$ rpki-client -vvf rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft File: C7BDH1UIA338kvd-BrSK7JVR9ls.mft (raw, json) Hash identifier: oU9mtu6zK0BMdW8DawWmwPTVpezbppQ0UUaXo7H5DDE= Subject key identifier: 26:73:A4:C9:6C:96:65:A5:12:A6:61:E4:01:7E:F3:D8:C0:19:19:7C Authority key identifier: 0B:B0:43:1F:55:08:03:7D:FC:92:F7:7E:06:B4:8A:EC:95:51:F6:5B Certificate issuer: /CN=A918C255/serialNumber=0BB0431F5508037DFC92F77E06B48AEC9551F65B Certificate serial: 1B43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft Manifest number: 1B3C Signing time: Sun 02 Nov 2025 16:17:23 +0000 Manifest this update: Sun 02 Nov 2025 16:17:23 +0000 Manifest next update: Sun 09 Nov 2025 16:17:23 +0000 Files and hashes: 1: C7BDH1UIA338kvd-BrSK7JVR9ls.crl (hash: PTwSm9P/fdA+MjpRDhNyC8bhB1MMNNJgravC8bEMg0I=) 2: 8E810FBCD46E11E9B37C0539C4F9AE02.roa (hash: /62jKiDxw2Oukb67ZNvZbycxbr1ec0Y/2pAmP4Kn+R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.crl rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:17:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6979 (0x1b43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C255, serialNumber=0BB0431F5508037DFC92F77E06B48AEC9551F65B Validity Not Before: Nov 2 16:17:23 2025 GMT Not After : Nov 9 16:17:23 2025 GMT Subject: CN=69078413-101b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:06:3a:20:bf:d6:a4:31:15:37:72:f6:25:aa: aa:88:41:bc:fe:da:e6:73:31:30:a6:22:f2:e4:5d: b7:e0:67:a5:36:6a:ed:86:4d:d7:bc:90:c6:c0:cb: 3a:2e:c6:a1:4e:73:2b:9b:6f:2c:3b:f6:90:21:a5: 7e:db:14:6d:9d:76:58:72:25:ce:03:ee:29:a4:87: 37:87:21:75:94:e1:07:2d:70:a0:83:43:d2:f2:95: 25:36:6b:fa:c8:3f:de:7a:a9:f1:05:6a:9e:21:6e: 24:17:6c:f7:89:24:8c:7e:49:f5:a4:93:8d:51:bd: 70:ac:6f:cb:c3:c5:51:2c:8a:1e:79:15:0e:79:8d: 65:5d:72:6b:ea:d0:a6:9a:5b:37:cf:a9:bc:3b:90: 10:fa:2e:28:fc:6f:82:81:01:81:70:3a:4e:0d:ba: 64:52:01:8c:40:82:a3:f8:9f:9b:10:c8:a2:cc:ca: be:1e:75:7f:19:d2:d6:d5:95:18:df:80:e7:59:af: 7f:b2:9f:97:ed:54:b1:f9:4b:52:3c:3b:98:8e:d1: 60:a2:cc:5c:93:84:12:c4:4d:5a:ee:5a:4e:56:a3: 05:b7:68:9e:2f:45:6e:47:1e:27:db:4e:9c:03:04: ae:4e:7a:4c:93:6e:2b:d9:32:a1:7d:3f:54:36:40: 2e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:73:A4:C9:6C:96:65:A5:12:A6:61:E4:01:7E:F3:D8:C0:19:19:7C X509v3 Authority Key Identifier: keyid:0B:B0:43:1F:55:08:03:7D:FC:92:F7:7E:06:B4:8A:EC:95:51:F6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:85:8a:cd:08:6c:7e:eb:71:5a:80:99:51:1e:68:1b:eb:8d: