$ rpki-client -vvf rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft File: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft (raw, json) Hash identifier: N8EB8242JVa929Ec4XVgWdoxwvcfAbtSxYe+LZm1/vE= Subject key identifier: F4:F1:AE:27:F9:31:4C:43:4A:CB:30:95:4D:A6:EA:5D:D6:D2:8C:AB Authority key identifier: 87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 Certificate issuer: /CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft Manifest number: 014A Signing time: Sat 09 Aug 2025 04:39:57 +0000 Manifest this update: Sat 09 Aug 2025 04:39:56 +0000 Manifest next update: Sat 16 Aug 2025 04:39:56 +0000 Files and hashes: 1: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl (hash: X2jKGz+IHl8CIxGggODp1qu83Zuo+/n989SCydkerps=) 2: 27178D9E7FBC11EEAF80B825C4F9AE02.roa (hash: lQYmsDBc3UpFQI5bvRZLM1pLBA2w7erJcueIAfvmPc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B02F, serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Validity Not Before: Aug 9 04:39:56 2025 GMT Not After : Aug 16 04:39:56 2025 GMT Subject: CN=6896d11d-6e26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c0:6d:26:10:a0:f5:ce:f0:80:42:9f:8b:1d: 3f:2b:f1:bc:2e:7a:24:9c:f1:0a:af:b2:6a:87:79: 73:ed:8a:e2:52:3f:47:f6:8e:6e:37:aa:87:6b:aa: e9:06:de:ad:ac:62:e5:9f:8a:63:c0:5c:f9:d8:46: 76:76:ef:4f:6d:c2:2c:65:b9:30:ef:4f:7e:5b:02: a9:7d:06:f8:c4:2e:76:ae:65:45:03:7f:6f:c7:78: f6:42:f1:9f:b5:fc:ad:eb:3f:04:aa:b1:17:7d:67: e0:4e:37:5c:02:6a:31:ac:91:43:78:5f:8d:4c:e5: 02:37:44:c6:6d:09:ac:7e:5e:49:26:eb:a6:7a:b7: 6c:58:ab:03:98:c3:84:f0:d6:5f:48:8d:a4:8f:2b: c3:ee:19:f6:2a:5c:bb:65:c1:70:67:5a:6b:2a:6d: 6b:8a:5a:6a:2d:fd:33:ae:0e:72:8b:f7:cd:3a:f9: ef:01:cc:77:06:7c:95:64:68:a1:84:c8:e1:e0:0d: 8f:34:c9:d4:5d:a1:f0:95:6c:9b:18:c3:61:aa:97: d4:68:c4:70:10:f6:a5:7a:2c:a4:5a:8e:09:26:70: 9f:ea:3f:fb:df:82:73:0d:13:88:a5:56:8c:56:15: de:25:26:51:4c:0f:ba:96:ef:54:2b:4f:cb:ee:a8: e9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F1:AE:27:F9:31:4C:43:4A:CB:30:95:4D:A6:EA:5D:D6:D2:8C:AB X509v3 Authority Key Identifier: keyid:87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ac:1e:60:d8:ef:db:08:70:54:18:74:84:9c:76:7a:2d:46: 53:c5:3f:90:9e:80:3e:ae:38:b4:69:be:8c:3b:37:9a:55:37: eb:16:69:6a:7a:5b:cf:68:78:37:68:8c:b3:ff:51:b2:05:26: 0a:b0:96:f5:56:d6:9d:f7:90:20:c6:47:9c:07:2a:98:80:13: c3:5c:4f:df:91:03:0c:21:79:c5:7d:a7:0e:aa:28:f0:d0:d0: ca:33:8d:d8:d1:ff:6f:8c:e7:ed:e3:f7:ab:d0:3a:86:45:da: 53:11:57:70:6e:5c:79:fd:0c:59:06:57:6c:65:b3:9a:e1:b2: 74:84:ef:c2:11:91:01:52:8e:1a:bf:e2:62:eb:e2:81:81:67: 62:00:83:21:13:da:2f:93:c7:a3:0f:46:f8:01:d7:27:82:06: e2:b9:b4:b7:98:6d:06:56:7e:70:c1:55:7f:58:1c:67:f4:ec: 61:22:7a:13:f6:a5:d9:35:fb:92:f8:ac:12:bd:63:c9:4c:91: 67:6a:2d:b0:3b:91:b3:1a:3f:d9:4c:41:61:7d:cd:43:d7:6f: ee:02:c8:18:9c:83:94:01:63:17:f9:83:87:c3:67:79:f3:99: ad:95:4f:0c:62:74:ab:f0:a7:e3:be:eb:eb:2e:bc:3e:2a:9a: 63:bb:34:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwMkYxMTAvBgNVBAUTKDg3RjMxQjIwMUJERDE4NzU4MTU0MEM1QjhCODY0NDM4 QzI5OTkwQjkwHhcNMjUwODA5MDQzOTU2WhcNMjUwODE2MDQzOTU2WjAYMRYwFAYD VQQDEw02ODk2ZDExZC02ZTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcBtJhCg9c7wgEKfix0/K/G8LnoknPEKr7Jqh3lz7YriUj9H9o5uN6qHa6rp Bt6trGLln4pjwFz52EZ2du9PbcIsZbkw709+WwKpfQb4xC52rmVFA39vx3j2QvGf tfyt6z8EqrEXfWfgTjdcAmoxrJFDeF+NTOUCN0TGbQmsfl5JJuumerdsWKsDmMOE 8NZfSI2kjyvD7hn2Kly7ZcFwZ1prKm1rilpqLf0zrg5yi/fNOvnvAcx3BnyVZGih hMjh4A2PNMnUXaHwlWybGMNhqpfUaMRwEPaleiykWo4JJnCf6j/734JzDROIpVaM VhXeJSZRTA+6lu9UK0/L7qjpSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTxrif5 MUxDSsswlU2m6l3W0oyrMB8GA1UdIwQYMBaAFIfzGyAb3Rh1gVQMW4uGRDjCmZC5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjAyRi9EN0MzM0FCODdG QkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdIV0JWQXhiaTRaRU9NS1pr TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfTWJJQnZkR0hXQlZBeGJpNFpFT01LWmtMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjAyRi9EN0MzM0FCODdGQkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdI V0JWQXhiaTRaRU9NS1prTGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwrB5g2O/bCHBUGHSEnHZ6LUZTxT+QnoA+rji0ab6MOzeaVTfrFmlq elvPaHg3aIyz/1GyBSYKsJb1Vtad95AgxkecByqYgBPDXE/fkQMMIXnFfacOqijw 0NDKM43Y0f9vjOft4/er0DqGRdpTEVdwblx5/QxZBldsZbOa4bJ0hO/CEZEBUo4a v+Ji6+KBgWdiAIMhE9ovk8ejD0b4AdcnggbiubS3mG0GVn5wwVV/WBxn9OxhInoT 9qXZNfuS+KwSvWPJTJFnai2wO5GzGj/ZTEFhfc1D12/uAsgYnIOUAWMX+YOHw2d5 85mtlU8MYnSr8KfjvuvrLrw+KppjuzT+ -----END CERTIFICATE-----Generated at Sun Aug 10 05:51:20 2025 by rpki-client