$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft File: chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json) Hash identifier: iKt1RpzeMwhku2Awi5aksD1KetUn9uUWF1cLfJdH+FM= Subject key identifier: D4:C2:5A:3D:A8:8E:10:49:9C:0B:4B:BF:AC:09:9A:50:36:33:3C:DC Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft Manifest number: 0194 Signing time: Sat 31 May 2025 03:09:32 +0000 Manifest this update: Sat 31 May 2025 03:09:31 +0000 Manifest next update: Sat 07 Jun 2025 03:09:31 +0000 Files and hashes: 1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: em99/mA/7SmFDXQkd7lVNUr83JMO1dW0Q+22kT2l6kg=) 2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: IKV0Cgq2EuODSbPKQtSmxiMFKVMR6YDH69S9tC4UdAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD, serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: May 31 03:09:31 2025 GMT Not After : Jun 7 03:09:31 2025 GMT Subject: CN=683a72eb-0081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:7f:e1:3b:b6:12:55:bb:5e:2f:80:93:8f:cc: 37:c8:41:0c:66:30:6b:b9:bf:b6:f2:e3:63:53:2e: 5b:c7:fd:5a:22:45:3e:0f:01:19:8e:2c:9c:77:97: d2:02:59:61:33:51:c7:55:93:69:bf:e8:7b:a5:00: b6:57:91:d3:93:ca:0c:f9:ec:a8:73:17:6f:e7:1a: 46:26:af:dd:16:89:a4:88:dd:22:0a:72:f0:f4:9d: 67:9f:b3:5a:04:17:8d:ad:8c:eb:0b:61:2a:45:80: 6c:4c:8a:e6:5c:7d:e9:a9:c9:41:3d:4a:23:1d:8c: 09:45:2a:f4:11:53:1c:20:5f:fe:da:f5:35:80:1a: 17:07:e4:c4:20:cd:fc:39:ec:7d:31:21:c1:3d:c5: 8d:51:58:84:c6:26:5b:94:a8:69:21:40:7a:89:da: a5:02:a4:cf:ac:66:ad:f5:fa:b4:73:74:7d:7f:bd: 9c:60:14:03:d6:7f:66:e0:ce:3d:6b:7d:a5:08:01: c4:2b:4f:0e:1f:30:44:14:f2:47:fb:31:6a:b7:25: 20:1f:16:83:c2:ba:62:73:f9:99:cb:8c:6f:9b:fd: 70:09:24:56:d7:3a:6d:5c:79:1f:c7:aa:85:2d:5f: 8a:80:10:2b:25:3b:c2:e6:98:1e:6c:13:fb:ec:6e: c6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C2:5A:3D:A8:8E:10:49:9C:0B:4B:BF:AC:09:9A:50:36:33:3C:DC X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:20:d6:80:1c:a3:c3:76:eb:32:d6:b7:10:0c:3b:7e:0e:2f: 47:e0:43:de:3a:0f:72:18:37:6c:1d:ad:a4:6b:74:4c:d7:85: 76:b7:bb:aa:39:ec:dc:3c:79:7f:1f:4d:14:1f:21:01:57:2a: 40:a8:58:b6:82:2e:6b:5d:8a:be:a0:8f:66:1a:2a:91:7f:e3: 41:14:0b:f2:73:f8:51:ed:1f:22:58:ae:ea:55:d5:8e:30:c3: 63:ff:06:c5:ac:dd:88:d5:e8:88:34:af:39:69:38:c0:9e:fe: 1f:89:59:a2:56:09:02:37:91:a6:a1:ab:c4:88:f0:ba:7f:0d: 41:15:7c:7e:ac:fe:71:e5:07:5a:34:a9:64:64:66:55:80:4f: 7f:28:ab:57:30:ad:86:56:48:6a:55:3c:d8:59:3f:73:b5:73: 6e:e5:3b:c8:1f:49:be:10:c4:2b:8f:75:95:83:46:d4:21:05: 2f:c8:32:ff:ad:71:59:80:e8:22:2b:54:89:c7:49:8e:d9:23: 62:b7:5f:05:bd:82:41:22:6a:df:1b:ba:9b:5d:aa:0e:ff:44: a4:ea:b5:c3:de:e9:4d:0b:66:b9:1e:bf:b8:cc:82:a7:4c:ce: 14:2d:6b:23:76:16:d0:c4:6d:02:cd:6b:80:ff:34:7a:12:eb: 05:91:f5:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjUwNTMxMDMwOTMxWhcNMjUwNjA3MDMwOTMxWjAYMRYwFAYD VQQDEw02ODNhNzJlYi0wMDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk3/hO7YSVbteL4CTj8w3yEEMZjBrub+28uNjUy5bx/1aIkU+DwEZjiycd5fS AllhM1HHVZNpv+h7pQC2V5HTk8oM+eyocxdv5xpGJq/dFomkiN0iCnLw9J1nn7Na BBeNrYzrC2EqRYBsTIrmXH3pqclBPUojHYwJRSr0EVMcIF/+2vU1gBoXB+TEIM38 Oex9MSHBPcWNUViExiZblKhpIUB6idqlAqTPrGat9fq0c3R9f72cYBQD1n9m4M49 a32lCAHEK08OHzBEFPJH+zFqtyUgHxaDwrpic/mZy4xvm/1wCSRW1zptXHkfx6qF LV+KgBArJTvC5pgebBP77G7GCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTCWj2o jhBJnAtLv6wJmlA2MzzcMB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpm VHRxRHp3dEdJN2RwUDJORG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaINaAHKPDdusy1rcQDDt+Di9H4EPeOg9yGDdsHa2ka3RM14V2t7uq OezcPHl/H00UHyEBVypAqFi2gi5rXYq+oI9mGiqRf+NBFAvyc/hR7R8iWK7qVdWO MMNj/wbFrN2I1eiINK85aTjAnv4fiVmiVgkCN5GmoavEiPC6fw1BFXx+rP5x5Qda NKlkZGZVgE9/KKtXMK2GVkhqVTzYWT9ztXNu5TvIH0m+EMQrj3WVg0bUIQUvyDL/ rXFZgOgiK1SJx0mO2SNit18FvYJBImrfG7qbXaoO/0Sk6rXD3ulNC2a5Hr+4zIKn TM4ULWsjdhbQxG0CzWuA/zR6EusFkfVi -----END CERTIFICATE-----Generated at Sat May 31 14:46:34 2025 by rpki-client