$ rpki-client -vvf rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft File: mKWpVZLATr7Thxa8Hc41F7exLQg.mft (raw, json) Hash identifier: mHyA3U5rHuj0M6oNLKldEW21gHd1OT8L0dNMtNxOCTA= Subject key identifier: CC:B6:62:CA:C2:B0:87:78:4F:FB:14:23:E4:C5:97:F7:76:4F:7D:84 Authority key identifier: 98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 Certificate issuer: /CN=A917B647/serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Certificate serial: 05F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft Manifest number: 05EA Signing time: Tue 04 Nov 2025 23:03:07 +0000 Manifest this update: Tue 04 Nov 2025 23:03:07 +0000 Manifest next update: Tue 11 Nov 2025 23:03:07 +0000 Files and hashes: 1: mKWpVZLATr7Thxa8Hc41F7exLQg.crl (hash: pv5Ch+BjrbyzFfUDJ5ruA70wZKOPiBjFB/zXYFkG2oY=) 2: BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa (hash: v0ecUflCYhVKX7WWipZns2LjtpkfsuPLOo5CXM1V1Zo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1520 (0x5f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B647, serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Validity Not Before: Nov 4 23:03:07 2025 GMT Not After : Nov 11 23:03:07 2025 GMT Subject: CN=690a862b-fb18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2f:1e:31:c3:0d:da:c9:34:b2:3b:45:19:f7: 9c:03:49:ee:58:fb:82:76:14:bc:54:b4:3a:5b:62: 39:ea:54:88:39:e1:41:75:72:3f:b7:4c:73:77:e6: bf:c5:44:27:2f:0b:6d:33:fb:f8:16:7b:d7:05:69: 5c:45:9f:ef:66:45:68:89:56:44:e5:f3:81:bb:e4: 0d:4d:d5:1f:be:49:12:12:97:f0:c0:04:b8:50:9b: 3a:ae:98:c1:d1:9b:a2:1b:02:df:64:9e:7b:fc:46: 9e:ab:3a:67:08:cd:97:15:98:cd:38:bb:58:21:73: cd:43:90:53:39:d9:a7:f7:7d:93:61:a0:80:be:fb: 95:81:8e:b9:b1:8e:55:b3:be:91:4d:b8:a1:8b:60: 82:ce:db:2f:6a:4f:55:fb:50:6c:52:cf:24:bc:c8: 3f:25:3c:88:ba:12:8d:c3:0f:3b:b6:e5:cd:c5:61: 57:69:f8:15:98:3e:91:e7:ca:e4:d6:d5:60:a0:16: 71:72:74:f1:3e:a4:7e:9f:b4:92:5d:d8:eb:eb:93: 98:b0:c0:ef:b4:22:86:c3:79:4c:10:6e:b3:e7:0d: 84:13:0d:eb:13:53:db:29:9e:3f:b1:a6:00:a5:90: 24:41:a3:41:c2:93:37:28:65:cc:07:ee:f0:05:c8: dd:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B6:62:CA:C2:B0:87:78:4F:FB:14:23:E4:C5:97:F7:76:4F:7D:84 X509v3 Authority Key Identifier: keyid:98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:aa:7d:91:fa:4a:0c:a8:8f:a5:d1:8d:2c:21:ad:9e:81:73: d1:10:50:82:91:b8:82:28:1a:37:b5:14:af:8f:ec:13:52:f4: 5e:6c:b9:96:9e:d6:d6:d6:50:ef:c2:2c:8e:a1:ab:08:4f:da: f6:17:8e:30:26:da:8a:a0:fc:a0:1f:ae:29:d4:19:07:6b:6a: 1b:de:8d:31:fe:af:6f:e5:ca:79:08:e6:dc:72:04:62:c6:d7: 0f:d0:29:d0:f7:b1:ba:6f:84:1f:48:8c:23:71:6d:c6:c9:d4: 9f:05:2c:75:e7:93:92:11:5d:b9:86:a5:93:f8:33:00:b5:9e: 76:c1:c0:9f:85:6f:db:a0:38:f8:1c:87:52:af:7d:00:3a:36: 80:2d:74:86:81:de:14:ae:ac:ca:7f:8c:1f:7b:de:87:22:36: bc:fc:77:e7:a1:77:2f:47:53:b3:ca:43:9c:d1:ce:03:03:a6: e3:d3:dc:bf:d1:7e:b6:df:34:29:8a:5e:d7:d7:91:c2:8e:d9: 4a:8c:5f:26:00:2f:84:b2:f2:0f:f0:a7:47:48:48:bc:44:19: e8:4a:a7:ca:a9:61:28:fe:ed:8f:32:2e:5d:28:3b:d6:c2:3e: c2:28:00:b2:0c:e9:f7:20:02:b8:54:8f:c3:be:91:9b:0c:ea: 67:c8:4a:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2NDcxMTAvBgNVBAUTKDk4QTVBOTU1OTJDMDRFQkVEMzg3MTZCQzFEQ0UzNTE3 QjdCMTJEMDgwHhcNMjUxMTA0MjMwMzA3WhcNMjUxMTExMjMwMzA3WjAYMRYwFAYD VQQDEw02OTBhODYyYi1mYjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuy8eMcMN2sk0sjtFGfecA0nuWPuCdhS8VLQ6W2I56lSIOeFBdXI/t0xzd+a/ xUQnLwttM/v4FnvXBWlcRZ/vZkVoiVZE5fOBu+QNTdUfvkkSEpfwwAS4UJs6rpjB 0ZuiGwLfZJ57/EaeqzpnCM2XFZjNOLtYIXPNQ5BTOdmn932TYaCAvvuVgY65sY5V s76RTbihi2CCztsvak9V+1BsUs8kvMg/JTyIuhKNww87tuXNxWFXafgVmD6R58rk 1tVgoBZxcnTxPqR+n7SSXdjr65OYsMDvtCKGw3lMEG6z5w2EEw3rE1PbKZ4/saYA pZAkQaNBwpM3KGXMB+7wBcjdCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMy2YsrC sId4T/sUI+TFl/d2T32EMB8GA1UdIwQYMBaAFJilqVWSwE6+04cWvB3ONRe3sS0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjY0Ny8wMTU3QkFERUQy NDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRyN1RoeGE4SGM0MUY3ZXhM UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21LV3BWWkxBVHI3VGh4YThIYzQxRjdleExRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjY0Ny8wMTU3QkFERUQyNDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRy N1RoeGE4SGM0MUY3ZXhMUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChqn2R+koMqI+l0Y0sIa2egXPREFCCkbiCKBo3tRSvj+wTUvRebLmW ntbW1lDvwiyOoasIT9r2F44wJtqKoPygH64p1BkHa2ob3o0x/q9v5cp5CObccgRi xtcP0CnQ97G6b4QfSIwjcW3GydSfBSx155OSEV25hqWT+DMAtZ52wcCfhW/boDj4 HIdSr30AOjaALXSGgd4UrqzKf4wfe96HIja8/HfnoXcvR1OzykOc0c4DA6bj09y/ 0X623zQpil7X15HCjtlKjF8mAC+EsvIP8KdHSEi8RBnoSqfKqWEo/u2PMi5dKDvW wj7CKACyDOn3IAK4VI/DvpGbDOpnyEqT -----END CERTIFICATE-----Generated at Wed Nov 5 11:45:34 2025 by rpki-client