$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft File: s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json) Hash identifier: yFffu755z0v0+99rbrO7gYp/W8LNgvlORivbxjWEcUw= Subject key identifier: 43:F2:6D:C0:8D:53:B3:16:94:59:89:11:17:20:32:5A:B6:DA:33:A9 Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft Manifest number: 0105 Signing time: Thu 03 Jul 2025 05:13:16 +0000 Manifest this update: Thu 03 Jul 2025 05:13:16 +0000 Manifest next update: Thu 10 Jul 2025 05:13:16 +0000 Files and hashes: 1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: wN1yZiSMqgNWmfTA8a8ztIxQJCYNlJxEg7FoFiLwW6I=) 2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Validity Not Before: Jul 3 05:13:16 2025 GMT Not After : Jul 10 05:13:16 2025 GMT Subject: CN=6866116c-df42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a2:8b:aa:2b:13:5a:e9:71:8c:39:6d:42:b3: dc:ff:bd:6d:03:7e:c3:61:28:2f:b3:d2:fc:16:53: e1:6a:c0:14:1a:35:4e:c8:b2:8d:d2:9c:d1:59:5b: ca:8d:2f:fb:bf:d8:0c:dd:f0:74:39:5f:4b:60:33: b8:4d:f3:93:62:30:7f:71:99:6c:6f:88:e1:3a:22: f8:8a:7a:76:25:76:a8:d8:1b:98:46:f6:a0:f1:6a: 80:bb:0b:58:9e:05:82:53:ef:6b:d1:f3:bb:53:13: 04:03:49:8d:a0:bb:d4:39:45:ce:b5:d2:66:67:3a: f0:4e:43:7e:4c:db:d8:8d:b2:59:35:7b:ae:7e:e2: 45:29:bc:28:81:c3:e5:a9:6e:8a:63:09:c8:58:43: f9:18:2c:ff:3b:cd:59:d3:d3:9d:1d:fd:ed:97:66: af:0d:3d:ed:5d:4f:28:7d:e8:2a:11:01:c8:44:e4: 47:be:a9:7c:70:0d:75:a3:54:46:31:41:7e:14:65: 83:a2:fb:86:6e:a8:e4:6f:69:5b:aa:64:26:62:84: 9a:66:73:22:f6:ef:b3:dd:9a:1e:85:28:2c:78:53: 14:f9:65:72:91:31:3b:5e:2f:cf:84:2d:46:f9:d2: 00:4a:1a:0f:62:8d:58:b4:4e:3d:d9:24:29:f8:64: ca:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F2:6D:C0:8D:53:B3:16:94:59:89:11:17:20:32:5A:B6:DA:33:A9 X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:37:ff:32:4f:72:bd:14:bb:3a:d6:65:38:b9:ee:ee:7a:b2: 82:63:82:16:ba:a4:2a:d7:97:e7:8c:a7:30:39:8d:be:58:c0: 7e:1a:4c:1a:7f:46:c9:ab:02:76:a5:f4:36:02:1a:e3:68:e7: 79:b2:e0:6f:c8:fa:a2:40:12:fe:6e:b5:e0:fa:6d:e2:e6:13: b1:98:a8:6a:90:52:e5:48:b9:4a:b2:0a:3e:7c:e4:26:be:41: 8d:8a:8b:e7:fc:c1:ae:2d:2c:c9:41:4f:d8:4a:8b:6e:0e:d4: 32:03:05:93:91:1f:67:0d:42:64:67:d2:26:fe:2e:ae:0a:21: f2:76:75:86:3d:e3:b5:32:13:cd:57:f7:54:6b:f2:34:79:91: 21:39:54:c3:6c:1b:25:c2:0a:0e:9d:36:c3:90:a8:82:b0:b4: 65:a6:70:d4:2d:4b:9e:3d:ee:59:ef:00:8b:a6:bf:5f:98:eb: 9a:36:63:2d:e9:bc:35:44:1c:07:73:0d:97:4b:52:18:1c:ef: 90:d8:ca:cf:dc:00:fd:a2:fb:c3:85:1e:bb:d3:dc:3c:0e:07: 50:3b:f7:86:c3:32:03:d4:ef:ab:2e:81:39:3b:d0:b6:1c:aa: 08:2b:85:59:62:ce:2f:d4:ac:7a:cd:83:31:64:24:df:7d:66: 51:4f:9d:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwMTgxMTAvBgNVBAUTKEIzRTk0MUExQzU1RDE0ODNBQjU3OTFEOTQ5ODc1MEUz RERBREVEQ0MwHhcNMjUwNzAzMDUxMzE2WhcNMjUwNzEwMDUxMzE2WjAYMRYwFAYD VQQDEw02ODY2MTE2Yy1kZjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqKLqisTWulxjDltQrPc/71tA37DYSgvs9L8FlPhasAUGjVOyLKN0pzRWVvK jS/7v9gM3fB0OV9LYDO4TfOTYjB/cZlsb4jhOiL4inp2JXao2BuYRvag8WqAuwtY ngWCU+9r0fO7UxMEA0mNoLvUOUXOtdJmZzrwTkN+TNvYjbJZNXuufuJFKbwogcPl qW6KYwnIWEP5GCz/O81Z09OdHf3tl2avDT3tXU8ofegqEQHIRORHvql8cA11o1RG MUF+FGWDovuGbqjkb2lbqmQmYoSaZnMi9u+z3ZoehSgseFMU+WVykTE7Xi/PhC1G +dIAShoPYo1YtE492SQp+GTK8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPybcCN U7MWlFmJERcgMlq22jOpMB8GA1UdIwQYMBaAFLPpQaHFXRSDq1eR2UmHUOPdre3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjAxOC8zMDc5RDgxMkM1 RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJT3JWNUhaU1lkUTQ5MnQ3 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjAxOC8zMDc5RDgxMkM1RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJ T3JWNUhaU1lkUTQ5MnQ3Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6N/8yT3K9FLs61mU4ue7uerKCY4IWuqQq15fnjKcwOY2+WMB+Gkwa f0bJqwJ2pfQ2AhrjaOd5suBvyPqiQBL+brXg+m3i5hOxmKhqkFLlSLlKsgo+fOQm vkGNiovn/MGuLSzJQU/YSotuDtQyAwWTkR9nDUJkZ9Im/i6uCiHydnWGPeO1MhPN V/dUa/I0eZEhOVTDbBslwgoOnTbDkKiCsLRlpnDULUuePe5Z7wCLpr9fmOuaNmMt 6bw1RBwHcw2XS1IYHO+Q2MrP3AD9ovvDhR6709w8DgdQO/eGwzID1O+rLoE5O9C2 HKoIK4VZYs4v1Kx6zYMxZCTffWZRT50S -----END CERTIFICATE-----Generated at Fri Jul 4 12:05:24 2025 by rpki-client