$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft File: s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json) Hash identifier: Mmpw6kMoBkMqGxrICJp1FL7zw0wpEwKHjjljQgfBcqA= Subject key identifier: 7E:69:D1:EB:20:6F:4C:89:B6:51:65:2A:A8:70:54:4B:1F:EF:47:D4 Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: 0147 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft Manifest number: 0145 Signing time: Wed 05 Nov 2025 04:29:06 +0000 Manifest this update: Wed 05 Nov 2025 04:29:05 +0000 Manifest next update: Wed 12 Nov 2025 04:29:05 +0000 Files and hashes: 1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: hooURGuZZkm4UFIp0SgqlKmHFkFUja9UXk7XY4dMP38=) 2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Validity Not Before: Nov 5 04:29:05 2025 GMT Not After : Nov 12 04:29:05 2025 GMT Subject: CN=690ad291-c789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:3a:85:b2:b5:29:18:3a:f6:b4:96:85:5b:c3: 70:f5:61:b6:50:82:a6:60:68:fd:d9:d8:a3:66:10: 23:8d:fa:cd:8b:9c:95:2a:58:fe:e8:6f:df:6f:92: 81:6e:61:5e:90:3a:b5:a6:4a:27:e9:04:43:04:1c: d2:9c:31:84:06:1b:54:07:da:56:c0:a9:67:ca:f8: e9:c8:39:ed:c1:7a:29:53:94:80:72:e0:ba:06:ad: 01:d5:b8:5b:cb:a4:ef:76:88:1c:ff:fe:29:35:84: 1b:70:46:ed:e6:8d:76:16:16:f6:b8:97:a3:8d:ee: 82:d9:c5:8d:55:90:0d:3b:a3:80:b2:90:b8:2c:81: 5f:1b:02:20:5e:56:86:dd:0a:0a:3f:23:ce:85:11: 80:14:76:dd:d7:99:da:b5:c4:fc:36:18:77:22:6a: 48:46:72:40:43:33:98:da:b5:f0:77:64:ce:7f:78: 46:04:d6:fc:15:18:3c:3b:e3:95:67:5d:2c:60:86: 16:02:ac:26:5b:08:57:50:a0:5c:65:f8:39:14:a8: 62:05:d1:28:ef:9e:38:06:6e:69:85:76:79:f8:30: 14:f3:c0:6b:e0:5e:eb:b3:0f:d3:3c:d1:e6:25:c1: 14:e5:1c:a8:cf:8f:f7:ba:ad:ec:31:a5:24:78:2e: 62:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:69:D1:EB:20:6F:4C:89:B6:51:65:2A:A8:70:54:4B:1F:EF:47:D4 X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:1c:ca:53:a6:e3:d3:2d:89:ba:be:55:ca:cf:c4:20:39:a5: fc:41:0d:7a:75:5c:75:ce:47:e5:31:76:c7:4a:91:4c:21:29: 63:1c:c2:50:85:b0:3d:85:6d:84:0c:4e:d9:b9:27:c4:1e:69: 37:26:ba:cc:5c:86:1d:ad:f4:49:92:98:27:41:b5:69:98:2e: fb:68:cc:05:07:be:83:e8:5b:5d:85:cb:57:86:9c:0b:c2:15: 45:79:af:a8:85:b7:1c:34:59:a8:6c:56:f1:86:f9:84:50:b5: e5:28:51:5b:ab:2c:1b:25:b3:87:7f:75:c4:e8:9e:ff:84:6b: 9b:91:46:55:70:b1:85:62:1f:08:93:99:24:68:ff:63:4b:bd: f9:dc:b6:5a:fe:e2:37:7f:af:7b:c7:07:21:be:0b:61:9f:4b: 89:54:ef:8d:ea:ae:1a:ed:c7:41:33:12:1a:74:a1:ba:be:44: 19:dd:82:44:f4:a1:44:f4:98:bd:94:3b:c6:05:3d:67:4e:19: 82:35:e3:05:4a:ec:be:98:ab:c2:e2:e2:23:7b:a3:9b:0e:eb: 0c:25:ac:6b:f9:3e:ca:3e:c3:c2:e3:49:7f:c4:4e:00:1f:12: 49:21:d3:a5:f7:c0:90:6a:3e:e6:a8:f7:c8:2e:95:21:f8:b3: 43:2e:3f:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwMTgxMTAvBgNVBAUTKEIzRTk0MUExQzU1RDE0ODNBQjU3OTFEOTQ5ODc1MEUz RERBREVEQ0MwHhcNMjUxMTA1MDQyOTA1WhcNMjUxMTEyMDQyOTA1WjAYMRYwFAYD VQQDEw02OTBhZDI5MS1jNzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7DqFsrUpGDr2tJaFW8Nw9WG2UIKmYGj92dijZhAjjfrNi5yVKlj+6G/fb5KB bmFekDq1pkon6QRDBBzSnDGEBhtUB9pWwKlnyvjpyDntwXopU5SAcuC6Bq0B1bhb y6Tvdogc//4pNYQbcEbt5o12Fhb2uJejje6C2cWNVZANO6OAspC4LIFfGwIgXlaG 3QoKPyPOhRGAFHbd15natcT8Nhh3ImpIRnJAQzOY2rXwd2TOf3hGBNb8FRg8O+OV Z10sYIYWAqwmWwhXUKBcZfg5FKhiBdEo7544Bm5phXZ5+DAU88Br4F7rsw/TPNHm JcEU5Ryoz4/3uq3sMaUkeC5i2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5p0esg b0yJtlFlKqhwVEsf70fUMB8GA1UdIwQYMBaAFLPpQaHFXRSDq1eR2UmHUOPdre3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjAxOC8zMDc5RDgxMkM1 RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJT3JWNUhaU1lkUTQ5MnQ3 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjAxOC8zMDc5RDgxMkM1RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJ T3JWNUhaU1lkUTQ5MnQ3Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9HMpTpuPTLYm6vlXKz8QgOaX8QQ16dVx1zkflMXbHSpFMISljHMJQ hbA9hW2EDE7ZuSfEHmk3JrrMXIYdrfRJkpgnQbVpmC77aMwFB76D6FtdhctXhpwL whVFea+ohbccNFmobFbxhvmEULXlKFFbqywbJbOHf3XE6J7/hGubkUZVcLGFYh8I k5kkaP9jS7353LZa/uI3f697xwchvgthn0uJVO+N6q4a7cdBMxIadKG6vkQZ3YJE 9KFE9Ji9lDvGBT1nThmCNeMFSuy+mKvC4uIje6ObDusMJaxr+T7KPsPC40l/xE4A HxJJIdOl98CQaj7mqPfILpUh+LNDLj+K -----END CERTIFICATE-----Generated at Wed Nov 5 13:52:25 2025 by rpki-client