$ rpki-client -vvf rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft File: mKWpVZLATr7Thxa8Hc41F7exLQg.mft (raw, json) Hash identifier: 9QXu0xsObWKqjaXItuxD9LA+B2GDhtA0z55YcK/uZXs= Subject key identifier: 50:87:00:72:23:24:BA:A4:85:42:48:87:48:CF:BA:66:89:63:F6:FA Authority key identifier: 98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 Certificate issuer: /CN=A917B647/serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Certificate serial: 05CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft Manifest number: 05C4 Signing time: Fri 22 Aug 2025 23:16:08 +0000 Manifest this update: Fri 22 Aug 2025 23:16:08 +0000 Manifest next update: Fri 29 Aug 2025 23:16:08 +0000 Files and hashes: 1: mKWpVZLATr7Thxa8Hc41F7exLQg.crl (hash: JC7jJXNmZBwqQvI86/0rCNPYJfq90NxDf0rSocXgppU=) 2: BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa (hash: v0ecUflCYhVKX7WWipZns2LjtpkfsuPLOo5CXM1V1Zo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1482 (0x5ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B647, serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Validity Not Before: Aug 22 23:16:08 2025 GMT Not After : Aug 29 23:16:08 2025 GMT Subject: CN=68a8fa38-3f09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7d:18:09:75:53:5e:2e:14:81:b0:10:97:9b: 9f:e1:12:84:96:7d:be:6d:05:8e:69:0c:e0:50:a4: 44:3d:2a:ca:d7:12:32:44:af:07:c2:96:03:2c:07: f4:f6:83:df:28:69:24:c8:12:18:3e:d0:e5:c0:2d: 51:e9:7a:d4:7c:67:cc:2e:0f:fe:16:82:04:d4:6a: d7:de:02:e8:47:43:14:dc:25:25:da:71:81:4f:13: 12:02:10:dd:52:52:87:e4:94:eb:b1:d7:7e:69:5e: d3:b5:e7:1d:30:f2:db:42:93:63:87:0b:27:42:d0: c8:08:1b:d8:32:3a:19:04:f7:d2:3c:46:f8:ff:2a: c7:79:c1:fd:49:db:37:29:d8:c0:51:45:e9:00:b9: 6a:98:ca:cf:c2:bd:6d:b6:a3:da:09:a2:51:f1:ae: d7:62:08:2c:7a:4a:58:c2:3a:49:a0:89:cc:52:c1: 5b:f8:e0:ff:02:b3:78:6b:dd:8b:b1:24:87:6c:cb: 0b:d2:37:4c:73:bf:07:16:e4:bb:56:24:a9:4e:25: a7:e4:63:06:31:4c:6f:84:47:7d:97:b9:7d:c3:0f: 2e:70:db:66:9e:61:cc:4f:1e:14:82:ca:b3:a2:70: e9:57:62:66:9f:a8:90:c2:62:b3:84:68:2c:01:42: d0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:87:00:72:23:24:BA:A4:85:42:48:87:48:CF:BA:66:89:63:F6:FA X509v3 Authority Key Identifier: keyid:98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:b2:06:fb:d4:95:60:31:20:2a:da:d2:58:1c:7a:6a:49:60: 67:58:4e:ef:7c:3f:94:f5:06:31:c3:f8:11:2f:43:c5:95:5b: e7:91:dc:f0:ef:55:40:62:76:c0:65:ef:62:42:9a:5a:8d:51: d9:a4:a8:69:e0:88:08:63:12:fc:40:79:ed:80:80:2c:e5:ae: 77:a8:72:ea:8b:51:95:c4:08:15:f2:da:73:f5:86:b1:59:31: cd:f7:c0:03:76:e4:2d:df:ec:98:26:da:59:e6:16:4f:cb:42: 3b:ca:e2:c5:10:36:38:99:cc:2a:46:b0:11:f6:04:ce:4b:f2: 9e:84:83:f3:f4:ba:5a:03:9f:3f:2d:03:c5:ce:f7:f3:0f:56: 6b:d1:b5:d0:d1:6d:57:c6:81:c7:91:8b:03:07:7e:3c:0d:e1: 43:30:df:3b:07:3c:e5:f3:06:6d:41:36:d9:04:db:0a:9f:cf: ac:92:37:b4:40:a7:e4:64:38:82:32:e6:6f:7f:82:16:de:57: 36:9b:03:63:84:85:a1:37:74:51:e4:17:15:ca:fe:01:08:7f: ba:11:6c:d2:4d:ea:20:53:1d:3f:b4:4e:79:0e:ed:96:4e:9a: 2b:c0:6f:60:f4:c1:d1:fc:a1:43:70:8b:db:bf:51:80:5f:f4: a6:f7:0a:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2NDcxMTAvBgNVBAUTKDk4QTVBOTU1OTJDMDRFQkVEMzg3MTZCQzFEQ0UzNTE3 QjdCMTJEMDgwHhcNMjUwODIyMjMxNjA4WhcNMjUwODI5MjMxNjA4WjAYMRYwFAYD VQQDEw02OGE4ZmEzOC0zZjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxX0YCXVTXi4UgbAQl5uf4RKEln2+bQWOaQzgUKREPSrK1xIyRK8HwpYDLAf0 9oPfKGkkyBIYPtDlwC1R6XrUfGfMLg/+FoIE1GrX3gLoR0MU3CUl2nGBTxMSAhDd UlKH5JTrsdd+aV7TtecdMPLbQpNjhwsnQtDICBvYMjoZBPfSPEb4/yrHecH9Sds3 KdjAUUXpALlqmMrPwr1ttqPaCaJR8a7XYggsekpYwjpJoInMUsFb+OD/ArN4a92L sSSHbMsL0jdMc78HFuS7ViSpTiWn5GMGMUxvhEd9l7l9ww8ucNtmnmHMTx4Ugsqz onDpV2Jmn6iQwmKzhGgsAULQuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCHAHIj JLqkhUJIh0jPumaJY/b6MB8GA1UdIwQYMBaAFJilqVWSwE6+04cWvB3ONRe3sS0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjY0Ny8wMTU3QkFERUQy NDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRyN1RoeGE4SGM0MUY3ZXhM UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21LV3BWWkxBVHI3VGh4YThIYzQxRjdleExRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjY0Ny8wMTU3QkFERUQyNDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRy N1RoeGE4SGM0MUY3ZXhMUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKsgb71JVgMSAq2tJYHHpqSWBnWE7vfD+U9QYxw/gRL0PFlVvnkdzw 71VAYnbAZe9iQppajVHZpKhp4IgIYxL8QHntgIAs5a53qHLqi1GVxAgV8tpz9Yax WTHN98ADduQt3+yYJtpZ5hZPy0I7yuLFEDY4mcwqRrAR9gTOS/KehIPz9LpaA58/ LQPFzvfzD1Zr0bXQ0W1XxoHHkYsDB348DeFDMN87Bzzl8wZtQTbZBNsKn8+skje0 QKfkZDiCMuZvf4IW3lc2mwNjhIWhN3RR5BcVyv4BCH+6EWzSTeogUx0/tE55Du2W TporwG9g9MHR/KFDcIvbv1GAX/Sm9wp7 -----END CERTIFICATE-----Generated at Sat Aug 23 16:38:35 2025 by rpki-client