$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft File: s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json) Hash identifier: 6063GNo2LO6cPBaeYcX3RpZXrmctpt8gJH+k+ZHni/g= Subject key identifier: F1:85:F4:6A:26:12:69:7F:CB:6D:64:4F:B5:B2:14:E1:A6:C7:06:4E Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft Manifest number: CD Signing time: Thu 13 Mar 2025 03:49:57 +0000 Manifest this update: Thu 13 Mar 2025 03:49:57 +0000 Manifest next update: Thu 20 Mar 2025 03:49:57 +0000 Files and hashes: 1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: HYCCSbSkjnUEjRyx/cXtWIthWKY6IFc97TzKg4PumlU=) 2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018 Validity Not Before: Mar 13 03:49:57 2025 GMT Not After : Mar 20 03:49:57 2025 GMT Subject: CN=67d255e5-cbf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:89:1a:bd:20:b6:c0:f4:09:7a:77:47:af:5e: d2:d4:01:ca:70:77:8a:bb:52:f5:ad:d6:b6:f1:8f: 77:6c:4f:f2:d4:96:0b:30:c1:9b:01:41:82:10:10: f2:a4:c2:1e:cf:33:65:86:67:42:42:cc:f5:2e:b6: 2d:82:33:b8:18:c8:1e:e6:83:73:95:41:a1:54:59: bc:db:79:12:fd:b0:58:54:b1:e6:ff:68:e9:a7:05: bf:25:df:40:19:c0:7b:d6:5f:64:2d:c3:62:45:44: 88:68:93:6d:20:fa:40:1d:2e:89:85:37:81:91:9c: 74:08:4e:6e:dc:18:42:6b:f9:d0:5a:25:06:cc:8f: ba:e7:a6:cd:6a:59:e8:d7:4a:86:90:e2:ba:01:af: 57:05:53:2f:26:57:f4:8b:64:c2:b4:99:46:42:f2: 52:fb:1a:a1:9a:42:c2:51:4b:1f:21:d4:c0:e7:eb: ad:80:e5:b4:a6:06:76:10:e9:cf:69:f0:6f:b8:8f: ba:2d:34:ec:03:83:cf:81:95:3c:5e:59:89:6f:30: d5:22:79:28:6e:de:0d:99:09:c1:d4:84:d6:1d:73: 2c:de:c6:51:d4:75:f7:56:d0:26:b9:98:51:bb:c5: 7c:8c:27:27:c4:19:1a:ce:54:72:fa:d4:07:57:2f: d9:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:85:F4:6A:26:12:69:7F:CB:6D:64:4F:B5:B2:14:E1:A6:C7:06:4E X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:fc:98:14:7f:16:35:b0:61:ea:6c:70:38:ff:e4:34:4d:f0: e0:29:6f:19:ea:a1:44:01:9b:9a:07:ba:30:17:40:ed:4d:9a: 7d:c3:74:44:a1:0c:8a:30:2c:fa:ad:b1:49:71:54:5d:cb:6b: f4:cb:3d:0f:f1:c4:b3:9b:d6:b8:f5:60:85:3a:12:02:87:bd: 30:95:a2:45:cd:34:28:8d:7a:1f:62:af:c0:34:05:b2:85:64: 61:19:9c:9a:4b:31:03:75:51:fd:92:13:26:ac:f8:67:56:eb: 3e:3d:e5:3f:fd:04:02:b9:39:43:a6:da:47:ad:db:4d:09:5e: 4c:36:b0:39:23:98:44:62:61:e1:9b:30:0d:9c:98:ec:60:8f: cd:67:7f:33:78:1d:3a:83:c5:7f:80:6e:ce:48:ba:ca:70:3e: 3c:ae:70:f1:c3:da:93:4b:90:13:9b:f5:48:05:55:cd:9f:d8: 27:85:c7:2d:55:7c:6e:76:96:de:69:99:0e:ff:38:af:73:bf: c6:43:43:9c:55:69:6c:60:51:f6:42:74:74:76:c8:41:f2:6f: 63:d3:24:7c:c8:4b:1a:24:07:ea:34:a3:26:b7:24:df:c6:68: 67:7e:33:b3:c6:1b:09:cd:6c:7f:38:43:5e:43:8b:47:80:cc: bb:89:b8:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwMTgxMTAvBgNVBAUTKEIzRTk0MUExQzU1RDE0ODNBQjU3OTFEOTQ5ODc1MEUz RERBREVEQ0MwHhcNMjUwMzEzMDM0OTU3WhcNMjUwMzIwMDM0OTU3WjAYMRYwFAYD VQQDEw02N2QyNTVlNS1jYmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6okavSC2wPQJendHr17S1AHKcHeKu1L1rda28Y93bE/y1JYLMMGbAUGCEBDy pMIezzNlhmdCQsz1LrYtgjO4GMge5oNzlUGhVFm823kS/bBYVLHm/2jppwW/Jd9A GcB71l9kLcNiRUSIaJNtIPpAHS6JhTeBkZx0CE5u3BhCa/nQWiUGzI+656bNalno 10qGkOK6Aa9XBVMvJlf0i2TCtJlGQvJS+xqhmkLCUUsfIdTA5+utgOW0pgZ2EOnP afBvuI+6LTTsA4PPgZU8XlmJbzDVInkobt4NmQnB1ITWHXMs3sZR1HX3VtAmuZhR u8V8jCcnxBkazlRy+tQHVy/ZUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGF9Gom Eml/y21kT7WyFOGmxwZOMB8GA1UdIwQYMBaAFLPpQaHFXRSDq1eR2UmHUOPdre3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjAxOC8zMDc5RDgxMkM1 RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJT3JWNUhaU1lkUTQ5MnQ3 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjAxOC8zMDc5RDgxMkM1RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJ T3JWNUhaU1lkUTQ5MnQ3Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn/JgUfxY1sGHqbHA4/+Q0TfDgKW8Z6qFEAZuaB7owF0DtTZp9w3RE oQyKMCz6rbFJcVRdy2v0yz0P8cSzm9a49WCFOhICh70wlaJFzTQojXofYq/ANAWy hWRhGZyaSzEDdVH9khMmrPhnVus+PeU//QQCuTlDptpHrdtNCV5MNrA5I5hEYmHh mzANnJjsYI/NZ38zeB06g8V/gG7OSLrKcD48rnDxw9qTS5ATm/VIBVXNn9gnhcct VXxudpbeaZkO/zivc7/GQ0OcVWlsYFH2QnR0dshB8m9j0yR8yEsaJAfqNKMmtyTf xmhnfjOzxhsJzWx/OENeQ4tHgMy7ibgC -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:50 2025 by rpki-client