$ rpki-client -vvf rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft File: grMfodzgxL8vZjl3hqbAjkfGuP4.mft (raw, json) Hash identifier: JhX+RqJt+Vm10z+Ho97/Kffl+GBq9OUfmFLUsPIWGwk= Subject key identifier: 4F:40:5F:14:37:78:7D:9C:81:DF:CF:34:7C:1F:E2:92:A8:A9:47:ED Authority key identifier: 82:B3:1F:A1:DC:E0:C4:BF:2F:66:39:77:86:A6:C0:8E:47:C6:B8:FE Certificate issuer: /CN=A91294F7/serialNumber=82B31FA1DCE0C4BF2F66397786A6C08E47C6B8FE Certificate serial: 0529 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft Manifest number: 0524 Signing time: Fri 30 May 2025 23:45:28 +0000 Manifest this update: Fri 30 May 2025 23:45:27 +0000 Manifest next update: Fri 06 Jun 2025 23:45:27 +0000 Files and hashes: 1: grMfodzgxL8vZjl3hqbAjkfGuP4.crl (hash: s3it9ztrknuWwbyCBd173Wum2yTDjEVO3m4pKtVPa9g=) 2: F7307C08FFCA11EB93268E6DC4F9AE02.roa (hash: 68/9CqYRkzm0ius//S97EiCu+9Aa9Wpy/boYkEQX4yg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.crl rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1321 (0x529) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91294F7, serialNumber=82B31FA1DCE0C4BF2F66397786A6C08E47C6B8FE Validity Not Before: May 30 23:45:27 2025 GMT Not After : Jun 6 23:45:27 2025 GMT Subject: CN=683a4317-fc63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1d:9e:b8:38:4a:24:83:76:82:f1:a3:5d:c6: 85:e5:fc:c1:58:99:57:1c:6f:b8:bd:bd:12:06:a9: d1:77:42:72:59:75:3f:ac:cc:68:ac:8e:4d:10:ea: eb:7b:8d:1a:c5:c4:dd:74:31:c1:17:24:f1:ab:cb: 05:2d:2e:37:dd:c6:4d:2d:6d:14:49:da:95:e0:b1: ee:77:df:61:b4:d2:a9:98:bd:5d:f9:b5:23:b0:a7: 77:ff:ec:27:d2:50:14:86:41:a4:5b:97:01:3a:49: 87:21:47:10:37:2e:65:6c:c5:73:4e:03:6f:af:1d: 2a:b9:8a:6b:c9:94:cf:67:8d:a6:fb:31:ac:bf:d4: a8:ed:6e:d3:82:b6:98:e9:69:a2:39:a5:d6:88:4a: f8:ca:8c:0d:e8:be:7c:dc:c5:ec:06:c4:78:45:62: 1a:09:d0:32:ea:44:1a:96:ed:f9:e4:57:da:77:38: 2b:a2:e5:9e:19:94:36:79:f5:e7:8c:8c:15:a1:3d: 2e:23:d5:7f:1a:a6:c1:d5:67:d7:19:e4:24:99:f5: e8:5d:dd:3a:22:12:62:6e:76:02:e7:2b:e3:71:dd: 67:51:78:c7:64:bf:f8:81:f4:85:a2:7f:3c:1d:95: ea:42:a4:83:8b:dd:bf:4c:01:a5:d3:f7:78:93:7b: 75:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:40:5F:14:37:78:7D:9C:81:DF:CF:34:7C:1F:E2:92:A8:A9:47:ED X509v3 Authority Key Identifier: keyid:82:B3:1F:A1:DC:E0:C4:BF:2F:66:39:77:86:A6:C0:8E:47:C6:B8:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:f2:8a:2c:ba:ad:67:3b:51:ae:7c:40:f6:6e:71:68:19:59: