$ rpki-client -vvf rpki.apnic.net/member_repository/A911503D/CF01B2CCEB3E11ED8A96DB5EC4F9AE02/ChPG4rpUSZlzhSD56zNYNsRgyMg.mft File: ChPG4rpUSZlzhSD56zNYNsRgyMg.mft (raw, json) Hash identifier: /oN9FQ15FJQtY+oPeqFMoFZlyBIoYD3iZkBMd+UtZas= Subject key identifier: 9C:25:40:29:ED:6D:26:5D:B2:6F:46:9D:E6:84:79:B2:E9:B7:E8:36 Authority key identifier: 0A:13:C6:E2:BA:54:49:99:73:85:20:F9:EB:33:58:36:C4:60:C8:C8 Certificate issuer: /CN=A911503D/serialNumber=0A13C6E2BA544999738520F9EB335836C460C8C8 Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChPG4rpUSZlzhSD56zNYNsRgyMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911503D/CF01B2CCEB3E11ED8A96DB5EC4F9AE02/ChPG4rpUSZlzhSD56zNYNsRgyMg.mft Manifest number: 0175 Signing time: Sun 27 Apr 2025 02:45:22 +0000 Manifest this update: Sun 27 Apr 2025 02:45:21 +0000 Manifest next update: Sun 04 May 2025 02:45:21 +0000 Files and hashes: 1: ChPG4rpUSZlzhSD56zNYNsRgyMg.crl (hash: heyHamHqoegKwI5sYN7UCBU6fDUeNYPpwiTPZjI/R5Q=) 2: F1999E04EB4211EDB83DE270C4F9AE02.roa (hash: 01idouuhUH2pCBuIeOja288YcD/2ZR2ls6JyIWsAt6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911503D/CF01B2CCEB3E11ED8A96DB5EC4F9AE02/ChPG4rpUSZlzhSD56zNYNsRgyMg.crl rsync://rpki.apnic.net/member_repository/A911503D/CF01B2CCEB3E11ED8A96DB5EC4F9AE02/ChPG4rpUSZlzhSD56zNYNsRgyMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChPG4rpUSZlzhSD56zNYNsRgyMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:45:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911503D, serialNumber=0A13C6E2BA544999738520F9EB335836C460C8C8 Validity Not Before: Apr 27 02:45:21 2025 GMT Not After : May 4 02:45:21 2025 GMT Subject: CN=680d9a41-2c94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:b3:b0:07:27:e6:5b:47:ed:a4:31:5a:de:83: 54:af:cd:22:2a:72:37:13:9f:09:10:5c:48:06:34: f5:c4:18:41:4d:16:87:5a:5f:f2:1d:a4:0d:3f:8e: 9c:84:08:fa:ab:4c:c6:ad:9e:a3:dd:35:85:6d:2a: 9b:f5:82:61:02:fa:ea:90:e9:00:ef:f4:8c:96:c5: 83:ea:0d:90:bb:3e:11:bd:12:0b:c7:40:bb:e6:bd: 0b:d8:4b:92:7f:71:04:40:0d:6a:55:e6:54:35:e9: 20:7c:28:cc:8b:e1:1e:dd:ec:51:0c:3a:98:60:b2: 86:34:ce:5a:db:11:7f:6d:fd:c0:4a:6f:bf:1d:ef: d2:02:ba:74:8e:76:37:26:9e:7d:ef:75:ad:62:41: e7:c8:b2:ea:64:04:c2:00:ec:72:e0:ff:7a:e3:f9: ad:fa:2e:ae:e5:08:9a:ab:bd:3a:fc:7d:23:a3:8c: b9:21:20:4c:d2:7d:7d:96:f5:d9:49:d0:34:04:c1: 86:8b:92:b6:a0:61:6d:1b:a1:2b:0a:7a:5c:48:3a: a7:fa:68:85:e7:33:3e:cc:f7:19:c7:8e:37:f7:59: 6c:cf:e6:7d:f9:b7:77:91:4b:a5:99:92:d6:23:dc: c2:ef:c0:2c:ef:98:e0:4d:d3:ac:ba:c2:d8:77:9b: 76:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:25:40:29:ED:6D:26:5D:B2:6F:46:9D:E6:84:79:B2:E9:B7:E8:36 X509v3 Authority Key Identifier: