$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: QxRljj8c2pB+KhwdhOIppkcTTrx3FsJwLtX+ockk1y0= Subject key identifier: 45:AD:25:45:49:3A:B9:D1:12:14:7C:EB:CB:48:B2:A2:46:68:98:AD Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 01F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 01ED Signing time: Thu 03 Jul 2025 02:47:32 +0000 Manifest this update: Thu 03 Jul 2025 02:47:31 +0000 Manifest next update: Thu 10 Jul 2025 02:47:31 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: x2F/Db3pFgniq+TzCrFpNwwk14wzEtfRRIiFsrsuL14=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: /aLZRZnVDc3gbgHvgjjTVhimEYu2WCp9inOhdZerK9k=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: 046Nkak/mvU2MIy/D/sQyHF4+9Nf/OVFcgvY3OIqwCQ=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: 7uR7mk8CLJJlZZvBz+Qm2/sDak7TWidIc0rXMu5Xnkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:47:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Jul 3 02:47:31 2025 GMT Not After : Jul 10 02:47:31 2025 GMT Subject: CN=6865ef43-8c6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d7:75:13:34:18:bd:b5:61:aa:2f:cb:88:2e: 32:d9:38:c1:e7:0f:c9:cf:f2:85:1a:d4:e6:de:f9: d0:96:37:9f:8d:e1:d2:37:21:1a:91:cf:40:69:e7: c4:f6:58:43:1e:be:31:6d:46:da:92:2b:a1:a9:46: ef:91:5f:a3:c4:66:84:fa:ef:ba:65:4a:63:f4:50: 17:51:e2:96:94:18:2c:2d:d2:0a:48:84:61:96:34: 8d:05:46:e8:25:ac:c0:96:50:e7:f9:5e:9c:3a:d9: c1:f0:3e:25:8a:76:fd:64:df:d9:f2:f3:7b:5a:18: 6b:f8:8d:ea:6f:da:33:48:27:cb:fa:eb:98:a5:c2: aa:f7:b7:a4:a5:f0:c5:e6:f2:16:0a:6d:a8:70:7b: 40:04:11:b1:74:6c:58:ae:0c:e7:c2:8c:b1:b2:d3: b4:c5:c8:83:34:e0:4f:bb:67:aa:e9:a6:43:8c:a1: 3e:b8:9f:0c:ee:59:89:29:bf:44:8b:3f:56:8f:1b: eb:5a:0d:7e:bc:39:fc:2c:7a:f1:72:bb:2a:f6:89: b2:76:62:b6:68:19:1b:e1:68:6d:02:77:00:61:ef: 74:f2:1d:04:74:fe:aa:62:d4:3e:af:0e:a1:22:53: 4d:aa:22:3b:d9:22:ec:4e:8c:3a:2d:83:02:10:cb: e7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:AD:25:45:49:3A:B9:D1:12:14:7C:EB:CB:48:B2:A2:46:68:98:AD X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:5a:26:11:c7:01:43:49:1f:65:cf:0a:e9:e8:4f:e6:58:44: c2:5a:1c:b6:54:ab:54:c9:0d:37:67:49:13:3b:c7:de:be:5d: 40:b9:92:0d:2e:b4:10:84:ba:d1:18:5a:80:07:a5:cf:f4:57: 82:96:57:c9:64:e3:81:fe:83:b7:b9:90:68:b9:f4:31:c2:87: 20:33:40:99:4e:f4:9c:35:da:56:f6:df:17:dc:52:cf:de:23: 28:11:af:62:cf:ff:05:ac:b7:d5:90:a5:92:00:a7:5c:22:aa: 6c:36:b4:7f:68:8d:04:fb:ac:05:b9:6f:7c:7c:79:c2:ce:40: 33:23:cb:df:a7:e9:c1:78:da:af:f7:ad:e6:8a:51:d0:2e:4f: d3:09:b3:29:88:27:ad:8a:4a:5d:75:51:07:27:81:b3:50:e4: 87:a7:57:e9:b3:aa:68:a7:78:13:69:65:c7:16:eb:61:9f:66: 2d:0b:d6:9c:fe:69:56:3d:4a:64:1e:45:39:6c:8e:01:ad:f3: d9:8a:24:f7:bf:40:1a:87:5e:0b:1b:c3:13:1f:ff:98:73:a0: 8d:4e:f2:ad:df:65:46:22:57:3c:76:c3:61:45:80:5f:e4:bf: c1:33:8e:9e:6f:57:23:60:96:c4:2b:ff:aa:1d:2f:56:61:11: 2c:77:c7:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjUwNzAzMDI0NzMxWhcNMjUwNzEwMDI0NzMxWjAYMRYwFAYD VQQDEw02ODY1ZWY0My04YzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2td1EzQYvbVhqi/LiC4y2TjB5w/Jz/KFGtTm3vnQljefjeHSNyEakc9AaefE 9lhDHr4xbUbakiuhqUbvkV+jxGaE+u+6ZUpj9FAXUeKWlBgsLdIKSIRhljSNBUbo JazAllDn+V6cOtnB8D4linb9ZN/Z8vN7Whhr+I3qb9ozSCfL+uuYpcKq97ekpfDF 5vIWCm2ocHtABBGxdGxYrgznwoyxstO0xciDNOBPu2eq6aZDjKE+uJ8M7lmJKb9E iz9WjxvrWg1+vDn8LHrxcrsq9omydmK2aBkb4WhtAncAYe908h0EdP6qYtQ+rw6h IlNNqiI72SLsTow6LYMCEMvnDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWtJUVJ OrnREhR868tIsqJGaJitMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeWiYRxwFDSR9lzwrp6E/mWETCWhy2VKtUyQ03Z0kTO8fevl1AuZIN LrQQhLrRGFqAB6XP9FeCllfJZOOB/oO3uZBoufQxwocgM0CZTvScNdpW9t8X3FLP 3iMoEa9iz/8FrLfVkKWSAKdcIqpsNrR/aI0E+6wFuW98fHnCzkAzI8vfp+nBeNqv 963milHQLk/TCbMpiCetikpddVEHJ4GzUOSHp1fps6pop3gTaWXHFuthn2YtC9ac /mlWPUpkHkU5bI4BrfPZiiT3v0Aah14LG8MTH/+Yc6CNTvKt32VGIlc8dsNhRYBf 5L/BM46eb1cjYJbEK/+qHS9WYREsd8eL -----END CERTIFICATE-----Generated at Thu Jul 3 06:03:37 2025 by rpki-client