$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft File: s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json) Hash identifier: XqLs5mKclqvovZ4zeHxPPlZl4pHlh73WhkGjXbVBeGg= Subject key identifier: 4D:6D:44:C2:C4:FA:20:11:18:CD:B1:B4:A1:B8:D8:17:C0:17:49:F5 Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft Manifest number: F5 Signing time: Sun 01 Jun 2025 04:54:19 +0000 Manifest this update: Sun 01 Jun 2025 04:54:19 +0000 Manifest next update: Sun 08 Jun 2025 04:54:19 +0000 Files and hashes: 1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: RL+SZR55Erw5Ada/dLZxxeFuZWcNSPGSM21ei1CQvrc=) 2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Validity Not Before: Jun 1 04:54:19 2025 GMT Not After : Jun 8 04:54:19 2025 GMT Subject: CN=683bdcfb-6fce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f7:ed:35:56:57:fe:1a:67:45:45:26:da:64: 25:11:f9:97:b3:da:27:3d:25:31:09:a4:44:d6:32: f0:7a:f6:99:30:9d:12:29:23:0f:00:fe:da:67:d0: 43:33:9d:ca:60:cd:a6:d6:fc:c2:0b:68:7e:e3:9d: 6d:22:27:08:51:a7:29:5c:1f:81:f3:5c:4a:d3:93: 02:0f:ce:43:c4:87:60:7d:63:a5:95:dc:1d:e2:6c: f6:58:22:59:56:89:35:35:74:a5:ee:60:c9:ea:41: 62:03:66:9e:1f:c8:4c:04:9b:57:04:43:8c:c8:07: f0:32:00:18:43:d2:d0:af:ce:14:f2:78:79:fc:f1: 48:d9:da:1b:0d:e3:11:16:a6:50:6d:99:03:89:46: 6c:b2:fa:a9:e4:6a:15:bf:e2:a2:f7:19:32:93:ff: e1:7b:4a:5f:37:50:06:e3:f2:1d:a0:ef:75:a7:d5: 08:a6:8b:3d:7c:4b:25:32:3d:28:ac:fa:7a:2a:2d: 5e:b9:80:5e:d9:57:1b:5c:cb:ba:e8:66:ac:81:ef: 19:e5:ef:94:5b:a0:30:58:e6:2b:db:75:09:45:d9: 70:f8:9c:b9:39:05:84:47:c9:68:c2:3e:9a:22:be: ab:6f:84:eb:4b:10:53:8e:c8:e1:3e:7c:ad:c3:de: 1b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:6D:44:C2:C4:FA:20:11:18:CD:B1:B4:A1:B8:D8:17:C0:17:49:F5 X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:8d:0a:e4:69:50:59:ef:3a:44:9e:af:3e:26:ae:d8:fc:2a: f6:8e:66:73:02:05:db:b3:1e:06:51:78:45:66:f1:d8:1c:7d: 1a:33:c6:16:88:cd:3e:f5:60:7a:c8:1a:c5:1b:68:49:0d:a6: fd:cf:75:fb:0f:93:4b:2b:64:63:6c:96:12:41:0c:4b:bf:59: c1:02:ee:f2:39:23:f3:83:f5:65:1e:0d:75:2a:13:cf:32:2d: 50:c9:09:e7:69:97:47:55:b6:d1:bc:d6:89:0c:b2:f6:e8:53: e7:52:8e:52:6c:83:6e:44:7a:02:c8:04:44:88:58:1f:fb:ad: 7c:14:72:22:c2:89:f6:fc:54:e6:93:ca:0b:31:c4:0f:ac:94: 1f:f9:f2:e0:94:1b:98:6d:c5:b5:cb:3a:d1:54:19:d7:e4:24: 22:fc:5f:ca:9c:1c:1e:88:ed:78:c2:4d:11:ae:94:e4:e7:cb: 7f:c8:36:a8:23:d3:3a:cb:de:2e:95:b9:12:5f:28:9e:c1:f3: 24:37:61:35:61:3c:da:a1:53:11:66:33:ea:3c:8c:d3:34:de: 03:95:b5:0a:25:42:99:a0:08:84:4e:b8:4d:d8:19:20:2b:59: 71:39:fe:7b:8a:6d:c9:8c:9b:50:c7:45:ad:b9:4b:8e:5c:cf: 69:bd:37:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwMTgxMTAvBgNVBAUTKEIzRTk0MUExQzU1RDE0ODNBQjU3OTFEOTQ5ODc1MEUz RERBREVEQ0MwHhcNMjUwNjAxMDQ1NDE5WhcNMjUwNjA4MDQ1NDE5WjAYMRYwFAYD VQQDEw02ODNiZGNmYi02ZmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAovftNVZX/hpnRUUm2mQlEfmXs9onPSUxCaRE1jLwevaZMJ0SKSMPAP7aZ9BD M53KYM2m1vzCC2h+451tIicIUacpXB+B81xK05MCD85DxIdgfWOlldwd4mz2WCJZ Vok1NXSl7mDJ6kFiA2aeH8hMBJtXBEOMyAfwMgAYQ9LQr84U8nh5/PFI2dobDeMR FqZQbZkDiUZssvqp5GoVv+Ki9xkyk//he0pfN1AG4/IdoO91p9UIpos9fEslMj0o rPp6Ki1euYBe2VcbXMu66Gasge8Z5e+UW6AwWOYr23UJRdlw+Jy5OQWER8lowj6a Ir6rb4TrSxBTjsjhPnytw94b2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1tRMLE +iARGM2xtKG42BfAF0n1MB8GA1UdIwQYMBaAFLPpQaHFXRSDq1eR2UmHUOPdre3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjAxOC8zMDc5RDgxMkM1 RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJT3JWNUhaU1lkUTQ5MnQ3 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjAxOC8zMDc5RDgxMkM1RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJ T3JWNUhaU1lkUTQ5MnQ3Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDajQrkaVBZ7zpEnq8+Jq7Y/Cr2jmZzAgXbsx4GUXhFZvHYHH0aM8YW iM0+9WB6yBrFG2hJDab9z3X7D5NLK2RjbJYSQQxLv1nBAu7yOSPzg/VlHg11KhPP Mi1QyQnnaZdHVbbRvNaJDLL26FPnUo5SbINuRHoCyAREiFgf+618FHIiwon2/FTm k8oLMcQPrJQf+fLglBuYbcW1yzrRVBnX5CQi/F/KnBweiO14wk0RrpTk58t/yDao I9M6y94ulbkSXyiewfMkN2E1YTzaoVMRZjPqPIzTNN4DlbUKJUKZoAiETrhN2Bkg K1lxOf57im3JjJtQx0WtuUuOXM9pvTdt -----END CERTIFICATE-----Generated at Mon Jun 2 21:12:43 2025 by rpki-client