$ rpki-client -vvf rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft File: CHQTSbZiijmB94o3MLiYg-PXa8o.mft (raw, json) Hash identifier: Pe0bCFil+huOibWxGQVXJstiZGmI7xm2UvVfM97srEY= Subject key identifier: D9:95:8D:0C:58:75:7D:FF:88:AB:15:91:D1:B2:38:49:5D:2C:DF:AF Authority key identifier: 08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA Certificate issuer: /CN=A91712A8/serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Certificate serial: 0676 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft Manifest number: 066F Signing time: Fri 30 May 2025 22:34:43 +0000 Manifest this update: Fri 30 May 2025 22:34:42 +0000 Manifest next update: Fri 06 Jun 2025 22:34:42 +0000 Files and hashes: 1: CHQTSbZiijmB94o3MLiYg-PXa8o.crl (hash: 9X+8Dg3sst4185fdn6RH7Z8GA1ShCgjmhIA99Xw08pI=) 2: B69DB4D27D6911EBA420FC6AC4F9AE02.roa (hash: FCcszwJptQkcVppu2l7EfA+c1nSvvhedE2ZFRuB0CdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:34:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1654 (0x676) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91712A8, serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Validity Not Before: May 30 22:34:42 2025 GMT Not After : Jun 6 22:34:42 2025 GMT Subject: CN=683a3283-75a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:80:62:8c:5f:8a:9c:96:26:74:c6:97:da:78: 57:e1:c9:24:95:01:f1:46:77:95:f9:70:84:d8:ef: b0:65:19:56:dc:16:79:3b:4a:aa:76:d6:5f:69:9d: cc:98:5c:f2:41:2f:5f:58:32:63:59:c2:d2:18:39: 08:f0:5c:87:9c:95:50:77:78:57:d6:1a:f6:55:37: 54:43:08:e6:e8:2a:85:41:80:96:65:46:7f:11:42: e3:bf:86:7a:4d:24:af:8b:5e:7d:bb:fd:be:e3:68: 10:9b:5f:7c:ac:0b:ed:bc:e7:8e:ed:fc:28:d2:88: b1:57:f6:ed:15:60:f0:8d:89:7a:e3:fa:13:50:c6: c8:73:79:6f:78:08:da:32:d3:60:78:3b:56:ac:f4: 43:d2:58:d2:63:24:77:70:e8:d5:38:0c:96:d7:f4: b9:81:e1:31:e4:0c:4d:0f:15:b8:4c:cb:82:66:43: 84:8d:cf:54:92:d0:b3:57:33:c2:92:33:4b:7a:b3: e6:5e:10:ea:2e:68:72:35:f5:3f:d4:0f:14:e3:f0: 82:17:96:2c:ae:8c:12:a1:95:98:5b:3f:3b:a2:6e: 6e:1d:df:4a:f6:63:52:67:5e:23:bb:53:6b:b4:a5: 0e:49:45:21:d5:fa:11:6b:8b:46:06:27:39:eb:6f: 5f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:95:8D:0C:58:75:7D:FF:88:AB:15:91:D1:B2:38:49:5D:2C:DF:AF X509v3 Authority Key Identifier: keyid:08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:1d:01:c6:77:f7:1a:64:c5:ba:74:14:56:5b:22:a0:e3:1c: 34:3a:f7:ec:ce:b5:71:74:38:36:51:ff:be:37:76:ce:04:d3: c6:27:fb:af:eb:63:54:48:94:06:e8:38:ef:40:6c:54:40:23: 76:9f:95:7d:c1:60:54:b9:11:18:38:da:57:73:26:97:60:ac: 7a:52:c5:b0:c1:10:a8:59:78:53:29:e1:9c:7e:e9:54:03:ad: a5:1b:0b:b2:f9:aa:9c:2f:41:ce:07:3e:1a:7d:0e:c9:43:bb: bc:43:53:32:2a:b2:aa:9c:22:5e:a2:71:f3:31:34:4c:d5:42: c2:b2:92:f4:7a:59:ac:09:89:73:00:7f:e9:3d:1c:ec:f7:67: 08:7f:14:01:07:ef:57:bc:a3:77:00:fe:70:dd:0b:74:b3:37: 35:01:d2:e6:53:cf:f4:61:9a:14:f8:0e:10:f7:ad:fb:ce:05: dc:6b:ab:f2:d4:b9:74:f1:6b:87:84:80:b9:e2:c4:d8:ff:74: 09:69:29:89:72:f4:79:1c:00:0a:64:14:78:88:bb:b4:d1:0a: d6:60:18:56:e3:38:b5:ea:cf:80:3c:88:ac:9e:26:bc:6d:64: a0:57:9d:21:09:64:c8:38:e3:c7:c8:13:cb:16:4d:2c:9a:48: 6e:ce:de:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyQTgxMTAvBgNVBAUTKDA4NzQxMzQ5QjY2MjhBMzk4MUY3OEEzNzMwQjg5ODgz RTNENzZCQ0EwHhcNMjUwNTMwMjIzNDQyWhcNMjUwNjA2MjIzNDQyWjAYMRYwFAYD VQQDEw02ODNhMzI4My03NWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoBijF+KnJYmdMaX2nhX4ckklQHxRneV+XCE2O+wZRlW3BZ5O0qqdtZfaZ3M mFzyQS9fWDJjWcLSGDkI8FyHnJVQd3hX1hr2VTdUQwjm6CqFQYCWZUZ/EULjv4Z6 TSSvi159u/2+42gQm198rAvtvOeO7fwo0oixV/btFWDwjYl64/oTUMbIc3lveAja MtNgeDtWrPRD0ljSYyR3cOjVOAyW1/S5geEx5AxNDxW4TMuCZkOEjc9UktCzVzPC kjNLerPmXhDqLmhyNfU/1A8U4/CCF5YsrowSoZWYWz87om5uHd9K9mNSZ14ju1Nr tKUOSUUh1foRa4tGBic5629f9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmVjQxY dX3/iKsVkdGyOEldLN+vMB8GA1UdIwQYMBaAFAh0E0m2Yoo5gfeKNzC4mIPj12vK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTJBOC80NjUwMEY4QzdE NjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlqbUI5NG8zTUxpWWctUFhh OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIUVRTYlppaWptQjk0bzNNTGlZZy1QWGE4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTJBOC80NjUwMEY4QzdENjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlq bUI5NG8zTUxpWWctUFhhOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDHQHGd/caZMW6dBRWWyKg4xw0OvfszrVxdDg2Uf++N3bOBNPGJ/uv 62NUSJQG6DjvQGxUQCN2n5V9wWBUuREYONpXcyaXYKx6UsWwwRCoWXhTKeGcfulU A62lGwuy+aqcL0HOBz4afQ7JQ7u8Q1MyKrKqnCJeonHzMTRM1ULCspL0elmsCYlz AH/pPRzs92cIfxQBB+9XvKN3AP5w3Qt0szc1AdLmU8/0YZoU+A4Q9637zgXca6vy 1Ll08WuHhIC54sTY/3QJaSmJcvR5HAAKZBR4iLu00QrWYBhW4zi16s+APIisnia8 bWSgV50hCWTIOOPHyBPLFk0smkhuzt5r -----END CERTIFICATE-----Generated at Sat May 31 16:55:06 2025 by rpki-client