$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft File: s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json) Hash identifier: T4oBM2TxodhfVme+Z4Dgaxn54s4YGnX6vVb3CSSB4hs= Subject key identifier: F8:6C:A1:99:49:1E:32:9C:32:53:83:89:93:27:D9:12:AF:BB:82:A5 Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft Manifest number: 0119 Signing time: Mon 11 Aug 2025 04:57:51 +0000 Manifest this update: Mon 11 Aug 2025 04:57:50 +0000 Manifest next update: Mon 18 Aug 2025 04:57:50 +0000 Files and hashes: 1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: cIfP+uiyfjq65la+VeaMRxYx0XkOmiQwIzkdlpNjAOo=) 2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Validity Not Before: Aug 11 04:57:50 2025 GMT Not After : Aug 18 04:57:50 2025 GMT Subject: CN=6899784e-217e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:97:24:33:74:ec:52:a6:5e:9e:e7:7b:8e:d2: 17:74:cd:0e:c0:12:02:21:7e:5d:88:09:e3:0b:a4: ec:01:71:4d:a5:9a:2f:7e:f7:29:58:8b:ef:e6:1d: d5:4a:50:28:b2:6f:58:5c:27:05:00:ae:cb:fc:e4: d0:53:59:9c:de:39:f7:6f:de:04:41:58:6d:f8:7f: c7:3d:90:14:5f:3e:4f:8f:dd:7e:bc:df:18:4c:88: e0:7e:0a:36:8c:80:c5:d2:e6:6a:9e:ce:f2:63:bc: e7:05:1b:1f:63:a8:4f:87:23:76:61:c7:13:df:0a: 6b:c8:35:8d:a1:c2:27:08:0d:97:1b:11:9c:a5:a5: 58:4b:66:a3:19:3f:c9:cd:e9:22:39:b5:69:56:c4: 16:d7:bc:7d:70:88:d6:79:a5:b8:0c:f0:25:be:30: 03:75:a9:fb:b3:f6:2e:8d:03:39:2f:fb:d1:a3:83: 08:53:70:b6:90:d9:d8:87:b3:b6:e3:84:d9:24:22: 09:73:26:f8:7e:3b:7c:7e:06:d1:02:c1:68:8f:8c: 58:80:b6:3d:f6:77:76:85:e1:bb:2c:b5:0f:d4:35: a5:74:48:ba:17:e9:b0:b7:76:e2:3f:e3:74:43:7c: 22:19:95:d9:bc:a0:af:2f:80:bd:cf:fe:af:72:fb: 3d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:6C:A1:99:49:1E:32:9C:32:53:83:89:93:27:D9:12:AF:BB:82:A5 X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:b4:87:53:5f:1a:7b:3d:52:39:f1:94:6f:0b:10:7a:7b:8d: 0d:78:f9:ca:ec:e8:50:43:95:28:87:8a:09:4f:16:b5:3d:fd: 86:9d:c4:9d:ae:53:b4:60:9a:ea:c6:3a:03:e3:12:03:13:fa: a5:64:01:a3:52:13:fa:50:da:d9:7f:79:c3:72:4f:f3:00:0a: 54:5a:fe:eb:3e:14:21:2b:7e:72:db:ee:63:1b:d9:8b:80:b8: 67:f0:01:6a:fd:a5:14:05:f0:9c:22:ce:d8:b4:5c:57:8f:d8: 4a:93:10:ce:ef:32:2d:58:db:9e:24:26:f6:7f:34:10:9b:74: 47:21:dc:9e:b6:d2:4b:e1:6a:61:9c:fb:36:2b:39:ba:b7:e5: aa:88:d0:72:46:e1:d4:8f:f4:e6:b5:95:b9:36:14:51:33:4f: 7a:67:63:43:d6:55:4f:4a:a9:eb:28:f0:ac:9c:46:1e:a3:f4: e6:98:d2:79:04:ab:93:45:03:01:e6:32:00:b2:b4:81:a6:ad: 4d:84:de:a0:1e:9b:68:44:fb:49:2f:6b:53:50:bc:af:c2:42: 5b:29:cc:91:13:ee:63:4b:62:2c:32:7a:45:65:a4:2e:cf:0b: 63:70:1c:37:2e:90:63:9d:64:0f:3f:78:2d:8e:4f:e8:d9:5a: 8e:72:1d:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwMTgxMTAvBgNVBAUTKEIzRTk0MUExQzU1RDE0ODNBQjU3OTFEOTQ5ODc1MEUz RERBREVEQ0MwHhcNMjUwODExMDQ1NzUwWhcNMjUwODE4MDQ1NzUwWjAYMRYwFAYD VQQDEw02ODk5Nzg0ZS0yMTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5ckM3TsUqZenud7jtIXdM0OwBICIX5diAnjC6TsAXFNpZovfvcpWIvv5h3V SlAosm9YXCcFAK7L/OTQU1mc3jn3b94EQVht+H/HPZAUXz5Pj91+vN8YTIjgfgo2 jIDF0uZqns7yY7znBRsfY6hPhyN2YccT3wpryDWNocInCA2XGxGcpaVYS2ajGT/J zekiObVpVsQW17x9cIjWeaW4DPAlvjADdan7s/YujQM5L/vRo4MIU3C2kNnYh7O2 44TZJCIJcyb4fjt8fgbRAsFoj4xYgLY99nd2heG7LLUP1DWldEi6F+mwt3biP+N0 Q3wiGZXZvKCvL4C9z/6vcvs9EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhsoZlJ HjKcMlODiZMn2RKvu4KlMB8GA1UdIwQYMBaAFLPpQaHFXRSDq1eR2UmHUOPdre3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjAxOC8zMDc5RDgxMkM1 RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJT3JWNUhaU1lkUTQ5MnQ3 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjAxOC8zMDc5RDgxMkM1RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJ T3JWNUhaU1lkUTQ5MnQ3Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAatIdTXxp7PVI58ZRvCxB6e40NePnK7OhQQ5Uoh4oJTxa1Pf2GncSd rlO0YJrqxjoD4xIDE/qlZAGjUhP6UNrZf3nDck/zAApUWv7rPhQhK35y2+5jG9mL gLhn8AFq/aUUBfCcIs7YtFxXj9hKkxDO7zItWNueJCb2fzQQm3RHIdyettJL4Wph nPs2Kzm6t+WqiNByRuHUj/TmtZW5NhRRM096Z2ND1lVPSqnrKPCsnEYeo/TmmNJ5 BKuTRQMB5jIAsrSBpq1NhN6gHptoRPtJL2tTULyvwkJbKcyRE+5jS2IsMnpFZaQu zwtjcBw3LpBjnWQPP3gtjk/o2VqOch1o -----END CERTIFICATE-----Generated at Mon Aug 11 07:36:20 2025 by rpki-client