ff:d7:93:69:4f:c1:88:20:d6:ed:d0:73:48:20:ad:a2:fa:ab: ff:9a:e4:ae:45:cd:f0:37:4a:30:61:12:1a:f8:73:c1:4f:61: 24:12:bb:41:0c:07:82:91:ab:4a:64:9b:92:8b:cb:77:7b:83: 5c:39:b5:a7:43:c7:a2:a5:26:08:61:68:a9:9c:4b:f9:de:38: e7:b6:c5:64:e6:0f:eb:d5:1e:d6:22:6e:8e:6d:11:f1:0c:6e: 54:df:49:0d:5d:3f:5f:59:db:d7:16:31:d3:ee:76:90:e2:f3: e0:ec:19:60:21:ed:d7:52:13:01:a9:94:01:24:9b:27:52:f4: e4:a3:a6:93:2f:12:f5:87:a8:d6:44:4e:17:b8:45:de:fd:f5: 63:dd:4c:13:22:bb:de:85:93:07:32:8d:be:8f:c5:fa:70:96: 3d:52:4c:16:06:55:63:ac:16:75:21:03:ef:6f:6e:ca:06:9a: 97:91:50:14:06:79:5d:c4:bb:ab:e6:87:1a:a1:42:62:65:6d: 7f:0d:df:34:dd:d9:80:68:9d:c5:33:86:bc:9d:b7:39:f0:b8: 9f:b4:2b:80:0e:91:ba:1e:36:00:67:91:8c:e1:dd:fc:45:f4: d6:5c:08:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk0RjcxMTAvBgNVBAUTKDgyQjMxRkExRENFMEM0QkYyRjY2Mzk3Nzg2QTZDMDhF NDdDNkI4RkUwHhcNMjUwNTMwMjM0NTI3WhcNMjUwNjA2MjM0NTI3WjAYMRYwFAYD VQQDEw02ODNhNDMxNy1mYzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxR2euDhKJIN2gvGjXcaF5fzBWJlXHG+4vb0SBqnRd0JyWXU/rMxorI5NEOrr e40axcTddDHBFyTxq8sFLS433cZNLW0USdqV4LHud99htNKpmL1d+bUjsKd3/+wn 0lAUhkGkW5cBOkmHIUcQNy5lbMVzTgNvrx0quYpryZTPZ42m+zGsv9So7W7TgraY 6WmiOaXWiEr4yowN6L583MXsBsR4RWIaCdAy6kQalu355FfadzgrouWeGZQ2efXn jIwVoT0uI9V/GqbB1WfXGeQkmfXoXd06IhJibnYC5yvjcd1nUXjHZL/4gfSFon88 HZXqQqSDi92/TAGl0/d4k3t1NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9AXxQ3 eH2cgd/PNHwf4pKoqUftMB8GA1UdIwQYMBaAFIKzH6Hc4MS/L2Y5d4amwI5Hxrj+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTRGNy81OUZGMDVBQUZG QzgxMUVCQThBNEEwNTdDNEY5QUUwMi9nck1mb2R6Z3hMOHZaamwzaHFiQWprZkd1 UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dyTWZvZHpneEw4dlpqbDNocWJBamtmR3VQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTRGNy81OUZGMDVBQUZGQzgxMUVCQThBNEEwNTdDNEY5QUUwMi9nck1mb2R6Z3hM OHZaamwzaHFiQWprZkd1UDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB8oosuq1nO1GufED2bnFoGVn/15NpT8GIINbt0HNIIK2i+qv/muSu Rc3wN0owYRIa+HPBT2EkErtBDAeCkatKZJuSi8t3e4NcObWnQ8eipSYIYWipnEv5 3jjntsVk5g/r1R7WIm6ObRHxDG5U30kNXT9fWdvXFjHT7naQ4vPg7BlgIe3XUhMB qZQBJJsnUvTko6aTLxL1h6jWRE4XuEXe/fVj3UwTIrvehZMHMo2+j8X6cJY9UkwW BlVjrBZ1IQPvb27KBpqXkVAUBnldxLur5ocaoUJiZW1/Dd803dmAaJ3FM4a8nbc5 8LiftCuADpG6HjYAZ5GM4d38RfTWXAiK -----END CERTIFICATE-----Generated at Sat May 31 16:29:39 2025 by rpki-client