$ rpki-client -vvf rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft File: GrHejsiRr6LU4cka9Vg0kL-7wgk.mft (raw, json) Hash identifier: ehZTQ20eYLDe7G7wD2aSf58U6YqCIrs1Y8JgJ2JyVJc= Subject key identifier: 8A:86:73:A9:41:1C:8B:69:45:53:E1:B6:B6:20:B7:25:53:69:28:B4 Authority key identifier: 1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 Certificate issuer: /CN=A916DB3F/serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Certificate serial: 1E39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft Manifest number: 1E2C Signing time: Fri 08 Aug 2025 16:13:27 +0000 Manifest this update: Fri 08 Aug 2025 16:13:27 +0000 Manifest next update: Fri 15 Aug 2025 16:13:27 +0000 Files and hashes: 1: GrHejsiRr6LU4cka9Vg0kL-7wgk.crl (hash: C0iWt7fi2i4+Ob9khJTPdfO94A3DC9a8YkLI+ohtG9A=) 2: 7E8D9A52895411E6B3538424C4F9AE02.roa (hash: SuDRS4jGJE9zSZ58w86iX8uePQ9m/GiWmqEd/5+TkEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7737 (0x1e39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DB3F, serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Validity Not Before: Aug 8 16:13:27 2025 GMT Not After : Aug 15 16:13:27 2025 GMT Subject: CN=68962227-abf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:64:f4:7e:e5:ac:e9:2c:f6:75:30:a5:ef:f2: 5b:95:74:9d:76:0a:b5:3c:b7:26:92:68:92:00:91: 60:bc:b6:1d:64:63:9d:43:7d:cb:af:fc:4e:41:ec: 4d:da:cc:b6:e5:6a:e2:8a:be:e4:d0:3d:c3:eb:b8: 8f:4b:c0:78:2b:0a:cf:37:ab:aa:88:ea:dc:2e:bb: 5e:f7:43:38:64:73:4e:01:fc:23:f1:48:42:d5:a4: 6d:ef:24:d8:7f:12:8c:8a:ba:f0:17:9f:16:9b:35: d3:a8:10:77:81:d7:af:97:a5:76:4c:2c:bf:b6:c1: 7a:b8:be:fd:6b:d4:54:75:98:ba:d1:a9:4c:56:68: db:b6:44:8e:f1:83:87:2f:b1:bc:d7:c6:aa:33:4d: 82:02:27:3a:f3:04:64:76:52:ea:07:65:0a:cd:05: c3:6c:6e:da:8a:f9:88:e7:7f:56:a9:20:ff:c1:8d: d3:7e:06:6a:98:eb:46:2d:24:bd:86:78:3b:f3:96: 57:6d:45:59:c7:49:49:93:6c:f2:45:86:56:89:e8: 31:5e:96:03:bc:da:67:df:88:25:2a:8f:b0:04:46: f6:26:cb:23:9b:dc:d2:68:d5:3f:39:b0:4e:86:72: 27:6f:25:8e:81:af:26:de:af:8c:25:04:20:60:46: 1e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:86:73:A9:41:1C:8B:69:45:53:E1:B6:B6:20:B7:25:53:69:28:B4 X509v3 Authority Key Identifier: keyid:1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:8d:be:57:78:1a:3d:88:a2:39:64:bb:cf:1b:9a:e3:eb:d8: d7:51:1f:88:46:00:58:f8:f5:d7:8e:84:66:32:7b:c9:42:85: 6c:ab:13:1f:99:7d:a5:08:73:c4:b2:88:4a:2a:08:7f:9b:f2: ef:f7:45:4d:66:be:8c:a6:26:95:26:20:e9:ce:3e:99:aa:fe: 18:b0:43:74:d6:76:4b:2b:b3:1c:9e:a5:2d:c9:f6:18:b5:38: 88:4f:d3:d5:ac:da:28:a3:ae:03:94:b9:57:67:ae:9e:43:11: ae:c7:dd:90:93:1a:d3:89:49:3a:85:4e:8d:b2:df:ef:b7:c3: d9:61:60:be:dd:b9:c6:ed:02:82:ea:30:e3:4e:fb:e5:8c:b9: 64:88:c3:03:09:35:6d:3f:73:52:aa:09:01:0c:15:08:03:05: 0a:22:d9:96:65:0c:ad:b6:52:40:e0:4c:db:71:b2:f0:fd:a2: aa:c5:06:e6:7b:49:d6:8e:54:3a:81:a2:63:04:97:4a:01:a5: 6c:a6:6c:f6:fa:86:64:b4:2e:be:00:7c:a7:e4:9d:f0:71:84: 3b:13:19:d2:4c:39:ad:8c:b3:14:e2:2e:63:ca:76:87:86:a4: d4:bf:f1:97:83:99:b3:6e:51:01:60:68:4f:84:f1:41:35:7c: 7b:ee:ab:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRCM0YxMTAvBgNVBAUTKDFBQjFERThFQzg5MUFGQTJENEUxQzkxQUY1NTgzNDkw QkZCQkMyMDkwHhcNMjUwODA4MTYxMzI3WhcNMjUwODE1MTYxMzI3WjAYMRYwFAYD VQQDEw02ODk2MjIyNy1hYmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmT0fuWs6Sz2dTCl7/JblXSddgq1PLcmkmiSAJFgvLYdZGOdQ33Lr/xOQexN 2sy25Wriir7k0D3D67iPS8B4KwrPN6uqiOrcLrte90M4ZHNOAfwj8UhC1aRt7yTY fxKMirrwF58WmzXTqBB3gdevl6V2TCy/tsF6uL79a9RUdZi60alMVmjbtkSO8YOH L7G818aqM02CAic68wRkdlLqB2UKzQXDbG7aivmI539WqSD/wY3TfgZqmOtGLSS9 hng785ZXbUVZx0lJk2zyRYZWiegxXpYDvNpn34glKo+wBEb2Jssjm9zSaNU/ObBO hnInbyWOga8m3q+MJQQgYEYemwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqGc6lB HItpRVPhtrYgtyVTaSi0MB8GA1UdIwQYMBaAFBqx3o7Ika+i1OHJGvVYNJC/u8IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REIzRi9EMzkxMDEzNDg5 NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2TFU0Y2thOVZnMGtMLTd3 Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dySGVqc2lScjZMVTRja2E5Vmcwa0wtN3dnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REIzRi9EMzkxMDEzNDg5NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2 TFU0Y2thOVZnMGtMLTd3Z2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7jb5XeBo9iKI5ZLvPG5rj69jXUR+IRgBY+PXXjoRmMnvJQoVsqxMf mX2lCHPEsohKKgh/m/Lv90VNZr6MpiaVJiDpzj6Zqv4YsEN01nZLK7McnqUtyfYY tTiIT9PVrNooo64DlLlXZ66eQxGux92QkxrTiUk6hU6Nst/vt8PZYWC+3bnG7QKC 6jDjTvvljLlkiMMDCTVtP3NSqgkBDBUIAwUKItmWZQyttlJA4EzbcbLw/aKqxQbm e0nWjlQ6gaJjBJdKAaVspmz2+oZktC6+AHyn5J3wcYQ7ExnSTDmtjLMU4i5jynaH hqTUv/GXg5mzblEBYGhPhPFBNXx77quo -----END CERTIFICATE-----Generated at Sat Aug 9 22:46:09 2025 by rpki-client