$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft File: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft (raw, json) Hash identifier: MbgCyRDveylZE8S9V3eE02LQNuDKAGCX2VX2qPb8GcY= Subject key identifier: F3:34:F7:D1:15:A2:2D:25:27:85:38:3E:C8:CA:DD:EB:28:41:6E:D1 Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 0406 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft Manifest number: 03F2 Signing time: Sat 31 May 2025 00:41:33 +0000 Manifest this update: Sat 31 May 2025 00:41:32 +0000 Manifest next update: Sat 07 Jun 2025 00:41:32 +0000 Files and hashes: 1: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl (hash: ChyUHrOl7j3q2NDGuWc3rU6+3556wEgY/i0jqgkp0sA=) 2: 4B167396E74111EC80E35542C4F9AE02.roa (hash: bHN8Wd0Zu68QTsipkyferF9uwGKu6L4i92pMNTEMusM=) 3: 8AEE4940EAB511ECBBDE3C50C4F9AE02.roa (hash: mO2TDz8iVH1QjiN6s50lIdAYCPwhB4UYqdlU/m/h8sE=) 4: 8A4C662AEAB511ECBBDE3C50C4F9AE02.roa (hash: J8gquWVTmRgJWJ3mBG8a1mA8su1ptSNi3imZDckI5g0=) 5: 91A286509F0811ECAE659F82C4F9AE02.roa (hash: RqwnZfnau7RkdBU68iXpJ/pJr2ocars1rJf1vcp1FOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:41:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1030 (0x406) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1, serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: May 31 00:41:32 2025 GMT Not After : Jun 7 00:41:32 2025 GMT Subject: CN=683a503d-e19d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d4:ef:e3:89:f5:6e:c8:b1:7e:8c:c6:c7:63: 8a:57:4c:eb:97:6d:63:9b:24:7e:c0:32:1d:2b:16: 9a:7c:8c:20:db:63:fb:39:fa:fd:af:18:53:0b:9b: 5e:ee:f1:c6:0f:fa:fb:58:0a:e9:ab:56:1e:76:35: 94:bf:75:5f:04:96:3c:5f:ee:26:97:cd:51:b8:7f: f9:15:7a:d2:d9:3d:1b:e8:b2:e9:d3:7b:4a:38:41: 0b:8d:81:6c:2b:80:d9:7f:2d:74:48:a4:9c:ec:c6: 94:8f:fd:04:98:1b:e6:d3:16:73:25:04:ab:14:cd: 43:84:92:86:59:4e:95:6e:eb:92:e2:fc:3d:54:95: 18:b8:88:db:f3:cc:d7:9e:79:69:92:2a:c2:91:f8: 69:43:e2:17:24:6b:b1:66:32:30:f6:45:4c:14:f0: 2f:5b:1c:7f:21:f5:5e:03:c5:93:7a:51:00:17:f9: 3a:69:40:73:f1:1f:e0:49:31:85:a3:71:ea:d3:0f: a2:cb:2e:26:e9:a8:74:12:af:4d:10:9c:7a:38:24: 86:b8:59:a0:b5:c0:d4:20:cd:3c:37:c5:a3:b0:9e: 75:7f:de:6f:ce:c8:ce:1b:18:f7:3e:55:f1:12:56: 55:b8:e8:9e:72:8e:42:40:78:40:58:b1:7b:d4:99: f7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:34:F7:D1:15:A2:2D:25:27:85:38:3E:C8:CA:DD:EB:28:41:6E:D1 X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:60:09:8f:f6:38:7b:6d:fb:31:60:17:84:ae:bf:ea:28:13: 02:d2:2d:54:f1:13:12:d1:92:72:94:8d:35:ff:c4:26:b1:1c: 7d:f4:cc:4d:6d:a1:ab:44:cd:9f:4f:96:93:25:26:36:6f:49: f6:20:d2:97:4d:5c:d2:d0:d4:37:6f:c0:a3:01:ea:b5:60:77: b8:98:6e:b4:3e:e6:ec:38:a8:61:60:e9:b3:de:05:4a:f5:15: 39:51:a7:0e:27:95:e6:ce:0e:a8:e4:16:bc:50:13:1b:59:85: 9c:43:3c:5c:f0:2d:de:02:45:ee:4e:f8:ff:75:17:27:a6:3f: 47:7e:8f:80:40:d6:b2:50:99:80:40:ec:89:80:d8:28:89:16: f7:34:96:38:1f:1d:fa:ec:e4:55:8f:cf:fb:f8:c5:c3:1b:3f: 5b:58:21:91:fb:61:15:6b:15:b1:25:ba:36:3a:bd:58:74:1e: d0:ba:08:30:ab:26:ce:bd:04:61:9b:38:a1:df:04:85:b2:a1: 5c:55:10:ae:6d:ba:1c:96:8e:e8:f4:ce:d6:32:67:76:b6:35: ae:43:3e:9e:8a:e2:6e:f0:81:1f:66:4c:9f:ed:3d:1b:a4:35: a6:ae:f7:d4:de:6a:6f:d9:17:2a:13:d4:56:df:5d:0e:66:84: a1:7b:dd:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjUwNTMxMDA0MTMyWhcNMjUwNjA3MDA0MTMyWjAYMRYwFAYD VQQDEw02ODNhNTAzZC1lMTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNTv44n1bsixfozGx2OKV0zrl21jmyR+wDIdKxaafIwg22P7Ofr9rxhTC5te 7vHGD/r7WArpq1YedjWUv3VfBJY8X+4ml81RuH/5FXrS2T0b6LLp03tKOEELjYFs K4DZfy10SKSc7MaUj/0EmBvm0xZzJQSrFM1DhJKGWU6VbuuS4vw9VJUYuIjb88zX nnlpkirCkfhpQ+IXJGuxZjIw9kVMFPAvWxx/IfVeA8WTelEAF/k6aUBz8R/gSTGF o3Hq0w+iyy4m6ah0Eq9NEJx6OCSGuFmgtcDUIM08N8WjsJ51f95vzsjOGxj3PlXx ElZVuOieco5CQHhAWLF71Jn3dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPM099EV oi0lJ4U4PsjK3esoQW7RMB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTlDMS9FRTcwMkY0NDdBQzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVL eXotaU16YUJCYWM5SFVHZk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPYAmP9jh7bfsxYBeErr/qKBMC0i1U8RMS0ZJylI01/8QmsRx99MxN baGrRM2fT5aTJSY2b0n2INKXTVzS0NQ3b8CjAeq1YHe4mG60PubsOKhhYOmz3gVK 9RU5UacOJ5Xmzg6o5Ba8UBMbWYWcQzxc8C3eAkXuTvj/dRcnpj9Hfo+AQNayUJmA QOyJgNgoiRb3NJY4Hx367ORVj8/7+MXDGz9bWCGR+2EVaxWxJbo2Or1YdB7Quggw qybOvQRhmzih3wSFsqFcVRCubboclo7o9M7WMmd2tjWuQz6eiuJu8IEfZkyf7T0b pDWmrvfU3mpv2RcqE9RW310OZoShe93g -----END CERTIFICATE-----Generated at Sat May 31 16:46:53 2025 by rpki-client