$ rpki-client -vvf rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft File: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft (raw, json) Hash identifier: jkslxtKMxrq/U0N4wN6UsTasAXh+v40kkPUKBsTZ+KU= Subject key identifier: EF:F6:93:86:38:95:91:E7:8E:78:31:DE:BF:4B:73:3B:09:07:B7:05 Authority key identifier: 87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 Certificate issuer: /CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft Manifest number: 0113 Signing time: Fri 25 Apr 2025 03:58:00 +0000 Manifest this update: Fri 25 Apr 2025 03:57:59 +0000 Manifest next update: Fri 02 May 2025 03:57:59 +0000 Files and hashes: 1: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl (hash: ZgfUzXm5uxg5zJ0diEfUPqdqBGi2qj09B8xnI2QC/Yc=) 2: 27178D9E7FBC11EEAF80B825C4F9AE02.roa (hash: qxZ80C2zZyx5cq4VROiHoH57qrwZSWdC3kAJGztpgCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:57:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B02F, serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Validity Not Before: Apr 25 03:57:59 2025 GMT Not After : May 2 03:57:59 2025 GMT Subject: CN=680b0848-b943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b4:20:d4:50:59:91:0c:e5:d6:67:59:48:1c: 24:3e:de:de:20:29:91:8a:aa:7c:35:35:ca:c9:c7: 75:b3:ff:fc:e1:cd:a8:a6:bf:fd:a3:f5:99:ee:f6: 31:63:2d:5c:77:14:72:4b:29:ab:29:e9:66:0c:c2: f4:92:1d:96:eb:1c:ce:d0:ad:2f:53:fa:a8:3a:ac: 69:bf:ff:9f:07:2b:12:0b:07:d7:e0:47:84:b4:a9: 49:62:55:63:c7:e5:9b:15:a8:c9:b3:f9:98:5b:d4: d1:69:b6:35:03:82:62:1b:de:ca:b1:eb:6a:6e:43: c4:ca:0b:c5:f5:3f:44:66:9b:00:33:96:c0:d1:a0: c5:cd:fa:44:42:8d:08:2e:5d:81:5e:66:3e:f2:6a: 39:10:1e:52:ab:49:9d:a1:a0:5b:7c:a0:e2:99:df: 01:5d:84:f2:da:0e:4d:83:83:76:5d:d7:0f:a2:15: e3:12:9b:e7:7b:12:5c:38:9f:b7:61:4b:50:8e:09: 8f:61:5a:8a:5d:96:8d:f4:a8:fd:81:06:d6:89:16: bd:05:ab:63:6f:07:01:e5:37:89:7b:bb:a4:d7:d2: 63:55:c9:3f:97:20:06:63:32:8d:31:66:2c:c5:ba: 08:27:01:42:a4:2f:be:70:b6:42:65:25:35:39:eb: f5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:F6:93:86:38:95:91:E7:8E:78:31:DE:BF:4B:73:3B:09:07:B7:05 X509v3 Authority Key Identifier: keyid:87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:84:cb:bc:5f:75:02:e5:2c:ba:42:ab:59:70:fb:85:86:6f: 59:e9:d9:eb:bc:0a:22:4f:1b:b1:77:b9:be:8c:9f:5d:4b:7f: 72:16:17:ce:0e:dd:1f:84:14:97:e1:61:38:36:d4:c7:08:f1: 3b:4b:a1:c3:1e:d4:08:84:16:9f:ee:23:ce:9a:90:42:40:9c: 92:4e:42:de:2f:27:8b:9e:b5:d2:1a:65:8b:2e:39:2e:d8:81: b9:52:86:99:e7:27:32:81:e7:63:b2:5f:94:2e:e5:af:af:48: 54:52:b9:18:97:24:e4:c1:26:f9:aa:4d:f4:52:d2:b7:7f:9b: 8d:fc:25:7b:4c:73:e8:1f:b2:35:cd:66:64:e7:0d:35:f3:ee: b7:4e:bc:c7:8d:0c:e7:fb:07:08:c7:81:92:71:13:32:ac:52: 1f:aa:ab:29:e1:f0:f8:d2:39:7b:ee:8f:59:28:a7:10:75:b5: 35:06:74:09:05:0d:30:cc:92:f0:c0:97:f8:5a:32:9b:a8:1d: c1:40:08:1a:8e:8c:33:39:81:f6:12:39:70:44:52:e6:04:f8: 67:36:40:23:c6:09:61:28:80:46:2d:45:4f:85:81:5e:25:11: cd:ad:c7:93:a3:99:4d:45:5e:1c:a7:13:03:b3:b3:c2:87:05: a9:ab:e2:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwMkYxMTAvBgNVBAUTKDg3RjMxQjIwMUJERDE4NzU4MTU0MEM1QjhCODY0NDM4 QzI5OTkwQjkwHhcNMjUwNDI1MDM1NzU5WhcNMjUwNTAyMDM1NzU5WjAYMRYwFAYD VQQDEw02ODBiMDg0OC1iOTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bQg1FBZkQzl1mdZSBwkPt7eICmRiqp8NTXKycd1s//84c2opr/9o/WZ7vYx Yy1cdxRySymrKelmDML0kh2W6xzO0K0vU/qoOqxpv/+fBysSCwfX4EeEtKlJYlVj x+WbFajJs/mYW9TRabY1A4JiG97KsetqbkPEygvF9T9EZpsAM5bA0aDFzfpEQo0I Ll2BXmY+8mo5EB5Sq0mdoaBbfKDimd8BXYTy2g5Ng4N2XdcPohXjEpvnexJcOJ+3 YUtQjgmPYVqKXZaN9Kj9gQbWiRa9BatjbwcB5TeJe7uk19JjVck/lyAGYzKNMWYs xboIJwFCpC++cLZCZSU1Oev1vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO/2k4Y4 lZHnjngx3r9LczsJB7cFMB8GA1UdIwQYMBaAFIfzGyAb3Rh1gVQMW4uGRDjCmZC5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjAyRi9EN0MzM0FCODdG QkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdIV0JWQXhiaTRaRU9NS1pr TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfTWJJQnZkR0hXQlZBeGJpNFpFT01LWmtMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjAyRi9EN0MzM0FCODdGQkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdI V0JWQXhiaTRaRU9NS1prTGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEhMu8X3UC5Sy6QqtZcPuFhm9Z6dnrvAoiTxuxd7m+jJ9dS39yFhfO Dt0fhBSX4WE4NtTHCPE7S6HDHtQIhBaf7iPOmpBCQJySTkLeLyeLnrXSGmWLLjku 2IG5UoaZ5ycygedjsl+ULuWvr0hUUrkYlyTkwSb5qk30UtK3f5uN/CV7THPoH7I1 zWZk5w018+63TrzHjQzn+wcIx4GScRMyrFIfqqsp4fD40jl77o9ZKKcQdbU1BnQJ BQ0wzJLwwJf4WjKbqB3BQAgajowzOYH2EjlwRFLmBPhnNkAjxglhKIBGLUVPhYFe JRHNrceTo5lNRV4cpxMDs7PChwWpq+Ir -----END CERTIFICATE-----Generated at Sat Apr 26 15:06:35 2025 by rpki-client