de:66:7d:fb:cc:4f:58:99:be:1f:99:85:f0:52:4c:b3:45:35: 88:50:ec:63:d6:bf:ee:b7:0c:eb:63:e3:83:32:cd:10:52:8b: 08:70:a5:87:ff:84:d9:08:92:f0:54:ab:31:63:3e:34:dc:5e: 31:ee:47:bc:d5:e9:3a:fe:45:6d:22:30:d6:cc:d1:6b:58:09: 47:a3:2a:2a:74:87:46:a8:8e:3e:5a:f0:69:81:ed:ea:49:4c: 1a:1e:e7:98:dd:c7:3a:bb:c3:1d:33:82:af:ed:b2:f8:61:d6: b5:ec:ed:79:63:27:5a:2b:31:e5:ee:53:54:40:be:e7:57:0e: 03:ad:38:1f:60:6f:c6:5c:6d:35:44:d2:44:ee:df:5e:f3:0d: d5:6e:3e:70:8d:10:6d:20:6b:0b:6f:03:50:ad:b7:eb:86:f6: 72:51:0b:ac:00:09:f8:ad:d9:bd:84:d7:2b:4d:94:c2:e9:4a: 18:58:4b:97:dd:5c:03:ae:ea:fa:cb:93:a4:aa:d7:f7:c4:45: da:97:46:cb:fc:4c:db:c0:58:06:24:eb:03:68:63:17:90:0d: 8e:31:3a:49:de:e9:24:88:6a:da:16:0b:31:2c:3d:19:1a:61: ae:39:12:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMyNTUxMTAvBgNVBAUTKDBCQjA0MzFGNTUwODAzN0RGQzkyRjc3RTA2QjQ4QUVD OTU1MUY2NUIwHhcNMjUxMTAyMTYxNzIzWhcNMjUxMTA5MTYxNzIzWjAYMRYwFAYD VQQDEw02OTA3ODQxMy0xMDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gY6IL/WpDEVN3L2JaqqiEG8/trmczEwpiLy5F234GelNmrthk3XvJDGwMs6 LsahTnMrm28sO/aQIaV+2xRtnXZYciXOA+4ppIc3hyF1lOEHLXCgg0PS8pUlNmv6 yD/eeqnxBWqeIW4kF2z3iSSMfkn1pJONUb1wrG/Lw8VRLIoeeRUOeY1lXXJr6tCm mls3z6m8O5AQ+i4o/G+CgQGBcDpODbpkUgGMQIKj+J+bEMiizMq+HnV/GdLW1ZUY 34DnWa9/sp+X7VSx+UtSPDuYjtFgosxck4QSxE1a7lpOVqMFt2ieL0VuRx4n206c AwSuTnpMk24r2TKhfT9UNkAuxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZzpMls lmWlEqZh5AF+89jAGRl8MB8GA1UdIwQYMBaAFAuwQx9VCAN9/JL3fga0iuyVUfZb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzI1NS9CRTYyREM5RTIz MkYxMUU3QTU0QjQyNjZDNEY5QUUwMi9DN0JESDFVSUEzMzhrdmQtQnJTSzdKVlI5 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3QkRIMVVJQTMzOGt2ZC1CclNLN0pWUjlscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzI1NS9CRTYyREM5RTIzMkYxMUU3QTU0QjQyNjZDNEY5QUUwMi9DN0JESDFVSUEz MzhrdmQtQnJTSzdKVlI5bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABhYrNCGx+63FagJlRHmgb643eZn37zE9Ymb4fmYXwUkyzRTWIUOxj 1r/utwzrY+ODMs0QUosIcKWH/4TZCJLwVKsxYz403F4x7ke81ek6/kVtIjDWzNFr WAlHoyoqdIdGqI4+WvBpge3qSUwaHueY3cc6u8MdM4Kv7bL4Yda17O15YydaKzHl 7lNUQL7nVw4DrTgfYG/GXG01RNJE7t9e8w3Vbj5wjRBtIGsLbwNQrbfrhvZyUQus AAn4rdm9hNcrTZTC6UoYWEuX3VwDrur6y5Okqtf3xEXal0bL/EzbwFgGJOsDaGMX kA2OMTpJ3ukkiGraFgsxLD0ZGmGuORKm -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:28 2025 by rpki-client