$ rpki-client -vvf rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft File: CHQTSbZiijmB94o3MLiYg-PXa8o.mft (raw, json) Hash identifier: TXkDYDITVKqPQXPegjVYCTlaJ6YUZ31odM03YesLwpY= Subject key identifier: 4C:DF:B4:2D:FD:AD:01:61:E7:6A:EE:07:94:9F:A5:52:CD:2B:6D:2C Authority key identifier: 08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA Certificate issuer: /CN=A91712A8/serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Certificate serial: 067E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft Manifest number: 0677 Signing time: Sat 14 Jun 2025 22:04:40 +0000 Manifest this update: Sat 14 Jun 2025 22:04:40 +0000 Manifest next update: Sat 21 Jun 2025 22:04:40 +0000 Files and hashes: 1: CHQTSbZiijmB94o3MLiYg-PXa8o.crl (hash: BFjZxq2km7NldykcFG1yQROO1xIRaJ4SKStV3eu+SRc=) 2: B69DB4D27D6911EBA420FC6AC4F9AE02.roa (hash: FCcszwJptQkcVppu2l7EfA+c1nSvvhedE2ZFRuB0CdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:04:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1662 (0x67e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91712A8, serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Validity Not Before: Jun 14 22:04:40 2025 GMT Not After : Jun 21 22:04:40 2025 GMT Subject: CN=684df1f8-3027 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6e:61:81:b0:74:38:d6:35:8d:e0:5a:b0:b6: ba:3c:d6:c0:82:b1:ce:38:c6:98:b6:59:b0:08:e3: fe:1e:09:c1:e2:df:12:3c:eb:8f:e3:b0:a9:ac:5b: a6:cf:7d:5f:1d:f4:2d:33:01:7c:a0:01:ed:6e:3c: fb:b5:50:fe:e8:9f:60:e4:a0:8e:2e:96:a1:a1:61: af:51:25:d9:1e:95:2a:49:e9:31:fd:74:a7:52:fe: 1f:3c:2f:5a:f0:42:14:09:29:e9:b0:58:4d:06:f3: d9:ea:9f:57:97:2e:6b:33:39:c9:3e:1f:cf:71:5e: 07:83:06:7b:66:f5:be:bc:1a:e7:ad:34:ee:cc:5c: 81:b5:0f:1d:59:4d:d5:10:af:81:79:c8:72:21:02: 7d:eb:03:2f:82:6f:4b:35:2e:55:c4:91:bb:f9:01: 77:4d:e2:d9:7b:7f:95:df:24:91:6a:58:35:21:b0: 1a:b7:b5:f6:db:24:e3:22:62:bc:a0:9d:4e:c7:8d: 72:98:0a:5e:2a:13:ed:42:97:62:3e:bb:42:69:dd: 74:ba:e7:9d:0b:3e:74:6b:18:37:38:25:3f:a6:ac: f5:11:c7:18:bd:cd:5e:bb:b5:cb:0e:c8:4b:ef:b5: 8e:f9:d1:fe:0d:df:99:bf:fb:18:c1:79:c7:ff:db: ec:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:DF:B4:2D:FD:AD:01:61:E7:6A:EE:07:94:9F:A5:52:CD:2B:6D:2C X509v3 Authority Key Identifier: keyid:08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:ed:37:5b:1c:c8:d3:b6:7d:57:93:60:97:6f:80:cc:f5:cd: ac:c2:a8:08:a1:82:a1:af:f8:67:66:41:1c:ca:95:8c:09:7c: af:55:5a:7f:f7:da:95:6c:cc:f2:0f:90:00:f9:81:ba:30:71: 8e:00:d1:2c:f8:e0:e2:13:23:aa:63:4a:ab:b1:07:4d:6a:34: 1f:ec:2e:47:28:4c:b3:53:a6:4c:14:7b:fc:8c:3d:50:be:4b: 49:35:28:e8:0d:bf:69:f3:dc:df:58:71:f1:44:17:28:45:14: fb:98:2f:5c:b8:3b:d8:bb:95:04:e6:6f:b1:0a:ea:a8:af:f7: a9:dd:84:ff:8d:51:92:c4:46:03:92:68:b8:6e:1a:e2:e5:4e: 8e:cd:f8:ec:3b:9e:f9:d2:7a:5f:14:90:63:c4:6c:92:8d:ba: f1:bb:f8:f7:e2:a7:2c:fd:e3:f5:47:f7:b1:43:79:94:fa:f7: 36:42:05:f0:77:c4:97:78:01:26:72:42:92:e0:aa:96:37:fe: 1e:6d:6b:53:0b:cf:9b:bc:df:4f:4b:5d:39:5d:50:e8:e7:8e: 36:7d:b8:37:fa:b1:bf:e7:e4:e0:5f:ac:01:21:9c:2d:0c:1c: 2a:65:c0:ad:88:bc:dd:ed:19:b2:63:56:b5:f3:78:62:42:76: 22:5c:4f:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyQTgxMTAvBgNVBAUTKDA4NzQxMzQ5QjY2MjhBMzk4MUY3OEEzNzMwQjg5ODgz RTNENzZCQ0EwHhcNMjUwNjE0MjIwNDQwWhcNMjUwNjIxMjIwNDQwWjAYMRYwFAYD VQQDEw02ODRkZjFmOC0zMDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApG5hgbB0ONY1jeBasLa6PNbAgrHOOMaYtlmwCOP+HgnB4t8SPOuP47CprFum z31fHfQtMwF8oAHtbjz7tVD+6J9g5KCOLpahoWGvUSXZHpUqSekx/XSnUv4fPC9a 8EIUCSnpsFhNBvPZ6p9Xly5rMznJPh/PcV4HgwZ7ZvW+vBrnrTTuzFyBtQ8dWU3V EK+BechyIQJ96wMvgm9LNS5VxJG7+QF3TeLZe3+V3ySRalg1IbAat7X22yTjImK8 oJ1Ox41ymApeKhPtQpdiPrtCad10uuedCz50axg3OCU/pqz1EccYvc1eu7XLDshL 77WO+dH+Dd+Zv/sYwXnH/9vs6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzftC39 rQFh52ruB5SfpVLNK20sMB8GA1UdIwQYMBaAFAh0E0m2Yoo5gfeKNzC4mIPj12vK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTJBOC80NjUwMEY4QzdE NjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlqbUI5NG8zTUxpWWctUFhh OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIUVRTYlppaWptQjk0bzNNTGlZZy1QWGE4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTJBOC80NjUwMEY4QzdENjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlq bUI5NG8zTUxpWWctUFhhOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH7TdbHMjTtn1Xk2CXb4DM9c2swqgIoYKhr/hnZkEcypWMCXyvVVp/ 99qVbMzyD5AA+YG6MHGOANEs+ODiEyOqY0qrsQdNajQf7C5HKEyzU6ZMFHv8jD1Q vktJNSjoDb9p89zfWHHxRBcoRRT7mC9cuDvYu5UE5m+xCuqor/ep3YT/jVGSxEYD kmi4bhri5U6OzfjsO5750npfFJBjxGySjbrxu/j34qcs/eP1R/exQ3mU+vc2QgXw d8SXeAEmckKS4KqWN/4ebWtTC8+bvN9PS105XVDo5442fbg3+rG/5+TgX6wBIZwt DBwqZcCtiLzd7RmyY1a183hiQnYiXE9r -----END CERTIFICATE-----Generated at Sun Jun 15 08:11:15 2025 by rpki-client