$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft File: chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json) Hash identifier: W1fNnQUefn/4/8kV+wY7pb7HouTmlH5xvGo7EO2QAvM= Subject key identifier: 6C:EC:A2:95:86:6D:72:BA:50:89:D0:C0:0A:CD:2D:36:3A:0E:D1:B7 Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: 018C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft Manifest number: 0189 Signing time: Wed 07 May 2025 02:48:53 +0000 Manifest this update: Wed 07 May 2025 02:48:53 +0000 Manifest next update: Wed 14 May 2025 02:48:53 +0000 Files and hashes: 1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: GULHMI6ZEAFXsqPc2FE1Z54C8KXRXxs2v31aSOYeMl4=) 2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: IKV0Cgq2EuODSbPKQtSmxiMFKVMR6YDH69S9tC4UdAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 02:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD, serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: May 7 02:48:53 2025 GMT Not After : May 14 02:48:53 2025 GMT Subject: CN=681aca15-4c01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:17:3d:f7:3d:f5:3f:ae:8e:07:3b:f7:6c:3f: cc:4b:de:49:9e:4e:ce:92:7c:c8:76:2d:6f:98:b6: 18:82:39:5a:cc:5b:4f:cc:2f:03:8b:50:46:94:69: b0:14:43:bd:a5:a1:ba:83:8a:11:79:5e:d8:9e:0d: 12:a0:5f:21:a7:ce:99:84:65:d4:b4:47:e6:d5:ec: 62:2d:65:2f:ee:5a:82:d1:81:be:ec:47:66:98:e8: 13:8c:e6:2e:44:58:df:57:75:41:5c:ea:48:7e:27: 16:f6:f2:04:0d:0b:35:e8:3f:1e:46:d5:43:13:53: 1f:71:9f:c3:41:d2:49:f2:d0:ea:b7:f0:83:fb:d1: 0d:e4:7c:53:a7:f8:67:1f:5c:0a:1b:94:9d:9c:e1: 04:52:72:1f:c7:0b:6f:50:54:22:ae:74:fb:f6:24: cf:92:6c:12:92:8b:d2:11:51:14:49:55:fc:56:6c: 77:01:87:be:ed:b7:ad:66:86:7e:8a:a0:4b:79:4c: 1c:7a:3f:bf:6e:68:c4:7c:13:b7:78:1a:0a:24:51: ee:39:87:65:fa:c7:5e:02:39:a1:a9:48:46:63:ad: 72:1a:63:25:8c:0f:e0:27:34:3a:e3:1d:f6:23:18: 1d:ab:ac:01:04:55:69:ae:85:b8:a9:f9:bf:30:b7: a2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:EC:A2:95:86:6D:72:BA:50:89:D0:C0:0A:CD:2D:36:3A:0E:D1:B7 X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:08:df:97:dd:20:0e:b4:02:fd:c5:d3:df:79:57:ea:ca:ba: 65:78:97:14:b6:ef:20:f1:b6:94:21:44:dc:a8:78:2c:82:76: 45:b2:05:ed:f9:21:b5:06:ae:24:f6:8e:c5:74:db:fc:e3:94: 8a:f1:af:9c:83:f3:83:03:ac:42:a9:d4:a0:8d:f7:82:7f:c1: 95:4d:64:6a:57:0d:9d:29:5f:22:22:c5:bd:5d:73:b5:cc:75: 87:c1:4c:77:69:77:19:94:e9:0f:ef:00:94:2f:32:72:50:62: ee:32:75:5d:1e:b9:de:e9:c5:ee:90:fa:6c:fc:e5:cc:64:7b: df:f2:f1:2e:2f:80:de:36:fd:78:b7:d9:23:ef:d9:37:ae:b1: 21:59:0a:16:a2:e2:16:f1:dc:b6:d3:45:b5:95:2f:d0:3d:c0: 27:d3:51:de:96:78:c4:f9:2f:61:c6:66:50:1b:9d:5e:c1:16: bf:b2:d9:9f:77:31:d6:25:f2:bf:af:07:49:62:8a:f9:f0:d6: e5:4d:ea:91:02:00:b2:7c:b0:0f:cb:c5:57:c5:b1:5f:61:88: 7c:2a:ab:26:a3:14:cd:97:39:dd:b4:49:51:69:cc:90:f0:6a: fb:71:8b:70:69:75:20:cc:d3:28:1f:d5:70:55:53:52:56:51: a8:25:df:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjUwNTA3MDI0ODUzWhcNMjUwNTE0MDI0ODUzWjAYMRYwFAYD VQQDEw02ODFhY2ExNS00YzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkhc99z31P66OBzv3bD/MS95Jnk7OknzIdi1vmLYYgjlazFtPzC8Di1BGlGmw FEO9paG6g4oReV7Yng0SoF8hp86ZhGXUtEfm1exiLWUv7lqC0YG+7EdmmOgTjOYu RFjfV3VBXOpIficW9vIEDQs16D8eRtVDE1MfcZ/DQdJJ8tDqt/CD+9EN5HxTp/hn H1wKG5SdnOEEUnIfxwtvUFQirnT79iTPkmwSkovSEVEUSVX8Vmx3AYe+7betZoZ+ iqBLeUwcej+/bmjEfBO3eBoKJFHuOYdl+sdeAjmhqUhGY61yGmMljA/gJzQ64x32 Ixgdq6wBBFVproW4qfm/MLei1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzsopWG bXK6UInQwArNLTY6DtG3MB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpm VHRxRHp3dEdJN2RwUDJORG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABCN+X3SAOtAL9xdPfeVfqyrpleJcUtu8g8baUIUTcqHgsgnZFsgXt +SG1Bq4k9o7FdNv845SK8a+cg/ODA6xCqdSgjfeCf8GVTWRqVw2dKV8iIsW9XXO1 zHWHwUx3aXcZlOkP7wCULzJyUGLuMnVdHrne6cXukPps/OXMZHvf8vEuL4DeNv14 t9kj79k3rrEhWQoWouIW8dy200W1lS/QPcAn01HelnjE+S9hxmZQG51ewRa/stmf dzHWJfK/rwdJYor58NblTeqRAgCyfLAPy8VXxbFfYYh8KqsmoxTNlzndtElRacyQ 8Gr7cYtwaXUgzNMoH9VwVVNSVlGoJd+N -----END CERTIFICATE-----Generated at Thu May 8 16:57:12 2025 by rpki-client