$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft File: CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft (raw, json) Hash identifier: l3h3AbgspzprOVFNLIguvkQkE7+Ut98dm7OML30W3T4= Subject key identifier: FF:93:75:4A:51:EA:3C:0A:D3:A3:5C:27:BE:98:9F:48:BF:50:D3:24 Authority key identifier: 08:77:7F:A3:81:BF:25:8E:0C:AC:37:D5:09:EF:0B:AC:70:66:48:44 Certificate issuer: /CN=A91A2C5D/serialNumber=08777FA381BF258E0CAC37D509EF0BAC70664844 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft Manifest number: 0155 Signing time: Tue 05 Aug 2025 04:54:16 +0000 Manifest this update: Tue 05 Aug 2025 04:54:15 +0000 Manifest next update: Tue 12 Aug 2025 04:54:15 +0000 Files and hashes: 1: CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl (hash: rzA0dB6rFJu6qIhonYmlOK6VMag8vKRpRqoUvSw8/Yc=) 2: 218937DC5E5011F0B9404662C4F9AE02.roa (hash: AYUrmB0VmSIUZcI9YP+6cvDLUzAB6YwYDgaBWNY/PRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 04:54:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2C5D, serialNumber=08777FA381BF258E0CAC37D509EF0BAC70664844 Validity Not Before: Aug 5 04:54:15 2025 GMT Not After : Aug 12 04:54:15 2025 GMT Subject: CN=68918e77-c2ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bc:40:19:7c:1d:33:23:0b:36:34:e2:98:41: 91:2c:56:96:15:88:fd:15:0b:4e:b6:dc:e5:d5:e9: c1:27:bf:1a:dc:d5:05:67:33:dc:4c:6d:99:91:d1: 00:a3:b0:64:39:77:42:4c:29:a8:1e:d0:61:e2:1c: 9d:b1:2f:e9:e9:5c:8a:fd:7f:34:3d:ca:dd:68:01: b6:67:1e:cd:5f:8f:58:1c:79:0d:a4:45:07:8f:64: c7:aa:34:52:50:9d:cc:42:88:7f:08:3b:fd:4b:f7: 32:e5:86:f9:15:21:f3:b6:8a:cb:71:14:3e:21:8d: 63:0c:ab:9a:14:da:b4:e2:d0:87:85:83:a4:1e:15: bb:38:75:6d:77:18:31:b6:3e:81:dc:73:b8:36:07: cf:05:45:0e:22:d0:f3:3f:da:36:97:42:71:93:37: d1:bd:79:6a:51:d9:ec:90:95:ee:e6:1b:07:7e:e9: d7:86:90:f3:8e:93:68:7f:d9:5d:56:6c:41:17:20: d3:33:ea:7f:5d:ef:02:4a:89:fc:f7:d6:97:be:d6: 1d:d5:e0:9c:49:0c:22:a5:3c:14:d4:02:24:ed:81: a4:73:67:60:84:58:c8:87:4f:04:28:23:09:be:bc: 91:6c:94:0e:56:f0:03:b0:91:3d:97:dd:e1:62:85: e2:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:93:75:4A:51:EA:3C:0A:D3:A3:5C:27:BE:98:9F:48:BF:50:D3:24 X509v3 Authority Key Identifier: keyid:08:77:7F:A3:81:BF:25:8E:0C:AC:37:D5:09:EF:0B:AC:70:66:48:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:fb:a3:8f:7c:54:64:ab:18:53:0b:81:47:c1:2e:5c:8e:7e: 