$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft File: s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json) Hash identifier: e/u3GSjVjp9++4yirDylgo4tasz/0tGGIG3FeHaZXXM= Subject key identifier: B4:22:B8:BC:24:EF:A6:72:68:F5:96:6F:DD:95:C5:92:3F:AC:02:A5 Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft Manifest number: 011F Signing time: Sat 23 Aug 2025 04:53:15 +0000 Manifest this update: Sat 23 Aug 2025 04:53:14 +0000 Manifest next update: Sat 30 Aug 2025 04:53:14 +0000 Files and hashes: 1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: xe+xptAvBgBKXNKYlmQPDAZpSLQiAL7e6qa7d7ojBXA=) 2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:53:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Validity Not Before: Aug 23 04:53:14 2025 GMT Not After : Aug 30 04:53:14 2025 GMT Subject: CN=68a9493a-e19a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c7:71:4e:8f:9e:5e:d6:d4:ae:07:7f:2b:46: 2e:b3:a1:2b:53:63:3e:a9:ae:61:46:c3:cb:54:99: 88:e6:9b:90:06:d9:e9:12:25:c7:ca:ae:38:0b:3f: 65:7a:e2:f3:c4:e0:f1:2d:36:f0:56:f0:28:71:c4: ba:62:c9:b1:07:82:cc:08:f2:13:1f:90:89:8c:d1: c3:1b:a5:8b:ba:08:42:f5:15:e1:7e:23:3f:84:12: b4:9f:81:e1:32:36:3d:65:f0:fa:9a:09:b5:7c:dd: b6:93:08:b0:b1:9e:87:2a:04:14:66:95:aa:ef:ce: 50:4f:2c:91:60:e5:3a:38:8f:a9:5b:f8:15:02:81: 3e:75:ad:50:95:d9:5a:43:8d:8d:ad:a6:03:0f:44: f7:f6:de:2e:1b:56:d6:f2:ed:f5:31:13:52:d0:d0: ed:3f:ef:ac:2a:9e:64:6d:9f:96:02:5f:7e:4c:c3: 53:7e:71:c3:47:cd:e9:44:8b:d8:9b:ba:90:07:41: 3d:9a:04:e5:19:f3:24:01:e3:2d:ae:27:85:8a:c1: 29:f3:c9:ce:b6:0b:dc:e9:3c:76:97:f6:92:93:19: 8e:29:04:fe:a5:94:2b:88:d2:7f:e9:35:fd:1a:d8: 69:58:10:1b:99:9e:7e:83:77:98:c1:04:b3:94:9c: b0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:22:B8:BC:24:EF:A6:72:68:F5:96:6F:DD:95:C5:92:3F:AC:02:A5 X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:ce:d4:89:52:7f:b0:7e:97:16:58:3d:b6:69:b5:f5:e2:66: e5:f0:ac:db:5b:44:82:a3:19:c3:e3:87:e2:97:a4:a6:1a:a0: 0c:96:5d:d3:aa:b4:68:a8:3b:a2:af:6c:3e:d4:04:49:9f:88: cc:f2:f3:7e:3b:f0:53:47:05:09:60:50:a8:0d:14:0e:27:33: 02:ce:31:c0:8b:dd:15:94:66:d2:45:97:12:63:a6:38:fc:1c: 3d:9c:80:ac:b0:3b:f1:8b:15:ec:a1:73:1d:37:42:18:d8:a7: 0f:1b:c3:3c:9d:13:7c:cf:79:4a:d2:f7:f2:8f:7f:f9:e7:44: a9:40:e3:5c:c6:96:66:43:9e:4e:8c:9b:72:9f:81:7a:d5:22: cb:28:e1:03:25:b3:b3:81:ca:a9:9c:75:03:33:9d:9c:56:66: 8e:76:d8:67:56:6a:0d:a0:35:17:c4:be:e5:12:4c:4a:a7:a3: 0c:7f:9d:15:cc:df:9e:fa:38:31:fc:f9:03:e8:65:e3:83:47: 1a:11:6e:8f:04:6d:c6:1a:cc:e6:4d:1e:53:98:37:55:58:44: 02:a5:4e:46:9e:b7:2f:97:e6:15:8c:b9:0e:7d:bc:8b:41:be: aa:e0:e9:8b:ca:68:d8:21:06:47:d6:70:67:de:46:6d:ab:9f: 2d:02:07:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwMTgxMTAvBgNVBAUTKEIzRTk0MUExQzU1RDE0ODNBQjU3OTFEOTQ5ODc1MEUz RERBREVEQ0MwHhcNMjUwODIzMDQ1MzE0WhcNMjUwODMwMDQ1MzE0WjAYMRYwFAYD VQQDEw02OGE5NDkzYS1lMTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMdxTo+eXtbUrgd/K0Yus6ErU2M+qa5hRsPLVJmI5puQBtnpEiXHyq44Cz9l euLzxODxLTbwVvAoccS6YsmxB4LMCPITH5CJjNHDG6WLughC9RXhfiM/hBK0n4Hh MjY9ZfD6mgm1fN22kwiwsZ6HKgQUZpWq785QTyyRYOU6OI+pW/gVAoE+da1Qldla Q42NraYDD0T39t4uG1bW8u31MRNS0NDtP++sKp5kbZ+WAl9+TMNTfnHDR83pRIvY m7qQB0E9mgTlGfMkAeMtrieFisEp88nOtgvc6Tx2l/aSkxmOKQT+pZQriNJ/6TX9 GthpWBAbmZ5+g3eYwQSzlJywxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQiuLwk 76ZyaPWWb92VxZI/rAKlMB8GA1UdIwQYMBaAFLPpQaHFXRSDq1eR2UmHUOPdre3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjAxOC8zMDc5RDgxMkM1 RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJT3JWNUhaU1lkUTQ5MnQ3 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjAxOC8zMDc5RDgxMkM1RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJ T3JWNUhaU1lkUTQ5MnQ3Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1ztSJUn+wfpcWWD22abX14mbl8KzbW0SCoxnD44fil6SmGqAMll3T qrRoqDuir2w+1ARJn4jM8vN+O/BTRwUJYFCoDRQOJzMCzjHAi90VlGbSRZcSY6Y4 /Bw9nICssDvxixXsoXMdN0IY2KcPG8M8nRN8z3lK0vfyj3/550SpQONcxpZmQ55O jJtyn4F61SLLKOEDJbOzgcqpnHUDM52cVmaOdthnVmoNoDUXxL7lEkxKp6MMf50V zN+e+jgx/PkD6GXjg0caEW6PBG3GGszmTR5TmDdVWEQCpU5Gnrcvl+YVjLkOfbyL Qb6q4OmLymjYIQZH1nBn3kZtq58tAgcv -----END CERTIFICATE-----Generated at Sat Aug 23 20:42:14 2025 by rpki-client