$ rpki-client -vvf rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft File: CHQTSbZiijmB94o3MLiYg-PXa8o.mft (raw, json) Hash identifier: XnHAq1WNCUBof8kn2JH9bwhTjc/mJNZKJLg2UUXi61g= Subject key identifier: 41:6E:CC:14:F1:5B:3D:C0:61:24:70:0A:F3:68:D0:B5:D5:D7:81:E3 Authority key identifier: 08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA Certificate issuer: /CN=A91712A8/serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Certificate serial: 0657 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft Manifest number: 0651 Signing time: Wed 02 Apr 2025 22:27:04 +0000 Manifest this update: Wed 02 Apr 2025 22:27:03 +0000 Manifest next update: Wed 09 Apr 2025 22:27:03 +0000 Files and hashes: 1: CHQTSbZiijmB94o3MLiYg-PXa8o.crl (hash: +sZ2x6ONbP/LM6pZHT6wrh8iVytqgYBCxKhmNW7zcPQ=) 2: B69DB4D27D6911EBA420FC6AC4F9AE02.roa (hash: kqvjt4xRQkic0pSOKa9QVL0YjZAGhKt2kqY9ktYProo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1623 (0x657) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91712A8 Validity Not Before: Apr 2 22:27:03 2025 GMT Not After : Apr 9 22:27:03 2025 GMT Subject: CN=67edb9b7-1ef3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bc:2f:51:c9:81:48:1e:25:79:0f:d4:37:4d: ca:bc:49:b9:e9:35:6e:37:83:67:00:27:9e:e6:e5: ff:68:ab:90:7a:64:51:3f:c9:3b:e9:69:52:42:79: 2b:e0:6c:0c:d4:cc:6f:f4:f8:8d:6e:14:74:9f:ae: fd:ce:ce:5e:ea:8b:b5:29:a7:ef:1c:0c:48:12:ab: dd:7e:59:e3:6f:21:95:8c:9c:1e:d7:d5:e0:65:a1: 53:31:60:34:9d:07:54:0b:15:f2:43:0d:47:a7:e9: be:2d:32:07:43:38:46:92:9f:4a:37:b8:33:c3:a4: d0:72:52:a1:09:1c:ad:1d:37:77:21:2b:6c:52:6c: 9f:c5:ce:74:39:00:51:98:17:8b:f1:da:01:d6:5c: 03:22:83:92:01:47:a5:00:31:ea:dd:99:b4:96:3e: 70:93:44:1e:97:23:03:1b:aa:82:e7:2b:6e:9d:6c: 29:b9:09:b8:50:c4:9f:f0:cf:b6:54:e4:5a:ba:4c: 9b:b2:aa:65:78:23:80:7e:dc:14:09:e7:10:92:fd: 38:52:da:47:93:28:fb:59:43:d9:72:6d:f6:29:a8: cb:0a:ac:0c:e5:24:c2:8c:18:bf:9c:9e:a2:01:64: 1c:89:ce:d2:e8:bd:3a:b8:ac:42:2a:4e:8a:68:a6: cf:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:6E:CC:14:F1:5B:3D:C0:61:24:70:0A:F3:68:D0:B5:D5:D7:81:E3 X509v3 Authority Key Identifier: keyid:08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:6c:19:34:ce:b1:56:ca:f0:93:cd:c7:4d:b3:71:99:45:44: 23:fe:19:76:eb:5a:2e:06:34:86:62:71:83:6d:79:b1:d3:8b: 48:b1:b8:84:2c:ac:e6:f3:32:41:26:74:82:40:ad:33:57:59: 0b:40:a3:9b:9e:b4:39:13:9f:38:7d:98:92:ca:6a:ab:f1:34: 75:d8:5a:b1:78:28:75:42:a1:fd:1c:4e:59:f6:b1:37:ca:d4: 7d:59:9d:f7:71:f1:ef:1f:10:79:57:99:bb:33:97:b0:18:36: 43:49:be:45:80:8c:4b:aa:31:f3:1e:b0:5c:ee:d4:8e:41:ab: f7:32:f8:b0:59:8b:5e:bb:a4:31:cb:a5:43:d5:15:d4:bc:d3: f7:01:ce:5b:18:84:e3:f7:45:8f:5a:20:92:8b:f9:7c:f0:32: bb:a2:ca:bd:bf:98:3f:18:27:88:86:89:ce:c7:1f:2e:d8:4a: 2b:d9:d3:76:bb:58:64:0b:17:52:44:b6:1c:b3:48:2e:83:a8: 10:65:48:39:f7:54:44:da:64:26:50:8d:9c:60:c8:98:e1:22: 06:c5:85:96:ea:86:d6:18:c2:d7:49:83:73:39:38:ff:56:82: a6:e5:fa:6a:46:e3:28:43:73:87:7f:da:a5:7b:66:f5:a3:44: b8:ed:8b:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyQTgxMTAvBgNVBAUTKDA4NzQxMzQ5QjY2MjhBMzk4MUY3OEEzNzMwQjg5ODgz RTNENzZCQ0EwHhcNMjUwNDAyMjIyNzAzWhcNMjUwNDA5MjIyNzAzWjAYMRYwFAYD VQQDEw02N2VkYjliNy0xZWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrwvUcmBSB4leQ/UN03KvEm56TVuN4NnACee5uX/aKuQemRRP8k76WlSQnkr 4GwM1Mxv9PiNbhR0n679zs5e6ou1KafvHAxIEqvdflnjbyGVjJwe19XgZaFTMWA0 nQdUCxXyQw1Hp+m+LTIHQzhGkp9KN7gzw6TQclKhCRytHTd3IStsUmyfxc50OQBR mBeL8doB1lwDIoOSAUelADHq3Zm0lj5wk0QelyMDG6qC5ytunWwpuQm4UMSf8M+2 VORaukybsqpleCOAftwUCecQkv04UtpHkyj7WUPZcm32KajLCqwM5STCjBi/nJ6i AWQcic7S6L06uKxCKk6KaKbPwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFuzBTx Wz3AYSRwCvNo0LXV14HjMB8GA1UdIwQYMBaAFAh0E0m2Yoo5gfeKNzC4mIPj12vK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTJBOC80NjUwMEY4QzdE NjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlqbUI5NG8zTUxpWWctUFhh OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIUVRTYlppaWptQjk0bzNNTGlZZy1QWGE4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTJBOC80NjUwMEY4QzdENjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlq bUI5NG8zTUxpWWctUFhhOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDdbBk0zrFWyvCTzcdNs3GZRUQj/hl261ouBjSGYnGDbXmx04tIsbiE LKzm8zJBJnSCQK0zV1kLQKObnrQ5E584fZiSymqr8TR12FqxeCh1QqH9HE5Z9rE3 ytR9WZ33cfHvHxB5V5m7M5ewGDZDSb5FgIxLqjHzHrBc7tSOQav3MviwWYteu6Qx y6VD1RXUvNP3Ac5bGITj90WPWiCSi/l88DK7osq9v5g/GCeIhonOxx8u2Eor2dN2 u1hkCxdSRLYcs0gug6gQZUg591RE2mQmUI2cYMiY4SIGxYWW6obWGMLXSYNzOTj/ VoKm5fpqRuMoQ3OHf9qle2b1o0S47Yt+ -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:22 2025 by rpki-client