$ rpki-client -vvf rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft File: grTScd4hLgYzXAtF5mUXtQi4NRY.mft (raw, json) Hash identifier: IOP6mkjL6uL6148nThOBIcLonLsgUVkvEjmuNdFE1HE= Subject key identifier: E2:44:36:F7:31:84:A3:87:09:1A:0B:D9:81:A9:1A:7D:56:14:AE:31 Authority key identifier: 82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16 Certificate issuer: /CN=A91E379F/serialNumber=82B4D271DE212E06335C0B45E66517B508B83516 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft Manifest number: BB Signing time: Tue 01 Jul 2025 06:35:16 +0000 Manifest this update: Tue 01 Jul 2025 06:35:15 +0000 Manifest next update: Tue 08 Jul 2025 06:35:15 +0000 Files and hashes: 1: grTScd4hLgYzXAtF5mUXtQi4NRY.crl (hash: LapOADHZ4HK8aTNksM/PiFTYEIJpHhX9Uy22/JYaLVo=) 2: 621428CE3CFB11EFB0BF040BC4F9AE02.roa (hash: cLX/NcpRBUgL7nqhk0rMjH0omx3nN9XKcz3vUbvy2EE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E379F, serialNumber=82B4D271DE212E06335C0B45E66517B508B83516 Validity Not Before: Jul 1 06:35:15 2025 GMT Not After : Jul 8 06:35:15 2025 GMT Subject: CN=686381a3-6a3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ec:88:bd:22:55:a7:49:72:51:ab:ac:77:d9: c6:bc:b1:ad:00:28:e4:1e:ad:b4:b5:5f:1f:2b:9c: 8c:be:c4:b2:05:56:ce:90:e0:51:fd:75:4f:f5:b2: 4f:6d:19:47:99:a3:ff:8b:a0:96:2d:0e:ce:03:6f: 8c:b0:74:10:3e:7b:22:da:95:df:38:ef:fb:72:5e: b6:50:af:72:7a:66:41:d8:54:ae:9d:69:80:ff:d0: 46:a9:d8:2a:50:de:55:39:56:ae:04:16:0d:a2:9a: e4:03:4b:58:05:1b:aa:55:08:08:4b:8e:97:df:51: 2f:d3:9c:4e:b7:84:b9:54:f0:c9:b6:9b:e3:6b:eb: 22:f0:65:ed:bc:8c:56:6d:92:d4:cf:d1:d8:9b:da: 73:cb:b9:24:07:15:69:ab:53:2a:39:7a:f6:0f:7c: a6:18:7a:e5:11:41:08:4a:6f:f2:c8:a9:1b:b2:ee: a8:28:e4:4e:f8:42:53:14:6e:89:28:0b:12:ed:e8: 99:11:ee:75:b2:35:0f:49:f3:43:f9:3c:03:30:a4: 43:05:6f:6e:7e:fe:d6:96:4b:6f:36:9a:96:49:27: 52:0c:32:55:a2:43:e7:67:54:be:ca:77:7b:76:fe: 08:2d:42:30:b8:e6:0a:87:d9:27:ab:6d:b8:92:7a: 26:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:44:36:F7:31:84:A3:87:09:1A:0B:D9:81:A9:1A:7D:56:14:AE:31 X509v3 Authority Key Identifier: keyid:82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:ea:c4:da:56:a7:8e:d6:ee:5d:e1:65:a7:89:53:02:c2:00: 8d:f2:ef:31:69:a4:2c:b5:ed:92:55:8e:b0:b0:7c:26:40:d4: 