$ rpki-client -vvf rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft File: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft (raw, json) Hash identifier: KCKa5EWOlPQhY8sTPtsHKFE1Cjun4sRHkbRjp25bITQ= Subject key identifier: 7E:49:D1:1D:88:76:DF:B4:63:3F:76:FC:40:D8:57:87:B9:7D:66:C8 Authority key identifier: 87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 Certificate issuer: /CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft Manifest number: 0141 Signing time: Wed 23 Jul 2025 04:37:51 +0000 Manifest this update: Wed 23 Jul 2025 04:37:50 +0000 Manifest next update: Wed 30 Jul 2025 04:37:50 +0000 Files and hashes: 1: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl (hash: znOifDRYMLUcu6yi7bwX+TGzaJap9kY9Dn0RdMtnNKo=) 2: 27178D9E7FBC11EEAF80B825C4F9AE02.roa (hash: lQYmsDBc3UpFQI5bvRZLM1pLBA2w7erJcueIAfvmPc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 04:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B02F, serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Validity Not Before: Jul 23 04:37:50 2025 GMT Not After : Jul 30 04:37:50 2025 GMT Subject: CN=6880671e-9ccd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ba:89:f8:d7:8e:a2:45:d9:57:e1:04:34:35: e7:d0:6d:96:ad:f9:0f:19:2c:a2:87:8a:3a:71:fb: dd:ad:99:11:0e:54:ce:c8:ec:7f:c0:dd:78:b2:53: a8:a0:ea:62:94:ca:94:96:fc:db:a6:b4:b0:76:ee: aa:07:70:56:e6:1f:47:3b:1d:1b:0b:e9:ad:1d:6d: 35:2d:b9:f3:26:3e:ee:48:7f:5f:f8:53:ec:29:a5: 7c:0e:0b:4f:69:45:b0:ad:92:c1:eb:37:c6:6c:db: 53:69:c2:0a:f0:15:ca:73:e6:18:e0:de:84:a6:f2: fd:9f:1d:21:a5:11:db:98:7b:fe:aa:2b:58:9a:d3: c1:9b:29:53:c0:56:3f:d0:02:b4:a6:12:10:82:8a: da:f0:8d:f5:ef:5d:20:3d:6e:78:9e:68:07:13:f5: 9a:d6:e2:a4:85:8b:78:a8:5f:e3:25:53:ae:54:6b: 48:0c:95:3a:98:79:3c:52:3c:26:28:eb:63:13:a2: d3:b0:f8:62:50:8e:d1:73:63:cf:a4:fa:47:f3:fc: ba:b3:a2:c9:0d:31:55:1e:91:37:c2:0b:a5:34:89: b0:94:a3:1c:72:ff:cb:0a:ce:60:a6:e1:36:10:e8: e7:d5:ae:42:d6:66:4b:0a:74:34:4c:79:63:17:20: 23:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:49:D1:1D:88:76:DF:B4:63:3F:76:FC:40:D8:57:87:B9:7D:66:C8 X509v3 Authority Key Identifier: keyid:87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:3d:1f:3c:4c:87:74:c6:17:ee:d3:fc:99:56:c2:7d:ee:ee: c4:0e:b3:7a:e1:68:c2:91:08:4d:b7:a4:04:6d:50:e5:8c:1d: 6d:cb:75:0f:97:40:99:53:7f:6f:46:71:24:af:02:b1:bb:77: ea:e5:14:7c:07:96:d2:84:d4:91:98:2a:1b:13:5e:69:dd:46: 90:2f:fa:7b:18:5f:7e:47:6e:e5:ef:57:70:74:a7:7e:6e:b2: 35:7c:df:18:0a:1f:55:11:77:81:0c:ed:77:e1:4c:7e:52:4b: 2b:6c:f7:39:e3:18:4a:2d:3a:f7:a2:9e:1b:1b:42:34:6e:83: 0a:7a:b0:ae:d2:c5:a8:2f:b8:1b:df:15:23:c6:56:29:d6:b7: 6f:0c:9c:a1:45:1b:0d:be:ab:47:60:31:ef:01:07:d4:ff:4e: 30:00:4b:94:46:33:e1:18:c3:49:fb:d6:09:e4:c6:b5:00:43: 8a:4d:a3:57:0c:bd:0e:b2:b1:35:d8:4f:bc:09:25:02:c4:3b: 8a:a7:a3:39:ca:5c:40:97:a0:af:9e:49:57:46:ad:2a:e4:bd: a0:d5:05:d7:d8:a7:a3:69:d4:e3:c7:fa:2c:ff:b1:5b:c3:da: 63:cb:49:ee:71:fa:36:ae:fd:34:18:e6:86:5d:b8:ad:64:fc: 4a:26:5b:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwMkYxMTAvBgNVBAUTKDg3RjMxQjIwMUJERDE4NzU4MTU0MEM1QjhCODY0NDM4 QzI5OTkwQjkwHhcNMjUwNzIzMDQzNzUwWhcNMjUwNzMwMDQzNzUwWjAYMRYwFAYD VQQDEw02ODgwNjcxZS05Y2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7qJ+NeOokXZV+EENDXn0G2WrfkPGSyih4o6cfvdrZkRDlTOyOx/wN14slOo oOpilMqUlvzbprSwdu6qB3BW5h9HOx0bC+mtHW01LbnzJj7uSH9f+FPsKaV8DgtP aUWwrZLB6zfGbNtTacIK8BXKc+YY4N6EpvL9nx0hpRHbmHv+qitYmtPBmylTwFY/ 0AK0phIQgora8I31710gPW54nmgHE/Wa1uKkhYt4qF/jJVOuVGtIDJU6mHk8Ujwm KOtjE6LTsPhiUI7Rc2PPpPpH8/y6s6LJDTFVHpE3wgulNImwlKMccv/LCs5gpuE2 EOjn1a5C1mZLCnQ0THljFyAj3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5J0R2I dt+0Yz92/EDYV4e5fWbIMB8GA1UdIwQYMBaAFIfzGyAb3Rh1gVQMW4uGRDjCmZC5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjAyRi9EN0MzM0FCODdG QkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdIV0JWQXhiaTRaRU9NS1pr TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfTWJJQnZkR0hXQlZBeGJpNFpFT01LWmtMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjAyRi9EN0MzM0FCODdGQkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdI V0JWQXhiaTRaRU9NS1prTGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXPR88TId0xhfu0/yZVsJ97u7EDrN64WjCkQhNt6QEbVDljB1ty3UP l0CZU39vRnEkrwKxu3fq5RR8B5bShNSRmCobE15p3UaQL/p7GF9+R27l71dwdKd+ brI1fN8YCh9VEXeBDO134Ux+UksrbPc54xhKLTr3op4bG0I0boMKerCu0sWoL7gb 3xUjxlYp1rdvDJyhRRsNvqtHYDHvAQfU/04wAEuURjPhGMNJ+9YJ5Ma1AEOKTaNX DL0OsrE12E+8CSUCxDuKp6M5ylxAl6CvnklXRq0q5L2g1QXX2KejadTjx/os/7Fb w9pjy0nucfo2rv00GOaGXbitZPxKJlup -----END CERTIFICATE-----Generated at Thu Jul 24 05:04:24 2025 by rpki-client