$ rpki-client -vvf rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft File: C7BDH1UIA338kvd-BrSK7JVR9ls.mft (raw, json) Hash identifier: AOU+IakxIX5gEZfoN46M0qYVjXK+ugRtoLt/4M63ZtI= Subject key identifier: AC:F3:C3:CF:4D:41:FA:B9:07:79:E3:F2:9D:26:D4:47:A6:CD:2E:D8 Authority key identifier: 0B:B0:43:1F:55:08:03:7D:FC:92:F7:7E:06:B4:8A:EC:95:51:F6:5B Certificate issuer: /CN=A918C255/serialNumber=0BB0431F5508037DFC92F77E06B48AEC9551F65B Certificate serial: 1AF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft Manifest number: 1AEC Signing time: Fri 30 May 2025 16:28:56 +0000 Manifest this update: Fri 30 May 2025 16:28:56 +0000 Manifest next update: Fri 06 Jun 2025 16:28:56 +0000 Files and hashes: 1: C7BDH1UIA338kvd-BrSK7JVR9ls.crl (hash: vJnSVAbGGyroxh7GG/nrtRAJRh2gw8Z4Hv0LjPsi1HA=) 2: 8E810FBCD46E11E9B37C0539C4F9AE02.roa (hash: /62jKiDxw2Oukb67ZNvZbycxbr1ec0Y/2pAmP4Kn+R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.crl rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:28:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6899 (0x1af3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C255, serialNumber=0BB0431F5508037DFC92F77E06B48AEC9551F65B Validity Not Before: May 30 16:28:56 2025 GMT Not After : Jun 6 16:28:56 2025 GMT Subject: CN=6839dcc8-60e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:90:5f:e0:89:35:26:d1:50:eb:e7:4d:66:d0: c4:7e:06:79:4b:27:06:64:32:a4:4b:aa:7f:54:b8: ef:19:ea:0b:fb:71:3f:d5:83:c9:e0:36:d0:cf:2c: b7:9e:08:e6:c3:15:54:80:0b:b0:db:36:07:9c:4d: 5e:71:fb:ca:13:43:24:25:78:81:0c:a1:00:5f:e7: 65:f8:b3:c6:cb:5c:40:ae:8a:1c:8a:5f:5f:bd:f4: 92:c5:f0:03:7b:52:a3:4d:03:c3:46:1b:20:ad:91: e9:ff:10:e6:da:14:9b:7d:01:4d:a3:0b:81:a7:25: 2d:8d:be:c1:65:b9:15:50:b6:c7:e0:d5:71:67:50: 68:cb:a9:8b:05:f4:9a:0f:20:44:a8:ff:a3:79:c2: 9a:f3:36:8c:1c:85:01:ff:61:3d:1a:5f:88:4a:a1: cf:0f:e5:ee:7a:1b:34:7c:9a:9a:3e:dc:8b:a2:d2: 20:0e:1b:90:88:3e:a7:f3:7d:94:ba:8c:c7:5e:09: 10:08:9b:bd:d0:cb:3c:86:da:37:6c:ce:a3:57:80: bb:26:b6:09:26:0e:30:78:fe:29:d8:b0:2d:87:c5: eb:ec:c7:47:eb:e0:29:0b:1d:09:3c:8f:27:71:6a: 71:17:59:43:cd:45:e4:b0:a2:15:23:cf:5d:db:ef: 84:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:F3:C3:CF:4D:41:FA:B9:07:79:E3:F2:9D:26:D4:47:A6:CD:2E:D8 X509v3 Authority Key Identifier: keyid:0B:B0:43:1F:55:08:03:7D:FC:92:F7:7E:06:B4:8A:EC:95:51:F6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:a0:34:2a:94:5e:58:d4:8e:8b:11:95:7f:3b:46:e9:9c:86: 