$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: 1pXBhDQbcs+Lyi/DNTvvgec9+QtERAwIii71wZpGSzQ= Subject key identifier: C0:80:50:37:37:79:2C:94:82:B3:0C:2B:A6:87:5F:28:F7:14:B0:C4 Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 01D4 Signing time: Tue 13 May 2025 02:14:49 +0000 Manifest this update: Tue 13 May 2025 02:14:48 +0000 Manifest next update: Tue 20 May 2025 02:14:48 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: pasCQLLK7I8nLV9DXh2xj46yfU+xXa7fOSRbRMJorSA=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: /aLZRZnVDc3gbgHvgjjTVhimEYu2WCp9inOhdZerK9k=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: 046Nkak/mvU2MIy/D/sQyHF4+9Nf/OVFcgvY3OIqwCQ=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: 7uR7mk8CLJJlZZvBz+Qm2/sDak7TWidIc0rXMu5Xnkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:14:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: May 13 02:14:48 2025 GMT Not After : May 20 02:14:48 2025 GMT Subject: CN=6822ab18-54db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0c:28:17:16:92:3a:3e:0d:28:db:f5:cf:38: e5:cd:0e:90:ba:7a:79:9a:02:90:91:e0:87:70:98: d7:b6:61:6e:e0:5f:2a:68:f6:f4:60:23:c7:c9:91: 7c:8e:64:73:11:de:14:89:ec:4c:87:0a:59:b1:68: 65:92:93:d1:00:f3:66:67:fd:b9:41:b0:97:f0:6e: a7:78:6c:07:f0:87:bb:ff:ca:b2:95:cb:ce:ea:05: 88:a3:d8:2d:d5:cd:4e:87:92:e6:ad:9e:45:79:1e: 7f:8e:11:d0:71:28:37:40:f3:e0:8f:52:1a:dd:38: 60:7a:d2:21:dd:5a:23:6e:fb:4e:a7:d4:5f:90:1c: 0d:3a:44:0f:8e:92:95:3b:cf:c9:41:ff:db:0e:de: 5f:fe:2d:b7:60:eb:7c:79:eb:24:74:6a:bd:4e:76: b2:2a:65:de:aa:88:21:55:fc:f0:2a:73:2e:d4:90: c3:1f:55:f8:d8:0e:e4:8c:db:5b:75:23:41:de:56: a4:91:78:f0:91:54:8e:34:af:c7:36:e5:6e:df:c4: 18:4a:06:89:04:1c:cb:c6:9b:00:37:59:86:4b:49: a9:5b:43:52:49:6a:02:93:b1:37:97:30:1a:c6:ea: 02:27:e7:3d:18:86:81:eb:86:91:6c:6a:30:b7:3f: 29:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:80:50:37:37:79:2C:94:82:B3:0C:2B:A6:87:5F:28:F7:14:B0:C4 X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:e1:9a:bc:d8:e0:e2:70:ce:6f:f9:98:b5:fc:bb:e9:55:34: 0b:e1:42:2c:75:f4:64:2d:98:b9:2b:41:38:07:ab:71:69:db: f7:a4:4f:7a:7d:aa:bf:98:68:06:d3:10:88:30:cb:69:e2:03: 4d:40:3e:d2:e3:19:26:96:4e:ef:7c:9f:82:5e:b2:59:ef:b0: 21:c2:6d:50:74:d1:6f:e4:48:18:59:39:9e:d3:f3:a7:f4:d2: f2:8e:2b:c8:82:7a:12:31:c0:ea:5e:a8:11:0f:ef:29:49:cb: 48:6b:7e:a8:e8:72:4a:a7:23:f0:be:20:9c:66:f0:7a:d8:59: 11:84:d6:05:d9:17:14:2a:46:54:53:be:1a:f4:2a:9f:c1:a5: 8e:39:d0:39:a4:e5:32:a1:d6:07:bc:85:94:92:ce:b2:b9:8c: 40:bb:cb:dc:a7:85:58:f1:c6:8c:a6:3d:69:e5:63:bf:50:62: 54:d5:37:4c:5e:5e:a0:77:5c:a6:3e:2a:8e:5d:28:9d:ad:2b: 67:13:2a:ba:f8:06:7a:92:e7:dc:cb:9d:44:a1:29:e5:67:1f: 5e:62:81:0e:90:51:33:5b:fa:46:6b:6f:44:57:a0:69:79:d3: 2d:51:b5:40:d8:9e:67:9b:81:04:1d:f8:04:74:cc:9c:9d:1a: e3:42:04:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjUwNTEzMDIxNDQ4WhcNMjUwNTIwMDIxNDQ4WjAYMRYwFAYD VQQDEw02ODIyYWIxOC01NGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QwoFxaSOj4NKNv1zzjlzQ6Qunp5mgKQkeCHcJjXtmFu4F8qaPb0YCPHyZF8 jmRzEd4UiexMhwpZsWhlkpPRAPNmZ/25QbCX8G6neGwH8Ie7/8qylcvO6gWIo9gt 1c1Oh5LmrZ5FeR5/jhHQcSg3QPPgj1Ia3ThgetIh3VojbvtOp9RfkBwNOkQPjpKV O8/JQf/bDt5f/i23YOt8eeskdGq9TnayKmXeqoghVfzwKnMu1JDDH1X42A7kjNtb dSNB3lakkXjwkVSONK/HNuVu38QYSgaJBBzLxpsAN1mGS0mpW0NSSWoCk7E3lzAa xuoCJ+c9GIaB64aRbGowtz8pAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCAUDc3 eSyUgrMMK6aHXyj3FLDEMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh4Zq82ODicM5v+Zi1/LvpVTQL4UIsdfRkLZi5K0E4B6txadv3pE96 faq/mGgG0xCIMMtp4gNNQD7S4xkmlk7vfJ+CXrJZ77Ahwm1QdNFv5EgYWTme0/On 9NLyjivIgnoSMcDqXqgRD+8pSctIa36o6HJKpyPwviCcZvB62FkRhNYF2RcUKkZU U74a9CqfwaWOOdA5pOUyodYHvIWUks6yuYxAu8vcp4VY8caMpj1p5WO/UGJU1TdM Xl6gd1ymPiqOXSidrStnEyq6+AZ6kufcy51EoSnlZx9eYoEOkFEzW/pGa29EV6Bp edMtUbVA2J5nm4EEHfgEdMycnRrjQgTV -----END CERTIFICATE-----Generated at Thu May 15 00:22:28 2025 by rpki-client