$ rpki-client -vvf rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft File: GrHejsiRr6LU4cka9Vg0kL-7wgk.mft (raw, json) Hash identifier: 1JUdqx1NFPhc8bFwUbisk6PEFc2D4tizBYy/1Xj+vxw= Subject key identifier: 8F:2A:2A:84:C5:5B:9B:B9:E0:A9:E1:A2:5D:B8:5E:A7:3A:78:15:26 Authority key identifier: 1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 Certificate issuer: /CN=A916DB3F/serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Certificate serial: 1E40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft Manifest number: 1E33 Signing time: Fri 22 Aug 2025 16:08:00 +0000 Manifest this update: Fri 22 Aug 2025 16:08:00 +0000 Manifest next update: Fri 29 Aug 2025 16:08:00 +0000 Files and hashes: 1: GrHejsiRr6LU4cka9Vg0kL-7wgk.crl (hash: RwIxxEoz5RuLwxxodJMVGZHNKjItxqbQebklPnbEi5U=) 2: 7E8D9A52895411E6B3538424C4F9AE02.roa (hash: SuDRS4jGJE9zSZ58w86iX8uePQ9m/GiWmqEd/5+TkEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7744 (0x1e40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DB3F, serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Validity Not Before: Aug 22 16:08:00 2025 GMT Not After : Aug 29 16:08:00 2025 GMT Subject: CN=68a895e0-28f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:66:41:6c:0d:03:9a:ef:ec:a9:c1:63:9d:2c: be:cd:b3:b1:52:d1:7b:76:26:f3:bf:d0:af:6c:a4: 4b:9b:40:56:9f:b0:2a:33:a0:af:a9:b8:43:25:3d: 03:78:45:d5:63:7f:57:39:3c:ec:21:62:18:05:f0: 72:8b:21:8c:63:bc:2a:58:20:7f:41:37:49:46:b1: fe:88:bb:25:f9:66:87:65:54:da:97:30:f1:a7:42: e0:d9:a3:60:5e:f3:7c:a5:ac:32:6f:4f:78:dd:04: 36:93:1c:15:21:84:60:f8:4d:d6:01:44:ca:70:fa: c7:3d:fd:b8:e4:7b:7d:1c:54:03:a1:d4:56:d8:69: 44:4a:94:5d:29:36:51:af:4f:74:a4:e1:70:a5:56: dc:fa:83:61:67:cb:41:1d:5b:75:77:0a:09:94:46: 59:03:0f:cf:e5:c8:b1:5e:0c:3b:e0:05:d1:3f:28: 6a:28:0c:26:df:8c:83:96:10:06:6c:d2:16:70:7f: 30:5a:ec:c1:1f:55:26:6d:43:01:4a:5e:b4:c1:90: 96:3d:b1:7d:a0:bc:17:03:46:bb:42:ec:50:e6:7a: c5:94:86:d7:90:fd:a4:5a:0f:e7:97:f1:8c:47:50: 99:6e:82:6e:3b:4e:41:f5:0a:46:3a:ed:f8:9d:20: 75:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:2A:2A:84:C5:5B:9B:B9:E0:A9:E1:A2:5D:B8:5E:A7:3A:78:15:26 X509v3 Authority Key Identifier: keyid:1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:77:d6:4e:08:e3:6b:0e:d9:83:46:cf:68:97:31:c0:06:76: 1b:ab:9e:6f:df:b3:90:09:eb:02:90:9d:d7:72:91:1f:d0:bd: 3e:38:47:34:cc:5e:c9:01:44:e9:68:98:2a:be:a2:74:5e:71: d4:e2:c2:18:c1:5b:05:94:21:43:ac:ec:67:d2:f5:05:38:dc: 18:a9:8e:8b:cb:62:31:8c:f5:f0:78:70:f7:c6:1d:8b:8d:f1: fd:b6:eb:ea:a9:49:6a:45:65:56:20:8c:b0:f2:8f:c9:a1:3c: 65:88:db:09:b8:20:20:4f:02:36:c2:f1:69:c3:ce:cf:26:31: 79:1a:38:41:a9:59:c4:b3:b8:a6:d5:30:63:de:00:cd:ef:7c: 14:9f:46:d8:9e:32:b1:26:15:06:59:38:42:f0:8f:4e:14:1c: bb:ef:b2:c9:8e:c6:57:0e:5b:28:0d:42:a1:93:16:b4:6e:1f: e4:67:8e:3c:aa:bf:c2:33:92:f9:86:e0:e3:4b:81:d2:63:1a: 9c:90:71:87:a7:a2:9e:60:d6:01:8f:b6:35:fc:01:ee:f7:90: 10:79:80:3c:2e:21:db:2a:9b:c0:57:16:b0:4e:75:72:cf:a9: d0:c3:70:dc:85:dc:1d:28:01:00:f3:fa:2a:19:8e:72:6c:60: a1:37:93:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRCM0YxMTAvBgNVBAUTKDFBQjFERThFQzg5MUFGQTJENEUxQzkxQUY1NTgzNDkw QkZCQkMyMDkwHhcNMjUwODIyMTYwODAwWhcNMjUwODI5MTYwODAwWjAYMRYwFAYD VQQDEw02OGE4OTVlMC0yOGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmZBbA0Dmu/sqcFjnSy+zbOxUtF7dibzv9CvbKRLm0BWn7AqM6CvqbhDJT0D eEXVY39XOTzsIWIYBfByiyGMY7wqWCB/QTdJRrH+iLsl+WaHZVTalzDxp0Lg2aNg XvN8pawyb0943QQ2kxwVIYRg+E3WAUTKcPrHPf245Ht9HFQDodRW2GlESpRdKTZR r090pOFwpVbc+oNhZ8tBHVt1dwoJlEZZAw/P5cixXgw74AXRPyhqKAwm34yDlhAG bNIWcH8wWuzBH1UmbUMBSl60wZCWPbF9oLwXA0a7QuxQ5nrFlIbXkP2kWg/nl/GM R1CZboJuO05B9QpGOu34nSB1+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8qKoTF W5u54Knhol24Xqc6eBUmMB8GA1UdIwQYMBaAFBqx3o7Ika+i1OHJGvVYNJC/u8IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REIzRi9EMzkxMDEzNDg5 NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2TFU0Y2thOVZnMGtMLTd3 Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dySGVqc2lScjZMVTRja2E5Vmcwa0wtN3dnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REIzRi9EMzkxMDEzNDg5NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2 TFU0Y2thOVZnMGtMLTd3Z2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxd9ZOCONrDtmDRs9olzHABnYbq55v37OQCesCkJ3XcpEf0L0+OEc0 zF7JAUTpaJgqvqJ0XnHU4sIYwVsFlCFDrOxn0vUFONwYqY6Ly2IxjPXweHD3xh2L jfH9tuvqqUlqRWVWIIyw8o/JoTxliNsJuCAgTwI2wvFpw87PJjF5GjhBqVnEs7im 1TBj3gDN73wUn0bYnjKxJhUGWThC8I9OFBy777LJjsZXDlsoDUKhkxa0bh/kZ448 qr/CM5L5huDjS4HSYxqckHGHp6KeYNYBj7Y1/AHu95AQeYA8LiHbKpvAVxawTnVy z6nQw3DchdwdKAEA8/oqGY5ybGChN5Oj -----END CERTIFICATE-----Generated at Sat Aug 23 17:22:37 2025 by rpki-client