keyid:0A:13:C6:E2:BA:54:49:99:73:85:20:F9:EB:33:58:36:C4:60:C8:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911503D/CF01B2CCEB3E11ED8A96DB5EC4F9AE02/ChPG4rpUSZlzhSD56zNYNsRgyMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChPG4rpUSZlzhSD56zNYNsRgyMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911503D/CF01B2CCEB3E11ED8A96DB5EC4F9AE02/ChPG4rpUSZlzhSD56zNYNsRgyMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:23:8d:ee:86:0c:0d:02:bb:58:a8:86:39:ad:3d:36:d5:2a: df:f6:cf:a7:fc:25:53:31:76:f2:cd:b3:ae:80:de:cc:68:65: d2:1e:e9:cb:4a:8e:76:ea:0a:f7:fd:12:43:e6:d1:1e:a4:42: 87:8a:24:ac:19:a8:b4:a7:6b:48:90:3c:68:bb:e4:b8:45:ad: c2:d4:38:9e:19:14:fe:8c:b4:7c:c5:45:aa:34:66:3d:c6:c1: 18:dd:ae:76:46:03:24:c0:c0:c7:2e:87:14:e1:e1:31:2e:ad: 9a:f4:6f:ac:43:7f:7f:dc:9c:bc:30:c1:23:48:3a:4a:ac:47: 00:6a:86:c4:07:b7:43:68:84:bf:36:17:3d:32:94:82:8b:82: e7:a2:10:be:37:5c:10:b9:a5:db:66:6c:69:32:9d:4f:1e:85: ad:7c:b5:00:c2:68:a6:10:d7:21:f6:d7:96:b4:9b:2b:d7:98: 5a:2c:ce:e9:16:b4:39:a8:ea:3a:4d:da:30:9f:bc:f5:c2:72: a7:a2:95:42:74:1a:12:e1:e4:c0:58:05:64:aa:01:32:f0:7a: fb:07:9c:26:20:e4:ac:dd:dd:5b:f0:a6:01:e1:81:71:14:42: 9b:ca:13:95:6d:bc:a5:7c:b2:b3:5a:1c:4b:2c:b0:27:65:8e: 79:56:d7:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUwM0QxMTAvBgNVBAUTKDBBMTNDNkUyQkE1NDQ5OTk3Mzg1MjBGOUVCMzM1ODM2 QzQ2MEM4QzgwHhcNMjUwNDI3MDI0NTIxWhcNMjUwNTA0MDI0NTIxWjAYMRYwFAYD VQQDEw02ODBkOWE0MS0yYzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA97OwByfmW0ftpDFa3oNUr80iKnI3E58JEFxIBjT1xBhBTRaHWl/yHaQNP46c hAj6q0zGrZ6j3TWFbSqb9YJhAvrqkOkA7/SMlsWD6g2Quz4RvRILx0C75r0L2EuS f3EEQA1qVeZUNekgfCjMi+Ee3exRDDqYYLKGNM5a2xF/bf3ASm+/He/SArp0jnY3 Jp5973WtYkHnyLLqZATCAOxy4P964/mt+i6u5Qiaq706/H0jo4y5ISBM0n19lvXZ SdA0BMGGi5K2oGFtG6ErCnpcSDqn+miF5zM+zPcZx44391lsz+Z9+bd3kUulmZLW I9zC78As75jgTdOsusLYd5t27QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJwlQCnt bSZdsm9GneaEebLpt+g2MB8GA1UdIwQYMBaAFAoTxuK6VEmZc4Ug+eszWDbEYMjI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTAzRC9DRjAxQjJDQ0VC M0UxMUVEOEE5NkRCNUVDNEY5QUUwMi9DaFBHNHJwVVNabHpoU0Q1NnpOWU5zUmd5 TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoUEc0cnBVU1psemhTRDU2ek5ZTnNSZ3lNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTAzRC9DRjAxQjJDQ0VCM0UxMUVEOEE5NkRCNUVDNEY5QUUwMi9DaFBHNHJwVVNa bHpoU0Q1NnpOWU5zUmd5TWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZI43uhgwNArtYqIY5rT021Srf9s+n/CVTMXbyzbOugN7MaGXSHunL So526gr3/RJD5tEepEKHiiSsGai0p2tIkDxou+S4Ra3C1DieGRT+jLR8xUWqNGY9 xsEY3a52RgMkwMDHLocU4eExLq2a9G+sQ39/3Jy8MMEjSDpKrEcAaobEB7dDaIS/ Nhc9MpSCi4LnohC+N1wQuaXbZmxpMp1PHoWtfLUAwmimENch9teWtJsr15haLM7p FrQ5qOo6Tdown7z1wnKnopVCdBoS4eTAWAVkqgEy8Hr7B5wmIOSs3d1b8KYB4YFx FEKbyhOVbbylfLKzWhxLLLAnZY55Vtep -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:15 2025 by rpki-client on console.sobornost.net