$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: sBw+Pkz+x1oereg4lzje3fgbTVzndD5XAniwaCSdpd0= Subject key identifier: 9C:E2:A1:83:4D:26:E7:C6:86:14:A0:AB:AC:47:CD:1E:4F:4D:49:8A Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 020F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 0207 Signing time: Sat 23 Aug 2025 02:33:01 +0000 Manifest this update: Sat 23 Aug 2025 02:33:00 +0000 Manifest next update: Sat 30 Aug 2025 02:33:00 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: umr+PpkeLwCrQd5HjNWZqTXuS8Wr+8X+jbTHqIc83hM=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: /aLZRZnVDc3gbgHvgjjTVhimEYu2WCp9inOhdZerK9k=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: 046Nkak/mvU2MIy/D/sQyHF4+9Nf/OVFcgvY3OIqwCQ=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: 7uR7mk8CLJJlZZvBz+Qm2/sDak7TWidIc0rXMu5Xnkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 527 (0x20f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Aug 23 02:33:00 2025 GMT Not After : Aug 30 02:33:00 2025 GMT Subject: CN=68a9285c-f03f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e3:95:ab:5e:1c:0d:36:8b:e5:3e:16:6e:dd: d7:32:d4:02:2f:49:84:20:b2:b7:7d:3e:8e:28:32: f6:4b:f4:ad:07:50:5d:cf:1f:5c:f8:ba:9c:c7:af: 2d:c6:ad:e7:46:8a:23:d4:ed:7f:36:ce:a2:05:e7: 8c:b9:50:6b:c9:88:38:98:a1:8b:40:7d:53:36:ab: 34:7a:28:be:3a:48:5a:c8:f8:da:26:5e:18:8e:b6: eb:a2:bd:06:e1:de:e0:75:fd:47:39:b9:12:3f:e0: ab:c4:a4:e9:1e:cb:5b:e7:91:47:df:a0:1b:1e:0f: 2c:01:ec:f1:98:1f:dd:ee:36:dc:ae:66:6c:c8:54: d5:dd:78:9b:71:ce:75:3e:bf:88:a4:70:85:3a:35: 61:cc:a1:9e:28:48:b5:08:39:01:99:d9:05:7e:1e: d8:ac:15:c0:06:23:64:ae:48:1d:fe:92:dc:43:b1: 0f:a4:68:41:11:f8:f0:cb:46:a2:0e:c5:85:21:c4: d6:ea:55:8c:62:b7:49:99:d8:ab:fb:72:23:96:0d: fb:43:52:f8:e4:9f:df:94:5b:17:12:f9:a1:47:26: 16:10:88:23:2f:64:7d:a3:ec:61:74:0b:6a:61:e7: a1:35:77:5f:fd:bc:49:40:93:d7:3c:1f:8c:c0:34: 0c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E2:A1:83:4D:26:E7:C6:86:14:A0:AB:AC:47:CD:1E:4F:4D:49:8A X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:00:a3:f4:db:6c:41:57:51:e9:b8:70:33:4d:3a:67:54:4b: 74:e7:e4:77:85:97:3c:d5:77:19:50:57:42:97:89:52:b8:2d: df:18:9d:7b:a1:3e:1f:de:56:50:c0:d8:d2:4a:ef:6a:ee:f7: 89:bb:0f:b3:df:5a:ff:23:7e:0b:2b:ca:ae:d0:f6:04:a6:cb: f7:96:17:c5:94:6d:db:31:f3:e1:2e:fa:66:82:04:12:c5:1a: 4a:56:c4:a3:1c:ff:b6:b5:e5:ea:50:ec:55:b3:f0:a2:95:1c: 3a:00:1d:18:3e:8c:00:f7:dd:5a:b6:90:06:75:12:fe:e5:5d: 7f:b3:c3:cf:0a:12:67:de:6d:ba:e3:f6:9e:ab:94:09:89:10: e6:86:29:6b:cc:6e:d1:5a:ff:b7:52:c9:dd:82:2e:2d:66:e2: 87:4a:35:4f:46:76:6b:7e:60:4f:87:6a:68:18:23:22:65:ba: 41:f8:2e:16:e3:c3:77:00:5d:cf:1b:37:5f:a8:32:a1:5c:24: 97:26:10:d3:b2:ae:bf:aa:25:a8:96:5e:5b:0a:10:0b:66:34: 56:81:9b:fc:03:60:96:1b:07:24:ba:6a:52:e3:73:fa:9e:16: 93:d5:cd:81:47:7b:d5:e8:4d:a2:bc:09:9d:1a:b4:f1:ff:49: 4f:83:98:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjUwODIzMDIzMzAwWhcNMjUwODMwMDIzMzAwWjAYMRYwFAYD VQQDEw02OGE5Mjg1Yy1mMDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveOVq14cDTaL5T4Wbt3XMtQCL0mEILK3fT6OKDL2S/StB1Bdzx9c+Lqcx68t xq3nRooj1O1/Ns6iBeeMuVBryYg4mKGLQH1TNqs0eii+OkhayPjaJl4Yjrbror0G 4d7gdf1HObkSP+CrxKTpHstb55FH36AbHg8sAezxmB/d7jbcrmZsyFTV3Xibcc51 Pr+IpHCFOjVhzKGeKEi1CDkBmdkFfh7YrBXABiNkrkgd/pLcQ7EPpGhBEfjwy0ai DsWFIcTW6lWMYrdJmdir+3Ijlg37Q1L45J/flFsXEvmhRyYWEIgjL2R9o+xhdAtq YeehNXdf/bxJQJPXPB+MwDQMpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJzioYNN JufGhhSgq6xHzR5PTUmKMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcAKP022xBV1HpuHAzTTpnVEt05+R3hZc81XcZUFdCl4lSuC3fGJ17 oT4f3lZQwNjSSu9q7veJuw+z31r/I34LK8qu0PYEpsv3lhfFlG3bMfPhLvpmggQS xRpKVsSjHP+2teXqUOxVs/CilRw6AB0YPowA991atpAGdRL+5V1/s8PPChJn3m26 4/aeq5QJiRDmhilrzG7RWv+3Usndgi4tZuKHSjVPRnZrfmBPh2poGCMiZbpB+C4W 48N3AF3PGzdfqDKhXCSXJhDTsq6/qiWoll5bChALZjRWgZv8A2CWGwckumpS43P6 nhaT1c2BR3vV6E2ivAmdGrTx/0lPg5jU -----END CERTIFICATE-----Generated at Sat Aug 23 10:42:25 2025 by rpki-client