78:9f:c4:09:d5:a2:16:e8:50:be:6c:fd:0a:b9:55:bd:23:0f: 79:b0:e2:ef:e9:67:9d:ce:04:4d:76:7b:9d:d2:08:b9:40:cf: ae:16:2a:d7:7f:11:27:5e:ab:70:5a:07:f5:80:d2:ce:fc:c1: b9:22:87:b7:d9:7a:ce:b5:fc:f5:f9:ce:6e:1b:3d:73:72:f0: 7b:1f:c0:9a:80:d3:da:6c:b3:e4:07:5f:5f:c6:49:c6:c9:b7: 23:bb:fb:7a:ca:d0:b3:45:63:82:1e:9e:a9:8a:19:e0:96:8c: 86:4e:2f:48:f6:89:01:06:22:72:c6:29:b3:97:0e:98:d9:11: 6b:d2:11:6e:e2:78:8f:0b:96:e7:cf:49:b6:3d:95:bb:25:cf: ab:72:b6:de:54:e4:75:40:ad:72:e4:f2:7b:f1:b2:50:44:a5: e7:c0:15:05:6f:85:48:19:c0:37:84:b5:d0:cf:23:b9:b9:35: 97:99:9a:78:b0:db:80:e7:e5:6b:a6:aa:fd:f3:bb:cb:39:c5: b3:b2:0d:a3:21:77:75:3a:e4:bf:10:9f:27:f0:5a:b1:03:89: 26:a5:72:84:e3:68:05:0b:d8:66:a7:bf:12:89:72:d1:51:97: 6f:c2:62:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MkM1RDExMC8GA1UEBRMoMDg3NzdGQTM4MUJGMjU4RTBDQUMzN0Q1MDlFRjBCQUM3 MDY2NDg0NDAeFw0yNTA4MDUwNDU0MTVaFw0yNTA4MTIwNDU0MTVaMBgxFjAUBgNV BAMTDTY4OTE4ZTc3LWMyZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwvEAZfB0zIws2NOKYQZEsVpYViP0VC0623OXV6cEnvxrc1QVnM9xMbZmR0QCj sGQ5d0JMKage0GHiHJ2xL+npXIr9fzQ9yt1oAbZnHs1fj1gceQ2kRQePZMeqNFJQ ncxCiH8IO/1L9zLlhvkVIfO2istxFD4hjWMMq5oU2rTi0IeFg6QeFbs4dW13GDG2 PoHcc7g2B88FRQ4i0PM/2jaXQnGTN9G9eWpR2eyQle7mGwd+6deGkPOOk2h/2V1W bEEXINMz6n9d7wJKifz31pe+1h3V4JxJDCKlPBTUAiTtgaRzZ2CEWMiHTwQoIwm+ vJFslA5W8AOwkT2X3eFiheK5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/5N1SlHq PArTo1wnvpifSL9Q0yQwHwYDVR0jBBgwFoAUCHd/o4G/JY4MrDfVCe8LrHBmSEQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyQzVELzNCOURENDEwOTJD NDExRUVCNTIxQkI0OUM0RjlBRTAyL0NIZF9vNEdfSlk0TXJEZlZDZThMckhCbVNF US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ0hkX280R19KWTRNckRmVkNlOExySEJtU0VRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy QzVELzNCOURENDEwOTJDNDExRUVCNTIxQkI0OUM0RjlBRTAyL0NIZF9vNEdfSlk0 TXJEZlZDZThMckhCbVNFUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIr7o498VGSrGFMLgUfBLlyOfnifxAnVohboUL5s/Qq5Vb0jD3mw4u/p Z53OBE12e53SCLlAz64WKtd/ESdeq3BaB/WA0s78wbkih7fZes61/PX5zm4bPXNy 8HsfwJqA09pss+QHX1/GScbJtyO7+3rK0LNFY4IenqmKGeCWjIZOL0j2iQEGInLG KbOXDpjZEWvSEW7ieI8LlufPSbY9lbslz6tytt5U5HVArXLk8nvxslBEpefAFQVv hUgZwDeEtdDPI7m5NZeZmniw24Dn5Wumqv3zu8s5xbOyDaMhd3U65L8QnyfwWrED iSalcoTjaAUL2GanvxKJctFRl2/CYoc= -----END CERTIFICATE-----Generated at Wed Aug 6 05:24:04 2025 by rpki-client