$ rpki-client -vvf rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft File: grTScd4hLgYzXAtF5mUXtQi4NRY.mft (raw, json) Hash identifier: VP52Rk6UE4gXw7T58avsI7hVH69HkSwuJO7KB2TARvE= Subject key identifier: C0:90:2B:9D:ED:DE:07:E3:04:16:AA:6D:DB:17:E5:91:C2:F0:E2:76 Authority key identifier: 82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16 Certificate issuer: /CN=A91E379F/serialNumber=82B4D271DE212E06335C0B45E66517B508B83516 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft Manifest number: D6 Signing time: Sat 23 Aug 2025 05:46:15 +0000 Manifest this update: Sat 23 Aug 2025 05:46:14 +0000 Manifest next update: Sat 30 Aug 2025 05:46:14 +0000 Files and hashes: 1: grTScd4hLgYzXAtF5mUXtQi4NRY.crl (hash: 9Gc2SkNP/N6S6oiWfQUo8dhLdPfRXoRl8JQ9kWFovqw=) 2: 621428CE3CFB11EFB0BF040BC4F9AE02.roa (hash: cLX/NcpRBUgL7nqhk0rMjH0omx3nN9XKcz3vUbvy2EE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E379F, serialNumber=82B4D271DE212E06335C0B45E66517B508B83516 Validity Not Before: Aug 23 05:46:14 2025 GMT Not After : Aug 30 05:46:14 2025 GMT Subject: CN=68a955a7-062c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:11:67:ea:79:64:4c:45:03:42:47:0e:ac:3e: 42:7c:3e:c5:30:35:94:31:f0:54:b8:b4:71:44:69: 5e:30:59:96:c1:27:00:37:2a:b9:7b:d0:98:c4:8e: 24:ba:11:c6:2b:8b:7d:30:9f:3a:72:51:64:92:55: fb:bf:13:e8:85:aa:ad:b9:86:eb:f1:e1:1a:88:cf: a1:87:27:76:98:8f:9b:b2:ba:84:47:54:e9:a7:0c: a1:a9:33:8a:88:3c:ec:f3:81:e0:f9:39:8d:37:aa: 7b:6f:3a:6e:1d:c0:9f:91:de:4f:45:60:7d:49:5c: 1b:d5:f4:ed:54:7e:79:62:f9:f4:c4:c1:84:62:bd: 4a:66:48:78:d6:f9:55:a2:05:9b:5e:b8:dc:5f:a5: a4:87:a9:36:1a:51:71:7f:e7:ef:e9:17:1d:bf:8c: cb:95:ab:e9:b4:8a:52:d5:fd:be:1b:91:f0:ae:3b: b2:e9:99:63:b0:62:35:10:5c:1b:9f:6f:e5:00:c7: 9c:6b:aa:e9:35:b5:f8:bb:58:e7:ef:e9:cd:fd:cd: 9d:4c:b3:ab:64:47:2a:2a:ad:eb:70:93:31:43:92: 07:85:2e:15:37:4e:39:80:f1:e3:0b:b6:29:c6:f4: 59:c9:0b:2b:dd:5a:5a:16:04:5e:26:91:77:64:aa: 87:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:90:2B:9D:ED:DE:07:E3:04:16:AA:6D:DB:17:E5:91:C2:F0:E2:76 X509v3 Authority Key Identifier: keyid:82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:a0:bb:4f:49:bd:9a:92:0a:1b:07:5f:2f:48:82:68:c9:da: 73:68:f5:b2:a4:0b:f1:e6:ec:89:57:27:01:ca:66:a8:39:bf: 