$ rpki-client -vvf rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft File: CHQTSbZiijmB94o3MLiYg-PXa8o.mft (raw, json) Hash identifier: /G79FB+jKJfxrof4yzVIMhD4mTcRGLcBTr7jNBkebR4= Subject key identifier: FF:C5:A8:AB:2A:24:A6:2E:FB:E8:04:52:89:D5:EA:DE:7F:AC:4E:3A Authority key identifier: 08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA Certificate issuer: /CN=A91712A8/serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Certificate serial: 069A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft Manifest number: 0693 Signing time: Fri 08 Aug 2025 22:39:47 +0000 Manifest this update: Fri 08 Aug 2025 22:39:47 +0000 Manifest next update: Fri 15 Aug 2025 22:39:47 +0000 Files and hashes: 1: CHQTSbZiijmB94o3MLiYg-PXa8o.crl (hash: f8nVL0pTcofnDm9TRx0t6zK5BatTzsvDnFZ4PZiuyVY=) 2: B69DB4D27D6911EBA420FC6AC4F9AE02.roa (hash: FCcszwJptQkcVppu2l7EfA+c1nSvvhedE2ZFRuB0CdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1690 (0x69a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91712A8, serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Validity Not Before: Aug 8 22:39:47 2025 GMT Not After : Aug 15 22:39:47 2025 GMT Subject: CN=68967cb3-ea18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9d:b8:fa:10:e6:56:8f:85:81:bd:f2:19:b4: e9:71:7c:11:fe:39:97:f9:6c:ce:9a:84:4d:ac:67: a8:23:93:dc:78:8c:cf:d5:c5:48:b1:c7:db:c6:cf: da:df:7a:60:f1:8a:1c:e1:07:6e:cd:75:c8:e2:57: 22:f8:e5:05:4a:3c:c4:e2:39:64:06:fc:75:7a:b9: b0:23:cf:e3:05:84:aa:95:17:16:0b:e6:2e:4c:bd: 5e:e1:a1:e0:59:3e:77:4d:11:8a:69:0e:be:62:58: 12:4b:9e:c5:ab:be:fb:ef:68:cc:00:7f:7f:ce:ef: 1a:6c:af:2a:a6:b2:e9:42:cc:0b:67:47:01:c3:4f: 8c:a1:b8:c0:26:58:cb:9c:99:60:f5:89:f1:bc:7c: 33:03:ff:40:f9:d4:22:e7:6e:72:18:ae:65:16:18: db:80:91:06:e9:f3:8f:60:ba:a7:82:9f:0d:c8:bb: 53:6b:be:f8:9d:a2:fe:e0:48:8a:c1:7b:41:28:61: f0:16:33:ed:0d:8d:cf:95:a9:f8:ba:7d:1c:4e:73: 81:85:7c:d9:04:08:9b:cb:01:e0:cd:2d:b3:d0:09: 34:29:6b:1d:a0:e8:59:52:8c:47:81:b2:62:2f:22: 60:c0:6d:c4:d4:bd:91:d3:00:40:6f:34:b5:a6:30: 2e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:C5:A8:AB:2A:24:A6:2E:FB:E8:04:52:89:D5:EA:DE:7F:AC:4E:3A X509v3 Authority Key Identifier: keyid:08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:ac:57:f1:8d:5f:0f:fb:f6:72:29:a1:46:bd:88:a4:16:ef: 0e:99:e2:bd:e2:08:e9:52:66:aa:d4:32:db:13:8e:d6:eb:12: 7b:52:07:f6:6d:6c:27:20:6c:ca:0d:09:48:24:ea:96:79:64: 78:6a:1c:80:69:df:e5:d5:ea:28:92:40:a1:ec:e7:d0:a6:80: 6b:24:9f:ce:fa:8d:08:fa:7d:fe:42:0d:da:58:45:2e:06:ce: 06:21:84:b3:94:f9:fe:15:64:4d:4e:65:bb:0a:06:cc:a4:5b: ab:ab:7b:63:12:6e:3b:27:fe:3a:8b:3f:7b:a9:5f:d4:a6:06: 46:aa:2d:3e:1d:53:4d:90:c3:76:50:9e:02:07:5b:a9:73:20: 40:cf:5b:11:e8:b6:b0:fc:f9:f2:bc:93:ea:24:e1:31:df:0f: 7d:9c:85:3d:4e:8d:7a:91:78:27:af:b3:63:0a:de:3f:f1:21: b8:6c:b9:7e:21:df:58:3e:be:a6:cf:54:b6:c6:29:e0:b4:a3: 1a:af:1c:99:98:56:53:0e:38:93:3d:2e:64:4f:41:5c:10:05: 9e:4f:f6:ca:6f:0e:64:bb:3c:0b:4e:55:96:fe:2a:55:6c:1e: 81:bc:17:9e:af:a4:e5:7e:db:7d:40:aa:b2:22:cf:8b:33:84: b2:1b:aa:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyQTgxMTAvBgNVBAUTKDA4NzQxMzQ5QjY2MjhBMzk4MUY3OEEzNzMwQjg5ODgz RTNENzZCQ0EwHhcNMjUwODA4MjIzOTQ3WhcNMjUwODE1MjIzOTQ3WjAYMRYwFAYD VQQDEw02ODk2N2NiMy1lYTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu524+hDmVo+Fgb3yGbTpcXwR/jmX+WzOmoRNrGeoI5PceIzP1cVIscfbxs/a 33pg8Yoc4QduzXXI4lci+OUFSjzE4jlkBvx1ermwI8/jBYSqlRcWC+YuTL1e4aHg WT53TRGKaQ6+YlgSS57Fq77772jMAH9/zu8abK8qprLpQswLZ0cBw0+MobjAJljL nJlg9YnxvHwzA/9A+dQi525yGK5lFhjbgJEG6fOPYLqngp8NyLtTa774naL+4EiK wXtBKGHwFjPtDY3Plan4un0cTnOBhXzZBAibywHgzS2z0Ak0KWsdoOhZUoxHgbJi LyJgwG3E1L2R0wBAbzS1pjAuKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/FqKsq JKYu++gEUonV6t5/rE46MB8GA1UdIwQYMBaAFAh0E0m2Yoo5gfeKNzC4mIPj12vK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTJBOC80NjUwMEY4QzdE NjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlqbUI5NG8zTUxpWWctUFhh OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIUVRTYlppaWptQjk0bzNNTGlZZy1QWGE4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTJBOC80NjUwMEY4QzdENjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlq bUI5NG8zTUxpWWctUFhhOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCrFfxjV8P+/ZyKaFGvYikFu8OmeK94gjpUmaq1DLbE47W6xJ7Ugf2 bWwnIGzKDQlIJOqWeWR4ahyAad/l1eookkCh7OfQpoBrJJ/O+o0I+n3+Qg3aWEUu Bs4GIYSzlPn+FWRNTmW7CgbMpFurq3tjEm47J/46iz97qV/UpgZGqi0+HVNNkMN2 UJ4CB1upcyBAz1sR6Law/PnyvJPqJOEx3w99nIU9To16kXgnr7NjCt4/8SG4bLl+ Id9YPr6mz1S2xingtKMarxyZmFZTDjiTPS5kT0FcEAWeT/bKbw5kuzwLTlWW/ipV bB6BvBeer6Tlftt9QKqyIs+LM4SyG6of -----END CERTIFICATE-----Generated at Sun Aug 10 05:37:59 2025 by rpki-client