$ rpki-client -vvf rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft File: CHQTSbZiijmB94o3MLiYg-PXa8o.mft (raw, json) Hash identifier: 0AJGwjxP9+bDYlFVAmWIC85zKqg3qoHGKDs/7Ylxjwg= Subject key identifier: 41:65:7C:AF:BB:72:D9:67:C5:11:92:21:0A:69:C7:83:3F:85:9A:BF Authority key identifier: 08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA Certificate issuer: /CN=A91712A8/serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Certificate serial: 0662 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft Manifest number: 065C Signing time: Thu 24 Apr 2025 22:12:53 +0000 Manifest this update: Thu 24 Apr 2025 22:12:53 +0000 Manifest next update: Thu 01 May 2025 22:12:53 +0000 Files and hashes: 1: CHQTSbZiijmB94o3MLiYg-PXa8o.crl (hash: mg+Bk+1hkr7Zpvl8568BuNUg+5J0Xev8JmegaklwEwo=) 2: B69DB4D27D6911EBA420FC6AC4F9AE02.roa (hash: kqvjt4xRQkic0pSOKa9QVL0YjZAGhKt2kqY9ktYProo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1634 (0x662) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91712A8, serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Validity Not Before: Apr 24 22:12:53 2025 GMT Not After : May 1 22:12:53 2025 GMT Subject: CN=680ab765-f387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b8:bb:0c:06:b9:21:4e:e4:7c:17:2d:6d:d4: b2:18:b5:c3:f9:67:fa:17:0d:9d:1c:2e:27:57:73: 82:b0:ab:0b:b6:73:76:f9:6c:6b:23:2d:23:b4:ef: 26:18:fb:24:78:d7:4a:56:98:c0:fa:23:25:39:88: 48:18:15:98:09:33:56:c2:75:2a:e3:9c:15:51:d0: 9b:a9:ae:85:41:1c:02:31:f8:8c:38:77:e3:ba:9d: 7a:d9:71:9f:fb:6e:8a:b3:9e:ff:10:fd:ef:2f:26: 11:47:c5:12:d2:dc:3f:ca:40:d5:17:ba:e6:c0:07: b7:5c:46:17:28:36:63:0b:76:df:50:66:a3:5e:08: e1:fb:7f:a3:a3:20:67:fa:33:8d:c1:1f:a3:06:39: 99:35:bb:01:76:a4:e4:1c:ab:c9:6a:fc:f1:a3:33: 77:61:2d:48:7f:b3:2a:c6:1a:09:d1:28:06:5e:1e: df:f9:12:58:38:10:64:0e:1d:65:36:81:52:6f:50: 72:b0:a0:14:d9:b1:fe:7e:6e:73:3a:7b:29:6b:d4: 97:a9:38:f0:07:a5:41:24:dc:ba:04:70:07:ae:e6: 45:e3:16:44:dc:e0:d6:e8:73:b5:22:1e:a6:59:2d: f4:5f:82:7a:15:2f:0f:16:e8:f6:e2:c1:d5:b0:80: 9f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:65:7C:AF:BB:72:D9:67:C5:11:92:21:0A:69:C7:83:3F:85:9A:BF X509v3 Authority Key Identifier: keyid:08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:e8:98:73:74:fc:fe:5c:94:f1:c4:28:75:12:3f:95:1b:18: 68:eb:1a:47:1a:98:80:33:f8:02:d1:84:89:eb:0d:c6:a2:d3: ca:52:b2:27:16:4f:f3:30:f0:5a:aa:a8:06:58:06:5d:04:a7: 88:2f:8c:8e:78:ee:ef:a9:3b:8c:d7:67:c0:68:2c:df:4e:8f: 82:6c:73:f9:cb:5a:ca:88:28:30:26:c9:e8:28:64:cf:49:eb: 37:8f:97:bc:cb:57:41:07:e0:56:bc:97:6e:0c:52:47:74:4d: 84:99:ad:27:42:3d:6d:fa:63:25:31:59:5b:6e:f7:58:f2:5f: 5b:1f:67:eb:dd:dd:90:da:9d:90:a9:40:fb:be:7e:83:4e:a4: 61:a4:6c:02:83:e8:19:4f:84:50:f0:f3:01:49:a3:2a:b9:8c: 9d:23:55:d1:41:c0:53:b7:01:2a:52:64:fa:07:b9:01:c4:00: d9:89:a5:72:f9:8a:df:ab:0b:00:b2:10:d8:7d:bb:8e:4b:9f: ff:df:98:41:d4:38:45:d9:40:37:ac:92:14:19:13:f0:a6:a3: 62:4b:9d:8d:3a:2b:98:f3:b4:c5:34:81:4a:26:18:54:56:56: 44:3f:18:90:26:34:98:95:82:d7:00:dd:ff:5e:11:07:d1:43: 66:da:35:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyQTgxMTAvBgNVBAUTKDA4NzQxMzQ5QjY2MjhBMzk4MUY3OEEzNzMwQjg5ODgz RTNENzZCQ0EwHhcNMjUwNDI0MjIxMjUzWhcNMjUwNTAxMjIxMjUzWjAYMRYwFAYD VQQDEw02ODBhYjc2NS1mMzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bi7DAa5IU7kfBctbdSyGLXD+Wf6Fw2dHC4nV3OCsKsLtnN2+WxrIy0jtO8m GPskeNdKVpjA+iMlOYhIGBWYCTNWwnUq45wVUdCbqa6FQRwCMfiMOHfjup162XGf +26Ks57/EP3vLyYRR8US0tw/ykDVF7rmwAe3XEYXKDZjC3bfUGajXgjh+3+joyBn +jONwR+jBjmZNbsBdqTkHKvJavzxozN3YS1If7MqxhoJ0SgGXh7f+RJYOBBkDh1l NoFSb1BysKAU2bH+fm5zOnspa9SXqTjwB6VBJNy6BHAHruZF4xZE3ODW6HO1Ih6m WS30X4J6FS8PFuj24sHVsICftQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFlfK+7 ctlnxRGSIQppx4M/hZq/MB8GA1UdIwQYMBaAFAh0E0m2Yoo5gfeKNzC4mIPj12vK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTJBOC80NjUwMEY4QzdE NjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlqbUI5NG8zTUxpWWctUFhh OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIUVRTYlppaWptQjk0bzNNTGlZZy1QWGE4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTJBOC80NjUwMEY4QzdENjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlq bUI5NG8zTUxpWWctUFhhOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj6JhzdPz+XJTxxCh1Ej+VGxho6xpHGpiAM/gC0YSJ6w3GotPKUrIn Fk/zMPBaqqgGWAZdBKeIL4yOeO7vqTuM12fAaCzfTo+CbHP5y1rKiCgwJsnoKGTP Ses3j5e8y1dBB+BWvJduDFJHdE2Ema0nQj1t+mMlMVlbbvdY8l9bH2fr3d2Q2p2Q qUD7vn6DTqRhpGwCg+gZT4RQ8PMBSaMquYydI1XRQcBTtwEqUmT6B7kBxADZiaVy +YrfqwsAshDYfbuOS5//35hB1DhF2UA3rJIUGRPwpqNiS52NOiuY87TFNIFKJhhU VlZEPxiQJjSYlYLXAN3/XhEH0UNm2jV3 -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:17 2025 by rpki-client