$ rpki-client -vvf rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft File: CHQTSbZiijmB94o3MLiYg-PXa8o.mft (raw, json) Hash identifier: Bz0jAzhchtSltqnIl3neYvxF7zgUWjo96080p2GcJiI= Subject key identifier: 43:C4:AC:52:7B:39:1B:F3:43:53:E9:58:32:32:2A:CE:02:CD:7B:77 Authority key identifier: 08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA Certificate issuer: /CN=A91712A8/serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Certificate serial: 0663 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft Manifest number: 065D Signing time: Sat 26 Apr 2025 22:05:04 +0000 Manifest this update: Sat 26 Apr 2025 22:05:04 +0000 Manifest next update: Sat 03 May 2025 22:05:04 +0000 Files and hashes: 1: CHQTSbZiijmB94o3MLiYg-PXa8o.crl (hash: z5IiBrMf2wQnE30PlabKmocMztgqW/ZKi247wVmfhOU=) 2: B69DB4D27D6911EBA420FC6AC4F9AE02.roa (hash: kqvjt4xRQkic0pSOKa9QVL0YjZAGhKt2kqY9ktYProo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:05:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1635 (0x663) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91712A8, serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Validity Not Before: Apr 26 22:05:04 2025 GMT Not After : May 3 22:05:04 2025 GMT Subject: CN=680d5890-3c34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6e:5c:d8:ba:1b:66:dc:d3:ca:f4:82:9b:33: 2e:dc:00:0e:f5:2f:e5:f7:49:a6:17:5e:80:80:06: 1e:ce:f7:3f:b2:23:a7:37:bd:2d:d5:92:60:98:f9: f0:ff:ac:52:a4:30:11:0f:a5:b6:f4:a5:c7:60:74: b1:69:00:5c:cf:6e:43:ee:5e:ba:97:2b:48:97:61: 9d:8e:fa:b8:4f:8b:df:a9:72:a5:93:be:38:f8:3e: dd:94:9c:f7:a7:a3:1d:86:bf:43:08:d6:b3:8d:f9: 14:4c:e2:d5:ae:c3:4d:37:1f:21:f5:4b:8d:7f:bc: 34:66:c0:c4:35:63:f1:87:e8:a5:65:66:4a:87:1a: 49:af:c5:99:81:77:3b:72:6d:c7:a8:16:ed:c7:f0: 67:66:fe:8f:d9:ab:52:7d:75:a0:9d:e9:f4:d4:3c: 9a:91:8f:6c:4c:11:dd:02:dd:54:f2:ec:3d:db:e8: af:20:9f:45:1f:d2:f7:4a:47:81:27:2e:4d:f1:c0: 3c:30:c7:16:77:6a:92:e5:11:e6:22:91:e9:d1:e1: 2a:df:6f:56:f5:a5:ce:b2:3e:8c:0a:0a:30:3f:58: 34:b4:2e:03:16:1f:23:76:7b:e1:9e:be:77:f9:10: 7b:2f:b0:68:24:0b:08:e6:38:bb:4e:17:ec:26:99: b8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C4:AC:52:7B:39:1B:F3:43:53:E9:58:32:32:2A:CE:02:CD:7B:77 X509v3 Authority Key Identifier: keyid:08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:fc:4a:c7:08:3b:21:00:17:ee:f9:a8:7c:4d:7a:1e:c2:8c: bb:3a:ac:cd:d9:e4:fc:83:8e:69:fe:62:6d:03:b6:72:f6:ba: 28:71:9a:ba:12:3b:71:e8:80:c0:2a:ba:35:ed:4a:97:df:0e: c7:c3:a2:3c:a4:ad:c5:9a:ed:be:33:57:3c:28:5e:98:d1:95: 6e:79:8a:88:81:ea:f4:cb:1f:27:d1:44:e2:b1:e0:39:88:c7: 2c:d0:f5:46:c0:b1:30:fa:60:6e:f9:02:2e:02:e8:a1:c2:4d: e0:ef:d4:6a:83:f6:85:f7:11:81:7d:b7:5a:c8:a0:e3:67:7e: e6:20:fe:bb:db:9d:58:2e:af:ab:46:48:be:3d:c8:ae:c0:09: ff:bf:bb:f8:4e:f3:db:3d:26:b6:d3:22:95:31:96:83:e9:11: 91:fe:0c:66:ca:df:f9:11:6b:b1:49:9d:e1:05:d8:ff:e6:95: 00:25:c9:a5:14:88:68:4d:3d:14:82:6e:29:89:c0:73:2f:b4: 5e:e9:61:d5:10:da:86:af:07:d7:c0:d6:ac:e3:c9:fc:27:d6: f3:6e:95:45:a7:ec:6a:2f:ce:fe:df:04:94:39:8a:72:aa:06: 3c:ec:fd:08:2e:9f:a7:39:99:53:a3:98:98:67:2c:33:80:b0: cd:0e:67:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyQTgxMTAvBgNVBAUTKDA4NzQxMzQ5QjY2MjhBMzk4MUY3OEEzNzMwQjg5ODgz RTNENzZCQ0EwHhcNMjUwNDI2MjIwNTA0WhcNMjUwNTAzMjIwNTA0WjAYMRYwFAYD VQQDEw02ODBkNTg5MC0zYzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAym5c2LobZtzTyvSCmzMu3AAO9S/l90mmF16AgAYezvc/siOnN70t1ZJgmPnw /6xSpDARD6W29KXHYHSxaQBcz25D7l66lytIl2Gdjvq4T4vfqXKlk744+D7dlJz3 p6Mdhr9DCNazjfkUTOLVrsNNNx8h9UuNf7w0ZsDENWPxh+ilZWZKhxpJr8WZgXc7 cm3HqBbtx/BnZv6P2atSfXWgnen01DyakY9sTBHdAt1U8uw92+ivIJ9FH9L3SkeB Jy5N8cA8MMcWd2qS5RHmIpHp0eEq329W9aXOsj6MCgowP1g0tC4DFh8jdnvhnr53 +RB7L7BoJAsI5ji7ThfsJpm4LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPErFJ7 ORvzQ1PpWDIyKs4CzXt3MB8GA1UdIwQYMBaAFAh0E0m2Yoo5gfeKNzC4mIPj12vK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTJBOC80NjUwMEY4QzdE NjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlqbUI5NG8zTUxpWWctUFhh OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIUVRTYlppaWptQjk0bzNNTGlZZy1QWGE4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTJBOC80NjUwMEY4QzdENjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlq bUI5NG8zTUxpWWctUFhhOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo/ErHCDshABfu+ah8TXoewoy7OqzN2eT8g45p/mJtA7Zy9roocZq6 Ejtx6IDAKro17UqX3w7Hw6I8pK3Fmu2+M1c8KF6Y0ZVueYqIger0yx8n0UTiseA5 iMcs0PVGwLEw+mBu+QIuAuihwk3g79Rqg/aF9xGBfbdayKDjZ37mIP67251YLq+r Rki+PciuwAn/v7v4TvPbPSa20yKVMZaD6RGR/gxmyt/5EWuxSZ3hBdj/5pUAJcml FIhoTT0Ugm4picBzL7Re6WHVENqGrwfXwNas48n8J9bzbpVFp+xqL87+3wSUOYpy qgY87P0ILp+nOZlTo5iYZywzgLDNDmch -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:03 2025 by rpki-client on console.sobornost.net