$ rpki-client -vvf rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft File: GrHejsiRr6LU4cka9Vg0kL-7wgk.mft (raw, json) Hash identifier: JKdOowfUHDpOm6rtGm2AEuKO9ZBHftH2LmGGcuIQbgc= Subject key identifier: C0:82:8F:D9:01:58:FA:76:01:81:BB:5F:AD:22:3D:B7:A9:E3:D6:20 Authority key identifier: 1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 Certificate issuer: /CN=A916DB3F/serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Certificate serial: 1E09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft Manifest number: 1DFD Signing time: Mon 12 May 2025 16:02:59 +0000 Manifest this update: Mon 12 May 2025 16:02:59 +0000 Manifest next update: Mon 19 May 2025 16:02:59 +0000 Files and hashes: 1: GrHejsiRr6LU4cka9Vg0kL-7wgk.crl (hash: m4/2l80LIUk0DgldkIDM4aAwR1KUYIBTDp1IqPlQpEU=) 2: 7E8D9A52895411E6B3538424C4F9AE02.roa (hash: aU2YJVr1JgNSnSBDLACjKPXwpUH3eD6D3PqoxsGGeXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:02:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7689 (0x1e09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DB3F, serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Validity Not Before: May 12 16:02:59 2025 GMT Not After : May 19 16:02:59 2025 GMT Subject: CN=68221bb3-72fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6e:8c:d1:db:d5:e5:eb:ac:1d:2d:49:5f:5b: 9f:ff:82:9a:67:87:1a:80:9e:7a:57:98:be:8f:61: 62:0f:ae:aa:1c:2a:6b:7e:fd:b7:6c:0f:2e:c9:0b: 14:cb:7a:ea:85:b9:5e:43:74:79:3f:9b:82:b9:c5: 36:a5:07:92:66:fa:da:35:bb:42:89:ab:66:8b:2d: 69:a9:58:e1:13:51:2b:52:30:81:2e:93:cf:be:4d: d4:9b:ff:8c:7a:a9:39:76:cc:b8:54:00:2e:53:27: 26:88:9f:bd:c6:cc:1c:42:9a:32:bf:84:a8:03:a3: 73:a4:59:5b:a7:da:9e:e6:fa:18:14:96:83:8a:e7: 45:58:0a:43:6c:3e:76:58:e8:8d:f0:eb:e8:84:53: 98:3d:e0:c3:08:b7:f5:6d:dc:c6:a4:8d:35:fe:5a: 36:ca:36:c4:cb:01:55:db:9f:5c:fb:bf:9f:70:c7: 02:f8:ae:f5:c8:b8:d4:90:56:79:d4:26:a3:ed:d8: ba:6f:a2:61:39:07:52:6d:cb:77:8c:aa:d5:59:ae: 36:74:57:b0:24:6d:6d:16:7c:d5:99:c7:34:62:8d: 5d:03:53:ee:04:be:b2:7b:96:65:ed:f9:7b:68:b8: a6:70:dd:41:64:25:6e:fe:4a:5a:2b:16:7b:01:70: 2e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:82:8F:D9:01:58:FA:76:01:81:BB:5F:AD:22:3D:B7:A9:E3:D6:20 X509v3 Authority Key Identifier: keyid:1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:1b:bc:3f:30:f9:5b:36:a9:f9:b2:3b:d5:84:2d:b8:4b:65: 50:ef:6a:68:f8:51:4f:20:4a:41:c4:fd:c2:4d:e2:66:32:29: 18:79:be:29:21:2a:f9:e0:39:47:b8:67:37:a1:58:fa:ed:c4: 8b:1d:bb:34:35:e3:00:99:f6:17:c5:8c:b7:6f:99:66:17:12: e2:50:de:40:92:8d:2d:13:6d:eb:d5:65:d7:76:34:a3:2b:f3: b9:c2:81:6b:bf:44:71:17:be:e4:98:ce:14:56:ad:27:b6:c7: c9:ae:1d:44:dc:14:aa:7f:b1:0f:9f:ad:ec:5c:96:5e:11:ee: 77:04:e4:27:fa:b8:ee:70:c3:41:54:44:9d:24:ad:5b:e2:b5: b1:7c:4f:94:fb:0a:32:e7:db:74:08:cb:0b:cb:f6:74:6a:d9: f7:16:2d:91:93:c6:5a:5f:e5:48:f0:d9:9a:4b:44:8e:e9:86: 28:7b:d7:9b:77:f0:31:29:68:98:c7:fd:89:af:3b:06:84:e3: d7:8e:58:ef:1f:2e:e6:a4:ac:c0:cf:2e:3c:e3:d7:ef:27:ed: 07:bd:3a:40:8d:c6:87:27:61:07:18:06:bb:35:9d:77:1c:64: ba:b0:31:3d:b9:38:00:c1:44:0f:9b:5f:b6:c7:70:1e:12:b2: c7:7e:49:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRCM0YxMTAvBgNVBAUTKDFBQjFERThFQzg5MUFGQTJENEUxQzkxQUY1NTgzNDkw QkZCQkMyMDkwHhcNMjUwNTEyMTYwMjU5WhcNMjUwNTE5MTYwMjU5WjAYMRYwFAYD VQQDEw02ODIyMWJiMy03MmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAym6M0dvV5eusHS1JX1uf/4KaZ4cagJ56V5i+j2FiD66qHCprfv23bA8uyQsU y3rqhbleQ3R5P5uCucU2pQeSZvraNbtCiatmiy1pqVjhE1ErUjCBLpPPvk3Um/+M eqk5dsy4VAAuUycmiJ+9xswcQpoyv4SoA6NzpFlbp9qe5voYFJaDiudFWApDbD52 WOiN8OvohFOYPeDDCLf1bdzGpI01/lo2yjbEywFV259c+7+fcMcC+K71yLjUkFZ5 1Caj7di6b6JhOQdSbct3jKrVWa42dFewJG1tFnzVmcc0Yo1dA1PuBL6ye5Zl7fl7 aLimcN1BZCVu/kpaKxZ7AXAukwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCCj9kB WPp2AYG7X60iPbep49YgMB8GA1UdIwQYMBaAFBqx3o7Ika+i1OHJGvVYNJC/u8IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REIzRi9EMzkxMDEzNDg5 NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2TFU0Y2thOVZnMGtMLTd3 Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dySGVqc2lScjZMVTRja2E5Vmcwa0wtN3dnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REIzRi9EMzkxMDEzNDg5NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2 TFU0Y2thOVZnMGtMLTd3Z2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQG7w/MPlbNqn5sjvVhC24S2VQ72po+FFPIEpBxP3CTeJmMikYeb4p ISr54DlHuGc3oVj67cSLHbs0NeMAmfYXxYy3b5lmFxLiUN5Ako0tE23r1WXXdjSj K/O5woFrv0RxF77kmM4UVq0ntsfJrh1E3BSqf7EPn63sXJZeEe53BOQn+rjucMNB VESdJK1b4rWxfE+U+woy59t0CMsLy/Z0atn3Fi2Rk8ZaX+VI8NmaS0SO6YYoe9eb d/AxKWiYx/2JrzsGhOPXjljvHy7mpKzAzy4849fvJ+0HvTpAjcaHJ2EHGAa7NZ13 HGS6sDE9uTgAwUQPm1+2x3AeErLHfknS -----END CERTIFICATE-----Generated at Mon May 12 23:15:22 2025 by rpki-client