$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: 2mKP5zrnsNyNL/DTb6SHOk0KEQQ35K2o9UTNcbA2l/s= Subject key identifier: 9F:FA:72:9C:3A:FC:2D:50:06:DE:53:BB:32:C1:32:9F:9E:5A:B9:DE Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 01CB Signing time: Fri 25 Apr 2025 02:14:18 +0000 Manifest this update: Fri 25 Apr 2025 02:14:18 +0000 Manifest next update: Fri 02 May 2025 02:14:18 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: 8d8WzOPaHHTWWeXa+dE04oRLdLyT2alCpk4wsGOH1BE=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: /aLZRZnVDc3gbgHvgjjTVhimEYu2WCp9inOhdZerK9k=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: 046Nkak/mvU2MIy/D/sQyHF4+9Nf/OVFcgvY3OIqwCQ=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: 7uR7mk8CLJJlZZvBz+Qm2/sDak7TWidIc0rXMu5Xnkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:14:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Apr 25 02:14:18 2025 GMT Not After : May 2 02:14:18 2025 GMT Subject: CN=680aeffa-3087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:82:1b:44:1f:76:a8:5a:eb:2f:31:7b:79:98: 02:97:d6:f9:15:56:23:53:47:ef:f8:99:1d:c6:81: 67:ba:e5:a1:be:13:21:6f:00:32:36:79:dc:48:a4: 38:48:23:77:71:1b:a5:79:0d:8e:bc:f0:8c:85:93: 44:fd:19:90:eb:83:c7:d1:e2:60:65:bb:45:32:a9: d7:ae:95:b0:0a:b3:30:22:83:3f:9b:39:57:d7:a4: 88:c5:99:81:0d:6f:35:a1:58:65:c7:7a:c2:fb:03: 38:6c:e3:d0:93:5d:22:c0:cf:82:40:3f:d5:89:87: c9:6e:0d:92:5b:c1:0f:80:39:05:07:d5:f1:a8:77: 70:30:e6:c2:be:6e:27:d3:d1:fc:92:91:20:aa:4b: 33:41:1c:54:e7:62:e7:56:ce:90:ae:2d:59:70:12: 2f:be:d4:49:6a:78:09:be:ce:43:ae:9d:c6:b3:be: 0a:26:1f:33:05:99:82:ef:73:4b:d6:c4:b2:ba:d8: 29:6a:22:9b:b3:b3:d6:3d:88:49:71:d3:96:88:97: 48:99:b6:74:be:6f:82:ec:23:64:09:82:6e:e6:84: 05:ed:8d:45:d8:46:a6:cc:19:c0:32:c0:68:4c:98: bf:c2:13:a5:cc:bc:b2:21:6a:2a:f0:2a:9d:c1:99: b9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:FA:72:9C:3A:FC:2D:50:06:DE:53:BB:32:C1:32:9F:9E:5A:B9:DE X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:2c:e5:3a:d8:e4:17:3f:1e:a0:75:a4:dd:8a:68:8f:e2:77: 07:ff:59:88:3e:b2:60:13:24:05:d4:e2:57:dd:ec:75:65:29: 4d:aa:86:f0:d4:6b:02:bd:4f:dd:c5:7f:a9:c2:5e:62:26:27: 69:c1:e6:65:a9:c0:67:ad:a6:11:d1:73:ce:eb:af:2e:a6:63: dc:08:43:ef:73:26:1b:93:12:ae:02:96:b7:33:3b:63:4d:fa: 02:cd:c3:68:0f:0c:d0:03:82:68:d5:e2:89:cc:cf:a9:6a:53: cc:d9:b5:bc:8d:50:5f:bc:59:46:1e:3d:46:38:df:7c:9b:6c: 35:13:db:f3:0d:16:98:10:46:f4:a7:ed:ab:b4:27:c2:7a:01: cf:6f:6a:e7:1e:a8:39:14:55:14:8a:ce:92:b1:4a:24:c5:fe: 96:97:39:9d:f4:e8:95:80:54:73:c8:27:85:28:87:71:08:9e: 7d:5d:a9:85:42:28:1e:e5:97:14:af:85:7b:e9:73:76:a6:00: 4d:87:8c:0d:9e:d7:5b:9a:e1:d3:ef:42:64:e5:99:29:74:a3: bf:8c:8e:04:a8:78:9a:eb:41:0a:84:aa:3a:2c:da:6d:5b:74: 77:3f:21:2a:0c:6a:52:0a:ab:93:f2:c9:f4:ba:1d:a8:fa:e3: 41:99:77:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjUwNDI1MDIxNDE4WhcNMjUwNTAyMDIxNDE4WjAYMRYwFAYD VQQDEw02ODBhZWZmYS0zMDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3YIbRB92qFrrLzF7eZgCl9b5FVYjU0fv+JkdxoFnuuWhvhMhbwAyNnncSKQ4 SCN3cRuleQ2OvPCMhZNE/RmQ64PH0eJgZbtFMqnXrpWwCrMwIoM/mzlX16SIxZmB DW81oVhlx3rC+wM4bOPQk10iwM+CQD/ViYfJbg2SW8EPgDkFB9XxqHdwMObCvm4n 09H8kpEgqkszQRxU52LnVs6Qri1ZcBIvvtRJangJvs5Drp3Gs74KJh8zBZmC73NL 1sSyutgpaiKbs7PWPYhJcdOWiJdImbZ0vm+C7CNkCYJu5oQF7Y1F2EamzBnAMsBo TJi/whOlzLyyIWoq8CqdwZm5LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/6cpw6 /C1QBt5TuzLBMp+eWrneMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2LOU62OQXPx6gdaTdimiP4ncH/1mIPrJgEyQF1OJX3ex1ZSlNqobw 1GsCvU/dxX+pwl5iJidpweZlqcBnraYR0XPO668upmPcCEPvcyYbkxKuApa3Mztj TfoCzcNoDwzQA4Jo1eKJzM+palPM2bW8jVBfvFlGHj1GON98m2w1E9vzDRaYEEb0 p+2rtCfCegHPb2rnHqg5FFUUis6SsUokxf6Wlzmd9OiVgFRzyCeFKIdxCJ59XamF Qige5ZcUr4V76XN2pgBNh4wNntdbmuHT70Jk5ZkpdKO/jI4EqHia60EKhKo6LNpt W3R3PyEqDGpSCquT8sn0uh2o+uNBmXe3 -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:35 2025 by rpki-client