65:47:5c:e0:0b:9c:9a:54:d0:f5:2c:80:09:87:58:5e:6a:45: e8:c0:c5:d2:a3:ff:42:fb:59:a5:2e:e3:8c:c7:a3:0d:c3:7a: 1a:3d:e0:ca:fa:70:92:af:29:45:ba:d1:13:c6:08:63:14:74: e0:c0:a3:99:9c:ef:4a:27:0c:47:07:a9:85:14:6f:72:68:03: 64:ba:9b:0c:6c:75:39:8a:a6:f0:b9:20:07:bd:31:ba:90:29: d4:d4:4c:28:83:4f:e7:60:ca:53:c8:3e:af:ff:27:a6:0a:57: 28:97:0d:ab:b8:88:11:49:25:74:6f:ea:f6:e3:99:6e:ea:8a: a3:d9:b4:ee:f0:80:91:55:2e:c1:9b:ca:d0:ed:03:f5:29:c2: d5:05:49:24:0a:92:f8:f3:fe:8b:77:9f:49:61:c1:9f:fa:d3: 92:92:83:0a:88:ed:90:3e:1d:8a:02:5b:5d:a7:ff:51:5f:4d: c8:d1:61:97:a2:4f:45:58:b1:d2:87:59:9b:21:d2:62:bf:87: c9:09:dd:f1:6f:0b:00:e3:4a:50:a8:fd:4e:46:91:9c:a0:7c: 78:3a:60:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM3OUYxMTAvBgNVBAUTKDgyQjREMjcxREUyMTJFMDYzMzVDMEI0NUU2NjUxN0I1 MDhCODM1MTYwHhcNMjUwODIzMDU0NjE0WhcNMjUwODMwMDU0NjE0WjAYMRYwFAYD VQQDEw02OGE5NTVhNy0wNjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRFn6nlkTEUDQkcOrD5CfD7FMDWUMfBUuLRxRGleMFmWwScANyq5e9CYxI4k uhHGK4t9MJ86clFkklX7vxPohaqtuYbr8eEaiM+hhyd2mI+bsrqER1TppwyhqTOK iDzs84Hg+TmNN6p7bzpuHcCfkd5PRWB9SVwb1fTtVH55Yvn0xMGEYr1KZkh41vlV ogWbXrjcX6Wkh6k2GlFxf+fv6Rcdv4zLlavptIpS1f2+G5Hwrjuy6ZljsGI1EFwb n2/lAMeca6rpNbX4u1jn7+nN/c2dTLOrZEcqKq3rcJMxQ5IHhS4VN045gPHjC7Yp xvRZyQsr3VpaFgReJpF3ZKqH7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCQK53t 3gfjBBaqbdsX5ZHC8OJ2MB8GA1UdIwQYMBaAFIK00nHeIS4GM1wLReZlF7UIuDUW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzc5Ri82Rjk5RDRGMDND RjkxMUVGQTBBMDZGODZDNEY5QUUwMi9nclRTY2Q0aExnWXpYQXRGNW1VWHRRaTRO UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dyVFNjZDRoTGdZelhBdEY1bVVYdFFpNE5SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Mzc5Ri82Rjk5RDRGMDNDRjkxMUVGQTBBMDZGODZDNEY5QUUwMi9nclRTY2Q0aExn WXpYQXRGNW1VWHRRaTROUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOoLtPSb2akgobB18vSIJoydpzaPWypAvx5uyJVycBymaoOb9lR1zg C5yaVND1LIAJh1heakXowMXSo/9C+1mlLuOMx6MNw3oaPeDK+nCSrylFutETxghj FHTgwKOZnO9KJwxHB6mFFG9yaANkupsMbHU5iqbwuSAHvTG6kCnU1Ewog0/nYMpT yD6v/yemClcolw2ruIgRSSV0b+r245lu6oqj2bTu8ICRVS7Bm8rQ7QP1KcLVBUkk CpL48/6Ld59JYcGf+tOSkoMKiO2QPh2KAltdp/9RX03I0WGXok9FWLHSh1mbIdJi v4fJCd3xbwsA40pQqP1ORpGcoHx4OmCn -----END CERTIFICATE-----Generated at Sat Aug 23 16:17:23 2025 by rpki-client