$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: hYsYqJOL/ojNSeLaLFcuJFKl0LDNEk9VkG1lq8BnzKs= Subject key identifier: B1:1B:20:D5:50:2E:80:28:7D:77:78:57:F1:89:09:C4:8E:E4:05:AB Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 01E6 Signing time: Thu 19 Jun 2025 02:14:34 +0000 Manifest this update: Thu 19 Jun 2025 02:14:34 +0000 Manifest next update: Thu 26 Jun 2025 02:14:34 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: F0MXrRyfX7pd5Qbp6vmUyf5CObEb8VJdmwWREPyVItw=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: /aLZRZnVDc3gbgHvgjjTVhimEYu2WCp9inOhdZerK9k=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: 046Nkak/mvU2MIy/D/sQyHF4+9Nf/OVFcgvY3OIqwCQ=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: 7uR7mk8CLJJlZZvBz+Qm2/sDak7TWidIc0rXMu5Xnkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 02:14:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Jun 19 02:14:34 2025 GMT Not After : Jun 26 02:14:34 2025 GMT Subject: CN=6853728a-aedf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:3a:8f:9e:24:04:4b:b7:27:4d:a3:47:9e:a8: a7:dc:77:c6:14:fd:27:cf:8b:2c:cb:0b:5e:cf:b7: 11:6e:1d:f0:45:54:37:ef:1f:8e:b2:52:5a:3f:99: 44:14:3d:f0:0f:1f:5f:b7:f5:30:01:ed:e4:30:90: ae:cf:8a:d2:bf:7d:ca:58:db:e7:05:d8:05:93:79: 22:f9:87:fc:8e:4c:52:a9:3e:e7:27:47:1b:5f:75: ae:f5:09:30:0e:ed:42:98:44:f8:d1:e9:66:2c:2d: 9b:af:1c:f8:14:cf:70:03:a9:17:06:09:61:93:ca: d3:77:19:2f:8f:37:86:0f:45:a9:a7:4f:23:05:92: 0e:8f:38:8b:a3:4d:99:d8:22:b7:3d:77:fd:9e:d5: 50:2f:66:0f:ee:18:76:57:d0:f8:2b:d3:d7:d2:67: 09:60:9e:80:7d:d0:5a:f5:17:8e:d2:84:62:5c:04: 66:cd:d3:ac:34:5c:12:31:10:2e:b5:97:49:0c:9e: f8:64:b9:f6:6d:c4:56:a3:db:07:02:b0:c0:f6:ac: da:c8:88:58:cf:fb:85:b0:2e:5b:52:05:78:2a:23: 01:e8:b2:73:56:99:d0:40:2a:e4:0d:8f:25:a5:0e: 2a:dc:39:99:c3:ea:29:d4:b2:05:48:7b:85:bd:3c: 52:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:1B:20:D5:50:2E:80:28:7D:77:78:57:F1:89:09:C4:8E:E4:05:AB X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:53:e5:62:44:51:21:c9:e7:3a:ed:c0:9e:ff:a9:89:11:02: 7e:2e:a2:aa:b3:5d:d4:86:31:d0:ac:4f:94:e3:f8:07:8f:df: 95:05:ed:35:ac:97:12:c6:9b:06:ba:4d:ed:44:25:2f:6d:a5: c9:92:b1:e0:c6:92:7f:26:97:5c:d3:e0:d9:51:3a:4e:e1:6e: f5:2f:84:43:1e:04:7b:1d:d7:3a:d3:08:ac:25:f2:36:6d:ad: d2:d3:e5:da:ca:d6:1d:1b:50:ff:d3:c9:e1:16:ef:71:12:56: da:c8:f5:7c:81:c9:aa:80:8a:dd:33:9d:0d:80:a6:80:79:fc: 54:05:a7:8e:c9:dc:e7:d9:f4:69:b9:88:f0:95:02:e8:63:a7: 0b:1a:a5:04:98:7f:25:70:e0:a4:2a:a2:e1:99:4a:ae:47:33: 57:a4:a0:95:cd:19:28:70:db:e9:3a:57:18:97:23:43:b9:c5: ee:d5:a5:d4:23:99:01:69:7a:78:26:6f:87:34:70:72:4d:07: ac:7d:df:04:eb:7d:32:ef:d7:6e:7b:4a:ef:49:7f:a4:65:bb: 31:3e:f9:ad:9b:a9:36:fa:34:ba:ac:1d:c4:84:7f:f0:46:79: 9e:96:b8:03:ce:a9:e8:ee:47:9b:1f:f2:56:de:77:56:49:8f: ed:e3:b6:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjUwNjE5MDIxNDM0WhcNMjUwNjI2MDIxNDM0WjAYMRYwFAYD VQQDEw02ODUzNzI4YS1hZWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8DqPniQES7cnTaNHnqin3HfGFP0nz4ssywtez7cRbh3wRVQ37x+OslJaP5lE FD3wDx9ft/UwAe3kMJCuz4rSv33KWNvnBdgFk3ki+Yf8jkxSqT7nJ0cbX3Wu9Qkw Du1CmET40elmLC2brxz4FM9wA6kXBglhk8rTdxkvjzeGD0Wpp08jBZIOjziLo02Z 2CK3PXf9ntVQL2YP7hh2V9D4K9PX0mcJYJ6AfdBa9ReO0oRiXARmzdOsNFwSMRAu tZdJDJ74ZLn2bcRWo9sHArDA9qzayIhYz/uFsC5bUgV4KiMB6LJzVpnQQCrkDY8l pQ4q3DmZw+op1LIFSHuFvTxSowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEbINVQ LoAofXd4V/GJCcSO5AWrMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/U+ViRFEhyec67cCe/6mJEQJ+LqKqs13UhjHQrE+U4/gHj9+VBe01 rJcSxpsGuk3tRCUvbaXJkrHgxpJ/Jpdc0+DZUTpO4W71L4RDHgR7Hdc60wisJfI2 ba3S0+XaytYdG1D/08nhFu9xElbayPV8gcmqgIrdM50NgKaAefxUBaeOydzn2fRp uYjwlQLoY6cLGqUEmH8lcOCkKqLhmUquRzNXpKCVzRkocNvpOlcYlyNDucXu1aXU I5kBaXp4Jm+HNHByTQesfd8E630y79due0rvSX+kZbsxPvmtm6k2+jS6rB3EhH/w RnmelrgDzqno7kebH/JW3ndWSY/t47aO -----END CERTIFICATE-----Generated at Fri Jun 20 03:09:59 2025 by rpki-client