$ rpki-client -vvf rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft File: b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft (raw, json) Hash identifier: xNReaMnF9oV2OHLtXMg15tLA/h2JJF339BS8kJw5R3c= Subject key identifier: 0B:1A:76:FC:9A:67:F5:74:20:A2:54:D2:39:A6:7E:4F:F9:7C:7F:03 Authority key identifier: 6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 Certificate issuer: /CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Certificate serial: 11C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft Manifest number: 1190 Signing time: Fri 08 Aug 2025 17:25:11 +0000 Manifest this update: Fri 08 Aug 2025 17:25:10 +0000 Manifest next update: Fri 15 Aug 2025 17:25:10 +0000 Files and hashes: 1: b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl (hash: 68uNPKQJvNQiawjMTeK9lrfUhZdMb2RX6Cl3FhcMrwM=) 2: F85A5EB6C33911E9A9463781C4F9AE02.roa (hash: jot76CXrAz3dE65zS5eFuiF7pvf8X1MVAGSlp7hXRdo=) 3: 8497885E04F911E9AF13ED31C4F9AE02.roa (hash: C3b1kJVj/ZgKAe5Ws86NLC+2MF3aglPyf/qxRhLS+ZQ=) 4: 95D40AE2497311EAB4873B63C4F9AE02.roa (hash: L9KTvljF01QWUS68uL1ITUuZceQQf452UdFJmG0kCrI=) 5: F8D520505D0E11EA89C55D65C4F9AE02.roa (hash: jh4/v+GyjU9Au0Vxs0XDzRjJtWql8kiBFNvqkmZsApQ=) 6: 603AD1D0AB1211EAB4E7101BC4F9AE02.roa (hash: IlX871gTVlMjHgxawx+1RHJJOHvxDDWwU+dINDtj5G0=) 7: 531C6440CF9A11E9ABB7C168C4F9AE02.roa (hash: 0Ni5FHtxPqtRB1YXZ5zRXDqJAM/35OEWFhDuPTdXe6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4546 (0x11c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112BC, serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Validity Not Before: Aug 8 17:25:10 2025 GMT Not After : Aug 15 17:25:10 2025 GMT Subject: CN=689632f6-c186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:58:93:e7:e7:c7:76:8c:27:ca:cb:02:f5:7e: 34:e4:28:2e:fb:6e:a1:5e:1c:81:d0:9b:65:ee:b7: 80:d7:93:b0:b7:4d:47:0a:7e:e8:fa:e2:de:db:15: 87:b6:80:05:ea:fb:34:b1:88:04:7e:e8:23:40:73: a3:91:a2:aa:49:d0:06:b1:74:4c:ff:7b:ed:a1:3f: cd:21:a0:1e:7c:52:62:83:67:1d:c3:97:e0:6e:95: 7b:85:a7:2d:ec:c0:de:50:68:6b:be:ec:36:e8:86: 12:3f:ca:c5:97:e1:fe:eb:3b:72:7a:e5:dc:39:e0: c8:05:c1:56:67:27:f2:98:e6:93:46:c8:7f:6b:c3: 5b:77:4e:1d:01:95:8a:99:99:68:d4:78:9a:4f:35: 12:2c:88:8b:35:9c:5a:68:57:e4:e0:4a:e0:41:35: 82:60:19:23:e3:86:87:99:15:e8:d2:1b:2a:5c:47: 53:b5:73:48:76:54:91:af:7a:84:1f:f9:06:a6:7f: 68:ad:a3:df:f1:16:9c:46:ef:7d:60:7b:7b:23:74: 86:62:d6:44:d2:18:1e:af:65:44:1e:2a:35:a2:da: e7:09:8c:d4:f4:28:6f:df:31:7a:4e:dd:9b:f4:d5: 97:1e:00:cd:d0:74:05:cf:e7:46:55:29:1a:28:dc: