$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft File: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft (raw, json) Hash identifier: MeU3SdXMyBvnI+E7zpAPNxjpvGhB5x35dAGba5qlwYA= Subject key identifier: CC:70:13:EA:BE:04:80:A7:4B:FB:3C:BA:22:1D:25:89:CA:BA:52:17 Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 0431 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft Manifest number: 041D Signing time: Sat 23 Aug 2025 00:35:36 +0000 Manifest this update: Sat 23 Aug 2025 00:35:35 +0000 Manifest next update: Sat 30 Aug 2025 00:35:35 +0000 Files and hashes: 1: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl (hash: tvwxlpzStJh6YwRmcwUcTyi3Ss6L1+AoTu/FEk8EPaY=) 2: 4B167396E74111EC80E35542C4F9AE02.roa (hash: bHN8Wd0Zu68QTsipkyferF9uwGKu6L4i92pMNTEMusM=) 3: 8AEE4940EAB511ECBBDE3C50C4F9AE02.roa (hash: mO2TDz8iVH1QjiN6s50lIdAYCPwhB4UYqdlU/m/h8sE=) 4: 8A4C662AEAB511ECBBDE3C50C4F9AE02.roa (hash: J8gquWVTmRgJWJ3mBG8a1mA8su1ptSNi3imZDckI5g0=) 5: 91A286509F0811ECAE659F82C4F9AE02.roa (hash: RqwnZfnau7RkdBU68iXpJ/pJr2ocars1rJf1vcp1FOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:35:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1073 (0x431) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1, serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Aug 23 00:35:35 2025 GMT Not After : Aug 30 00:35:35 2025 GMT Subject: CN=68a90cd8-efab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f4:9f:24:32:df:68:ec:90:f1:3d:a9:4b:99: cf:0d:de:2a:06:6c:39:44:b8:b7:e0:49:cb:9a:37: d4:8d:9d:0b:61:25:78:d0:58:7b:92:86:c3:a6:f3: ca:07:9b:72:56:78:27:44:c0:c7:00:25:7b:39:f2: 8c:3a:99:4d:3e:e4:75:1a:78:30:db:a0:fa:46:33: 74:97:bc:48:ab:60:ee:a6:03:68:91:00:b9:d0:cd: 0e:32:13:58:2b:b5:d0:aa:f0:78:bf:d7:d5:da:85: 9f:9c:14:45:8c:8d:34:59:3e:17:7c:24:7f:f7:5c: ab:b9:06:d6:2a:2a:e7:78:ad:16:4f:7d:e2:39:54: 1c:24:16:87:59:ef:ef:ff:b8:35:7b:32:91:e0:8d: 92:76:bb:6e:fe:09:1a:c8:92:63:eb:f6:09:d0:46: 5d:d6:7a:b4:f6:cc:e6:71:b2:68:28:ec:14:60:11: b6:b9:d8:f5:0b:89:19:a6:ff:d5:96:dc:31:fb:0a: 07:4d:51:22:fb:6e:6c:d0:d1:09:ab:38:12:7b:c1: d1:1a:ce:82:3f:99:66:04:8a:fd:40:d4:b9:30:28: 78:d3:3d:18:33:3e:b8:e2:d3:99:89:f7:2f:fc:f5: 34:ec:4d:a1:46:00:be:e5:9e:2a:db:9b:9e:40:dc: 9e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:70:13:EA:BE:04:80:A7:4B:FB:3C:BA:22:1D:25:89:CA:BA:52:17 X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:f9:0b:d2:15:4a:f5:1d:c6:4e:18:0f:f8:44:cf:49:6c:a1: af:86:0a:82:e1:6f:d6:ad:49:24:16:28:2e:6a:1c:af:39:c3: 22:ec:fb:f0:86:6e:8e:6b:42:b8:a7:81:1f:88:d2:2c:33:34: d8:65:af:69:5a:e3:8d:9a:9a:72:ae:4e:b1:f3:49:3f:15:0d: 09:22:25:d9:8a:90:60:13:91:cd:69:10:db:a3:11:43:4b:ee: 4f:12:be:ec:fd:9c:72:53:5b:49:b0:b8:b0:bb:35:57:8f:5f: da:07:b8:91:ab:61:bd:7f:d8:8d:87:fa:fd:28:47:49:b3:c6: 92:ef:c4:e2:55:fc:ae:9c:49:d7:23:f8:7f:5f:ad:3e:9a:b1: e2:3f:24:b6:73:48:a9:a0:65:4c:e3:5e:ed:fb:73:73:5f:05: 4b:fc:87:b2:99:02:6f:b1:00:92:3f:fa:33:5f:53:0c:b5:8d: 8f:e2:ca:51:24:39:42:89:fb:72:3e:40:82:06:54:36:88:c1: ac:2f:c3:6c:43:fd:3e:63:55:fd:bf:14:42:1a:b2:9d:dd:f0: 15:2b:78:f0:06:49:13:07:4e:24:84:38:4f:46:02:6e:4a:b1: fd:ce:fc:07:6f:fc:3b:10:d5:a9:83:67:78:4c:dd:a7:6b:cc: a8:e8:0f:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjUwODIzMDAzNTM1WhcNMjUwODMwMDAzNTM1WjAYMRYwFAYD VQQDEw02OGE5MGNkOC1lZmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfSfJDLfaOyQ8T2pS5nPDd4qBmw5RLi34EnLmjfUjZ0LYSV40Fh7kobDpvPK B5tyVngnRMDHACV7OfKMOplNPuR1Gngw26D6RjN0l7xIq2DupgNokQC50M0OMhNY K7XQqvB4v9fV2oWfnBRFjI00WT4XfCR/91yruQbWKirneK0WT33iOVQcJBaHWe/v /7g1ezKR4I2Sdrtu/gkayJJj6/YJ0EZd1nq09szmcbJoKOwUYBG2udj1C4kZpv/V ltwx+woHTVEi+25s0NEJqzgSe8HRGs6CP5lmBIr9QNS5MCh40z0YMz644tOZifcv /PU07E2hRgC+5Z4q25ueQNyeDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMxwE+q+ BICnS/s8uiIdJYnKulIXMB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTlDMS9FRTcwMkY0NDdBQzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVL eXotaU16YUJCYWM5SFVHZk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr+QvSFUr1HcZOGA/4RM9JbKGvhgqC4W/WrUkkFiguahyvOcMi7Pvw hm6Oa0K4p4EfiNIsMzTYZa9pWuONmppyrk6x80k/FQ0JIiXZipBgE5HNaRDboxFD S+5PEr7s/ZxyU1tJsLiwuzVXj1/aB7iRq2G9f9iNh/r9KEdJs8aS78TiVfyunEnX I/h/X60+mrHiPyS2c0ipoGVM417t+3NzXwVL/IeymQJvsQCSP/ozX1MMtY2P4spR JDlCiftyPkCCBlQ2iMGsL8NsQ/0+Y1X9vxRCGrKd3fAVK3jwBkkTB04khDhPRgJu SrH9zvwHb/w7ENWpg2d4TN2na8yo6A+S -----END CERTIFICATE-----Generated at Sat Aug 23 16:43:41 2025 by rpki-client