$ rpki-client -vvf rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft File: mKWpVZLATr7Thxa8Hc41F7exLQg.mft (raw, json) Hash identifier: yqRU1mCLrJDFap2qPfqpKB/I+zo4fRPMhzpAdc0/hGQ= Subject key identifier: 7C:E5:FE:3C:A0:FA:21:22:31:27:2D:61:FF:BB:8E:4A:01:E4:5B:8C Authority key identifier: 98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 Certificate issuer: /CN=A917B647/serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Certificate serial: 05A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft Manifest number: 05A3 Signing time: Wed 18 Jun 2025 23:01:36 +0000 Manifest this update: Wed 18 Jun 2025 23:01:36 +0000 Manifest next update: Wed 25 Jun 2025 23:01:36 +0000 Files and hashes: 1: mKWpVZLATr7Thxa8Hc41F7exLQg.crl (hash: lWhv4R7jcxTX21usa1YoAGxMAPC+E0Qx6Wa6qD6fysE=) 2: BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa (hash: v0ecUflCYhVKX7WWipZns2LjtpkfsuPLOo5CXM1V1Zo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 23:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1449 (0x5a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B647, serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Validity Not Before: Jun 18 23:01:36 2025 GMT Not After : Jun 25 23:01:36 2025 GMT Subject: CN=68534550-0690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c0:0f:4e:c5:72:73:9f:b2:17:54:78:b1:f3: 9a:6a:e8:57:5f:06:3e:36:98:94:b2:b5:96:5c:96: c9:de:b6:dd:90:75:6e:ff:cf:05:00:96:1d:e8:02: d1:3f:da:72:c1:f7:8d:e2:ff:04:24:e4:6b:c4:21: c3:20:3d:6f:80:a0:c1:64:7a:15:9c:65:93:99:0e: 02:f5:66:48:43:30:fb:f8:0e:ea:fe:b6:da:98:cf: 27:ad:4a:e0:e2:fe:47:7b:7e:46:04:66:fc:7e:0f: 75:60:51:6c:1d:9b:4d:05:96:b0:0f:ae:32:c5:37: d6:01:ae:63:2a:31:27:85:26:db:76:97:68:4a:b5: 34:53:71:0b:39:94:35:e1:fd:7b:7e:2c:93:e9:fc: e8:37:d5:c8:0e:4e:74:74:48:9f:3e:d8:58:bf:55: b5:1d:78:bb:fb:fe:3c:4b:07:e6:bf:6b:19:1e:98: 8d:f6:8c:79:80:21:e2:6b:fb:e0:a0:75:59:d0:29: 10:36:52:65:3d:b0:5c:3a:e0:a2:cd:88:c4:79:60: ea:a1:81:e4:86:55:b9:9d:49:5c:8d:44:36:48:fd: d8:f5:03:33:86:7b:50:d2:2c:1f:c4:24:44:81:f8: 78:3a:65:94:e7:da:c7:96:8b:6f:fc:eb:08:da:c7: 46:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E5:FE:3C:A0:FA:21:22:31:27:2D:61:FF:BB:8E:4A:01:E4:5B:8C X509v3 Authority Key Identifier: keyid:98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:37:74:dd:ff:b7:6d:6d:6e:82:81:83:85:13:1e:8b:27:29: 06:a7:dd:77:f2:2f:dd:64:51:5f:81:3a:9f:14:59:7e:45:c2: 44:74:9c:f0:70:8d:6e:36:ee:8b:35:b9:72:57:51:e3:2d:8f: 81:7c:74:59:06:a2:71:49:c0:10:38:a8:ae:f1:5d:1b:92:1e: fd:63:9c:22:03:b2:d1:15:d3:fc:f9:0c:88:10:69:29:a6:c6: 27:2b:f2:aa:61:ee:10:b0:57:b3:c3:b8:cd:76:7f:e9:d8:85: d2:b9:39:90:14:08:c3:7b:a9:0a:e0:f1:e5:a2:9f:95:5c:02: 79:78:5c:15:59:ab:86:45:b1:28:b9:b6:91:94:3b:04:46:4b: 6b:8f:4f:33:4a:1a:ac:82:2c:97:10:1a:3d:f5:88:f8:57:a8: 5c:ae:da:d7:a9:83:d4:81:85:72:b1:0a:ea:c7:f5:1a:7a:b7: 92:4f:e5:a2:4a:9a:46:ee:4e:65:5a:22:99:d1:bf:46:4f:6d: 84:0c:51:0e:ba:13:49:33:b6:b7:f9:2d:f3:b2:b5:a2:87:e5: 93:37:b2:2b:f6:19:a3:28:d8:a5:fc:5e:17:e3:7f:d9:14:a6: d9:44:eb:4b:66:4e:41:9d:32:52:7e:8c:9f:d1:90:93:01:4d: b8:e2:2e:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2NDcxMTAvBgNVBAUTKDk4QTVBOTU1OTJDMDRFQkVEMzg3MTZCQzFEQ0UzNTE3 QjdCMTJEMDgwHhcNMjUwNjE4MjMwMTM2WhcNMjUwNjI1MjMwMTM2WjAYMRYwFAYD VQQDEw02ODUzNDU1MC0wNjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsAPTsVyc5+yF1R4sfOaauhXXwY+NpiUsrWWXJbJ3rbdkHVu/88FAJYd6ALR P9pywfeN4v8EJORrxCHDID1vgKDBZHoVnGWTmQ4C9WZIQzD7+A7q/rbamM8nrUrg 4v5He35GBGb8fg91YFFsHZtNBZawD64yxTfWAa5jKjEnhSbbdpdoSrU0U3ELOZQ1 4f17fiyT6fzoN9XIDk50dEifPthYv1W1HXi7+/48Swfmv2sZHpiN9ox5gCHia/vg oHVZ0CkQNlJlPbBcOuCizYjEeWDqoYHkhlW5nUlcjUQ2SP3Y9QMzhntQ0iwfxCRE gfh4OmWU59rHlotv/OsI2sdG5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzl/jyg +iEiMSctYf+7jkoB5FuMMB8GA1UdIwQYMBaAFJilqVWSwE6+04cWvB3ONRe3sS0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjY0Ny8wMTU3QkFERUQy NDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRyN1RoeGE4SGM0MUY3ZXhM UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21LV3BWWkxBVHI3VGh4YThIYzQxRjdleExRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjY0Ny8wMTU3QkFERUQyNDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRy N1RoeGE4SGM0MUY3ZXhMUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6N3Td/7dtbW6CgYOFEx6LJykGp9138i/dZFFfgTqfFFl+RcJEdJzw cI1uNu6LNblyV1HjLY+BfHRZBqJxScAQOKiu8V0bkh79Y5wiA7LRFdP8+QyIEGkp psYnK/KqYe4QsFezw7jNdn/p2IXSuTmQFAjDe6kK4PHlop+VXAJ5eFwVWauGRbEo ubaRlDsERktrj08zShqsgiyXEBo99Yj4V6hcrtrXqYPUgYVysQrqx/UaereST+Wi SppG7k5lWiKZ0b9GT22EDFEOuhNJM7a3+S3zsrWih+WTN7Ir9hmjKNil/F4X43/Z FKbZROtLZk5BnTJSfoyf0ZCTAU244i58 -----END CERTIFICATE-----Generated at Thu Jun 19 05:50:10 2025 by rpki-client