e8:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:1A:76:FC:9A:67:F5:74:20:A2:54:D2:39:A6:7E:4F:F9:7C:7F:03 X509v3 Authority Key Identifier: keyid:6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:72:8c:e0:7e:cf:37:d2:c1:98:39:3f:c9:a6:b7:92:a1:f1: 43:35:7a:b9:3f:4b:84:d5:25:ae:6a:ee:67:1b:ce:1f:98:40: 33:05:dd:cb:ac:69:fc:9c:5c:73:f7:4c:fe:f1:48:15:b6:24: e7:18:74:89:88:7e:dd:bb:87:39:94:9a:96:8e:27:56:be:1d: b5:49:a9:0d:a5:38:ab:89:cd:2d:a7:b7:62:dd:b5:80:83:db: 73:cb:4e:4d:73:78:93:37:9c:3c:2e:ad:92:96:b4:c5:c9:b7: 31:a0:77:7a:67:4c:20:b3:cf:0f:28:d2:47:75:65:15:60:2b: 38:11:7a:05:77:c1:ee:a5:04:54:62:f3:a8:d0:14:cd:0c:ab: f7:71:d1:2c:88:4f:96:97:61:99:71:9a:82:f1:e8:69:f4:bd: fa:ce:2b:23:8c:91:15:50:bd:c3:eb:75:75:75:ca:75:28:a4: 5e:5d:20:e1:6d:57:90:25:e9:67:3e:ba:0f:86:b2:7f:f8:1e: 82:37:ab:c3:d0:a4:53:78:52:32:e2:83:3e:0d:14:b6:4b:e5: 5a:be:ab:a5:ff:96:56:93:88:fd:1c:db:9e:47:cc:53:67:3b: 44:4c:df:85:24:ad:31:c7:c5:e7:c4:a5:1e:09:1a:fa:49:80: c3:69:e7:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQkMxMTAvBgNVBAUTKDZGRjMxQjA2NTlBNkFFMTZDN0EwQTRFRTBFRTZBMjI5 MTBFQzJFMDAwHhcNMjUwODA4MTcyNTEwWhcNMjUwODE1MTcyNTEwWjAYMRYwFAYD VQQDEw02ODk2MzJmNi1jMTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1iT5+fHdownyssC9X405Cgu+26hXhyB0Jtl7reA15Owt01HCn7o+uLe2xWH toAF6vs0sYgEfugjQHOjkaKqSdAGsXRM/3vtoT/NIaAefFJig2cdw5fgbpV7hact 7MDeUGhrvuw26IYSP8rFl+H+6ztyeuXcOeDIBcFWZyfymOaTRsh/a8Nbd04dAZWK mZlo1HiaTzUSLIiLNZxaaFfk4ErgQTWCYBkj44aHmRXo0hsqXEdTtXNIdlSRr3qE H/kGpn9oraPf8RacRu99YHt7I3SGYtZE0hger2VEHio1otrnCYzU9Chv3zF6Tt2b 9NWXHgDN0HQFz+dGVSkaKNzo0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsadvya Z/V0IKJU0jmmfk/5fH8DMB8GA1UdIwQYMBaAFG/zGwZZpq4Wx6Ck7g7moikQ7C4A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJCQy9FQkNGMTY4MjA0 RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJoYkhvS1R1RHVhaUtSRHNM Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfTWJCbG1tcmhiSG9LVHVEdWFpS1JEc0xnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTJCQy9FQkNGMTY4MjA0RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJo YkhvS1R1RHVhaUtSRHNMZ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATcozgfs830sGYOT/JpreSofFDNXq5P0uE1SWuau5nG84fmEAzBd3L rGn8nFxz90z+8UgVtiTnGHSJiH7du4c5lJqWjidWvh21SakNpTiric0tp7di3bWA g9tzy05Nc3iTN5w8Lq2SlrTFybcxoHd6Z0wgs88PKNJHdWUVYCs4EXoFd8HupQRU YvOo0BTNDKv3cdEsiE+Wl2GZcZqC8ehp9L36zisjjJEVUL3D63V1dcp1KKReXSDh bVeQJelnProPhrJ/+B6CN6vD0KRTeFIy4oM+DRS2S+Vavqul/5ZWk4j9HNueR8xT ZztETN+FJK0xx8XnxKUeCRr6SYDDaef2 -----END CERTIFICATE-----Generated at Sun Aug 10 04:46:06 2025 by rpki-client