$ rpki-client -vvf rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft File: grTScd4hLgYzXAtF5mUXtQi4NRY.mft (raw, json) Hash identifier: 7HZ9VeoKKEABbiltW4XFPRaQf4c1ikMROryrh2ZlmqU= Subject key identifier: 84:9C:8C:EB:E5:98:BD:50:07:74:0A:0F:D9:13:07:C6:F9:36:BB:42 Authority key identifier: 82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16 Certificate issuer: /CN=A91E379F/serialNumber=82B4D271DE212E06335C0B45E66517B508B83516 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft Manifest number: A1 Signing time: Fri 09 May 2025 05:18:00 +0000 Manifest this update: Fri 09 May 2025 05:17:59 +0000 Manifest next update: Fri 16 May 2025 05:17:59 +0000 Files and hashes: 1: grTScd4hLgYzXAtF5mUXtQi4NRY.crl (hash: DmIuPdMMhw41VCMrmYeslwKXFL5XvNdskL2p/rsr9TQ=) 2: 621428CE3CFB11EFB0BF040BC4F9AE02.roa (hash: cLX/NcpRBUgL7nqhk0rMjH0omx3nN9XKcz3vUbvy2EE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 05:17:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E379F, serialNumber=82B4D271DE212E06335C0B45E66517B508B83516 Validity Not Before: May 9 05:17:59 2025 GMT Not After : May 16 05:17:59 2025 GMT Subject: CN=681d9007-6a71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fe:b5:75:56:60:71:7d:0e:64:56:36:cf:ea: 5c:b0:02:47:5e:ff:f5:a7:a8:a4:a5:ca:c2:37:71: 62:91:77:29:61:3e:da:bb:41:92:28:e0:30:27:10: 4a:0a:6d:86:72:21:74:52:06:7a:b8:3b:1e:4b:84: 94:87:8f:43:5a:32:54:50:c0:48:f7:25:8d:f0:1c: 61:b0:dc:96:e5:4a:a4:5f:e0:5c:6e:3b:06:1e:22: e5:2c:1e:f5:0a:8a:a4:8b:56:16:21:a4:2e:40:04: 25:9d:64:da:57:ce:47:b4:fb:89:16:3e:5f:94:e3: d6:89:3e:84:bd:d1:76:aa:a3:bb:d7:c4:37:92:c3: 87:38:ff:c6:ca:b4:2e:80:bf:df:c3:73:41:2a:b7: bb:6d:fb:d7:2b:b1:a6:5d:8e:bc:36:63:12:3d:9a: cc:08:57:93:b1:10:de:9a:97:f5:52:15:ad:6d:a5: 35:7e:58:e0:43:1e:c6:1a:8e:07:ac:ac:fc:95:f4: 59:71:d1:3a:2c:e4:d1:2d:99:0b:7d:53:e7:5d:65: 8b:02:ee:44:b2:fb:49:c4:4f:ad:94:dd:16:a2:ab: 07:64:eb:3d:d8:c4:35:1c:32:86:d4:0a:36:b4:4d: e8:27:d3:13:45:89:7e:c2:da:79:29:0c:3e:47:3b: a4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:9C:8C:EB:E5:98:BD:50:07:74:0A:0F:D9:13:07:C6:F9:36:BB:42 X509v3 Authority Key Identifier: keyid:82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:cc:2b:55:38:21:ee:93:1f:69:69:da:86:c7:cf:f9:a5:dd: d8:fa:22:70:92:2c:27:ee:e1:f5:e0:60:b9:df:2f:b2:2c:36: e8:63:04:cf:ba:ed:be:c6:02:da:26:c6:8b:56:0d:9b:a8:4a: de:93:e8:0d:02:59:4b:44:8e:1b:69:58:8c:42:da:54:60:7e: ad:bc:04:5f:da:f7:ec:93:93:5f:c1:b1:94:1c:8e:3a:c0:bc: 7b:08:d6:25:2b:11:67:57:a3:d7:c0:59:44:30:d3:f1:42:df: 0e:28:a2:83:50:8d:f9:c2:31:7c:83:76:67:36:53:31:6e:a6: 86:06:2d:4a:7d:97:be:cb:d6:10:50:30:a6:00:52:76:6c:64: e8:fb:7a:4c:9e:c5:32:a1:d3:e7:eb:be:4f:93:6b:0a:a1:fe: 91:43:f1:4b:ed:1e:ba:0c:11:4c:7c:6d:e3:37:98:83:cd:80: 3a:7a:30:54:fc:5d:91:33:de:af:c5:90:f5:80:3f:9d:06:b6: 76:34:d0:e6:19:0a:fe:29:a0:97:a2:24:c6:40:4f:19:b1:1c: ea:89:2f:27:f9:ac:f1:37:dc:4b:c4:d6:d0:3e:f1:f9:cd:af: 5a:7c:d9:84:7c:b4:d2:53:9a:86:04:ac:8a:4c:a1:65:0f:03: 13:4c:f3:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM3OUYxMTAvBgNVBAUTKDgyQjREMjcxREUyMTJFMDYzMzVDMEI0NUU2NjUxN0I1 MDhCODM1MTYwHhcNMjUwNTA5MDUxNzU5WhcNMjUwNTE2MDUxNzU5WjAYMRYwFAYD VQQDEw02ODFkOTAwNy02YTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqP61dVZgcX0OZFY2z+pcsAJHXv/1p6ikpcrCN3FikXcpYT7au0GSKOAwJxBK Cm2GciF0UgZ6uDseS4SUh49DWjJUUMBI9yWN8BxhsNyW5UqkX+BcbjsGHiLlLB71 Coqki1YWIaQuQAQlnWTaV85HtPuJFj5flOPWiT6EvdF2qqO718Q3ksOHOP/GyrQu gL/fw3NBKre7bfvXK7GmXY68NmMSPZrMCFeTsRDempf1UhWtbaU1fljgQx7GGo4H rKz8lfRZcdE6LOTRLZkLfVPnXWWLAu5EsvtJxE+tlN0WoqsHZOs92MQ1HDKG1Ao2 tE3oJ9MTRYl+wtp5KQw+RzukuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIScjOvl mL1QB3QKD9kTB8b5NrtCMB8GA1UdIwQYMBaAFIK00nHeIS4GM1wLReZlF7UIuDUW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzc5Ri82Rjk5RDRGMDND RjkxMUVGQTBBMDZGODZDNEY5QUUwMi9nclRTY2Q0aExnWXpYQXRGNW1VWHRRaTRO UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dyVFNjZDRoTGdZelhBdEY1bVVYdFFpNE5SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Mzc5Ri82Rjk5RDRGMDNDRjkxMUVGQTBBMDZGODZDNEY5QUUwMi9nclRTY2Q0aExn WXpYQXRGNW1VWHRRaTROUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/zCtVOCHukx9padqGx8/5pd3Y+iJwkiwn7uH14GC53y+yLDboYwTP uu2+xgLaJsaLVg2bqErek+gNAllLRI4baViMQtpUYH6tvARf2vfsk5NfwbGUHI46 wLx7CNYlKxFnV6PXwFlEMNPxQt8OKKKDUI35wjF8g3ZnNlMxbqaGBi1KfZe+y9YQ UDCmAFJ2bGTo+3pMnsUyodPn675Pk2sKof6RQ/FL7R66DBFMfG3jN5iDzYA6ejBU /F2RM96vxZD1gD+dBrZ2NNDmGQr+KaCXoiTGQE8ZsRzqiS8n+azxN9xLxNbQPvH5 za9afNmEfLTSU5qGBKyKTKFlDwMTTPMg -----END CERTIFICATE-----Generated at Sun May 11 06:31:55 2025 by rpki-client