$ rpki-client -vvf rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft File: GrHejsiRr6LU4cka9Vg0kL-7wgk.mft (raw, json) Hash identifier: 1sQgqQ2Czhli87fgIQcaU0v25KD2ssmOTYKJRmIvvDg= Subject key identifier: 7D:22:B4:B8:0A:53:3E:AD:A6:FC:B0:0A:BB:78:EF:04:C4:4A:E1:80 Authority key identifier: 1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 Certificate issuer: /CN=A916DB3F/serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Certificate serial: 1E1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft Manifest number: 1E10 Signing time: Sat 14 Jun 2025 16:03:11 +0000 Manifest this update: Sat 14 Jun 2025 16:03:10 +0000 Manifest next update: Sat 21 Jun 2025 16:03:10 +0000 Files and hashes: 1: GrHejsiRr6LU4cka9Vg0kL-7wgk.crl (hash: uEZH9mCxTgD3iUr3qqxmkI0NH2kaoR7zlHG0NGiPFlg=) 2: 7E8D9A52895411E6B3538424C4F9AE02.roa (hash: SuDRS4jGJE9zSZ58w86iX8uePQ9m/GiWmqEd/5+TkEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:03:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7709 (0x1e1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DB3F, serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Validity Not Before: Jun 14 16:03:10 2025 GMT Not After : Jun 21 16:03:10 2025 GMT Subject: CN=684d9d3f-4b10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bc:8d:f9:61:26:52:bb:1f:67:a5:46:fc:36: 9d:07:0a:d3:1c:c9:51:9c:7a:c5:f4:1b:f2:39:60: 97:d0:a2:3f:0d:7e:e4:ce:f1:7e:1c:3a:77:39:34: 90:68:8c:b0:42:b7:b3:2e:f9:0e:b2:45:aa:20:d7: f7:46:bf:14:98:6d:7c:55:b1:0a:86:c7:dd:a3:24: 08:8c:d8:5e:0d:98:a4:5e:7f:3b:f0:15:23:0c:31: 00:51:47:46:48:60:af:3b:aa:68:2e:0f:9f:2e:55: 99:d2:bc:a2:25:f7:19:ef:63:6f:4f:89:1a:46:e2: e2:71:37:18:77:93:9e:75:0a:1d:7a:87:b7:39:3f: 5d:b1:81:e0:7a:c2:61:bf:a3:99:8e:33:07:41:08: a4:56:21:12:cb:1f:39:e4:07:29:c1:c6:80:40:48: bd:3d:bb:89:26:1a:72:fc:50:f7:6b:c5:a8:99:ae: be:b3:e9:3a:22:c6:c8:de:91:f5:9a:6c:21:ea:c1: eb:2a:94:29:3d:18:be:9b:93:00:9d:04:9a:b5:5b: 64:ec:10:86:f0:70:fa:a0:c9:00:7f:29:e5:d5:ec: ea:07:22:d3:33:f4:a7:f4:4e:73:97:be:3d:e8:24: b3:ae:9e:86:a4:ac:02:2c:4d:29:4a:d4:bf:ef:84: db:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:22:B4:B8:0A:53:3E:AD:A6:FC:B0:0A:BB:78:EF:04:C4:4A:E1:80 X509v3 Authority Key Identifier: keyid:1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:15:34:89:76:8b:49:7a:24:d0:9d:7e:c8:12:db:1a:56:f0: ef:f2:8e:f0:2d:76:77:3b:35:2a:05:61:37:e1:2a:49:11:38: 12:6e:97:74:59:5a:c5:15:77:3b:dd:2e:bb:92:de:04:14:c7: 4e:da:6c:90:fd:0d:97:28:c9:49:87:ad:b4:2e:0f:5b:96:c1: 68:51:47:33:72:41:73:f5:a1:66:34:26:45:ed:d1:56:c0:69: c2:7b:6e:b1:6a:a6:23:84:33:52:52:6f:6b:35:17:44:f1:45: d1:e6:7a:29:b8:8b:da:32:d8:aa:f9:66:d3:06:1c:6f:6d:be: 20:7e:94:24:5e:81:08:25:95:e6:7d:9d:d4:17:0c:c5:c0:c0: 35:84:86:18:91:4a:81:97:13:66:51:98:1c:66:33:44:1f:4d: b6:80:a8:f9:66:05:29:27:49:3f:c2:df:59:57:b1:54:e7:49: ae:fa:0d:34:8a:8d:7c:6f:ae:25:de:d6:d2:79:1c:7b:ea:9a: c5:74:8d:dd:8b:5e:b2:18:e6:c6:b7:b8:5f:c9:7a:42:c1:85: d7:8a:74:54:dc:23:2d:eb:33:ae:48:34:5e:68:52:f1:c3:0c: da:ed:76:db:67:39:af:8a:bb:55:71:b3:ee:86:20:6b:8f:3c: 39:a0:58:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRCM0YxMTAvBgNVBAUTKDFBQjFERThFQzg5MUFGQTJENEUxQzkxQUY1NTgzNDkw QkZCQkMyMDkwHhcNMjUwNjE0MTYwMzEwWhcNMjUwNjIxMTYwMzEwWjAYMRYwFAYD VQQDEw02ODRkOWQzZi00YjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbyN+WEmUrsfZ6VG/DadBwrTHMlRnHrF9BvyOWCX0KI/DX7kzvF+HDp3OTSQ aIywQrezLvkOskWqINf3Rr8UmG18VbEKhsfdoyQIjNheDZikXn878BUjDDEAUUdG SGCvO6poLg+fLlWZ0ryiJfcZ72NvT4kaRuLicTcYd5OedQodeoe3OT9dsYHgesJh v6OZjjMHQQikViESyx855AcpwcaAQEi9PbuJJhpy/FD3a8Woma6+s+k6IsbI3pH1 mmwh6sHrKpQpPRi+m5MAnQSatVtk7BCG8HD6oMkAfynl1ezqByLTM/Sn9E5zl749 6CSzrp6GpKwCLE0pStS/74TbxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0itLgK Uz6tpvywCrt47wTESuGAMB8GA1UdIwQYMBaAFBqx3o7Ika+i1OHJGvVYNJC/u8IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REIzRi9EMzkxMDEzNDg5 NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2TFU0Y2thOVZnMGtMLTd3 Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dySGVqc2lScjZMVTRja2E5Vmcwa0wtN3dnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REIzRi9EMzkxMDEzNDg5NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2 TFU0Y2thOVZnMGtMLTd3Z2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdFTSJdotJeiTQnX7IEtsaVvDv8o7wLXZ3OzUqBWE34SpJETgSbpd0 WVrFFXc73S67kt4EFMdO2myQ/Q2XKMlJh620Lg9blsFoUUczckFz9aFmNCZF7dFW wGnCe26xaqYjhDNSUm9rNRdE8UXR5nopuIvaMtiq+WbTBhxvbb4gfpQkXoEIJZXm fZ3UFwzFwMA1hIYYkUqBlxNmUZgcZjNEH022gKj5ZgUpJ0k/wt9ZV7FU50mu+g00 io18b64l3tbSeRx76prFdI3di16yGObGt7hfyXpCwYXXinRU3CMt6zOuSDReaFLx wwza7XbbZzmvirtVcbPuhiBrjzw5oFjf -----END CERTIFICATE-----Generated at Sun Jun 15 08:31:23 2025 by rpki-client