$ rpki-client -vvf rpki.apnic.net/member_repository/A918E8EB/D039F8D6D1BF11E8B264F65AC4F9AE02/BHuLKVTEerFcV1ht0ATriTl3xa8.mft File: BHuLKVTEerFcV1ht0ATriTl3xa8.mft (raw, json) Hash identifier: 6FzvwvWl8vZzUAkHfR0CB5QJj+xTfXISoHuYGDKNBHs= Subject key identifier: 35:FE:45:5F:4A:55:7A:E4:C4:61:B0:0D:D7:C8:C2:9D:05:AB:FA:8B Authority key identifier: 04:7B:8B:29:54:C4:7A:B1:5C:57:58:6D:D0:04:EB:89:39:77:C5:AF Certificate issuer: /CN=A918E8EB/serialNumber=047B8B2954C47AB15C57586DD004EB893977C5AF Certificate serial: 128B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHuLKVTEerFcV1ht0ATriTl3xa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E8EB/D039F8D6D1BF11E8B264F65AC4F9AE02/BHuLKVTEerFcV1ht0ATriTl3xa8.mft Manifest number: 1279 Signing time: Fri 18 Jul 2025 17:15:07 +0000 Manifest this update: Fri 18 Jul 2025 17:15:06 +0000 Manifest next update: Fri 25 Jul 2025 17:15:06 +0000 Files and hashes: 1: BHuLKVTEerFcV1ht0ATriTl3xa8.crl (hash: E+rnSouQ92fXc5xfd9k9NRwt3mI9LHAvhMHm6GUwEpw=) 2: 3489528EC84511ED90A61540C4F9AE02.roa (hash: 0GBU9clR4v/kv/m8Iw+tpC8pBR8oX1ZqIKf4DgtvCco=) 3: 35615A30C84511ED90A61540C4F9AE02.roa (hash: CfO3CZyouhq3VXYxiVm5tnc8saneiKp2zLb93JcMMQ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E8EB/D039F8D6D1BF11E8B264F65AC4F9AE02/BHuLKVTEerFcV1ht0ATriTl3xa8.crl rsync://rpki.apnic.net/member_repository/A918E8EB/D039F8D6D1BF11E8B264F65AC4F9AE02/BHuLKVTEerFcV1ht0ATriTl3xa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHuLKVTEerFcV1ht0ATriTl3xa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:15:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4747 (0x128b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E8EB, serialNumber=047B8B2954C47AB15C57586DD004EB893977C5AF Validity Not Before: Jul 18 17:15:06 2025 GMT Not After : Jul 25 17:15:06 2025 GMT Subject: CN=687a811b-5f6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c0:32:63:f3:de:d4:9b:6b:b5:45:26:55:1b: ea:63:cb:94:c1:78:93:66:47:0c:59:12:a6:0c:4e: 10:74:d7:c6:01:ce:30:22:d6:0a:9c:7e:13:0d:8e: f4:a2:6e:0f:c4:32:52:5a:b8:95:40:6e:94:ce:1c: b9:c0:05:dc:8a:bc:01:d9:44:f7:6a:3c:84:a2:ec: 99:33:2b:51:63:58:5d:3f:17:0b:c9:4b:2d:79:b0: 09:6a:0d:2c:72:4a:8a:30:fc:8c:d5:6b:0d:50:b8: 96:35:4b:01:f7:0c:ba:25:1b:ff:54:a3:e1:53:3b: 1c:56:8f:2d:b9:be:8b:c8:29:d2:9a:9f:43:e5:df: 80:34:5d:07:f3:8f:0c:c2:a3:ce:7b:e9:20:42:79: 72:9e:6a:1e:bf:2d:fd:9e:7a:19:2c:a8:06:82:6a: 98:e5:28:d9:3e:1f:a4:3c:7f:ae:43:28:fc:f8:05: 31:71:99:90:2c:c4:52:d4:ce:50:fb:91:9b:93:e0: 8c:91:2f:21:08:4a:e9:7e:7a:ef:38:8f:4e:e0:47: e0:7b:ce:7b:bb:8c:c6:14:e4:c2:db:76:55:cf:35: 29:a2:ce:02:b5:96:76:2f:f4:0c:b9:7d:57:dc:16: bb:d4:03:58:d4:11:27:f0:6e:6d:d8:af:b3:ac:be: dd:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:FE:45:5F:4A:55:7A:E4:C4:61:B0:0D:D7:C8:C2:9D:05:AB:FA:8B X509v3 Authority