$ rpki-client -vvf rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft File: GrHejsiRr6LU4cka9Vg0kL-7wgk.mft (raw, json) Hash identifier: I8bs5LeHQzZ/CKFugfeJz2kBC3VMrvusSmfQ63cglgM= Subject key identifier: F3:E7:4D:B0:C8:A1:25:C7:48:25:C9:40:1D:F1:1B:58:8E:27:BA:78 Authority key identifier: 1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 Certificate issuer: /CN=A916DB3F/serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Certificate serial: 1E26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft Manifest number: 1E19 Signing time: Wed 02 Jul 2025 16:12:28 +0000 Manifest this update: Wed 02 Jul 2025 16:12:27 +0000 Manifest next update: Wed 09 Jul 2025 16:12:27 +0000 Files and hashes: 1: GrHejsiRr6LU4cka9Vg0kL-7wgk.crl (hash: ubH6ETdPb8uJakUY0XiVD51HEwZHCLlcdbyKi0lnHMM=) 2: 7E8D9A52895411E6B3538424C4F9AE02.roa (hash: SuDRS4jGJE9zSZ58w86iX8uePQ9m/GiWmqEd/5+TkEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:12:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7718 (0x1e26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DB3F, serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Validity Not Before: Jul 2 16:12:27 2025 GMT Not After : Jul 9 16:12:27 2025 GMT Subject: CN=68655a6c-409a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8d:05:8f:75:bc:05:92:bb:ac:4b:b0:b7:4c: 47:c4:86:e9:69:81:e4:45:c3:44:18:6d:23:65:7f: 2f:71:dc:a3:2f:65:e2:1d:4f:8f:97:6d:d0:b5:51: 40:62:7d:d0:27:ba:41:d4:da:ea:9b:5c:a2:4a:58: a2:0f:69:b0:f5:59:13:21:08:3b:30:85:4e:ba:7d: ad:f2:c6:b2:c6:ae:91:ec:1a:e4:15:16:3f:46:2f: 48:37:34:f7:ab:7a:a5:70:ff:06:cb:4a:3f:81:da: 13:30:1b:11:b5:1d:45:9b:42:1d:73:c3:aa:6b:83: 5f:03:2e:ba:cc:d4:77:10:c3:82:45:d5:cb:27:1c: db:53:92:c5:95:06:31:dd:02:b3:1a:5a:fc:5d:2a: da:02:3f:a0:c0:64:13:ee:02:7a:02:d0:31:04:4a: 1e:84:8d:19:fe:98:41:4e:9a:81:2b:00:25:6b:e8: cd:45:3a:e0:6d:65:7b:70:64:09:f6:50:91:06:96: 6a:6e:b8:d7:30:e1:71:00:dc:0c:fd:55:ba:57:26: f8:48:0b:be:8e:4d:f9:79:cd:8d:93:dd:74:58:29: 14:a0:47:61:9c:d2:6a:68:d3:1b:82:4f:1c:7f:28: c9:ed:a0:78:26:06:98:58:0c:c9:2a:11:f3:23:cc: c0:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:E7:4D:B0:C8:A1:25:C7:48:25:C9:40:1D:F1:1B:58:8E:27:BA:78 X509v3 Authority Key Identifier: keyid:1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:21:05:c9:0a:95:b7:ae:63:94:3c:e4:9c:a5:31:64:f1:33: 99:66:a8:f7:a1:25:ff:35:f8:a0:d0:05:f8:e9:55:38:75:ba: 05:0d:30:6f:63:cc:b1:27:61:0c:ef:65:4d:e2:47:58:8b:fe: 3b:ef:90:d5:23:06:54:b0:96:d1:8b:58:0a:ce:92:40:48:26: 5f:af:a9:71:51:18:22:6f:62:45:a0:13:16:ce:66:81:b0:2f: 2d:00:fc:94:22:68:8e:4c:33:ec:7a:52:e7:57:3c:5b:8a:10: 7e:c1:00:8e:fa:d0:58:05:d1:88:2c:d4:25:18:ba:42:8a:6d: 61:3d:98:db:b3:7c:59:86:2b:68:84:46:9e:86:d9:6d:34:e7: 5b:4f:33:08:e9:9c:c0:1d:14:2c:f2:1a:b6:9b:7c:43:94:80: bc:3c:7e:f7:48:cb:16:4b:cc:9e:93:84:88:df:4c:af:44:c8: 4b:c2:25:fa:c1:a7:fc:b9:a1:2b:64:53:7f:86:7b:e9:f5:ed: 3e:b1:15:4a:29:06:98:67:ea:85:84:eb:e7:05:22:a7:4b:0f: a0:37:0d:2f:4a:c3:13:a0:50:3a:0c:4c:80:93:d2:17:ea:5f: c2:dd:75:06:36:06:74:f2:32:ad:29:f9:0c:c0:a3:48:1e:9c: 4b:8d:4a:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRCM0YxMTAvBgNVBAUTKDFBQjFERThFQzg5MUFGQTJENEUxQzkxQUY1NTgzNDkw QkZCQkMyMDkwHhcNMjUwNzAyMTYxMjI3WhcNMjUwNzA5MTYxMjI3WjAYMRYwFAYD VQQDEw02ODY1NWE2Yy00MDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAno0Fj3W8BZK7rEuwt0xHxIbpaYHkRcNEGG0jZX8vcdyjL2XiHU+Pl23QtVFA Yn3QJ7pB1Nrqm1yiSliiD2mw9VkTIQg7MIVOun2t8sayxq6R7BrkFRY/Ri9INzT3 q3qlcP8Gy0o/gdoTMBsRtR1Fm0Idc8Oqa4NfAy66zNR3EMOCRdXLJxzbU5LFlQYx 3QKzGlr8XSraAj+gwGQT7gJ6AtAxBEoehI0Z/phBTpqBKwAla+jNRTrgbWV7cGQJ 9lCRBpZqbrjXMOFxANwM/VW6Vyb4SAu+jk35ec2Nk910WCkUoEdhnNJqaNMbgk8c fyjJ7aB4JgaYWAzJKhHzI8zAJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPnTbDI oSXHSCXJQB3xG1iOJ7p4MB8GA1UdIwQYMBaAFBqx3o7Ika+i1OHJGvVYNJC/u8IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REIzRi9EMzkxMDEzNDg5 NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2TFU0Y2thOVZnMGtMLTd3 Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dySGVqc2lScjZMVTRja2E5Vmcwa0wtN3dnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REIzRi9EMzkxMDEzNDg5NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2 TFU0Y2thOVZnMGtMLTd3Z2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjIQXJCpW3rmOUPOScpTFk8TOZZqj3oSX/Nfig0AX46VU4dboFDTBv Y8yxJ2EM72VN4kdYi/4775DVIwZUsJbRi1gKzpJASCZfr6lxURgib2JFoBMWzmaB sC8tAPyUImiOTDPselLnVzxbihB+wQCO+tBYBdGILNQlGLpCim1hPZjbs3xZhito hEaehtltNOdbTzMI6ZzAHRQs8hq2m3xDlIC8PH73SMsWS8yek4SI30yvRMhLwiX6 waf8uaErZFN/hnvp9e0+sRVKKQaYZ+qFhOvnBSKnSw+gNw0vSsMToFA6DEyAk9IX 6l/C3XUGNgZ08jKtKfkMwKNIHpxLjUoe -----END CERTIFICATE-----Generated at Thu Jul 3 01:08:58 2025 by rpki-client