$ rpki-client -vvf rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft File: GrHejsiRr6LU4cka9Vg0kL-7wgk.mft (raw, json) Hash identifier: hp0RTpd92p36ZZ4OvK3vzq7BqmXks2iy2qPvaK1B24I= Subject key identifier: F8:E9:8C:A4:95:73:74:75:B0:F8:0E:B3:F7:3F:D8:A2:52:15:5B:E0 Authority key identifier: 1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 Certificate issuer: /CN=A916DB3F/serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Certificate serial: 1E00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft Manifest number: 1DF4 Signing time: Thu 24 Apr 2025 16:06:16 +0000 Manifest this update: Thu 24 Apr 2025 16:06:15 +0000 Manifest next update: Thu 01 May 2025 16:06:15 +0000 Files and hashes: 1: GrHejsiRr6LU4cka9Vg0kL-7wgk.crl (hash: LJtplvLycUQ5ZOh0VVJfsYeGueyaCqEv/O4c0t3wHaw=) 2: 7E8D9A52895411E6B3538424C4F9AE02.roa (hash: aU2YJVr1JgNSnSBDLACjKPXwpUH3eD6D3PqoxsGGeXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:06:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7680 (0x1e00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DB3F, serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Validity Not Before: Apr 24 16:06:15 2025 GMT Not After : May 1 16:06:15 2025 GMT Subject: CN=680a6177-5ff1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4f:7d:e9:2a:43:e7:f2:03:d7:c1:7f:b0:ac: 95:f0:a7:1f:a9:b8:65:f7:14:44:72:06:1f:08:20: 02:21:94:e8:3a:6e:c1:48:81:55:73:45:d3:c2:78: bc:69:72:b9:2b:5c:4d:f7:40:32:4d:de:de:7d:53: bf:d0:31:f6:f1:cf:51:1f:b6:63:98:2b:cc:fe:5a: f6:e4:c7:66:d7:c8:5f:29:fc:b9:88:49:07:7d:89: 91:bd:33:8b:d1:38:80:26:db:2e:14:c5:06:17:7d: a8:16:02:a6:14:ee:b6:60:d0:80:40:9c:ef:a7:f7: e7:34:5c:03:b3:92:8a:cd:a1:3c:6c:b9:ff:38:00: 6b:b4:10:e1:71:b0:80:d0:39:eb:94:dc:3b:42:32: c1:89:79:79:81:ea:4f:c5:c8:b1:f8:fe:21:dd:45: 02:32:69:f2:97:cd:b5:97:05:e3:f1:fd:fb:97:e4: 84:97:20:eb:ae:01:60:1d:81:48:0a:e8:14:88:5e: ec:fa:58:80:7c:92:09:ad:61:ee:ac:8a:fe:fa:7b: d2:a2:3c:b6:c8:f3:34:59:44:33:38:5c:a0:e6:be: 0e:a7:47:60:35:7b:da:2a:03:9a:25:75:44:b8:9b: c4:dd:3a:f5:7f:c9:35:83:db:b3:e0:e3:73:e1:22: 3c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E9:8C:A4:95:73:74:75:B0:F8:0E:B3:F7:3F:D8:A2:52:15:5B:E0 X509v3 Authority Key Identifier: keyid:1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:54:7b:f3:8f:4d:1d:c3:a7:12:6c:66:6a:34:3a:09:06:b9: 18:1d:2e:16:23:16:5f:f8:0b:17:0c:0c:7e:f6:d1:f4:4f:47: 34:ae:40:0b:d0:2c:b9:6c:ac:14:c4:44:39:8c:0f:c1:2a:66: ed:ae:60:b8:db:4d:3a:38:be:3f:5e:b2:aa:4c:5a:13:83:7a: 62:63:ff:83:e1:82:b6:ce:07:9f:b3:1d:64:6e:62:e2:3c:f4: 01:e9:62:78:85:ef:b7:e7:56:a6:ff:47:a8:49:d4:fe:2c:4f: 0a:4a:7e:7e:fb:18:5b:57:f5:55:be:61:d5:0e:fe:0c:0f:da: 6c:b6:50:bd:56:9a:e7:ba:a7:55:0e:dc:25:8c:0d:e0:0b:9e: c8:b7:e9:88:7d:f3:a8:94:2f:8a:ba:5e:22:eb:55:09:cc:f1: 50:10:fa:9a:86:69:1f:7f:23:96:df:b7:26:02:52:54:c7:83: 2c:14:65:4b:98:fb:cd:65:d7:aa:d1:c6:56:4d:90:72:54:76: 06:79:3c:66:31:9c:03:00:c8:07:5f:41:ee:28:75:5f:87:d3: f4:c6:a9:e5:45:e4:0f:91:a8:bd:43:dc:e0:f6:5a:c0:95:85: 66:e0:7a:bd:f9:9f:df:22:8c:3b:22:d9:08:99:1d:f9:a6:9a: a9:d0:ec:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRCM0YxMTAvBgNVBAUTKDFBQjFERThFQzg5MUFGQTJENEUxQzkxQUY1NTgzNDkw QkZCQkMyMDkwHhcNMjUwNDI0MTYwNjE1WhcNMjUwNTAxMTYwNjE1WjAYMRYwFAYD VQQDEw02ODBhNjE3Ny01ZmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyE996SpD5/ID18F/sKyV8Kcfqbhl9xREcgYfCCACIZToOm7BSIFVc0XTwni8 aXK5K1xN90AyTd7efVO/0DH28c9RH7ZjmCvM/lr25Mdm18hfKfy5iEkHfYmRvTOL 0TiAJtsuFMUGF32oFgKmFO62YNCAQJzvp/fnNFwDs5KKzaE8bLn/OABrtBDhcbCA 0DnrlNw7QjLBiXl5gepPxcix+P4h3UUCMmnyl821lwXj8f37l+SElyDrrgFgHYFI CugUiF7s+liAfJIJrWHurIr++nvSojy2yPM0WUQzOFyg5r4Op0dgNXvaKgOaJXVE uJvE3Tr1f8k1g9uz4ONz4SI8lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjpjKSV c3R1sPgOs/c/2KJSFVvgMB8GA1UdIwQYMBaAFBqx3o7Ika+i1OHJGvVYNJC/u8IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REIzRi9EMzkxMDEzNDg5 NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2TFU0Y2thOVZnMGtMLTd3 Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dySGVqc2lScjZMVTRja2E5Vmcwa0wtN3dnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REIzRi9EMzkxMDEzNDg5NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2 TFU0Y2thOVZnMGtMLTd3Z2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXVHvzj00dw6cSbGZqNDoJBrkYHS4WIxZf+AsXDAx+9tH0T0c0rkAL 0Cy5bKwUxEQ5jA/BKmbtrmC42006OL4/XrKqTFoTg3piY/+D4YK2zgefsx1kbmLi PPQB6WJ4he+351am/0eoSdT+LE8KSn5++xhbV/VVvmHVDv4MD9pstlC9VprnuqdV DtwljA3gC57It+mIffOolC+Kul4i61UJzPFQEPqahmkffyOW37cmAlJUx4MsFGVL mPvNZdeq0cZWTZByVHYGeTxmMZwDAMgHX0HuKHVfh9P0xqnlReQPkai9Q9zg9lrA lYVm4Hq9+Z/fIow7ItkImR35ppqp0OwB -----END CERTIFICATE-----Generated at Sat Apr 26 13:43:45 2025 by rpki-client