$ rpki-client -vvf rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft File: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft (raw, json) Hash identifier: YJWZxdXMXELxAHpl9xtgZ3cv+G/KbXdS78L1p2ugKSs= Subject key identifier: 19:FE:DE:07:EB:CB:02:70:C9:6A:FF:54:BC:D5:56:98:E0:48:1B:26 Authority key identifier: 87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 Certificate issuer: /CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft Manifest number: 012E Signing time: Thu 19 Jun 2025 03:58:16 +0000 Manifest this update: Thu 19 Jun 2025 03:58:15 +0000 Manifest next update: Thu 26 Jun 2025 03:58:15 +0000 Files and hashes: 1: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl (hash: IFCNkFdXE7oXRyXFOy6uXfSqIdeQE1OgaZZL2aoo45A=) 2: 27178D9E7FBC11EEAF80B825C4F9AE02.roa (hash: qxZ80C2zZyx5cq4VROiHoH57qrwZSWdC3kAJGztpgCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 03:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B02F, serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Validity Not Before: Jun 19 03:58:15 2025 GMT Not After : Jun 26 03:58:15 2025 GMT Subject: CN=68538ad8-1ee5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:af:19:33:80:7f:86:fc:fd:a0:5a:e7:44:d8: 21:91:86:e3:f8:28:36:44:98:1b:2a:a5:69:58:51: 97:43:dd:0c:d9:6c:26:44:d8:b1:e8:2a:ad:83:2e: 7c:fa:d8:e5:a9:0e:fa:ba:a7:dc:7e:13:ff:79:86: 18:ff:0a:3e:0f:60:d5:f2:de:64:26:b1:71:ef:10: a9:5a:5c:b0:e5:bd:99:40:39:0d:87:69:2f:65:b7: ba:e5:6b:9e:e8:da:fd:0a:0c:69:d0:3e:5b:d2:e2: 18:18:0d:83:ba:35:c5:63:78:1a:5b:22:75:a8:84: 1b:be:00:7a:01:23:b6:17:41:43:92:22:02:0d:0f: 52:9b:54:fd:10:ef:bd:56:61:d1:bc:28:78:3b:93: 9b:09:8f:82:40:e8:84:bd:a8:b0:ca:49:b5:87:6e: 4e:5b:0b:be:32:53:bd:e3:b5:49:70:39:35:59:84: 04:b9:d5:9b:e0:c9:37:5f:d5:90:47:a1:d2:a9:3b: 01:a4:9b:2d:9d:e1:43:25:f2:bc:c9:c2:e6:20:df: 81:15:a5:88:61:85:66:99:1e:89:21:fc:11:6e:63: d1:9e:62:c3:cf:52:37:cb:27:9e:fa:13:eb:dc:ec: a2:52:9a:bc:d5:e5:cb:e3:33:92:41:5c:91:56:2b: e6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:FE:DE:07:EB:CB:02:70:C9:6A:FF:54:BC:D5:56:98:E0:48:1B:26 X509v3 Authority Key Identifier: keyid:87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:32:cf:8c:78:9f:af:e4:a5:28:47:3f:2b:31:fe:de:2c:6e: 88:8b:45:8d:05:d0:87:30:81:be:69:28:d8:2e:ca:fc:f0:6c: e9:38:1f:5b:c7:7b:2a:0b:ef:52:4c:e7:cd:02:c4:87:82:f8: 6e:ff:27:db:bf:e0:dd:83:1d:5b:94:8e:e1:90:55:a7:28:b3: 27:ef:42:c4:62:05:8b:9c:b0:05:b7:e2:cf:1f:3c:2b:7b:5a: 11:86:f8:4b:eb:d2:f1:7c:16:5d:62:7c:9a:ae:8f:d7:69:f7: 57:f4:d7:9b:db:a8:70:50:49:ae:35:fc:7b:d1:b4:04:98:e1: 6c:e4:1b:7f:d1:dc:a6:c7:6d:e7:fd:b0:b1:1a:6e:83:8b:4e: c3:d2:dd:18:45:ff:5f:35:c8:f5:ba:03:5e:d7:a0:97:3b:b7: f0:0d:5f:e9:23:d9:12:1b:be:c2:15:f8:a7:ee:85:dd:b2:20: 50:1a:5f:3e:a0:60:10:5c:69:31:cc:1c:9c:f7:d8:53:c6:fd: eb:d0:a9:1a:c5:bf:72:da:3a:b4:b7:af:c3:1c:9f:a4:56:1f: 29:3c:ae:b6:d6:8e:58:08:ab:0b:81:11:22:5c:f5:69:ca:b3: 63:df:23:50:3c:29:5b:51:11:51:b8:19:0d:c7:a6:d5:af:2a: 6f:96:91:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwMkYxMTAvBgNVBAUTKDg3RjMxQjIwMUJERDE4NzU4MTU0MEM1QjhCODY0NDM4 QzI5OTkwQjkwHhcNMjUwNjE5MDM1ODE1WhcNMjUwNjI2MDM1ODE1WjAYMRYwFAYD VQQDEw02ODUzOGFkOC0xZWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8a8ZM4B/hvz9oFrnRNghkYbj+Cg2RJgbKqVpWFGXQ90M2WwmRNix6Cqtgy58 +tjlqQ76uqfcfhP/eYYY/wo+D2DV8t5kJrFx7xCpWlyw5b2ZQDkNh2kvZbe65Wue 6Nr9Cgxp0D5b0uIYGA2DujXFY3gaWyJ1qIQbvgB6ASO2F0FDkiICDQ9Sm1T9EO+9 VmHRvCh4O5ObCY+CQOiEvaiwykm1h25OWwu+MlO947VJcDk1WYQEudWb4Mk3X9WQ R6HSqTsBpJstneFDJfK8ycLmIN+BFaWIYYVmmR6JIfwRbmPRnmLDz1I3yyee+hPr 3OyiUpq81eXL4zOSQVyRVivmdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBn+3gfr ywJwyWr/VLzVVpjgSBsmMB8GA1UdIwQYMBaAFIfzGyAb3Rh1gVQMW4uGRDjCmZC5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjAyRi9EN0MzM0FCODdG QkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdIV0JWQXhiaTRaRU9NS1pr TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfTWJJQnZkR0hXQlZBeGJpNFpFT01LWmtMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjAyRi9EN0MzM0FCODdGQkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdI V0JWQXhiaTRaRU9NS1prTGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWMs+MeJ+v5KUoRz8rMf7eLG6Ii0WNBdCHMIG+aSjYLsr88GzpOB9b x3sqC+9STOfNAsSHgvhu/yfbv+Ddgx1blI7hkFWnKLMn70LEYgWLnLAFt+LPHzwr e1oRhvhL69LxfBZdYnyaro/XafdX9Neb26hwUEmuNfx70bQEmOFs5Bt/0dymx23n /bCxGm6Di07D0t0YRf9fNcj1ugNe16CXO7fwDV/pI9kSG77CFfin7oXdsiBQGl8+ oGAQXGkxzByc99hTxv3r0Kkaxb9y2jq0t6/DHJ+kVh8pPK621o5YCKsLgREiXPVp yrNj3yNQPClbURFRuBkNx6bVrypvlpGb -----END CERTIFICATE-----Generated at Fri Jun 20 07:57:18 2025 by rpki-client