$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft File: chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json) Hash identifier: BB/tdYqJWbXLWhbGSoMRkC+W6RQ0LRg2aiTPt4A6oJQ= Subject key identifier: 26:26:F5:B7:FD:B2:C2:13:06:AA:EA:4E:80:07:03:47:31:67:03:63 Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft Manifest number: 01C1 Signing time: Sat 23 Aug 2025 03:07:23 +0000 Manifest this update: Sat 23 Aug 2025 03:07:22 +0000 Manifest next update: Sat 30 Aug 2025 03:07:22 +0000 Files and hashes: 1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: UnYdqvnttujVQTCeInh+h3wL2jNGzSnJu9M0acQdDOs=) 2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: L3qkCPmXp0iJV192Ab/fphVf55ttABMSsjRwG8i7X3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:07:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD, serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: Aug 23 03:07:22 2025 GMT Not After : Aug 30 03:07:22 2025 GMT Subject: CN=68a9306a-52ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:44:06:4c:3c:7f:24:7d:b0:fc:fc:bd:97:47: 22:38:f0:3d:cc:87:70:07:6b:26:14:f2:9f:bf:cc: 10:3f:45:9d:a3:1c:9b:6b:e1:fb:de:86:ce:cf:5f: c1:62:00:ab:91:e9:27:63:e4:18:31:6a:b8:9a:0d: c6:80:ed:2c:aa:1e:5a:3f:26:d9:4d:85:90:bf:ef: 22:a1:95:4b:8c:04:89:bb:20:9c:47:62:58:2c:76: 6c:cd:a3:4e:8f:5c:52:dc:a1:7d:84:8e:3b:9b:80: 69:7f:80:97:c6:8f:28:e1:a5:8f:db:d2:49:aa:33: 09:a1:81:cd:93:39:cb:0b:a5:26:c0:a7:ec:20:57: d5:50:1a:e7:c1:df:a2:c1:3a:b5:29:aa:75:7e:fc: 2d:06:2d:ad:f6:19:74:63:9b:13:d5:6d:a7:c4:f8: 1a:79:de:a3:3e:db:d8:ea:0b:25:c1:4d:04:9d:6f: 23:3b:20:55:b7:56:3d:17:60:b9:29:d3:0b:52:6c: f4:a7:fa:17:a4:fa:68:9b:f2:1d:26:af:bb:8b:33: 25:c4:18:87:50:78:0f:9e:79:b3:90:d2:ae:df:27: b7:39:8e:fa:78:11:d7:a4:3a:ce:a0:3b:db:a9:73: c9:26:aa:3c:ba:f5:53:b6:b7:79:ea:2a:9b:90:0e: e0:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:26:F5:B7:FD:B2:C2:13:06:AA:EA:4E:80:07:03:47:31:67:03:63 X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:de:60:25:49:ec:5f:98:e4:e4:d6:a9:8f:b2:5e:81:86:9a: 8c:ee:9d:4f:fd:39:11:ab:da:6c:7d:6e:af:aa:ec:f7:16:b8: 83:25:9c:cd:5f:85:5f:ac:20:5b:9b:b7:10:03:99:4c:e3:68: df:ad:51:65:91:25:6d:6f:b2:4e:30:12:20:d7:39:da:0b:eb: 1e:10:5f:c7:cd:14:63:b4:97:a6:35:36:df:40:39:7d:38:58: dc:79:04:4e:f6:5d:f9:14:f9:3f:a5:6d:13:1c:7c:6f:b3:e6: e1:79:79:1a:47:3a:f7:ee:30:3b:e3:da:67:15:e9:ce:36:74: d7:f8:39:52:de:63:58:84:7a:2d:54:05:ce:b8:80:09:48:b9: 21:30:db:5d:45:33:eb:4f:25:6f:2a:d9:d8:a6:b0:3a:0c:20: d5:2e:db:cd:87:34:7a:ae:60:58:79:07:24:10:cb:74:b3:2b: 75:07:04:44:0e:c9:84:70:1d:2b:bd:74:7a:d4:43:f3:4f:a6: 40:b8:e6:41:24:93:cb:a3:24:9a:58:54:f6:e1:62:f8:6c:ed: 5e:df:98:d3:df:f4:f8:f0:f7:96:39:14:24:c5:03:bf:8d:57: cd:37:3d:72:4c:87:36:f8:97:03:62:b6:ec:2b:79:2c:9e:a4: 14:1c:0f:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjUwODIzMDMwNzIyWhcNMjUwODMwMDMwNzIyWjAYMRYwFAYD VQQDEw02OGE5MzA2YS01MmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEQGTDx/JH2w/Py9l0ciOPA9zIdwB2smFPKfv8wQP0Wdoxyba+H73obOz1/B YgCrkeknY+QYMWq4mg3GgO0sqh5aPybZTYWQv+8ioZVLjASJuyCcR2JYLHZszaNO j1xS3KF9hI47m4Bpf4CXxo8o4aWP29JJqjMJoYHNkznLC6UmwKfsIFfVUBrnwd+i wTq1Kap1fvwtBi2t9hl0Y5sT1W2nxPgaed6jPtvY6gslwU0EnW8jOyBVt1Y9F2C5 KdMLUmz0p/oXpPpom/IdJq+7izMlxBiHUHgPnnmzkNKu3ye3OY76eBHXpDrOoDvb qXPJJqo8uvVTtrd56iqbkA7gTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCYm9bf9 ssITBqrqToAHA0cxZwNjMB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpm VHRxRHp3dEdJN2RwUDJORG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv3mAlSexfmOTk1qmPsl6BhpqM7p1P/TkRq9psfW6vquz3FriDJZzN X4VfrCBbm7cQA5lM42jfrVFlkSVtb7JOMBIg1znaC+seEF/HzRRjtJemNTbfQDl9 OFjceQRO9l35FPk/pW0THHxvs+bheXkaRzr37jA749pnFenONnTX+DlS3mNYhHot VAXOuIAJSLkhMNtdRTPrTyVvKtnYprA6DCDVLtvNhzR6rmBYeQckEMt0syt1BwRE DsmEcB0rvXR61EPzT6ZAuOZBJJPLoySaWFT24WL4bO1e35jT3/T48PeWORQkxQO/ jVfNNz1yTIc2+JcDYrbsK3ksnqQUHA95 -----END CERTIFICATE-----Generated at Sat Aug 23 15:49:23 2025 by rpki-client