$ rpki-client -vvf rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft File: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft (raw, json) Hash identifier: k0we7eSJ21175S1iMXMqVQe7nwV1kAp3RvyLV+drXZs= Subject key identifier: 0C:EF:E6:2C:7D:1C:D6:F0:67:AB:63:23:A0:DF:30:41:96:CD:11:24 Authority key identifier: 87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 Certificate issuer: /CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft Manifest number: 0108 Signing time: Thu 03 Apr 2025 04:14:43 +0000 Manifest this update: Thu 03 Apr 2025 04:14:42 +0000 Manifest next update: Thu 10 Apr 2025 04:14:42 +0000 Files and hashes: 1: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl (hash: FJFs15iwgUZWgZ9p6MD6Ku7PksYiAQqUm/axeAzDGXU=) 2: 27178D9E7FBC11EEAF80B825C4F9AE02.roa (hash: qxZ80C2zZyx5cq4VROiHoH57qrwZSWdC3kAJGztpgCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:14:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B02F Validity Not Before: Apr 3 04:14:42 2025 GMT Not After : Apr 10 04:14:42 2025 GMT Subject: CN=67ee0b33-21b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ae:8e:10:8f:d5:63:c6:dc:c7:7b:36:50:cf: ac:27:09:a1:7f:ab:e5:3b:e0:8f:b3:1b:dc:6f:c9: 3b:ea:d8:15:b1:6f:87:26:fb:52:73:aa:27:f6:32: a7:3d:6f:ea:bf:87:4e:38:aa:5b:da:78:c9:50:9a: 14:61:bc:c6:32:e5:8f:32:f9:28:e1:4d:de:f6:8d: 8f:49:27:cc:31:81:04:e7:b0:f0:53:b0:55:59:ea: 15:ac:64:93:76:d2:5a:88:dc:3e:1d:16:d5:d6:1f: 5a:79:9a:b2:7b:33:9b:2c:25:ba:d5:d0:07:1d:f1: 70:9e:12:fe:da:f7:ef:c6:44:1e:c8:b0:b0:7e:cc: c7:39:06:70:aa:74:1e:a3:8e:67:c0:49:42:83:fa: 0d:3a:1a:91:bf:49:cc:2b:2a:ab:f9:67:ad:25:eb: 4b:24:9c:26:b7:43:30:23:46:95:ac:d5:a9:e1:73: 85:8a:4a:48:7f:2e:8a:fd:b7:19:f9:10:b4:78:8b: f2:ba:45:c2:72:23:c9:a8:27:11:5d:00:2c:3c:65: 9b:0c:55:ad:22:01:0c:f3:4d:3c:b5:1d:a1:2a:6b: 41:7d:a4:3e:4e:7c:66:20:e1:4a:a4:8d:be:02:d6: 13:37:0e:97:4f:80:e4:0f:39:ac:20:56:cf:65:4e: fc:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:EF:E6:2C:7D:1C:D6:F0:67:AB:63:23:A0:DF:30:41:96:CD:11:24 X509v3 Authority Key Identifier: keyid:87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:34:a3:f4:e8:b2:d0:b6:54:ed:ae:ac:fe:cb:ca:58:2a:2b: df:0d:91:35:74:7e:a3:c6:01:dd:55:f1:64:37:80:e0:b6:07: 5f:94:85:c5:e3:54:6c:93:9e:18:90:d3:04:3c:23:46:ad:c5: 2d:fa:2c:02:c1:02:45:e6:3c:c5:ab:23:89:77:ce:d2:e0:b8: 62:1e:5e:11:90:8a:ea:db:24:89:8f:83:64:29:34:35:e3:b3: 31:12:1c:30:cf:d1:05:8a:f9:eb:d1:66:86:50:97:82:0b:4c: 67:8a:bf:44:d5:64:c3:6b:c6:90:d4:0a:41:e4:54:a1:46:ed: a1:e3:12:44:11:64:1f:91:b2:5b:56:03:c3:a5:76:a8:fc:75: 8e:a3:53:5e:13:b5:d9:71:8f:8b:e7:36:a5:59:93:c5:d7:76: 47:14:36:c6:8a:0a:b1:90:93:bc:b1:7b:49:07:69:6c:d9:29: db:69:64:f5:f1:eb:3f:67:3e:04:fd:d3:d4:8a:75:55:53:e7: d7:16:fd:d7:15:d6:67:04:0c:d6:3a:a2:5c:f4:8f:ea:50:23: 45:e2:a4:98:5f:c6:f1:f0:73:a3:09:db:5f:32:88:44:c3:86: 19:0b:e6:76:35:01:c6:df:6f:a8:ab:80:8d:92:ed:42:b4:00: 26:44:3e:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwMkYxMTAvBgNVBAUTKDg3RjMxQjIwMUJERDE4NzU4MTU0MEM1QjhCODY0NDM4 QzI5OTkwQjkwHhcNMjUwNDAzMDQxNDQyWhcNMjUwNDEwMDQxNDQyWjAYMRYwFAYD VQQDEw02N2VlMGIzMy0yMWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAya6OEI/VY8bcx3s2UM+sJwmhf6vlO+CPsxvcb8k76tgVsW+HJvtSc6on9jKn PW/qv4dOOKpb2njJUJoUYbzGMuWPMvko4U3e9o2PSSfMMYEE57DwU7BVWeoVrGST dtJaiNw+HRbV1h9aeZqyezObLCW61dAHHfFwnhL+2vfvxkQeyLCwfszHOQZwqnQe o45nwElCg/oNOhqRv0nMKyqr+WetJetLJJwmt0MwI0aVrNWp4XOFikpIfy6K/bcZ +RC0eIvyukXCciPJqCcRXQAsPGWbDFWtIgEM8008tR2hKmtBfaQ+TnxmIOFKpI2+ AtYTNw6XT4DkDzmsIFbPZU78uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzv5ix9 HNbwZ6tjI6DfMEGWzREkMB8GA1UdIwQYMBaAFIfzGyAb3Rh1gVQMW4uGRDjCmZC5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjAyRi9EN0MzM0FCODdG QkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdIV0JWQXhiaTRaRU9NS1pr TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfTWJJQnZkR0hXQlZBeGJpNFpFT01LWmtMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjAyRi9EN0MzM0FCODdGQkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdI V0JWQXhiaTRaRU9NS1prTGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZNKP06LLQtlTtrqz+y8pYKivfDZE1dH6jxgHdVfFkN4DgtgdflIXF 41Rsk54YkNMEPCNGrcUt+iwCwQJF5jzFqyOJd87S4LhiHl4RkIrq2ySJj4NkKTQ1 47MxEhwwz9EFivnr0WaGUJeCC0xnir9E1WTDa8aQ1ApB5FShRu2h4xJEEWQfkbJb VgPDpXao/HWOo1NeE7XZcY+L5zalWZPF13ZHFDbGigqxkJO8sXtJB2ls2SnbaWT1 8es/Zz4E/dPUinVVU+fXFv3XFdZnBAzWOqJc9I/qUCNF4qSYX8bx8HOjCdtfMohE w4YZC+Z2NQHG32+oq4CNku1CtAAmRD5x -----END CERTIFICATE-----Generated at Fri Apr 4 22:27:05 2025 by rpki-client