$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: H+Xtihk9DjUpfbGs8u/IUmYTJ9uz34lkd6CFjSqYR58= Subject key identifier: 1C:C9:F4:D9:1F:0A:0C:2D:02:26:22:EB:CE:C9:53:04:B2:7B:CE:D2 Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 01BF Signing time: Thu 03 Apr 2025 02:30:34 +0000 Manifest this update: Thu 03 Apr 2025 02:30:33 +0000 Manifest next update: Thu 10 Apr 2025 02:30:33 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: LnNZIFAh9o8qierxMO+GZ9ZAAAqTZj2N04yWBGDQRH4=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: /aLZRZnVDc3gbgHvgjjTVhimEYu2WCp9inOhdZerK9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:30:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA Validity Not Before: Apr 3 02:30:33 2025 GMT Not After : Apr 10 02:30:33 2025 GMT Subject: CN=67edf2c9-97c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:02:22:80:33:ce:2d:2e:48:1e:1e:c9:f6:84: 44:67:d0:04:fb:4f:6f:07:9a:ef:55:b7:46:51:43: 89:61:31:e4:cf:23:bf:bf:30:1e:2d:5d:57:6d:a8: 5e:c5:a9:3e:a6:09:e2:66:dc:f7:8b:2b:0e:1c:0e: 70:ce:a4:dc:73:18:ca:42:20:f4:9d:7e:d6:59:b5: 48:a9:db:e0:65:4b:42:ac:4e:63:27:34:b6:84:46: 09:57:57:66:3f:63:71:50:e9:6f:af:96:9b:60:7f: 53:4b:5d:0d:db:df:7f:a7:46:26:b0:50:36:c5:c2: 4a:84:fb:3b:fc:35:87:cf:6a:a9:f5:3d:33:43:c2: ee:77:86:c8:f7:53:c5:1e:45:8f:4e:8a:4b:f4:b0: fd:9a:ec:e1:39:4b:b9:bb:af:17:fd:59:51:d0:c5: 10:26:5e:00:1d:3c:b7:93:2a:06:1b:44:cc:98:93: 1a:86:30:f5:e8:79:38:de:77:c0:06:46:51:25:33: 28:d0:76:a1:40:0a:0a:d2:db:dd:05:2b:b3:6c:82: b7:f3:45:93:cf:6d:bd:26:55:b7:fe:40:fa:d2:a1: f4:cb:6f:d4:84:3f:04:9c:f6:a8:b4:ed:ea:57:61: 8c:35:3f:3f:58:c7:49:7b:11:96:4c:4d:a3:77:50: 65:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:C9:F4:D9:1F:0A:0C:2D:02:26:22:EB:CE:C9:53:04:B2:7B:CE:D2 X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:87:e3:43:cd:98:89:05:5b:ef:62:fe:63:5e:a9:ad:f2:b9: e8:44:0c:57:07:9a:94:08:2f:21:41:78:88:e1:5b:fd:91:26: ab:cf:52:1d:75:22:c6:a9:0b:bf:d1:07:e2:18:59:1b:05:13: af:c2:45:b1:57:e7:65:2d:cb:a4:85:bf:4b:9e:2a:9e:09:dc: 5b:01:d3:6c:09:f2:29:91:c9:79:38:35:5d:70:01:36:bc:b6: e5:15:8b:95:a7:1b:dc:64:9e:e8:4c:8f:19:2d:2f:11:12:52: ad:5d:c9:63:f4:1d:0f:ec:4f:b1:55:c3:c3:e4:21:ef:09:ba: 3d:50:45:87:04:92:b1:2c:d7:24:80:09:af:e0:de:ce:ab:fa: 2a:5c:24:7a:5d:35:6d:f2:04:e9:3a:7b:e1:84:c7:31:23:75: 1b:09:29:35:f0:21:88:21:6e:f6:1b:9d:bf:85:32:cc:90:9e: 10:4f:92:5b:07:7f:df:20:98:85:c7:5a:8b:d2:57:ce:e8:1a: 1f:f1:09:18:2f:fa:ec:30:e7:2d:07:73:a7:71:e1:47:53:d9: 68:65:a2:d2:1c:af:55:f6:22:b6:51:54:5e:9d:96:cd:83:6a: 28:cd:bd:32:63:02:c2:af:e3:3d:73:06:de:2c:2d:1e:11:ab: ad:5d:3d:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjUwNDAzMDIzMDMzWhcNMjUwNDEwMDIzMDMzWjAYMRYwFAYD VQQDEw02N2VkZjJjOS05N2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQIigDPOLS5IHh7J9oREZ9AE+09vB5rvVbdGUUOJYTHkzyO/vzAeLV1Xbahe xak+pgniZtz3iysOHA5wzqTccxjKQiD0nX7WWbVIqdvgZUtCrE5jJzS2hEYJV1dm P2NxUOlvr5abYH9TS10N299/p0YmsFA2xcJKhPs7/DWHz2qp9T0zQ8Lud4bI91PF HkWPTopL9LD9muzhOUu5u68X/VlR0MUQJl4AHTy3kyoGG0TMmJMahjD16Hk43nfA BkZRJTMo0HahQAoK0tvdBSuzbIK380WTz229JlW3/kD60qH0y2/UhD8EnPaotO3q V2GMNT8/WMdJexGWTE2jd1BlXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzJ9Nkf CgwtAiYi687JUwSye87SMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCph+NDzZiJBVvvYv5jXqmt8rnoRAxXB5qUCC8hQXiI4Vv9kSarz1Id dSLGqQu/0QfiGFkbBROvwkWxV+dlLcukhb9LniqeCdxbAdNsCfIpkcl5ODVdcAE2 vLblFYuVpxvcZJ7oTI8ZLS8RElKtXclj9B0P7E+xVcPD5CHvCbo9UEWHBJKxLNck gAmv4N7Oq/oqXCR6XTVt8gTpOnvhhMcxI3UbCSk18CGIIW72G52/hTLMkJ4QT5Jb B3/fIJiFx1qL0lfO6Bof8QkYL/rsMOctB3OnceFHU9loZaLSHK9V9iK2UVRenZbN g2oozb0yYwLCr+M9cwbeLC0eEautXT0w -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:45 2025 by rpki-client