Key Identifier: keyid:04:7B:8B:29:54:C4:7A:B1:5C:57:58:6D:D0:04:EB:89:39:77:C5:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E8EB/D039F8D6D1BF11E8B264F65AC4F9AE02/BHuLKVTEerFcV1ht0ATriTl3xa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHuLKVTEerFcV1ht0ATriTl3xa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E8EB/D039F8D6D1BF11E8B264F65AC4F9AE02/BHuLKVTEerFcV1ht0ATriTl3xa8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:c6:ff:da:51:f5:7b:7f:f4:4d:d5:51:ab:18:50:25:e8:3a: 1c:9f:ed:d5:2f:b7:e1:80:bb:54:e8:58:07:ec:a2:88:85:79: 4c:73:62:42:32:2a:bc:20:02:64:61:31:31:bc:5d:f3:85:c3: 03:14:49:f9:db:4e:05:76:45:d4:b1:72:96:6b:e1:52:d5:4c: e8:98:36:9b:7e:2b:a5:11:6b:48:05:4e:f5:65:cc:ff:7c:da: f9:f0:94:d2:a5:f1:83:5d:ef:65:53:08:3e:4d:ee:22:be:7d: 14:9d:a7:03:e1:4b:49:b2:5e:37:6d:6f:f9:b6:21:9a:9a:7b: 3d:22:7b:aa:99:49:3f:9f:aa:83:a8:4d:bf:31:3b:e1:06:2a: a4:d0:73:f3:4f:b3:e3:0d:f9:6c:23:cd:4e:79:81:ac:1b:0f: 73:1c:16:8c:31:7f:aa:b0:50:99:7f:f3:71:5b:a7:0d:a6:a9: bb:34:3b:16:48:4e:04:fc:1b:0a:1d:f3:20:02:e5:41:2c:66: 17:a3:1e:9f:f4:07:5b:9d:5f:d5:d9:d6:bc:12:f5:59:ad:4c: 65:6f:97:0e:a4:df:2e:8b:5f:96:f3:64:cb:71:9c:1a:50:c9: eb:d3:58:15:b2:fc:13:9a:85:53:61:17:4f:09:3f:3d:a4:b1: 9e:7f:d7:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4RUIxMTAvBgNVBAUTKDA0N0I4QjI5NTRDNDdBQjE1QzU3NTg2REQwMDRFQjg5 Mzk3N0M1QUYwHhcNMjUwNzE4MTcxNTA2WhcNMjUwNzI1MTcxNTA2WjAYMRYwFAYD VQQDEw02ODdhODExYi01ZjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMAyY/Pe1JtrtUUmVRvqY8uUwXiTZkcMWRKmDE4QdNfGAc4wItYKnH4TDY70 om4PxDJSWriVQG6Uzhy5wAXcirwB2UT3ajyEouyZMytRY1hdPxcLyUstebAJag0s ckqKMPyM1WsNULiWNUsB9wy6JRv/VKPhUzscVo8tub6LyCnSmp9D5d+ANF0H848M wqPOe+kgQnlynmoevy39nnoZLKgGgmqY5SjZPh+kPH+uQyj8+AUxcZmQLMRS1M5Q +5Gbk+CMkS8hCErpfnrvOI9O4Efge857u4zGFOTC23ZVzzUpos4CtZZ2L/QMuX1X 3Ba71ANY1BEn8G5t2K+zrL7dWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDX+RV9K VXrkxGGwDdfIwp0Fq/qLMB8GA1UdIwQYMBaAFAR7iylUxHqxXFdYbdAE64k5d8Wv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RThFQi9EMDM5RjhENkQx QkYxMUU4QjI2NEY2NUFDNEY5QUUwMi9CSHVMS1ZURWVyRmNWMWh0MEFUcmlUbDN4 YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JIdUxLVlRFZXJGY1YxaHQwQVRyaVRsM3hhOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RThFQi9EMDM5RjhENkQxQkYxMUU4QjI2NEY2NUFDNEY5QUUwMi9CSHVMS1ZURWVy RmNWMWh0MEFUcmlUbDN4YTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7xv/aUfV7f/RN1VGrGFAl6Docn+3VL7fhgLtU6FgH7KKIhXlMc2JC Miq8IAJkYTExvF3zhcMDFEn5204FdkXUsXKWa+FS1UzomDabfiulEWtIBU71Zcz/ fNr58JTSpfGDXe9lUwg+Te4ivn0UnacD4UtJsl43bW/5tiGamns9InuqmUk/n6qD qE2/MTvhBiqk0HPzT7PjDflsI81OeYGsGw9zHBaMMX+qsFCZf/NxW6cNpqm7NDsW SE4E/BsKHfMgAuVBLGYXox6f9AdbnV/V2da8EvVZrUxlb5cOpN8ui1+W82TLcZwa UMnr01gVsvwTmoVTYRdPCT89pLGef9fL -----END CERTIFICATE-----Generated at Sun Jul 20 07:59:19 2025 by rpki-client