$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: 19AmD/NWpBBjV9Um75mO6NrVs0vDNlNeA1Rti4dMlz8= Subject key identifier: 29:E7:04:7F:BF:3B:69:09:64:9D:B3:DD:2F:5E:0B:FE:09:31:3B:E5 Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 0201 Signing time: Mon 11 Aug 2025 02:36:08 +0000 Manifest this update: Mon 11 Aug 2025 02:36:08 +0000 Manifest next update: Mon 18 Aug 2025 02:36:08 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: DySk58HJ68v23q3PllQHu7zw76RNWA5C5b5cdKudg9g=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: /aLZRZnVDc3gbgHvgjjTVhimEYu2WCp9inOhdZerK9k=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: 046Nkak/mvU2MIy/D/sQyHF4+9Nf/OVFcgvY3OIqwCQ=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: 7uR7mk8CLJJlZZvBz+Qm2/sDak7TWidIc0rXMu5Xnkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Aug 11 02:36:08 2025 GMT Not After : Aug 18 02:36:08 2025 GMT Subject: CN=68995718-b1a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c1:ef:72:db:fb:75:84:2e:ae:31:a6:f3:f8: 63:ec:fd:19:c3:c2:6d:a4:05:de:2e:2b:6d:fe:a7: 68:fc:43:0e:64:d2:b2:98:55:b4:d0:2c:61:5b:4b: 19:bf:a6:54:ff:c0:45:a3:7c:ed:02:cf:d6:78:8a: 97:a8:e6:16:97:16:9e:a6:2b:ee:17:07:ff:8c:d0: 18:25:2f:a0:2e:99:e4:d2:02:65:8e:0c:43:b2:04: 18:fd:7d:d9:10:f0:3e:19:af:f8:74:53:86:4e:cb: 07:44:c6:7d:40:e4:36:cf:a7:ba:3a:0d:be:1c:be: 6e:e5:09:da:e6:71:98:3a:d9:fd:0b:2e:70:e4:4e: 67:84:5c:54:6b:48:92:1a:7c:25:67:b1:c6:78:7e: fb:66:0b:05:f8:11:6a:7d:9f:ce:92:0f:71:07:dd: 64:49:28:09:85:48:58:23:a9:4c:7a:02:24:57:3c: 62:d0:41:73:9b:2b:0d:df:74:6f:b2:d3:a5:78:7d: 0d:09:d1:bd:b5:40:0e:42:ac:77:1e:a6:2f:34:84: db:21:18:a4:96:07:a9:2d:11:ea:1d:52:0e:d5:17: 24:62:0e:27:c2:5b:52:e6:3a:57:a5:ec:31:58:a2: d1:f9:8d:d9:76:c2:a4:9c:8e:fc:a7:05:40:d8:3d: 2e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:E7:04:7F:BF:3B:69:09:64:9D:B3:DD:2F:5E:0B:FE:09:31:3B:E5 X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:5c:29:2e:7a:f2:51:54:75:2c:3a:fe:78:73:20:44:b0:0e: b5:0f:f3:1a:49:a1:bc:d6:8e:89:eb:1c:ca:98:17:2d:64:1e: 55:8f:70:ab:eb:1d:c2:b2:02:53:94:0c:d2:d3:31:0a:16:27: 24:bb:72:8f:85:92:93:e6:c2:bd:e5:88:c8:c4:55:c7:d8:b8: 2b:33:25:1b:35:f5:88:e2:6c:ad:f1:99:04:6c:0b:8f:23:3c: fc:cd:d6:d9:e5:55:e7:30:99:60:49:99:a2:2a:63:c5:96:22: 8a:30:dd:a7:8b:15:1a:80:c9:64:05:ce:67:01:09:7c:25:d0: 1b:4b:87:b6:10:f9:d6:9f:34:97:f4:7e:23:89:f8:03:1b:3e: a5:25:af:17:35:1f:cd:4b:a2:fe:11:7d:08:2f:c4:9d:aa:7a: 58:b9:00:a1:21:44:54:2a:69:1c:b0:75:05:d0:5c:9f:8d:0c: 39:c5:06:e1:10:65:56:de:19:71:a1:cf:56:86:fa:08:a0:a8: ba:99:eb:14:ad:df:6a:8b:2b:98:b2:81:37:04:d9:3d:43:6f: 83:8c:ee:b4:0c:33:dc:01:47:ab:c2:19:ac:e9:39:8a:af:5c: be:73:e9:f3:38:25:fd:23:34:c3:89:ef:2e:68:10:e1:7c:82: 8a:33:2a:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjUwODExMDIzNjA4WhcNMjUwODE4MDIzNjA4WjAYMRYwFAYD VQQDEw02ODk5NTcxOC1iMWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsHvctv7dYQurjGm8/hj7P0Zw8JtpAXeLitt/qdo/EMOZNKymFW00CxhW0sZ v6ZU/8BFo3ztAs/WeIqXqOYWlxaepivuFwf/jNAYJS+gLpnk0gJljgxDsgQY/X3Z EPA+Ga/4dFOGTssHRMZ9QOQ2z6e6Og2+HL5u5Qna5nGYOtn9Cy5w5E5nhFxUa0iS GnwlZ7HGeH77ZgsF+BFqfZ/Okg9xB91kSSgJhUhYI6lMegIkVzxi0EFzmysN33Rv stOleH0NCdG9tUAOQqx3HqYvNITbIRiklgepLRHqHVIO1RckYg4nwltS5jpXpewx WKLR+Y3ZdsKknI78pwVA2D0uRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnnBH+/ O2kJZJ2z3S9eC/4JMTvlMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXXCkuevJRVHUsOv54cyBEsA61D/MaSaG81o6J6xzKmBctZB5Vj3Cr 6x3CsgJTlAzS0zEKFicku3KPhZKT5sK95YjIxFXH2LgrMyUbNfWI4myt8ZkEbAuP Izz8zdbZ5VXnMJlgSZmiKmPFliKKMN2nixUagMlkBc5nAQl8JdAbS4e2EPnWnzSX 9H4jifgDGz6lJa8XNR/NS6L+EX0IL8SdqnpYuQChIURUKmkcsHUF0FyfjQw5xQbh EGVW3hlxoc9WhvoIoKi6mesUrd9qiyuYsoE3BNk9Q2+DjO60DDPcAUerwhms6TmK r1y+c+nzOCX9IzTDie8uaBDhfIKKMypJ -----END CERTIFICATE-----Generated at Mon Aug 11 04:11:41 2025 by rpki-client