$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft File: chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json) Hash identifier: B+/teIVTEnnHlX/xPb67gD2cnAAcMdr7Y7mcZO1rXhM= Subject key identifier: 8F:7F:3B:2C:36:E0:2E:73:60:75:23:E6:E7:76:91:1D:54:69:6F:7B Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft Manifest number: 01B0 Signing time: Mon 21 Jul 2025 03:15:12 +0000 Manifest this update: Mon 21 Jul 2025 03:15:11 +0000 Manifest next update: Mon 28 Jul 2025 03:15:11 +0000 Files and hashes: 1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: 1G5baF7eAwlhPiVi6OdHQAWKI02ls+SEb07G9/5upB4=) 2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: L3qkCPmXp0iJV192Ab/fphVf55ttABMSsjRwG8i7X3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:15:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD, serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: Jul 21 03:15:11 2025 GMT Not After : Jul 28 03:15:11 2025 GMT Subject: CN=687db0c0-ec43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:79:91:e9:dc:f6:ef:50:41:5c:bd:3a:90:da: 7d:8b:cf:41:77:71:f2:f1:ee:eb:c7:d6:10:2c:46: a6:85:75:96:15:4e:8c:fd:a2:ec:d6:b1:d7:75:7f: 93:07:b1:56:27:92:05:af:15:4b:02:da:73:b7:a2: f6:19:fb:1f:0f:4b:8c:52:39:b3:1a:15:8c:31:ca: 41:80:95:1c:7b:3b:05:0e:4a:15:a5:4f:53:d9:d1: 7b:85:39:75:e1:31:e8:0e:77:1f:ed:ae:b9:2b:9d: c4:2b:cc:68:59:c3:af:0c:e2:69:87:79:ed:4e:fc: 01:9b:dc:d5:a7:52:c8:c5:15:ae:cb:4d:48:d4:5c: e2:9d:69:d7:47:37:cc:18:0c:62:38:f2:b8:ab:9b: 5d:38:c2:17:3f:e2:ef:ee:20:8b:3d:d2:85:50:08: 14:e6:93:5e:81:28:f2:fe:63:b4:06:72:77:2e:fc: 9d:7d:a3:5a:c1:ff:47:9a:53:8e:77:88:ee:93:ff: 42:31:56:8f:a2:52:22:69:a5:b6:b2:0f:64:e6:3b: 00:5a:6f:3f:7c:9b:b4:d7:bb:5e:d8:00:7b:ce:fb: 9b:bc:00:77:7a:e5:71:a2:6c:56:2d:dd:c4:dd:98: 19:2a:d9:e9:93:02:c8:ff:1a:45:72:5b:3a:d6:14: ea:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:7F:3B:2C:36:E0:2E:73:60:75:23:E6:E7:76:91:1D:54:69:6F:7B X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:e2:57:f2:39:7a:2d:54:06:72:14:0d:eb:dd:e2:79:ab:a5: 4a:03:12:dc:c0:25:f9:03:fb:7a:11:e9:ab:62:8c:3c:17:0a: 7d:a5:3b:54:4a:02:ca:b1:26:a7:60:a7:bc:e6:fd:c7:c0:35: a4:75:a1:1a:9f:b6:e0:48:a9:d5:e8:3e:d0:b5:1c:c4:83:76: f0:99:dd:05:7f:83:40:6d:bf:67:6d:88:3b:93:24:2d:1a:14: ee:84:c4:bb:86:c1:34:34:bc:4b:7f:63:40:19:cd:a3:a6:e1: 15:4c:af:ee:4d:47:6d:dc:25:cd:e1:ae:ac:11:4c:45:6d:51: ba:bd:04:d3:06:1b:6a:ef:90:9f:6e:5e:e1:3b:ae:26:f6:27: f9:fa:11:1a:42:24:be:5e:c0:b2:a0:2f:e6:bb:b2:d4:83:08: b8:0f:b2:d0:df:05:c9:19:c4:da:f1:2b:8b:11:65:aa:19:0d: 67:b9:c7:d0:54:11:c8:61:bc:aa:03:09:7f:e0:9d:ea:70:21: e1:8b:bd:c1:e0:5a:60:50:f4:52:7c:f2:b6:87:92:bc:00:65: 86:81:a6:47:9b:7d:6e:f4:91:18:8d:59:cb:65:9c:3b:51:3e: a2:84:5a:71:8c:b2:2a:96:c4:ef:0a:8a:d9:65:a2:e0:d9:a7: 34:02:ed:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjUwNzIxMDMxNTExWhcNMjUwNzI4MDMxNTExWjAYMRYwFAYD VQQDEw02ODdkYjBjMC1lYzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73mR6dz271BBXL06kNp9i89Bd3Hy8e7rx9YQLEamhXWWFU6M/aLs1rHXdX+T B7FWJ5IFrxVLAtpzt6L2GfsfD0uMUjmzGhWMMcpBgJUcezsFDkoVpU9T2dF7hTl1 4THoDncf7a65K53EK8xoWcOvDOJph3ntTvwBm9zVp1LIxRWuy01I1FzinWnXRzfM GAxiOPK4q5tdOMIXP+Lv7iCLPdKFUAgU5pNegSjy/mO0BnJ3LvydfaNawf9HmlOO d4juk/9CMVaPolIiaaW2sg9k5jsAWm8/fJu017te2AB7zvubvAB3euVxomxWLd3E 3ZgZKtnpkwLI/xpFcls61hTqvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9/Oyw2 4C5zYHUj5ud2kR1UaW97MB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpm VHRxRHp3dEdJN2RwUDJORG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR4lfyOXotVAZyFA3r3eJ5q6VKAxLcwCX5A/t6EemrYow8Fwp9pTtU SgLKsSanYKe85v3HwDWkdaEan7bgSKnV6D7QtRzEg3bwmd0Ff4NAbb9nbYg7kyQt GhTuhMS7hsE0NLxLf2NAGc2jpuEVTK/uTUdt3CXN4a6sEUxFbVG6vQTTBhtq75Cf bl7hO64m9if5+hEaQiS+XsCyoC/mu7LUgwi4D7LQ3wXJGcTa8SuLEWWqGQ1nucfQ VBHIYbyqAwl/4J3qcCHhi73B4FpgUPRSfPK2h5K8AGWGgaZHm31u9JEYjVnLZZw7 UT6ihFpxjLIqlsTvCorZZaLg2ac0Au0m -----END CERTIFICATE-----Generated at Mon Jul 21 06:50:10 2025 by rpki-client