$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: ZX+OOsLkonwLJ5evCiICQf3jkpHtqA6MGipWRVtloyI= Subject key identifier: 0A:11:5C:9E:B2:FF:5C:A9:0F:39:4D:B5:FD:4B:33:79:CB:DA:23:08 Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 01FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 01F5 Signing time: Sat 19 Jul 2025 02:48:36 +0000 Manifest this update: Sat 19 Jul 2025 02:48:36 +0000 Manifest next update: Sat 26 Jul 2025 02:48:36 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: Swv/Ykc4qb4Vue1UX/Baq+kREgI2Igt47Mn3iIWUZN4=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: /aLZRZnVDc3gbgHvgjjTVhimEYu2WCp9inOhdZerK9k=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: 046Nkak/mvU2MIy/D/sQyHF4+9Nf/OVFcgvY3OIqwCQ=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: 7uR7mk8CLJJlZZvBz+Qm2/sDak7TWidIc0rXMu5Xnkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:48:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 509 (0x1fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Jul 19 02:48:36 2025 GMT Not After : Jul 26 02:48:36 2025 GMT Subject: CN=687b0784-85c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b3:f0:60:36:12:17:0f:f5:8b:c0:22:5a:2a: 4d:e0:4a:37:d8:6c:cd:48:2c:70:c3:68:70:33:1f: a8:89:a8:e0:7d:a5:6c:ff:38:11:b5:40:05:d4:c1: 4a:61:40:04:2d:a0:11:d3:c5:a3:23:c9:85:cc:1d: e2:8a:ee:6d:62:ed:4e:fc:e9:11:ec:4b:16:bf:61: 95:cd:3f:32:6b:64:16:81:41:7a:99:0b:de:f6:55: 20:d2:be:00:50:ea:23:04:82:fb:3e:91:2a:35:1a: 30:5c:94:ad:11:97:86:ac:86:25:58:f5:6b:af:56: 15:58:4a:9e:20:f5:f4:bb:d2:ca:e1:b3:19:2a:24: 8e:bc:6c:98:f2:15:c4:e2:be:8e:af:f7:4c:5a:a3: 76:b5:98:13:42:fc:8a:59:53:e0:d6:25:9a:d2:2d: e5:fa:27:07:b8:02:bf:0a:b1:0c:35:00:97:36:6f: 4c:f6:93:19:5b:40:08:a3:ca:88:2d:26:8b:91:c5: 25:c1:10:d5:69:90:8a:94:51:00:a7:7e:b2:c2:46: a7:59:c6:0d:f9:73:b9:3d:f0:1a:fc:d9:9f:53:c7: 5a:3a:28:7e:77:e2:1b:4e:bc:02:aa:9a:23:10:20: 21:cc:33:2d:3d:a7:c3:d5:cf:5c:2a:97:5d:0c:2d: 3d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:11:5C:9E:B2:FF:5C:A9:0F:39:4D:B5:FD:4B:33:79:CB:DA:23:08 X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:4d:d5:d9:e1:dc:2a:07:42:78:96:00:27:45:0e:c3:a9:8d: e7:f1:51:fb:39:9b:e5:b6:7e:25:92:98:ee:2e:8b:b0:d2:c7: 34:c5:31:e4:f1:88:bd:93:6e:a5:d9:4e:6a:a8:51:c7:e9:97: cf:07:33:4b:d9:e7:19:a6:a7:5c:f8:e6:78:4e:84:85:27:70: 08:b8:1e:f1:98:7b:8f:91:0f:cf:79:42:4e:8f:48:b8:3e:ad: ad:59:3d:9e:79:00:fd:c6:a6:1c:5b:42:95:9e:fd:3a:1a:3f: 93:99:80:ab:58:82:bd:f7:eb:42:41:d5:d2:7b:0d:df:76:07: 8e:5c:c5:a1:48:21:f1:91:c6:bc:1f:68:9b:cb:7a:c1:52:e1: d1:4c:c1:7b:8c:f0:1e:e1:b8:bf:fd:75:e5:b7:6a:c1:fc:8b: f8:f4:35:53:50:48:47:49:2b:27:e8:df:e3:a9:38:a1:4c:19: 18:3e:9f:87:b5:7f:2b:47:60:97:1a:56:74:fb:c8:1c:88:8e: c5:b7:53:66:96:ca:99:b8:cb:74:fe:76:50:c0:02:ba:c3:28: 30:48:06:8b:2b:b8:58:29:a5:9a:f7:ba:95:15:89:4b:a2:80: 9b:2c:a1:1d:17:b9:88:9f:b8:d8:1f:09:c7:0e:4d:56:f0:ce: 9b:e6:80:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjUwNzE5MDI0ODM2WhcNMjUwNzI2MDI0ODM2WjAYMRYwFAYD VQQDEw02ODdiMDc4NC04NWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbPwYDYSFw/1i8AiWipN4Eo32GzNSCxww2hwMx+oiajgfaVs/zgRtUAF1MFK YUAELaAR08WjI8mFzB3iiu5tYu1O/OkR7EsWv2GVzT8ya2QWgUF6mQve9lUg0r4A UOojBIL7PpEqNRowXJStEZeGrIYlWPVrr1YVWEqeIPX0u9LK4bMZKiSOvGyY8hXE 4r6Or/dMWqN2tZgTQvyKWVPg1iWa0i3l+icHuAK/CrEMNQCXNm9M9pMZW0AIo8qI LSaLkcUlwRDVaZCKlFEAp36ywkanWcYN+XO5PfAa/NmfU8daOih+d+IbTrwCqpoj ECAhzDMtPafD1c9cKpddDC09MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAoRXJ6y /1ypDzlNtf1LM3nL2iMIMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOTdXZ4dwqB0J4lgAnRQ7DqY3n8VH7OZvltn4lkpjuLouw0sc0xTHk 8Yi9k26l2U5qqFHH6ZfPBzNL2ecZpqdc+OZ4ToSFJ3AIuB7xmHuPkQ/PeUJOj0i4 Pq2tWT2eeQD9xqYcW0KVnv06Gj+TmYCrWIK99+tCQdXSew3fdgeOXMWhSCHxkca8 H2iby3rBUuHRTMF7jPAe4bi//XXlt2rB/Iv49DVTUEhHSSsn6N/jqTihTBkYPp+H tX8rR2CXGlZ0+8gciI7Ft1NmlsqZuMt0/nZQwAK6wygwSAaLK7hYKaWa97qVFYlL ooCbLKEdF7mIn7jYHwnHDk1W8M6b5oBb -----END CERTIFICATE-----Generated at Sun Jul 20 07:49:35 2025 by rpki-client