46:8d:1a:7d:27:0a:f7:3c:eb:a4:6b:83:18:62:db:3e:71:48: a6:9b:ab:de:bf:8b:73:f8:a2:00:2e:23:27:03:9e:b5:e9:0c: 68:c0:b5:03:3d:53:4b:84:ee:ac:f2:32:6b:35:82:f5:1e:ef: 6b:58:26:94:17:73:99:3a:b5:f5:01:04:37:4b:fe:c9:56:1a: 04:c5:3a:d9:fd:c4:0b:3a:e5:63:7f:f5:c5:4a:98:42:99:bd: 9f:3d:0d:a7:2c:08:c5:8d:85:29:e7:cd:4b:22:5a:aa:93:f7: d1:f5:7b:58:92:a6:04:fc:da:d1:46:4c:6f:56:ac:02:eb:72: c7:4a:bc:7d:57:27:c3:93:32:d6:e0:22:b8:12:5b:56:e5:7d: 89:1c:ef:70:6a:e7:76:2a:28:dc:dc:45:66:da:fc:c1:14:0a: 42:96:2e:6a:4c:94:bf:a4:62:82:34:23:68:b1:a7:25:8a:b0: 8a:ea:68:61:55:e2:8e:0b:77:6a:79:99:37:2a:88:1d:e9:fa: 97:e3:a9:42:b6:ef:78:4a:73:86:96:8a:70:73:8e:9d:b4:a1: aa:71:c6:fd:d0:63:c7:4c:2b:d5:54:62:d7:3f:d2:dd:4b:53: 70:df:bc:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMyNTUxMTAvBgNVBAUTKDBCQjA0MzFGNTUwODAzN0RGQzkyRjc3RTA2QjQ4QUVD OTU1MUY2NUIwHhcNMjUwNTMwMTYyODU2WhcNMjUwNjA2MTYyODU2WjAYMRYwFAYD VQQDEw02ODM5ZGNjOC02MGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5Bf4Ik1JtFQ6+dNZtDEfgZ5SycGZDKkS6p/VLjvGeoL+3E/1YPJ4DbQzyy3 ngjmwxVUgAuw2zYHnE1ecfvKE0MkJXiBDKEAX+dl+LPGy1xAroocil9fvfSSxfAD e1KjTQPDRhsgrZHp/xDm2hSbfQFNowuBpyUtjb7BZbkVULbH4NVxZ1Boy6mLBfSa DyBEqP+jecKa8zaMHIUB/2E9Gl+ISqHPD+Xuehs0fJqaPtyLotIgDhuQiD6n832U uozHXgkQCJu90Ms8hto3bM6jV4C7JrYJJg4weP4p2LAth8Xr7MdH6+ApCx0JPI8n cWpxF1lDzUXksKIVI89d2++E/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzzw89N Qfq5B3nj8p0m1EemzS7YMB8GA1UdIwQYMBaAFAuwQx9VCAN9/JL3fga0iuyVUfZb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzI1NS9CRTYyREM5RTIz MkYxMUU3QTU0QjQyNjZDNEY5QUUwMi9DN0JESDFVSUEzMzhrdmQtQnJTSzdKVlI5 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3QkRIMVVJQTMzOGt2ZC1CclNLN0pWUjlscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzI1NS9CRTYyREM5RTIzMkYxMUU3QTU0QjQyNjZDNEY5QUUwMi9DN0JESDFVSUEz MzhrdmQtQnJTSzdKVlI5bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxoDQqlF5Y1I6LEZV/O0bpnIZGjRp9Jwr3POuka4MYYts+cUimm6ve v4tz+KIALiMnA5616QxowLUDPVNLhO6s8jJrNYL1Hu9rWCaUF3OZOrX1AQQ3S/7J VhoExTrZ/cQLOuVjf/XFSphCmb2fPQ2nLAjFjYUp581LIlqqk/fR9XtYkqYE/NrR RkxvVqwC63LHSrx9VyfDkzLW4CK4EltW5X2JHO9waud2Kijc3EVm2vzBFApCli5q TJS/pGKCNCNosaclirCK6mhhVeKOC3dqeZk3Kogd6fqX46lCtu94SnOGlopwc46d tKGqccb90GPHTCvVVGLXP9LdS1Nw37x8 -----END CERTIFICATE-----Generated at Sat May 31 17:44:08 2025 by rpki-client