$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft File: s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json) Hash identifier: Hofzp98OWcrYFq1taRPdicFJCc8uNNWNcD6yv//D5Pk= Subject key identifier: F5:81:7F:A9:8F:0E:AA:F8:10:41:2A:90:E9:2D:A1:E2:9B:36:04:E8 Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft Manifest number: FF Signing time: Sat 21 Jun 2025 04:15:01 +0000 Manifest this update: Sat 21 Jun 2025 04:15:01 +0000 Manifest next update: Sat 28 Jun 2025 04:15:01 +0000 Files and hashes: 1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: mktkriz+0d1EpUSSIyNyZLGkCraoUVQIFWn0gKUbG2Q=) 2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Validity Not Before: Jun 21 04:15:01 2025 GMT Not After : Jun 28 04:15:01 2025 GMT Subject: CN=685631c5-1d8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:bc:1e:b4:dc:ce:b5:15:62:61:38:06:b2:d0: 81:6e:b2:79:17:73:e0:19:23:e0:a6:4a:65:7f:5e: 5e:ed:1e:c2:2b:d7:fe:90:bc:f1:ba:c7:8a:52:91: 19:0f:9b:e0:38:b9:c3:d2:c5:7b:3c:c4:c5:1f:c6: e6:30:89:52:a4:33:d0:df:9d:7e:06:a9:19:ff:fc: cf:dc:b8:03:5b:85:9f:2c:8c:20:5f:01:dd:5a:49: f1:b5:9f:a4:af:f3:d5:8b:f6:49:42:55:59:04:4d: f9:e5:76:9b:d6:b1:9d:33:b7:1c:7b:e6:04:c3:66: 53:ad:74:ba:e9:cb:4f:fc:8f:e5:b4:2c:64:b7:23: 70:8f:59:ce:3d:a4:1c:9f:b7:b6:95:89:cd:74:45: f8:b3:a4:4b:77:f3:1a:e0:a7:d9:14:6c:1e:81:0e: 96:fa:68:3b:2d:95:5a:7d:c9:a3:4f:14:80:1a:32: d3:ca:05:46:6e:ab:6a:67:b5:eb:7e:c7:a5:c4:7a: ed:f4:0a:6d:8c:64:7d:a8:75:6b:be:04:9f:9d:2e: b5:22:73:db:e8:c4:3e:99:39:a6:8c:31:1f:9e:f7: da:4d:22:e2:cc:02:f2:db:3e:47:e5:ef:32:27:34: 38:ea:91:4f:6a:24:4e:2c:7e:d5:3f:05:14:c5:b3: a5:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:81:7F:A9:8F:0E:AA:F8:10:41:2A:90:E9:2D:A1:E2:9B:36:04:E8 X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:eb:c6:cc:02:b6:7f:ab:2f:20:f1:af:75:83:3f:2e:42:ee: f0:0a:96:4e:4e:3a:cf:7d:66:d8:3b:0b:d6:8a:db:da:41:bd: 9d:13:78:40:f1:c0:f4:81:ba:e8:03:ac:c4:ae:7a:fc:32:1f: 47:01:2e:55:69:da:52:0a:e5:81:10:4a:17:2d:32:c7:18:2e: c6:2d:ed:1d:7e:e9:4c:36:f7:f1:98:03:b0:b5:47:5a:ab:b8: 39:99:b8:da:a9:9c:b8:69:94:23:b9:d6:33:f6:ef:ac:e6:6f: 14:ee:6e:64:00:93:f9:68:e1:bb:7c:24:c3:cb:10:fc:2e:7b: c7:1a:c8:00:42:ba:5d:b8:cc:5c:6b:32:ee:88:b5:77:8a:64: 9c:e2:2d:4e:ff:19:f1:68:95:74:4a:89:41:46:b9:e3:de:18: dd:bc:43:7d:da:4b:67:84:e1:b7:f7:15:9d:fd:5f:be:cf:7d: 32:89:e2:36:9c:94:22:0a:54:d8:d1:3d:0a:24:77:6f:35:49: 59:08:df:71:ce:f6:54:b5:cc:e4:0d:8a:ca:d5:ed:ea:a0:5c: 57:8d:f2:26:13:02:a0:35:34:2d:39:de:60:9e:d5:7f:1b:1d: 8d:b8:c6:d4:d2:e7:87:c0:d7:96:10:70:59:40:0d:e0:84:05: 6f:52:12:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwMTgxMTAvBgNVBAUTKEIzRTk0MUExQzU1RDE0ODNBQjU3OTFEOTQ5ODc1MEUz RERBREVEQ0MwHhcNMjUwNjIxMDQxNTAxWhcNMjUwNjI4MDQxNTAxWjAYMRYwFAYD VQQDEw02ODU2MzFjNS0xZDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bwetNzOtRViYTgGstCBbrJ5F3PgGSPgpkplf15e7R7CK9f+kLzxuseKUpEZ D5vgOLnD0sV7PMTFH8bmMIlSpDPQ351+BqkZ//zP3LgDW4WfLIwgXwHdWknxtZ+k r/PVi/ZJQlVZBE355Xab1rGdM7cce+YEw2ZTrXS66ctP/I/ltCxktyNwj1nOPaQc n7e2lYnNdEX4s6RLd/Ma4KfZFGwegQ6W+mg7LZVafcmjTxSAGjLTygVGbqtqZ7Xr fselxHrt9AptjGR9qHVrvgSfnS61InPb6MQ+mTmmjDEfnvfaTSLizALy2z5H5e8y JzQ46pFPaiROLH7VPwUUxbOlyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWBf6mP Dqr4EEEqkOktoeKbNgToMB8GA1UdIwQYMBaAFLPpQaHFXRSDq1eR2UmHUOPdre3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjAxOC8zMDc5RDgxMkM1 RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJT3JWNUhaU1lkUTQ5MnQ3 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjAxOC8zMDc5RDgxMkM1RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJ T3JWNUhaU1lkUTQ5MnQ3Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm68bMArZ/qy8g8a91gz8uQu7wCpZOTjrPfWbYOwvWitvaQb2dE3hA 8cD0gbroA6zErnr8Mh9HAS5VadpSCuWBEEoXLTLHGC7GLe0dfulMNvfxmAOwtUda q7g5mbjaqZy4aZQjudYz9u+s5m8U7m5kAJP5aOG7fCTDyxD8LnvHGsgAQrpduMxc azLuiLV3imSc4i1O/xnxaJV0SolBRrnj3hjdvEN92ktnhOG39xWd/V++z30yieI2 nJQiClTY0T0KJHdvNUlZCN9xzvZUtczkDYrK1e3qoFxXjfImEwKgNTQtOd5gntV/ Gx2NuMbU0ueHwNeWEHBZQA3ghAVvUhLV -----END CERTIFICATE-----Generated at Sat Jun 21 11:28:43 2025 by rpki-client