$ rpki-client -vvf rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft File: C7BDH1UIA338kvd-BrSK7JVR9ls.mft (raw, json) Hash identifier: RStHPwHUw0ne7Yh/lgzBXs/4odJYS5ZtVVLnPLv3N9Q= Subject key identifier: 33:6F:A0:A0:D2:2B:20:DA:E5:68:63:C7:D7:39:75:0F:BD:B5:67:52 Authority key identifier: 0B:B0:43:1F:55:08:03:7D:FC:92:F7:7E:06:B4:8A:EC:95:51:F6:5B Certificate issuer: /CN=A918C255/serialNumber=0BB0431F5508037DFC92F77E06B48AEC9551F65B Certificate serial: 1B1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft Manifest number: 1B18 Signing time: Sun 24 Aug 2025 16:16:26 +0000 Manifest this update: Sun 24 Aug 2025 16:16:25 +0000 Manifest next update: Sun 31 Aug 2025 16:16:25 +0000 Files and hashes: 1: C7BDH1UIA338kvd-BrSK7JVR9ls.crl (hash: LEupKvW3oA/7PKu7cl1cqfiXXwJDIzRyOUA8HF/8LX8=) 2: 8E810FBCD46E11E9B37C0539C4F9AE02.roa (hash: /62jKiDxw2Oukb67ZNvZbycxbr1ec0Y/2pAmP4Kn+R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.crl rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6943 (0x1b1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C255, serialNumber=0BB0431F5508037DFC92F77E06B48AEC9551F65B Validity Not Before: Aug 24 16:16:25 2025 GMT Not After : Aug 31 16:16:25 2025 GMT Subject: CN=68ab3ad9-5cfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:88:f1:5b:b6:2a:e8:d0:98:be:f0:bd:50:27: 04:29:c6:71:27:40:23:fa:fd:31:09:7d:72:18:03: 29:b4:b9:74:ee:73:93:ae:af:7e:be:ee:f6:a0:70: 29:db:4f:6f:91:2b:a3:62:15:10:e3:77:0b:be:9a: 18:8b:99:b8:c9:85:1c:34:e3:28:9d:fb:66:6c:3d: c5:63:3a:db:3b:31:3b:5e:5b:17:cd:dc:99:b6:ea: d6:b5:41:5c:92:ae:eb:a8:2d:51:9c:ed:44:09:4b: 48:9f:17:a8:3c:f2:80:d4:c2:11:cd:85:88:f9:5a: ac:0a:41:4e:bd:78:e3:33:e6:41:67:19:d3:3c:8a: 3f:37:ff:3b:4a:84:fc:ae:26:06:6e:8e:ba:17:60: 7d:a7:13:ea:c0:66:d0:89:9e:1e:76:71:ec:de:ff: 7f:e8:67:fb:32:25:2f:bf:af:b0:9c:ab:b8:5d:5c: d1:64:7b:9c:0d:f1:3e:c7:bc:dd:4b:d5:e2:86:8e: a7:e2:e8:a3:7b:d6:6e:9c:16:19:6d:e4:7d:87:59: 52:ab:7f:8a:3f:54:8e:6e:73:31:f0:88:16:81:1a: 5a:ed:2b:df:39:81:2d:0e:97:eb:48:70:7d:57:32: 96:13:d4:f9:94:f9:91:88:ac:2c:70:6a:fb:e1:89: 61:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:6F:A0:A0:D2:2B:20:DA:E5:68:63:C7:D7:39:75:0F:BD:B5:67:52 X509v3 Authority Key Identifier: keyid:0B:B0:43:1F:55:08:03:7D:FC:92:F7:7E:06:B4:8A:EC:95:51:F6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:d9:d7:f5:ae:b5:14:c6:16:92:0f:9f:b2:14:fc:f9:4f:42: ad:5e:09:5d:d8:0b:2d:be:8b:fe:73:10:d6:01:dd:08:0e:4c: 49:8d:ad:e8:5b:3e:7d:95:18:b0:24:b3:9d:05:0e:a0:23:81: b0:76:6c:2b:d2:7a:c6:5f:b2:a8:20:b4:08:85:5f:48:5b:12: c9:95:93:8e:12:d0:38:d0:5f:d1:ad:2a:45:f6:9e:46:ff:86: 49:ca:42:8b:53:8c:06:2f:dc:a3:c6:c0:27:fd:41:0e:5b:14: 9a:bc:98:df:e5:23:9c:71:57:af:c4:13:ba:a1:f4:34:13:95: ad:02:81:5f:98:ae:67:8e:8a:87:34:8c:8d:91:cb:16:8b:a8: 7b:48:df:29:da:ec:ae:e6:e7:d2:35:8e:e4:a7:f6:39:9f:35: 89:78:51:6a:fc:8d:4d:a7:72:76:b4:25:e9:5b:f6:18:a8:40: ae:3d:a4:f2:80:2f:31:6f:2c:11:88:42:7b:a3:e9:a7:ed:3a: 98:ee:ca:dc:25:6e:d5:fe:29:48:5a:71:cd:fe:83:62:c0:eb: 35:a3:79:20:b9:bd:32:6d:d4:41:dd:83:c5:f8:26:ac:12:4f: 3e:7f:dd:c8:7e:62:18:fe:85:6a:c7:cb:2c:99:e2:c8:c8:1a: db:18:43:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMyNTUxMTAvBgNVBAUTKDBCQjA0MzFGNTUwODAzN0RGQzkyRjc3RTA2QjQ4QUVD OTU1MUY2NUIwHhcNMjUwODI0MTYxNjI1WhcNMjUwODMxMTYxNjI1WjAYMRYwFAYD VQQDEw02OGFiM2FkOS01Y2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YjxW7Yq6NCYvvC9UCcEKcZxJ0Aj+v0xCX1yGAMptLl07nOTrq9+vu72oHAp 209vkSujYhUQ43cLvpoYi5m4yYUcNOMonftmbD3FYzrbOzE7XlsXzdyZturWtUFc kq7rqC1RnO1ECUtInxeoPPKA1MIRzYWI+VqsCkFOvXjjM+ZBZxnTPIo/N/87SoT8 riYGbo66F2B9pxPqwGbQiZ4ednHs3v9/6Gf7MiUvv6+wnKu4XVzRZHucDfE+x7zd S9Xiho6n4uije9ZunBYZbeR9h1lSq3+KP1SObnMx8IgWgRpa7SvfOYEtDpfrSHB9 VzKWE9T5lPmRiKwscGr74YlhyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNvoKDS KyDa5Whjx9c5dQ+9tWdSMB8GA1UdIwQYMBaAFAuwQx9VCAN9/JL3fga0iuyVUfZb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzI1NS9CRTYyREM5RTIz MkYxMUU3QTU0QjQyNjZDNEY5QUUwMi9DN0JESDFVSUEzMzhrdmQtQnJTSzdKVlI5 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3QkRIMVVJQTMzOGt2ZC1CclNLN0pWUjlscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzI1NS9CRTYyREM5RTIzMkYxMUU3QTU0QjQyNjZDNEY5QUUwMi9DN0JESDFVSUEz MzhrdmQtQnJTSzdKVlI5bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY2df1rrUUxhaSD5+yFPz5T0KtXgld2Astvov+cxDWAd0IDkxJja3o Wz59lRiwJLOdBQ6gI4Gwdmwr0nrGX7KoILQIhV9IWxLJlZOOEtA40F/RrSpF9p5G /4ZJykKLU4wGL9yjxsAn/UEOWxSavJjf5SOccVevxBO6ofQ0E5WtAoFfmK5njoqH NIyNkcsWi6h7SN8p2uyu5ufSNY7kp/Y5nzWJeFFq/I1Np3J2tCXpW/YYqECuPaTy gC8xbywRiEJ7o+mn7TqY7srcJW7V/ilIWnHN/oNiwOs1o3kgub0ybdRB3YPF+Cas Ek8+f93IfmIY/oVqx8ssmeLIyBrbGEOY -----END CERTIFICATE-----Generated at Sun Aug 24 22:20:58 2025 by rpki-client