$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft File: s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json) Hash identifier: CxVMRbUSzDxsGmsjUjLaE5nstcc1GmfPdE0YiTfQV6U= Subject key identifier: A9:F7:82:45:3D:B2:37:DA:CF:18:D4:CB:91:6D:C8:45:40:91:1F:C8 Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft Manifest number: EE Signing time: Sat 17 May 2025 04:52:33 +0000 Manifest this update: Sat 17 May 2025 04:52:32 +0000 Manifest next update: Sat 24 May 2025 04:52:32 +0000 Files and hashes: 1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: Vfv32LMH8i7vQ4cR31j+o1ZNX2fYzQ1pEZsabbDmPEc=) 2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 04:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Validity Not Before: May 17 04:52:32 2025 GMT Not After : May 24 04:52:32 2025 GMT Subject: CN=68281610-b45c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1f:4d:82:09:ec:d6:e6:13:d6:d4:e5:2b:d8: ca:8f:8d:98:a5:9f:94:4c:db:0e:a5:d4:86:d8:56: fe:be:a5:b8:27:66:03:6f:fe:43:f4:23:cf:1d:69: 6c:78:92:71:60:30:41:27:e8:19:73:37:64:a0:88: 8c:6b:72:57:ab:70:51:35:b2:32:cc:27:4d:73:e1: 86:5e:4d:95:25:ab:39:ac:94:70:21:40:df:11:46: 44:9e:88:16:9e:9e:5d:da:76:a4:c7:d3:10:06:49: 8e:45:33:5b:09:91:a1:4c:b7:c1:da:d2:9f:45:c9: e9:6b:7a:60:89:c0:1d:c1:72:bc:35:a6:1e:c4:2e: 64:44:c7:35:b8:2b:3d:9f:1e:1d:f2:bd:88:e5:b9: 06:8f:76:ae:2b:da:ad:4e:f2:ed:48:a1:a7:e7:68: 9e:9e:4d:b4:22:ff:01:b3:9e:74:ab:34:e0:bc:4f: 5e:01:1e:f5:4c:ee:39:ca:3e:31:de:3c:41:0b:9b: 05:35:a8:27:59:bf:32:b8:5a:f8:1e:cb:94:3a:97: c5:f0:0a:04:99:33:eb:96:a9:5a:a0:2f:7a:33:65: 06:e1:a9:c8:4a:fa:cf:51:31:9a:cf:1c:e2:55:7e: 10:19:f4:41:5f:d5:57:63:23:c5:cd:75:ab:a9:5d: 3f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:F7:82:45:3D:B2:37:DA:CF:18:D4:CB:91:6D:C8:45:40:91:1F:C8 X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:4d:03:69:c8:4d:32:0b:59:a7:1d:45:c8:3a:78:f0:72:56: 49:fa:d9:c6:6c:9d:14:62:da:51:a5:eb:4a:1f:95:8d:b0:38: 30:be:1d:e7:23:ef:6c:42:5b:66:c9:ac:b7:aa:dc:49:b1:21: 85:34:06:e3:66:1c:ed:3e:e2:8f:dc:70:c1:dc:21:5c:65:7f: d5:d7:cb:c6:e2:be:e4:12:37:27:5c:0e:bf:d7:35:96:09:78: 2f:48:8a:82:c0:36:6a:c0:dc:c9:d3:21:e4:b3:5f:e4:da:6c: cc:ed:04:6f:e3:e6:35:98:22:e9:f7:26:1f:20:51:4e:f8:e9: a5:de:2b:50:63:68:a2:ee:57:5d:80:f3:fd:60:c8:96:02:58: fa:8d:b9:d2:59:6d:c6:13:e0:cb:dd:7d:f8:cf:db:9b:7d:54: f1:5e:4e:1b:7b:10:0e:54:22:94:9c:89:4a:77:5a:b3:d5:27: 58:13:5c:52:ed:51:41:e4:31:55:01:57:e5:d3:0a:c7:15:c8: 7a:13:c4:0b:ca:58:a9:2e:cf:99:15:ec:7f:c9:c2:ed:96:ef: ce:6c:94:5a:90:24:ea:46:f0:a3:3a:af:cb:bb:bd:37:0d:11: 50:98:79:d5:d2:76:b3:fd:fa:af:da:14:8c:e0:1d:ff:82:b5: b3:a1:cf:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwMTgxMTAvBgNVBAUTKEIzRTk0MUExQzU1RDE0ODNBQjU3OTFEOTQ5ODc1MEUz RERBREVEQ0MwHhcNMjUwNTE3MDQ1MjMyWhcNMjUwNTI0MDQ1MjMyWjAYMRYwFAYD VQQDEw02ODI4MTYxMC1iNDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsh9Nggns1uYT1tTlK9jKj42YpZ+UTNsOpdSG2Fb+vqW4J2YDb/5D9CPPHWls eJJxYDBBJ+gZczdkoIiMa3JXq3BRNbIyzCdNc+GGXk2VJas5rJRwIUDfEUZEnogW np5d2nakx9MQBkmORTNbCZGhTLfB2tKfRcnpa3pgicAdwXK8NaYexC5kRMc1uCs9 nx4d8r2I5bkGj3auK9qtTvLtSKGn52ienk20Iv8Bs550qzTgvE9eAR71TO45yj4x 3jxBC5sFNagnWb8yuFr4HsuUOpfF8AoEmTPrlqlaoC96M2UG4anISvrPUTGazxzi VX4QGfRBX9VXYyPFzXWrqV0/KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKn3gkU9 sjfazxjUy5FtyEVAkR/IMB8GA1UdIwQYMBaAFLPpQaHFXRSDq1eR2UmHUOPdre3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjAxOC8zMDc5RDgxMkM1 RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJT3JWNUhaU1lkUTQ5MnQ3 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjAxOC8zMDc5RDgxMkM1RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJ T3JWNUhaU1lkUTQ5MnQ3Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDETQNpyE0yC1mnHUXIOnjwclZJ+tnGbJ0UYtpRpetKH5WNsDgwvh3n I+9sQltmyay3qtxJsSGFNAbjZhztPuKP3HDB3CFcZX/V18vG4r7kEjcnXA6/1zWW CXgvSIqCwDZqwNzJ0yHks1/k2mzM7QRv4+Y1mCLp9yYfIFFO+Oml3itQY2ii7ldd gPP9YMiWAlj6jbnSWW3GE+DL3X34z9ubfVTxXk4bexAOVCKUnIlKd1qz1SdYE1xS 7VFB5DFVAVfl0wrHFch6E8QLylipLs+ZFex/ycLtlu/ObJRakCTqRvCjOq/Lu703 DRFQmHnV0naz/fqv2hSM4B3/grWzoc+F -----END CERTIFICATE-----Generated at Sat May 17 20:35:16 2025 by rpki-client