$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: eSaVxdmAfRAFhCka3RObmPLGiDs45yTt7MVoTlFrG5c= Subject key identifier: 6F:CB:D7:B3:65:DA:A8:86:EE:86:BC:DB:F2:18:92:EF:91:B7:16:6A Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 0210 Signing time: Tue 09 Sep 2025 02:23:33 +0000 Manifest this update: Tue 09 Sep 2025 02:23:32 +0000 Manifest next update: Tue 16 Sep 2025 02:23:32 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: E09cpS8e/LGTG9Fm7NBJC1TPRGd61+nnUtDuDeLo0Lc=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: /aLZRZnVDc3gbgHvgjjTVhimEYu2WCp9inOhdZerK9k=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: 046Nkak/mvU2MIy/D/sQyHF4+9Nf/OVFcgvY3OIqwCQ=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: 7uR7mk8CLJJlZZvBz+Qm2/sDak7TWidIc0rXMu5Xnkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:23:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Sep 9 02:23:32 2025 GMT Not After : Sep 16 02:23:32 2025 GMT Subject: CN=68bf8fa4-4eb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:26:65:17:01:f9:bf:6b:55:31:8c:58:65:5f: 59:03:e1:42:12:3b:15:37:ec:77:03:23:44:ce:06: 88:ea:c8:3e:a6:8b:f0:c3:5f:88:81:78:92:b8:e7: 6b:08:1f:3c:cf:fe:51:2c:1a:bd:25:33:c2:b1:50: 93:f9:bd:d0:a5:8a:f9:65:ee:f6:4d:ee:4d:90:7e: 98:11:34:de:b2:cc:e6:92:30:e2:55:cf:78:8b:0a: d3:62:19:70:fa:31:67:1e:9f:f6:0b:af:38:64:cc: dc:f3:4d:63:12:6c:75:ce:63:3b:f0:54:38:1e:c2: e4:81:b2:67:a3:1b:4a:d6:78:96:3e:d9:80:89:c3: a3:e6:5d:44:be:db:89:f6:23:f9:6c:a6:ee:c0:8e: 54:81:20:30:ac:64:5f:58:d3:09:2f:6f:c5:af:99: 48:a8:b1:34:1f:76:8d:30:4a:6c:75:f4:8a:e2:71: ae:0f:3b:ef:3f:8f:bd:6d:6f:1c:45:4c:16:8a:2b: 43:1c:31:20:df:5c:15:6e:18:c7:9e:b3:18:39:a1: eb:93:91:b3:04:54:f8:60:40:51:7b:59:f1:ed:a3: 1d:75:3c:b7:49:54:b2:d9:ce:bf:b0:dd:b4:83:ba: da:41:94:f2:16:fa:36:61:70:35:ac:8b:eb:a8:b3: 0e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:CB:D7:B3:65:DA:A8:86:EE:86:BC:DB:F2:18:92:EF:91:B7:16:6A X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:98:59:a9:a0:20:15:55:19:6b:d3:8a:ca:c1:d5:bc:21:de: 86:63:79:f1:0d:45:ff:a7:cf:ff:60:18:c6:b7:52:bd:3b:6e: 2c:71:1e:ed:6c:41:e3:be:28:5e:24:4f:93:56:f3:b3:e6:a7: 8c:20:74:6b:b4:dd:b0:a9:61:a6:6c:27:89:03:5f:e6:e7:6e: 60:b5:c4:53:df:4f:e9:de:17:0b:b5:5f:7a:8e:b1:7f:1e:62: 2b:84:22:c1:0f:7d:58:16:c5:76:47:fe:05:5b:3d:9a:f8:65: d8:26:00:79:f4:5d:67:a8:7e:b1:95:b7:7e:5e:64:ef:4d:d9: ba:52:d2:81:e9:24:10:ea:16:e9:99:42:8b:7c:39:70:a2:a0: aa:f5:3e:4c:58:17:1c:cd:7c:9d:a7:bf:8b:41:a8:c0:0c:df: 34:aa:3e:94:8c:98:2e:c7:ab:92:25:8b:a4:1e:4d:45:ea:85: bc:d5:13:ab:e6:1c:a8:e7:de:b9:3a:93:f3:9a:e1:8e:c3:63: 94:7c:9c:2a:b5:f5:8a:7c:31:61:62:b7:b6:e2:1c:d1:db:ad: e7:1f:74:fa:5e:b4:d1:bf:8c:5c:30:dd:47:bf:04:e7:91:60: eb:8c:55:aa:a8:2b:0a:3f:16:00:67:7d:7d:01:a0:b7:7a:31: 0a:f0:c5:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjUwOTA5MDIyMzMyWhcNMjUwOTE2MDIyMzMyWjAYMRYwFAYD VQQDEw02OGJmOGZhNC00ZWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CZlFwH5v2tVMYxYZV9ZA+FCEjsVN+x3AyNEzgaI6sg+povww1+IgXiSuOdr CB88z/5RLBq9JTPCsVCT+b3QpYr5Ze72Te5NkH6YETTesszmkjDiVc94iwrTYhlw +jFnHp/2C684ZMzc801jEmx1zmM78FQ4HsLkgbJnoxtK1niWPtmAicOj5l1EvtuJ 9iP5bKbuwI5UgSAwrGRfWNMJL2/Fr5lIqLE0H3aNMEpsdfSK4nGuDzvvP4+9bW8c RUwWiitDHDEg31wVbhjHnrMYOaHrk5GzBFT4YEBRe1nx7aMddTy3SVSy2c6/sN20 g7raQZTyFvo2YXA1rIvrqLMOUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/L17Nl 2qiG7oa82/IYku+RtxZqMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUmFmpoCAVVRlr04rKwdW8Id6GY3nxDUX/p8//YBjGt1K9O24scR7t bEHjviheJE+TVvOz5qeMIHRrtN2wqWGmbCeJA1/m525gtcRT30/p3hcLtV96jrF/ HmIrhCLBD31YFsV2R/4FWz2a+GXYJgB59F1nqH6xlbd+XmTvTdm6UtKB6SQQ6hbp mUKLfDlwoqCq9T5MWBcczXydp7+LQajADN80qj6UjJgux6uSJYukHk1F6oW81ROr 5hyo5965OpPzmuGOw2OUfJwqtfWKfDFhYre24hzR263nH3T6XrTRv4xcMN1HvwTn kWDrjFWqqCsKPxYAZ319AaC3ejEK8MV4 -----END CERTIFICATE-----Generated at Tue Sep 9 09:52:26 2025 by rpki-client