$ rpki-client -vvf rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft File: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft (raw, json) Hash identifier: fKpnwEK8l4LU8oIgFYX+tz3r+YuSPMh9AxrSO5Tpm9g= Subject key identifier: 05:DA:8A:D1:77:66:84:83:DA:7E:0E:68:9F:78:3C:2E:48:20:4D:74 Authority key identifier: 87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 Certificate issuer: /CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft Manifest number: 0176 Signing time: Wed 05 Nov 2025 03:57:06 +0000 Manifest this update: Wed 05 Nov 2025 03:57:06 +0000 Manifest next update: Wed 12 Nov 2025 03:57:06 +0000 Files and hashes: 1: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl (hash: ariYjiYG1zzi59jfWhYHwr4+KVrcpF6FlTyJYRaNs4Y=) 2: 27178D9E7FBC11EEAF80B825C4F9AE02.roa (hash: lQYmsDBc3UpFQI5bvRZLM1pLBA2w7erJcueIAfvmPc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B02F, serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Validity Not Before: Nov 5 03:57:06 2025 GMT Not After : Nov 12 03:57:06 2025 GMT Subject: CN=690acb12-eff0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:49:a0:f1:8a:ea:44:0c:4b:2e:fb:34:23:16: b7:47:4c:81:ed:2d:e9:b4:b5:85:10:35:77:d8:d2: 86:c4:41:33:81:34:d1:d0:e9:0c:ef:6a:79:97:68: 8e:01:29:c7:d5:23:50:8c:08:c4:4d:df:22:c4:58: 38:d0:b3:db:f1:0d:f8:47:d4:53:66:f0:9d:db:83: 93:66:60:c0:3c:55:ce:bf:9b:be:32:b3:14:4e:f0: 5b:9e:71:33:7a:55:6d:03:2a:e1:73:96:09:2a:4c: 55:3d:a9:9e:f8:53:33:6c:17:7a:50:6e:65:da:ca: 41:33:db:2b:e0:77:25:85:80:a7:8c:60:2d:78:1e: 8d:32:b3:c8:96:b3:79:6b:b1:35:be:d2:3c:81:29: ea:d5:30:8c:a5:77:db:15:06:73:21:4a:44:2c:4f: f9:4f:81:3b:a9:18:5d:42:d6:c1:3a:d0:75:a9:d6: 33:5d:57:0c:3d:44:15:b2:20:97:53:99:72:5d:aa: 35:29:9c:c2:02:fa:1d:bc:bc:cc:e6:65:91:d3:fe: 50:2e:89:76:28:34:14:5d:24:67:b1:df:2a:2f:c6: 44:67:53:69:13:10:4b:fb:a4:aa:48:f4:45:b3:91: 5b:a9:b2:bf:32:1c:02:c5:62:a0:e3:e8:e7:02:df: 12:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:DA:8A:D1:77:66:84:83:DA:7E:0E:68:9F:78:3C:2E:48:20:4D:74 X509v3 Authority Key Identifier: keyid:87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:f5:82:e3:f0:62:91:c9:46:55:62:83:b7:35:ea:65:7c:7c: 70:67:53:a9:db:dd:f4:e2:6f:a4:f6:11:9c:68:94:77:7f:e0: 95:c0:25:ef:ed:27:d9:63:69:a8:98:64:1c:da:b6:69:55:77: 52:12:bc:d0:52:84:85:c0:18:4a:f8:21:1c:2c:cf:9f:40:35: 51:05:65:a0:c0:ee:bb:83:0b:3c:29:75:3e:b1:24:ab:7f:a5: d1:cb:0e:72:39:e2:e4:c2:fe:bf:1b:a5:1a:92:1b:57:c8:75: c7:51:e8:e1:45:e3:e7:e3:62:b4:a0:52:a8:3c:6b:7c:d9:56: f7:21:7f:49:35:b8:35:6c:fc:2e:83:ca:16:19:90:75:55:24: 34:88:20:fc:14:1b:3b:d1:47:07:e7:15:0a:6d:4d:7c:ac:8b: f8:93:65:5d:21:74:71:cd:3b:46:ff:70:5a:40:4b:e8:8d:d5: 1b:c7:92:3b:fc:18:be:df:85:fa:1e:85:80:6e:57:f0:3f:64: 3b:8d:7b:0f:73:33:ce:38:76:7f:c3:22:e6:1d:55:a1:0f:1d: cc:e3:54:7a:6f:c6:83:be:2f:aa:c4:15:a0:fd:fb:92:87:33: a2:de:ac:a1:fe:2b:d6:4f:4f:fd:88:f5:9f:9d:2b:26:7d:a9: ab:6f:ec:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwMkYxMTAvBgNVBAUTKDg3RjMxQjIwMUJERDE4NzU4MTU0MEM1QjhCODY0NDM4 QzI5OTkwQjkwHhcNMjUxMTA1MDM1NzA2WhcNMjUxMTEyMDM1NzA2WjAYMRYwFAYD VQQDEw02OTBhY2IxMi1lZmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkmg8YrqRAxLLvs0Ixa3R0yB7S3ptLWFEDV32NKGxEEzgTTR0OkM72p5l2iO ASnH1SNQjAjETd8ixFg40LPb8Q34R9RTZvCd24OTZmDAPFXOv5u+MrMUTvBbnnEz elVtAyrhc5YJKkxVPame+FMzbBd6UG5l2spBM9sr4HclhYCnjGAteB6NMrPIlrN5 a7E1vtI8gSnq1TCMpXfbFQZzIUpELE/5T4E7qRhdQtbBOtB1qdYzXVcMPUQVsiCX U5lyXao1KZzCAvodvLzM5mWR0/5QLol2KDQUXSRnsd8qL8ZEZ1NpExBL+6SqSPRF s5FbqbK/MhwCxWKg4+jnAt8SFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXaitF3 ZoSD2n4OaJ94PC5IIE10MB8GA1UdIwQYMBaAFIfzGyAb3Rh1gVQMW4uGRDjCmZC5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjAyRi9EN0MzM0FCODdG QkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdIV0JWQXhiaTRaRU9NS1pr TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfTWJJQnZkR0hXQlZBeGJpNFpFT01LWmtMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjAyRi9EN0MzM0FCODdGQkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdI V0JWQXhiaTRaRU9NS1prTGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU9YLj8GKRyUZVYoO3NeplfHxwZ1Op29304m+k9hGcaJR3f+CVwCXv 7SfZY2momGQc2rZpVXdSErzQUoSFwBhK+CEcLM+fQDVRBWWgwO67gws8KXU+sSSr f6XRyw5yOeLkwv6/G6UakhtXyHXHUejhRePn42K0oFKoPGt82Vb3IX9JNbg1bPwu g8oWGZB1VSQ0iCD8FBs70UcH5xUKbU18rIv4k2VdIXRxzTtG/3BaQEvojdUbx5I7 /Bi+34X6HoWAblfwP2Q7jXsPczPOOHZ/wyLmHVWhDx3M41R6b8aDvi+qxBWg/fuS hzOi3qyh/ivWT0/9iPWfnSsmfamrb+zU -----END CERTIFICATE-----Generated at Wed Nov 5 19:48:54 2025 by rpki-client