F5:04:88:A3:25:18:A5:11:72:07:22:90:F7:08:2E Authority key identifier: 98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 Certificate issuer: /CN=A917B647/serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Certificate serial: 0593 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft Manifest number: 058E Signing time: Sat 10 May 2025 22:50:24 +0000 Manifest this update: Sat 10 May 2025 22:50:24 +0000 Manifest next update: Sat 17 May 2025 22:50:24 +0000 Files and hashes: 1: mKWpVZLATr7Thxa8Hc41F7exLQg.crl (hash: rLIKcX9pzwK3x2yAj6OFy3PH/pQOLnbbXbS4kltBKMg=) 2: BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa (hash: C2RsYbuvVkPn9nhOkeMiqyxQvhJHdbdxyne9j3bxktw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:50:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1427 (0x593) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B647, serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Validity Not Before: May 10 22:50:24 2025 GMT Not After : May 17 22:50:24 2025 GMT Subject: CN=681fd830-29fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:37:69:c9:81:98:1f:64:00:38:f3:45:ca:6b: 15:3d:4a:01:74:2f:e9:7d:40:5b:96:75:1c:e1:20: b1:4a:08:4a:36:8c:d0:69:aa:b9:e8:2a:8c:34:09: 9c:6f:e1:dd:8b:28:95:26:40:79:0a:1f:2b:88:83: 06:ad:09:2d:76:f2:9b:79:99:73:00:9e:08:64:bd: 45:06:3d:d0:35:7f:80:55:0c:49:72:24:b8:c8:1c: ac:4e:eb:fd:fe:f4:d4:1d:52:aa:06:bc:81:ab:74: d8:00:9e:51:d1:49:40:64:12:f0:d8:66:7d:8d:a1: 7f:bd:0b:f7:40:7e:3c:df:b3:3c:ef:1c:92:e7:8a: cd:1b:55:1d:64:e9:76:05:1b:4f:e2:35:87:e2:78: fe:0e:7b:99:6d:b5:9d:0b:ca:1f:9b:f8:bb:b6:21: aa:89:15:67:28:f7:c2:6e:a3:60:7f:36:d1:a2:ee: f5:9d:07:5e:47:f7:ef:dd:95:9c:b5:de:75:6d:87: 60:f5:d7:53:8e:0c:20:7e:1a:30:53:40:86:0e:94: cc:6c:94:ad:bf:da:5e:2c:6e:a3:bc:6c:87:4d:d2: b0:02:45:44:cc:95:22:4e:82:70:3c:ad:c0:ab:54: a1:80:98:64:7d:85:23:e8:04:38:c1:61:95:b2:e8: 98:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:E3:43:BF:AE:F5:04:88:A3:25:18:A5:11:72:07:22:90:F7:08:2E X509v3 Authority Key Identifier: keyid:98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:62:78:7f:a9:03:12:3d:5a:73:ec:fc:1f:b5:e0:80:31:5b: 12:e2:d7:6c:69:d2:16:0b:37:db:6e:02:d8:05:55:9b:3c:f2: c9:99:ab:00:d5:ca:18:8b:c5:cf:04:b6:28:1a:41:80:4a:07: 96:53:ab:a2:a3:5c:93:60:91:08:7e:62:7f:5d:9f:87:11:51: 07:3b:f0:ed:00:69:e0:0a:fa:57:56:d9:ce:f1:79:7a:28:bf: d9:c3:b9:ea:9d:e0:ec:14:d4:73:a9:12:bc:d3:0a:c6:75:91: 06:d2:32:91:d2:00:20:21:a6:3c:01:e1:38:66:38:a0:b8:de: 71:87:f9:ce:62:c4:d2:20:73:8b:87:27:d0:e4:16:75:57:1d: 23:6a:50:87:c8:fb:6f:fa:51:ff:80:8d:39:b9:31:27:4c:8a: ba:6b:d0:52:20:24:92:84:f5:8f:7c:a7:09:cc:36:41:a7:ad: a1:06:68:54:2f:b7:e1:d6:d1:61:2c:c9:41:12:eb:68:fa:05: ba:bd:a9:3a:28:c4:f6:b3:12:50:f2:76:97:55:65:de:bf:dc: cf:0e:38:bd:79:1b:08:fd:5c:07:83:31:7c:57:a3:d0:a3:4f: 08:d1:93:e7:d2:d2:1e:c0:d1:d5:0f:5b:47:fa:4e:09:b5:90: 8f:c8:36:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2NDcxMTAvBgNVBAUTKDk4QTVBOTU1OTJDMDRFQkVEMzg3MTZCQzFEQ0UzNTE3 QjdCMTJEMDgwHhcNMjUwNTEwMjI1MDI0WhcNMjUwNTE3MjI1MDI0WjAYMRYwFAYD VQQDEw02ODFmZDgzMC0yOWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjdpyYGYH2QAOPNFymsVPUoBdC/pfUBblnUc4SCxSghKNozQaaq56CqMNAmc b+HdiyiVJkB5Ch8riIMGrQktdvKbeZlzAJ4IZL1FBj3QNX+AVQxJciS4yBysTuv9 /vTUHVKqBryBq3TYAJ5R0UlAZBLw2GZ9jaF/vQv3QH4837M87xyS54rNG1UdZOl2 BRtP4jWH4nj+DnuZbbWdC8ofm/i7tiGqiRVnKPfCbqNgfzbRou71nQdeR/fv3ZWc td51bYdg9ddTjgwgfhowU0CGDpTMbJStv9peLG6jvGyHTdKwAkVEzJUiToJwPK3A q1ShgJhkfYUj6AQ4wWGVsuiYkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjjQ7+u 9QSIoyUYpRFyByKQ9wguMB8GA1UdIwQYMBaAFJilqVWSwE6+04cWvB3ONRe3sS0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjY0Ny8wMTU3QkFERUQy NDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRyN1RoeGE4SGM0MUY3ZXhM UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21LV3BWWkxBVHI3VGh4YThIYzQxRjdleExRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjY0Ny8wMTU3QkFERUQyNDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRy N1RoeGE4SGM0MUY3ZXhMUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcYnh/qQMSPVpz7PwfteCAMVsS4tdsadIWCzfbbgLYBVWbPPLJmasA 1coYi8XPBLYoGkGASgeWU6uio1yTYJEIfmJ/XZ+HEVEHO/DtAGngCvpXVtnO8Xl6 KL/Zw7nqneDsFNRzqRK80wrGdZEG0jKR0gAgIaY8AeE4ZjiguN5xh/nOYsTSIHOL hyfQ5BZ1Vx0jalCHyPtv+lH/gI05uTEnTIq6a9BSICSShPWPfKcJzDZBp62hBmhU L7fh1tFhLMlBEuto+gW6vak6KMT2sxJQ8naXVWXev9zPDji9eRsI/VwHgzF8V6PQ o08I0ZPn0tIewNHVD1tH+k4JtZCPyDYf -----END CERTIFICATE-----Generated at Mon May 12 11:47:25 2025 by rpki-client