$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft File: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft (raw, json) Hash identifier: 7L/w3AeQlAP/6Yyr7xRvaLQ609y4cAOVPgjp9Jx5uXE= Subject key identifier: B7:40:ED:06:11:B7:50:97:51:39:B7:58:74:51:BC:5D:08:03:60:3D Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 03FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft Manifest number: 03E9 Signing time: Sun 11 May 2025 00:05:58 +0000 Manifest this update: Sun 11 May 2025 00:05:57 +0000 Manifest next update: Sun 18 May 2025 00:05:57 +0000 Files and hashes: 1: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl (hash: loxm3rX6kGwHdNYf33nj2aV1/omE7QUc/K0a3lchBs0=) 2: 4B167396E74111EC80E35542C4F9AE02.roa (hash: bHN8Wd0Zu68QTsipkyferF9uwGKu6L4i92pMNTEMusM=) 3: 8AEE4940EAB511ECBBDE3C50C4F9AE02.roa (hash: mO2TDz8iVH1QjiN6s50lIdAYCPwhB4UYqdlU/m/h8sE=) 4: 8A4C662AEAB511ECBBDE3C50C4F9AE02.roa (hash: J8gquWVTmRgJWJ3mBG8a1mA8su1ptSNi3imZDckI5g0=) 5: 91A286509F0811ECAE659F82C4F9AE02.roa (hash: RqwnZfnau7RkdBU68iXpJ/pJr2ocars1rJf1vcp1FOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1021 (0x3fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1, serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: May 11 00:05:57 2025 GMT Not After : May 18 00:05:57 2025 GMT Subject: CN=681fe9e5-bc1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:26:83:15:71:26:91:3f:2d:ea:01:3b:72:56: 96:ee:e1:86:31:d1:5e:ae:ac:32:58:05:f3:48:87: 3d:04:96:5d:5c:ef:9b:da:d0:7b:a9:45:d0:13:bc: 23:de:d2:46:a0:6a:b6:d7:f3:3e:80:1b:25:47:f2: 01:c2:4a:9e:88:80:98:0a:55:53:18:58:4c:64:b0: 4d:75:20:94:0f:8a:e9:29:f6:29:f2:8a:74:4d:b5: a9:e4:2f:1e:5f:39:9d:77:9d:b5:c7:32:d4:e4:24: 6a:1a:b1:8f:df:cb:7b:a1:47:5b:6b:11:5d:44:83: 32:46:f8:08:35:92:b2:9f:27:95:4c:86:fc:56:97: 1d:95:e3:9f:6b:da:de:ef:f7:1d:1e:d5:90:75:05: 5f:a1:46:8a:24:22:03:be:1e:34:16:cb:d0:bf:99: d1:1f:07:f3:71:68:28:5e:94:53:23:2d:68:10:dd: db:c9:bf:c8:0b:39:c4:77:21:ce:0e:0f:cb:c2:b3: 66:cd:51:ee:6f:42:81:0a:8f:1a:ce:78:48:1e:e5: dc:ec:10:ac:2b:24:84:d0:29:fb:0d:88:9b:7b:65: 9c:9e:2c:8c:4f:57:2d:15:ca:81:4e:7c:c4:b6:41: 76:92:ed:1b:88:45:06:1a:13:e3:7c:a7:11:f8:b2: 69:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:40:ED:06:11:B7:50:97:51:39:B7:58:74:51:BC:5D:08:03:60:3D X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:97:63:80:6d:59:ca:88:c9:95:bb:22:53:93:dc:35:15:d9: 27:30:8f:8c:10:3a:76:bd:c3:d8:24:ca:db:2b:0e:b8:fc:45: 22:0c:f5:a4:d0:14:cb:01:16:75:a0:9d:12:27:db:23:f4:a2: 49:b2:53:0f:c7:87:53:f7:0a:3d:3f:00:1f:a3:ab:68:92:96: a9:d4:c0:5b:51:d8:76:25:b8:4a:62:0d:ec:4f:85:7c:0e:cb: dc:f8:2b:01:9a:62:20:95:a1:ec:a7:6b:db:8c:39:76:4c:57: 67:ad:d8:0a:ae:51:1f:c5:35:5a:9c:be:f3:f2:34:99:a0:ed: b0:8d:c9:b6:ea:ea:3f:19:c4:7b:c5:2e:18:d8:e8:9a:ec:50: a7:12:91:83:86:ff:8d:06:d4:18:6d:f0:df:55:7a:f5:78:bd: 68:61:08:87:4b:d0:32:0b:00:52:62:5a:f9:b6:21:4c:ed:22: 16:b8:50:ed:72:66:52:af:8b:90:f6:aa:77:69:f5:83:18:3d: 55:40:6c:fd:51:f6:00:c5:83:b9:0f:c5:f4:54:26:39:c5:49: e0:52:a3:d3:4f:f1:a3:36:cb:6d:dc:2d:3f:72:53:04:96:aa: 48:13:3f:9c:41:06:04:13:29:38:7c:cc:35:cc:96:8f:7d:e0: 04:3f:93:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjUwNTExMDAwNTU3WhcNMjUwNTE4MDAwNTU3WjAYMRYwFAYD VQQDEw02ODFmZTllNS1iYzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCaDFXEmkT8t6gE7claW7uGGMdFerqwyWAXzSIc9BJZdXO+b2tB7qUXQE7wj 3tJGoGq21/M+gBslR/IBwkqeiICYClVTGFhMZLBNdSCUD4rpKfYp8op0TbWp5C8e Xzmdd521xzLU5CRqGrGP38t7oUdbaxFdRIMyRvgINZKynyeVTIb8VpcdleOfa9re 7/cdHtWQdQVfoUaKJCIDvh40FsvQv5nRHwfzcWgoXpRTIy1oEN3byb/ICznEdyHO Dg/LwrNmzVHub0KBCo8aznhIHuXc7BCsKySE0Cn7DYibe2WcniyMT1ctFcqBTnzE tkF2ku0biEUGGhPjfKcR+LJpOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdA7QYR t1CXUTm3WHRRvF0IA2A9MB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTlDMS9FRTcwMkY0NDdBQzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVL eXotaU16YUJCYWM5SFVHZk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQl2OAbVnKiMmVuyJTk9w1FdknMI+MEDp2vcPYJMrbKw64/EUiDPWk 0BTLARZ1oJ0SJ9sj9KJJslMPx4dT9wo9PwAfo6tokpap1MBbUdh2JbhKYg3sT4V8 Dsvc+CsBmmIglaHsp2vbjDl2TFdnrdgKrlEfxTVanL7z8jSZoO2wjcm26uo/GcR7 xS4Y2Oia7FCnEpGDhv+NBtQYbfDfVXr1eL1oYQiHS9AyCwBSYlr5tiFM7SIWuFDt cmZSr4uQ9qp3afWDGD1VQGz9UfYAxYO5D8X0VCY5xUngUqPTT/GjNstt3C0/clME lqpIEz+cQQYEEyk4fMw1zJaPfeAEP5Po -----END CERTIFICATE-----Generated at Sun May 11 19:55:24 2025 by rpki-client