$ rpki-client -vvf rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft File: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft (raw, json) Hash identifier: tPstFAdwnKr1GHjgvGpw4GoJsh29YNwJnPJmEdh39is= Subject key identifier: F3:9B:3D:05:62:1F:D9:F0:2D:30:65:B8:05:4D:20:A5:14:BA:C2:23 Authority key identifier: 87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 Certificate issuer: /CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft Manifest number: 0140 Signing time: Mon 21 Jul 2025 04:28:30 +0000 Manifest this update: Mon 21 Jul 2025 04:28:30 +0000 Manifest next update: Mon 28 Jul 2025 04:28:30 +0000 Files and hashes: 1: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl (hash: lwaxGJVEGyrJGnBp2Gw1bt0dylbfl1b++EEApIB4lmw=) 2: 27178D9E7FBC11EEAF80B825C4F9AE02.roa (hash: lQYmsDBc3UpFQI5bvRZLM1pLBA2w7erJcueIAfvmPc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B02F, serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Validity Not Before: Jul 21 04:28:30 2025 GMT Not After : Jul 28 04:28:30 2025 GMT Subject: CN=687dc1ee-22b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:db:80:f2:6b:2f:7f:6a:32:e5:94:8a:33:c5: 09:7e:0f:5e:c2:02:49:4f:0b:0f:08:3e:9a:64:c5: 21:d8:e4:04:1d:2e:bc:1e:1c:60:d6:88:7e:48:82: 96:4d:bf:7b:c0:09:53:ee:c3:ce:75:c0:35:ae:81: 6b:10:4f:a9:aa:c2:e8:67:c2:d8:5a:f6:e9:6d:15: b9:96:13:e5:3c:e9:e6:27:b9:d5:d8:9f:4e:df:61: 58:89:fc:7b:c2:c5:27:11:09:97:39:52:14:10:1b: 2e:6c:57:d3:60:a3:62:0d:6d:f6:51:24:8b:63:96: dd:7d:7a:26:19:e1:bc:72:07:5a:a5:ba:27:1c:84: cd:50:0b:22:0d:69:a0:17:07:81:4b:73:72:5d:8e: 61:9e:34:15:7e:5a:59:d5:dd:1e:fb:0d:80:3e:74: 8c:1f:36:d3:8d:71:e6:8e:16:6b:0a:b2:15:0b:b7: 99:e2:0c:b0:5a:94:3d:b7:73:66:a3:23:1c:c4:a1: 64:7a:47:da:ab:94:e9:9d:84:d9:a9:14:f1:b6:dd: 7f:6c:5e:d2:3a:71:32:4e:2d:b9:23:6c:a2:e2:47: 39:26:ec:1f:57:87:34:08:af:ba:c3:7f:70:04:60: 99:5e:3c:a6:12:24:96:69:2a:64:98:6c:c9:fb:81: 6a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:9B:3D:05:62:1F:D9:F0:2D:30:65:B8:05:4D:20:A5:14:BA:C2:23 X509v3 Authority Key Identifier: keyid:87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:56:a2:81:a9:46:f4:58:d6:bf:7a:12:69:32:b3:8b:02:56: fc:74:07:1c:3d:66:b3:8d:ef:cb:ab:ca:a9:91:99:34:88:41: d6:73:d5:1d:42:b3:88:78:60:60:cf:18:80:95:44:d8:c3:1b: 6d:a3:33:60:37:8d:5c:3c:a7:53:e2:09:4e:5d:e4:11:6b:2e: e6:98:80:84:57:2f:0a:12:9e:45:a3:64:88:fe:e1:34:d6:41: b0:3c:7e:28:bc:56:a3:d6:b0:00:5a:1c:72:a2:62:3e:27:a7: e2:33:2d:f5:54:44:ad:29:95:e0:58:b0:b3:9d:69:b5:53:e9: 9d:e8:d9:73:b5:0f:46:97:67:30:46:84:7d:29:4f:6d:5f:b9: dc:01:10:86:b0:25:6d:41:c0:9a:aa:8a:45:60:28:a6:2c:16: 9c:86:44:60:f6:52:1b:36:42:14:00:65:79:1d:13:1b:20:02: c0:e0:f3:c3:20:0b:f4:58:2f:7d:42:a8:02:75:c7:c6:4e:1c: 4a:a7:0b:50:be:34:6f:8a:12:9b:23:2e:4d:28:2b:9c:19:8b: b5:db:24:b3:1f:aa:c4:d7:bd:74:ec:b5:04:cb:11:31:50:18: a2:2a:73:c3:f6:33:55:9c:6b:02:24:7b:8b:a4:b9:0e:fd:57: c2:ad:de:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwMkYxMTAvBgNVBAUTKDg3RjMxQjIwMUJERDE4NzU4MTU0MEM1QjhCODY0NDM4 QzI5OTkwQjkwHhcNMjUwNzIxMDQyODMwWhcNMjUwNzI4MDQyODMwWjAYMRYwFAYD VQQDEw02ODdkYzFlZS0yMmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvduA8msvf2oy5ZSKM8UJfg9ewgJJTwsPCD6aZMUh2OQEHS68Hhxg1oh+SIKW Tb97wAlT7sPOdcA1roFrEE+pqsLoZ8LYWvbpbRW5lhPlPOnmJ7nV2J9O32FYifx7 wsUnEQmXOVIUEBsubFfTYKNiDW32USSLY5bdfXomGeG8cgdapbonHITNUAsiDWmg FweBS3NyXY5hnjQVflpZ1d0e+w2APnSMHzbTjXHmjhZrCrIVC7eZ4gywWpQ9t3Nm oyMcxKFkekfaq5TpnYTZqRTxtt1/bF7SOnEyTi25I2yi4kc5JuwfV4c0CK+6w39w BGCZXjymEiSWaSpkmGzJ+4FqpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPObPQVi H9nwLTBluAVNIKUUusIjMB8GA1UdIwQYMBaAFIfzGyAb3Rh1gVQMW4uGRDjCmZC5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjAyRi9EN0MzM0FCODdG QkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdIV0JWQXhiaTRaRU9NS1pr TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfTWJJQnZkR0hXQlZBeGJpNFpFT01LWmtMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjAyRi9EN0MzM0FCODdGQkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdI V0JWQXhiaTRaRU9NS1prTGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDVqKBqUb0WNa/ehJpMrOLAlb8dAccPWazje/Lq8qpkZk0iEHWc9Ud QrOIeGBgzxiAlUTYwxttozNgN41cPKdT4glOXeQRay7mmICEVy8KEp5Fo2SI/uE0 1kGwPH4ovFaj1rAAWhxyomI+J6fiMy31VEStKZXgWLCznWm1U+md6NlztQ9Gl2cw RoR9KU9tX7ncARCGsCVtQcCaqopFYCimLBachkRg9lIbNkIUAGV5HRMbIALA4PPD IAv0WC99QqgCdcfGThxKpwtQvjRvihKbIy5NKCucGYu12ySzH6rE17107LUEyxEx UBiiKnPD9jNVnGsCJHuLpLkO/VfCrd69 -----END CERTIFICATE-----Generated at Wed Jul 23 02:32:39 2025 by rpki-client