$ rpki-client -vvf rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft File: mKWpVZLATr7Thxa8Hc41F7exLQg.mft (raw, json) Hash identifier: iXDu7WIJ9fx9wgMvJ9+W0vNoJ7WmnSlFePaxrZN5RmU= Subject key identifier: 29:7E:9B:8E:38:8D:FE:40:87:1C:47:A7:D3:D1:04:B0:AB:2F:6F:C0 Authority key identifier: 98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 Certificate issuer: /CN=A917B647/serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Certificate serial: 058B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft Manifest number: 0586 Signing time: Thu 24 Apr 2025 23:03:16 +0000 Manifest this update: Thu 24 Apr 2025 23:03:16 +0000 Manifest next update: Thu 01 May 2025 23:03:15 +0000 Files and hashes: 1: mKWpVZLATr7Thxa8Hc41F7exLQg.crl (hash: gn7Q+3YJveHPTmRqwfCLny9JNeo4HHeYgIM2Yxz0gGQ=) 2: BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa (hash: C2RsYbuvVkPn9nhOkeMiqyxQvhJHdbdxyne9j3bxktw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:03:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1419 (0x58b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B647, serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Validity Not Before: Apr 24 23:03:16 2025 GMT Not After : May 1 23:03:15 2025 GMT Subject: CN=680ac334-f29c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:01:1f:f8:7a:27:40:b9:1d:86:3d:1d:d7:d5: fd:0f:c0:d0:70:3c:d3:11:8f:dc:9c:65:0f:20:0c: e5:ee:c6:8e:0e:e8:4d:11:33:fb:5e:f3:1b:c0:dd: 36:9d:c1:66:04:a7:18:cb:63:b5:b7:29:df:00:37: 3a:28:7d:79:3c:20:4a:04:98:76:45:8b:83:7e:3f: a0:82:bd:28:2d:bb:b0:90:de:82:97:1e:63:89:93: f4:18:8c:43:be:f1:42:af:67:e1:4c:a9:18:03:07: 2b:76:03:01:5f:27:3e:ed:6d:40:5c:d1:df:5e:33: 02:fa:8b:11:03:b4:be:f8:cb:e0:de:28:b2:1c:da: 0b:3d:ee:ac:0e:5d:44:31:52:d1:f5:d1:f8:6a:5b: 82:e4:32:fe:35:18:0a:e5:3e:64:da:11:84:9a:6c: 8a:2e:d0:4c:d3:8a:39:e1:2d:26:bd:2d:d2:e2:21: bb:ec:d8:f8:03:c9:6e:7a:0b:c2:1d:2b:01:cd:d5: 27:06:78:94:ae:17:d5:21:6c:e9:2b:b0:31:dc:00: f1:6c:7d:f6:81:b1:4a:7f:99:08:e5:c2:50:2c:dd: ad:a5:fa:ea:6d:96:4f:44:2f:7c:19:15:0e:42:e0: f7:9b:e4:6a:b8:1b:34:ba:ee:7e:c8:97:cc:65:2a: d8:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:7E:9B:8E:38:8D:FE:40:87:1C:47:A7:D3:D1:04:B0:AB:2F:6F:C0 X509v3 Authority Key Identifier: keyid:98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:7a:02:fa:1a:97:f3:b2:62:11:04:62:e5:b2:87:73:76:2d: cd:d7:aa:59:04:4d:82:ce:79:a8:75:33:42:40:c8:f4:e6:ad: 92:44:40:ef:c2:ad:c8:1f:22:d9:e0:e2:4c:83:1e:e7:9a:b2: d3:a0:65:49:8d:37:70:3b:b4:53:be:cc:91:5e:25:35:0a:ff: 92:3c:b0:ea:fc:9f:43:2d:8f:1e:10:ac:d7:40:f6:68:f3:e4: 65:7b:97:bc:49:64:1a:16:d9:d7:1a:c1:5f:6f:88:98:3f:5e: 7e:90:38:87:96:e0:93:4b:e2:6f:d5:39:99:86:04:3c:e5:45: aa:9a:7b:1f:2a:52:69:77:3c:6f:c9:3c:3a:6f:1e:35:f2:ca: 0f:f5:a3:3c:8d:25:40:e2:cd:36:94:b6:7b:2d:1b:6d:2c:d2: d4:1b:53:8b:42:a8:ba:a5:e7:54:18:44:26:dd:42:b2:de:9a: d6:cf:d9:40:2e:e5:b6:ac:d3:dc:47:e6:3b:c1:ed:46:5d:c0: ae:24:ff:a9:d2:99:1a:fb:5a:9f:f1:67:d0:6e:62:a3:c0:5c: a7:48:c0:0a:a3:6f:5b:b6:1a:e7:2d:02:d6:9e:2a:3c:02:8d: 69:79:e5:e6:86:19:f7:24:39:8e:f1:bd:73:ce:12:7b:79:ca: 1b:ed:8d:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2NDcxMTAvBgNVBAUTKDk4QTVBOTU1OTJDMDRFQkVEMzg3MTZCQzFEQ0UzNTE3 QjdCMTJEMDgwHhcNMjUwNDI0MjMwMzE2WhcNMjUwNTAxMjMwMzE1WjAYMRYwFAYD VQQDEw02ODBhYzMzNC1mMjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QEf+HonQLkdhj0d19X9D8DQcDzTEY/cnGUPIAzl7saODuhNETP7XvMbwN02 ncFmBKcYy2O1tynfADc6KH15PCBKBJh2RYuDfj+ggr0oLbuwkN6Clx5jiZP0GIxD vvFCr2fhTKkYAwcrdgMBXyc+7W1AXNHfXjMC+osRA7S++Mvg3iiyHNoLPe6sDl1E MVLR9dH4aluC5DL+NRgK5T5k2hGEmmyKLtBM04o54S0mvS3S4iG77Nj4A8luegvC HSsBzdUnBniUrhfVIWzpK7Ax3ADxbH32gbFKf5kI5cJQLN2tpfrqbZZPRC98GRUO QuD3m+RquBs0uu5+yJfMZSrY/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCl+m444 jf5AhxxHp9PRBLCrL2/AMB8GA1UdIwQYMBaAFJilqVWSwE6+04cWvB3ONRe3sS0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjY0Ny8wMTU3QkFERUQy NDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRyN1RoeGE4SGM0MUY3ZXhM UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21LV3BWWkxBVHI3VGh4YThIYzQxRjdleExRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjY0Ny8wMTU3QkFERUQyNDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRy N1RoeGE4SGM0MUY3ZXhMUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApegL6GpfzsmIRBGLlsodzdi3N16pZBE2CznmodTNCQMj05q2SREDv wq3IHyLZ4OJMgx7nmrLToGVJjTdwO7RTvsyRXiU1Cv+SPLDq/J9DLY8eEKzXQPZo 8+Rle5e8SWQaFtnXGsFfb4iYP15+kDiHluCTS+Jv1TmZhgQ85UWqmnsfKlJpdzxv yTw6bx418soP9aM8jSVA4s02lLZ7LRttLNLUG1OLQqi6pedUGEQm3UKy3prWz9lA LuW2rNPcR+Y7we1GXcCuJP+p0pka+1qf8WfQbmKjwFynSMAKo29bthrnLQLWnio8 Ao1peeXmhhn3JDmO8b1zzhJ7ecob7Y3H -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:58 2025 by rpki-client