1b:6f:97:11:49:9f:53:a1:6e:53:ba:d8:4f:bd:8b:b2:11:15: 8b:9d:e7:9a:18:ed:01:1d:71:db:37:03:49:8c:36:42:12:3c: 81:ee:44:5b:a5:dc:de:a8:d4:e1:b9:bd:f2:e7:34:10:f0:33: c4:f4:89:de:ba:6a:23:fd:07:70:57:e2:81:b2:7d:8c:83:6b: a2:09:bd:d5:b3:56:4e:e3:cd:ae:5a:d4:d4:72:59:60:ad:3a: 47:b6:9f:5a:f7:f0:68:d9:50:68:70:2f:92:7b:eb:04:a2:51: ec:53:6d:36:c1:74:4d:28:8a:34:3d:cb:34:34:4f:13:2a:0c: 86:44:de:18:dd:69:61:1b:d3:c5:e5:e4:ba:4a:be:8a:20:6b: 0e:fe:92:d0:75:04:2b:ab:8c:a9:89:a3:e8:0c:46:38:09:5d: 99:c1:90:de:c3:c4:72:f2:7c:17:d5:07:db:3b:10:17:9c:71: df:d2:75:d0:f4:0d:7e:94:3f:55:60:4b:f7:f5:79:db:9c:64: c5:7f:c8:a0:b8:6c:40:3f:4a:70:59:d1:57:41:36:6d:53:b5: 4b:61:a4:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM3OUYxMTAvBgNVBAUTKDgyQjREMjcxREUyMTJFMDYzMzVDMEI0NUU2NjUxN0I1 MDhCODM1MTYwHhcNMjUwNzAxMDYzNTE1WhcNMjUwNzA4MDYzNTE1WjAYMRYwFAYD VQQDEw02ODYzODFhMy02YTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOyIvSJVp0lyUausd9nGvLGtACjkHq20tV8fK5yMvsSyBVbOkOBR/XVP9bJP bRlHmaP/i6CWLQ7OA2+MsHQQPnsi2pXfOO/7cl62UK9yemZB2FSunWmA/9BGqdgq UN5VOVauBBYNoprkA0tYBRuqVQgIS46X31Ev05xOt4S5VPDJtpvja+si8GXtvIxW bZLUz9HYm9pzy7kkBxVpq1MqOXr2D3ymGHrlEUEISm/yyKkbsu6oKORO+EJTFG6J KAsS7eiZEe51sjUPSfND+TwDMKRDBW9ufv7WlktvNpqWSSdSDDJVokPnZ1S+ynd7 dv4ILUIwuOYKh9knq224knom0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJENvcx hKOHCRoL2YGpGn1WFK4xMB8GA1UdIwQYMBaAFIK00nHeIS4GM1wLReZlF7UIuDUW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzc5Ri82Rjk5RDRGMDND RjkxMUVGQTBBMDZGODZDNEY5QUUwMi9nclRTY2Q0aExnWXpYQXRGNW1VWHRRaTRO UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dyVFNjZDRoTGdZelhBdEY1bVVYdFFpNE5SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Mzc5Ri82Rjk5RDRGMDNDRjkxMUVGQTBBMDZGODZDNEY5QUUwMi9nclRTY2Q0aExn WXpYQXRGNW1VWHRRaTROUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB6sTaVqeO1u5d4WWniVMCwgCN8u8xaaQste2SVY6wsHwmQNQbb5cR SZ9ToW5TuthPvYuyERWLneeaGO0BHXHbNwNJjDZCEjyB7kRbpdzeqNThub3y5zQQ 8DPE9Ineumoj/QdwV+KBsn2Mg2uiCb3Vs1ZO482uWtTUcllgrTpHtp9a9/Bo2VBo cC+Se+sEolHsU202wXRNKIo0Pcs0NE8TKgyGRN4Y3WlhG9PF5eS6Sr6KIGsO/pLQ dQQrq4ypiaPoDEY4CV2ZwZDew8Ry8nwX1QfbOxAXnHHf0nXQ9A1+lD9VYEv39Xnb nGTFf8iguGxAP0pwWdFXQTZtU7VLYaSe -----END CERTIFICATE-----Generated at Tue Jul 1 16:01:46 2025 by rpki-client