$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft File: s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json) Hash identifier: Z5Zz4McVfg2kKnE35GGx9eBLmpvzbH5BG7ZplYR5frA= Subject key identifier: F8:C3:6E:46:C1:93:9A:A9:CA:B1:56:1D:24:F7:E1:A7:8A:DD:24:4D Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft Manifest number: E3 Signing time: Fri 25 Apr 2025 04:29:53 +0000 Manifest this update: Fri 25 Apr 2025 04:29:53 +0000 Manifest next update: Fri 02 May 2025 04:29:53 +0000 Files and hashes: 1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: nHzqqvZ6VgcHm8eZzqjeR315mX2WMRT6doV0hpyZNLg=) 2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Validity Not Before: Apr 25 04:29:53 2025 GMT Not After : May 2 04:29:53 2025 GMT Subject: CN=680b0fc1-64fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:9a:99:89:ac:c4:41:81:80:50:66:0a:a4:ec: 2e:12:a3:65:a6:52:ff:8a:be:1b:24:88:7a:c1:7e: c2:74:59:a8:09:61:6d:0e:54:61:db:bd:93:2f:c9: c5:d7:04:2d:0a:83:d4:0b:4d:98:ca:40:2e:3f:14: 21:2b:dc:e9:18:51:4e:6d:13:ca:6f:b3:e0:4a:98: 32:10:a8:f6:fc:2c:50:46:e0:88:da:89:da:15:05: 9f:99:7f:2a:22:7a:8b:ae:c8:3a:e8:85:d0:f3:eb: f6:d6:90:64:48:49:d1:d9:37:91:7d:f9:3d:3e:b4: e1:1f:5d:27:25:7e:43:de:42:d5:fb:90:60:f2:65: d8:31:c9:23:8b:e2:e1:cf:27:6b:83:27:01:de:a7: b6:e6:cc:e6:8d:b5:ee:dc:1c:f1:5e:9d:25:b9:f7: c5:23:a7:27:85:3e:27:7a:de:cc:ea:42:66:8d:63: ab:0f:c9:b1:e0:b7:26:81:21:64:fc:ab:c9:66:23: 59:3d:7d:b7:9a:1a:a9:9d:f7:d4:df:b4:26:e5:dd: 7e:eb:64:fe:5b:1d:d3:a0:b7:aa:c5:99:41:cd:2f: 7e:f0:a8:a1:37:73:77:6d:fb:35:aa:d6:34:15:7d: 51:3d:4c:14:46:75:39:ba:56:da:92:36:0c:74:c8: 3b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C3:6E:46:C1:93:9A:A9:CA:B1:56:1D:24:F7:E1:A7:8A:DD:24:4D X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:35:4c:39:c8:7f:87:f7:d4:db:a7:2f:bd:69:1e:72:cd:8b: c8:23:04:2c:06:8c:ed:b7:2a:8e:a8:c8:64:11:9e:62:b8:fd: 0a:9e:6a:83:1d:33:b0:92:a2:25:de:63:a9:6a:e0:d6:60:f5: c8:93:c2:8f:b8:d8:eb:51:e5:be:e3:e2:6a:cb:0b:0f:89:02: 34:e6:9a:de:7b:b8:e8:ff:7f:15:f2:60:08:e7:28:d0:7f:a9: cb:21:1b:f5:3a:84:78:58:b4:f4:3b:d2:e7:8e:c7:13:62:2f: 33:c2:28:2b:39:5e:f5:12:c0:47:46:bd:20:25:d8:05:23:c3: 50:a1:c8:e6:59:ef:4b:18:f8:5d:1f:b3:ef:7a:4f:73:f1:09: 29:08:fd:a7:41:81:57:5d:0b:e0:81:f9:09:01:a1:29:5f:bb: 44:6f:8d:f0:4c:e1:7e:47:5b:30:ba:1f:96:f5:be:3f:8c:1a: 38:69:02:6b:a3:95:51:5b:ca:f0:a1:40:45:a3:9d:6e:a0:6e: 68:66:68:7d:dc:b7:f0:49:b3:d9:fa:82:e7:ca:7c:c8:e8:87: 5e:bf:62:9b:ff:df:a8:2a:23:29:ee:5f:42:74:3b:23:6b:a5: 9f:57:37:f0:20:8c:be:3d:b3:bb:0d:7d:d1:c5:60:83:8b:63: 88:b2:30:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwMTgxMTAvBgNVBAUTKEIzRTk0MUExQzU1RDE0ODNBQjU3OTFEOTQ5ODc1MEUz RERBREVEQ0MwHhcNMjUwNDI1MDQyOTUzWhcNMjUwNTAyMDQyOTUzWjAYMRYwFAYD VQQDEw02ODBiMGZjMS02NGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ZqZiazEQYGAUGYKpOwuEqNlplL/ir4bJIh6wX7CdFmoCWFtDlRh272TL8nF 1wQtCoPUC02YykAuPxQhK9zpGFFObRPKb7PgSpgyEKj2/CxQRuCI2onaFQWfmX8q InqLrsg66IXQ8+v21pBkSEnR2TeRffk9PrThH10nJX5D3kLV+5Bg8mXYMckji+Lh zydrgycB3qe25szmjbXu3BzxXp0luffFI6cnhT4net7M6kJmjWOrD8mx4LcmgSFk /KvJZiNZPX23mhqpnffU37Qm5d1+62T+Wx3ToLeqxZlBzS9+8KihN3N3bfs1qtY0 FX1RPUwURnU5ulbakjYMdMg7OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjDbkbB k5qpyrFWHST34aeK3SRNMB8GA1UdIwQYMBaAFLPpQaHFXRSDq1eR2UmHUOPdre3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjAxOC8zMDc5RDgxMkM1 RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJT3JWNUhaU1lkUTQ5MnQ3 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjAxOC8zMDc5RDgxMkM1RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJ T3JWNUhaU1lkUTQ5MnQ3Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4NUw5yH+H99Tbpy+9aR5yzYvIIwQsBozttyqOqMhkEZ5iuP0KnmqD HTOwkqIl3mOpauDWYPXIk8KPuNjrUeW+4+JqywsPiQI05pree7jo/38V8mAI5yjQ f6nLIRv1OoR4WLT0O9LnjscTYi8zwigrOV71EsBHRr0gJdgFI8NQocjmWe9LGPhd H7Pvek9z8QkpCP2nQYFXXQvggfkJAaEpX7tEb43wTOF+R1swuh+W9b4/jBo4aQJr o5VRW8rwoUBFo51uoG5oZmh93LfwSbPZ+oLnynzI6Idev2Kb/9+oKiMp7l9CdDsj a6WfVzfwIIy+PbO7DX3RxWCDi2OIsjB1 -----END CERTIFICATE-----Generated at Sat Apr 26 17:21:43 2025 by rpki-client