$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft File: chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json) Hash identifier: 3k2Kzs7GyjC82LMBup5BRVo80faJWTcWdxhkaOsJFGI= Subject key identifier: D9:D0:89:07:44:59:E0:EC:58:B9:7B:3D:70:8A:A8:B7:62:27:03:F5 Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft Manifest number: 0179 Signing time: Sat 05 Apr 2025 03:11:09 +0000 Manifest this update: Sat 05 Apr 2025 03:11:08 +0000 Manifest next update: Sat 12 Apr 2025 03:11:08 +0000 Files and hashes: 1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: J0fn6hi/8h0tjax8GMBG/S5wrq3cGWo+7N/z6gfMVzA=) 2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: IKV0Cgq2EuODSbPKQtSmxiMFKVMR6YDH69S9tC4UdAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD Validity Not Before: Apr 5 03:11:08 2025 GMT Not After : Apr 12 03:11:08 2025 GMT Subject: CN=67f09f4c-d89e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bc:50:4b:ae:9e:a6:de:ac:74:fb:63:14:3e: e0:51:37:54:f2:39:e5:be:07:c1:99:05:8e:7a:a3: 1d:9c:f3:dc:21:78:f3:f0:02:89:82:bc:73:c9:8c: c2:42:f8:6a:f2:c2:47:ff:38:4f:6e:40:72:c4:73: c7:1d:65:59:e8:7f:99:eb:29:ff:eb:d8:b3:f0:56: f1:c5:7f:1c:df:d7:68:f7:bd:98:f6:b1:48:c8:0d: 06:27:0f:37:6a:6c:dc:88:2e:ee:fb:24:d4:c9:19: fd:43:8d:d6:28:11:69:90:6b:b1:e3:ee:2d:46:2d: 2d:5c:9f:9c:f0:6a:24:5d:3b:f8:be:78:f3:23:03: bf:d2:39:2c:db:18:d6:c8:02:03:b0:5a:6e:37:86: c0:c5:ca:65:b9:b7:1d:0a:a1:8a:54:e1:0e:af:b5: e6:5a:37:e0:6c:9a:63:ae:86:d1:5a:f0:c9:7d:6f: 30:13:34:70:76:80:c0:b2:ea:a3:7e:15:10:8a:02: 0a:30:1f:8a:49:a0:e3:f6:44:37:f7:00:df:b8:5d: 61:20:a7:a2:b5:eb:35:ec:d5:6a:40:2b:ff:db:ef: 20:ad:f7:f7:64:b9:8f:34:79:57:8d:5e:59:11:fb: bc:4a:bf:39:7f:ad:a7:e7:89:79:b0:db:b2:1c:f4: a0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D0:89:07:44:59:E0:EC:58:B9:7B:3D:70:8A:A8:B7:62:27:03:F5 X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:f4:b1:61:5c:36:43:19:b3:da:39:fc:35:02:a0:e2:21:57: 0c:12:fe:85:43:a0:5e:1b:42:03:ce:0e:57:12:72:ad:93:f0: 21:b5:f6:9c:84:ad:83:91:ec:44:0c:20:47:29:a1:33:b5:67: c8:53:80:24:5c:65:78:ba:a6:ea:4e:cd:62:4c:10:86:86:bd: d4:1e:63:72:fc:97:58:af:2f:89:a3:04:c3:f4:2a:ef:52:b4: b2:7c:0c:d7:bf:bb:e9:76:6c:d8:5e:af:cc:cc:e9:e0:a7:4f: 89:d6:66:ba:7b:ba:12:87:0d:5c:31:d2:96:48:e8:8d:ff:c8: 74:d9:a8:1f:58:8e:36:c9:e3:7c:8f:01:b7:8d:75:ca:3e:c3: 70:b3:f3:c8:df:38:f5:6e:86:67:1d:60:af:81:d1:16:5a:4f: f5:6b:dc:ff:3c:b0:61:44:78:7d:f0:a1:20:43:b8:05:b1:ab: 5c:2c:6d:76:03:bd:5a:6b:bf:be:ff:ae:72:dc:f5:31:04:c7: 68:fd:ce:d4:02:95:15:aa:3a:c0:50:86:ed:e0:31:8f:2b:81: 9b:f1:07:28:50:64:20:6b:c9:5e:e3:d2:fd:19:be:71:e2:e0: 86:98:8f:09:bd:1c:5b:2c:cb:44:9e:39:3c:1b:4d:42:23:86: 1a:a9:ef:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjUwNDA1MDMxMTA4WhcNMjUwNDEyMDMxMTA4WjAYMRYwFAYD VQQDEw02N2YwOWY0Yy1kODllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbxQS66ept6sdPtjFD7gUTdU8jnlvgfBmQWOeqMdnPPcIXjz8AKJgrxzyYzC Qvhq8sJH/zhPbkByxHPHHWVZ6H+Z6yn/69iz8FbxxX8c39do972Y9rFIyA0GJw83 amzciC7u+yTUyRn9Q43WKBFpkGux4+4tRi0tXJ+c8GokXTv4vnjzIwO/0jks2xjW yAIDsFpuN4bAxcplubcdCqGKVOEOr7XmWjfgbJpjrobRWvDJfW8wEzRwdoDAsuqj fhUQigIKMB+KSaDj9kQ39wDfuF1hIKeites17NVqQCv/2+8grff3ZLmPNHlXjV5Z Efu8Sr85f62n54l5sNuyHPSgqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnQiQdE WeDsWLl7PXCKqLdiJwP1MB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpm VHRxRHp3dEdJN2RwUDJORG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd9LFhXDZDGbPaOfw1AqDiIVcMEv6FQ6BeG0IDzg5XEnKtk/Ahtfac hK2DkexEDCBHKaEztWfIU4AkXGV4uqbqTs1iTBCGhr3UHmNy/JdYry+JowTD9Crv UrSyfAzXv7vpdmzYXq/MzOngp0+J1ma6e7oShw1cMdKWSOiN/8h02agfWI42yeN8 jwG3jXXKPsNws/PI3zj1boZnHWCvgdEWWk/1a9z/PLBhRHh98KEgQ7gFsatcLG12 A71aa7++/65y3PUxBMdo/c7UApUVqjrAUIbt4DGPK4Gb8QcoUGQga8le49L9Gb5x 4uCGmI8JvRxbLMtEnjk8G01CI4Yaqe/P -----END CERTIFICATE-----Generated at Sun Apr 6 17:50:46 2025 by rpki-client