$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft File: s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json) Hash identifier: ezKgUSmHgpOrLr46LDDMG0Lhu7J7hlEFSHXno4ZENFw= Subject key identifier: 92:A9:28:ED:83:1C:64:70:0C:D6:AD:F1:D5:12:F8:B8:3F:70:30:BA Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft Manifest number: 0126 Signing time: Fri 05 Sep 2025 05:02:23 +0000 Manifest this update: Fri 05 Sep 2025 05:02:23 +0000 Manifest next update: Fri 12 Sep 2025 05:02:23 +0000 Files and hashes: 1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: MQslTkqXwdWqrSnsyGey9icTGIkNcjV/H+laVRq9xb8=) 2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:02:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Validity Not Before: Sep 5 05:02:23 2025 GMT Not After : Sep 12 05:02:23 2025 GMT Subject: CN=68ba6edf-3baf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:56:4e:d2:71:90:c9:f5:b5:34:41:4b:fa:35: ca:cd:29:88:2e:78:ca:91:a2:5a:f7:13:db:14:1b: 14:e7:29:00:3e:ac:fc:9d:87:7d:c4:0f:69:8e:10: 87:6e:78:98:8a:bc:00:83:9c:18:f0:19:1e:f6:fa: ad:1b:4a:07:11:d4:82:96:b2:ec:dc:ea:c1:52:c5: ef:53:a5:d7:7e:c6:66:43:dd:21:d3:e9:d7:38:c0: 11:d8:ff:ff:00:92:39:51:75:68:af:7b:ff:e6:a9: 4e:6d:b5:0f:3b:4d:75:6e:c4:2d:d1:f5:c3:5e:54: 15:54:5c:db:93:5d:19:c6:6c:62:e3:70:54:64:ea: 5c:01:71:7f:9e:c5:5d:9a:a7:3d:c6:32:2c:3b:94: 5c:4b:53:2c:ee:cc:28:c1:a5:ca:da:50:f5:e3:3a: a2:2a:b9:78:e8:87:12:11:82:ac:ef:0c:52:32:d9: 41:88:d2:0c:c8:b0:7a:dd:23:7b:3a:c2:f8:e5:1f: db:f4:86:84:5f:e0:82:d0:c8:e6:bc:59:fc:e8:52: 2c:35:eb:81:c9:73:f3:d5:41:3b:83:ba:c4:f8:02: 1f:4d:8f:ec:74:c0:9b:54:e2:18:f1:cb:a5:20:3d: 81:f7:9e:50:16:8e:05:5d:65:12:28:4d:2e:d7:78: dc:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:A9:28:ED:83:1C:64:70:0C:D6:AD:F1:D5:12:F8:B8:3F:70:30:BA X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:9e:34:4e:a7:20:ba:51:31:94:74:a7:e0:59:3c:87:d9:4a: 9d:35:6d:3c:c3:c8:4a:8d:14:f5:e8:ed:d9:10:a1:1a:ac:a2: 50:fd:7b:6f:36:cc:37:53:c9:86:ae:6e:12:c9:95:0e:a7:62: 0a:48:72:b8:5b:15:6c:1d:7b:1d:48:15:e3:cb:47:06:fe:5a: 2c:6b:f4:1d:c1:08:b4:73:5f:2b:23:c0:d8:0b:0c:6c:f8:de: b0:21:d7:8f:24:3e:9b:75:77:35:fc:f4:f2:8b:7a:b3:b7:59: 41:f2:04:f5:9d:68:37:fa:5b:c2:0a:d9:50:31:70:2d:18:53: 8b:6c:22:8c:bc:bc:26:b4:e5:65:19:2e:2c:50:c6:4d:03:c9: ce:76:b5:01:6d:27:68:61:30:b8:68:ed:66:92:fb:cf:42:82: b8:18:ed:03:a0:bd:db:70:a9:53:da:7f:27:1d:62:44:78:b2: be:51:9e:2b:00:51:9a:8e:2d:0e:68:aa:e7:82:c0:04:c5:e8: 2f:90:cd:3c:be:80:44:55:9a:d5:19:bc:93:2e:5b:32:2b:a1: 9a:cc:3e:88:6d:78:92:4d:13:23:f1:92:f5:f1:d8:52:a0:3e: 83:5b:7f:10:d8:ec:21:90:61:e9:58:26:f2:61:16:a6:44:88: 69:98:ba:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwMTgxMTAvBgNVBAUTKEIzRTk0MUExQzU1RDE0ODNBQjU3OTFEOTQ5ODc1MEUz RERBREVEQ0MwHhcNMjUwOTA1MDUwMjIzWhcNMjUwOTEyMDUwMjIzWjAYMRYwFAYD VQQDEw02OGJhNmVkZi0zYmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlZO0nGQyfW1NEFL+jXKzSmILnjKkaJa9xPbFBsU5ykAPqz8nYd9xA9pjhCH bniYirwAg5wY8Bke9vqtG0oHEdSClrLs3OrBUsXvU6XXfsZmQ90h0+nXOMAR2P// AJI5UXVor3v/5qlObbUPO011bsQt0fXDXlQVVFzbk10Zxmxi43BUZOpcAXF/nsVd mqc9xjIsO5RcS1Ms7swowaXK2lD14zqiKrl46IcSEYKs7wxSMtlBiNIMyLB63SN7 OsL45R/b9IaEX+CC0MjmvFn86FIsNeuByXPz1UE7g7rE+AIfTY/sdMCbVOIY8cul ID2B955QFo4FXWUSKE0u13jciwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKpKO2D HGRwDNat8dUS+Lg/cDC6MB8GA1UdIwQYMBaAFLPpQaHFXRSDq1eR2UmHUOPdre3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjAxOC8zMDc5RDgxMkM1 RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJT3JWNUhaU1lkUTQ5MnQ3 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjAxOC8zMDc5RDgxMkM1RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJ T3JWNUhaU1lkUTQ5MnQ3Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLnjROpyC6UTGUdKfgWTyH2UqdNW08w8hKjRT16O3ZEKEarKJQ/Xtv Nsw3U8mGrm4SyZUOp2IKSHK4WxVsHXsdSBXjy0cG/losa/QdwQi0c18rI8DYCwxs +N6wIdePJD6bdXc1/PTyi3qzt1lB8gT1nWg3+lvCCtlQMXAtGFOLbCKMvLwmtOVl GS4sUMZNA8nOdrUBbSdoYTC4aO1mkvvPQoK4GO0DoL3bcKlT2n8nHWJEeLK+UZ4r AFGaji0OaKrngsAExegvkM08voBEVZrVGbyTLlsyK6GazD6IbXiSTRMj8ZL18dhS oD6DW38Q2OwhkGHpWCbyYRamRIhpmLoI -----END CERTIFICATE-----Generated at Sat Sep 6 15:19:17 2025 by rpki-client