$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft File: 52j8yLln1vHIgeDUmgxCCN8H-zc.mft (raw, json) Hash identifier: /PrdPWXrMnzXE/8dTW2lZuthWpPaE5+jxW/B8+Y72+4= Subject key identifier: AB:A5:FC:DC:A8:FF:B3:43:B9:D7:D8:7C:33:DC:CB:7F:D4:0A:8D:0F Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 Certificate issuer: /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Certificate serial: 0363 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft Manifest number: 035E Signing time: Sun 15 Jun 2025 00:40:25 +0000 Manifest this update: Sun 15 Jun 2025 00:40:25 +0000 Manifest next update: Sun 22 Jun 2025 00:40:25 +0000 Files and hashes: 1: 52j8yLln1vHIgeDUmgxCCN8H-zc.crl (hash: gvkJGJxCNTFdI27D9nQ6pghgoojsZ9urm36AEnbJ4IM=) 2: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (hash: 3vF76S8iWJW8vHG1MAht+7FYZNQsdje1uuqCEx57cyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 867 (0x363) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C1AE, serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Validity Not Before: Jun 15 00:40:25 2025 GMT Not After : Jun 22 00:40:25 2025 GMT Subject: CN=684e1679-46b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9f:be:f7:05:13:6b:55:79:31:3f:a5:96:80: 0e:3e:ff:5a:ac:02:e4:9b:8e:31:b1:72:8b:b2:6f: d1:cf:a0:36:29:d6:3f:71:4c:16:f4:78:c5:97:0e: 14:69:10:72:14:9d:92:44:1c:67:c0:4a:eb:a6:c2: e0:bb:6f:f8:fa:3e:21:39:2e:ca:83:51:3d:1e:d9: d4:c9:03:fc:8f:f4:0c:a6:89:e7:64:a2:05:a0:79: c2:6f:ee:66:82:47:36:2d:a7:69:4b:b3:d6:e0:32: ec:0e:77:8a:b0:78:04:eb:22:7c:e1:1b:67:e4:47: 61:4a:22:f1:3c:94:27:c1:1e:46:47:68:5a:b8:06: 2f:64:97:89:7f:e4:30:04:3d:26:69:fa:7a:93:ad: ec:fc:a2:b7:7e:12:eb:85:df:32:e4:b3:51:4a:64: 8a:df:7a:af:3a:71:e3:64:a0:3f:38:d8:de:74:94: 24:ab:8d:ce:3b:bb:41:0d:6c:1e:e4:75:93:63:e0: 9a:fc:57:e1:02:90:7a:9b:25:7d:0b:3a:bb:1f:73: 44:5d:3c:ef:19:ec:eb:74:af:d8:36:d2:f8:6e:cb: 3a:28:4d:15:cd:b7:e5:50:4b:18:cf:69:2d:5a:bc: 14:60:14:66:bf:c8:25:0b:65:4d:19:28:0f:9c:8b: 94:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:A5:FC:DC:A8:FF:B3:43:B9:D7:D8:7C:33:DC:CB:7F:D4:0A:8D:0F X509v3 Authority Key Identifier: keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:ec:89:d9:04:fe:f5:34:56:19:99:4d:36:c3:47:f0:5d:b3: 44:a0:90:bb:88:0b:12:50:c0:d5:48:51:d7:84:c0:8f:43:3e: be:9b:f9:08:b1:9e:a6:3e:2e:b2:d5:3c:cf:ee:7d:2e:6b:52: 5d:98:92:f0:5e:9c:bc:8d:1a:23:c4:a6:fb:fd:7c:0d:3a:de: 39:3c:a5:85:78:c0:bf:b5:95:ab:bf:20:fe:77:c4:9f:8d:0c: 1e:90:0d:17:16:01:21:18:81:77:98:10:f6:fc:21:09:48:04: d0:72:01:95:23:de:86:5e:df:22:45:c5:df:ac:cb:28:c4:67: 4c:23:aa:be:93:d4:76:ec:20:70:33:07:52:96:0d:81:dc:92: 6d:37:ae:df:fa:cd:89:b3:9c:f3:c2:62:8b:3a:f4:35:01:6c: 03:72:b4:a4:0d:ed:0a:d6:de:5d:1e:dd:37:37:b2:fe:15:01: 6e:ae:ff:32:5b:e6:cd:a9:9b:f2:27:78:03:0f:25:f5:16:32: de:f4:6e:39:ef:46:4f:e6:fc:a3:72:9c:e8:ff:6a:78:84:98: f3:56:25:f4:04:c2:e3:e0:d2:e0:31:b9:95:69:d5:d4:3d:77: 8b:8c:f1:05:64:9c:9a:d8:d6:26:01:70:f9:29:0c:b8:c9:22: 2d:9d:fb:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4 REYwN0ZCMzcwHhcNMjUwNjE1MDA0MDI1WhcNMjUwNjIyMDA0MDI1WjAYMRYwFAYD VQQDEw02ODRlMTY3OS00NmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJ++9wUTa1V5MT+lloAOPv9arALkm44xsXKLsm/Rz6A2KdY/cUwW9HjFlw4U aRByFJ2SRBxnwErrpsLgu2/4+j4hOS7Kg1E9HtnUyQP8j/QMponnZKIFoHnCb+5m gkc2LadpS7PW4DLsDneKsHgE6yJ84Rtn5EdhSiLxPJQnwR5GR2hauAYvZJeJf+Qw BD0mafp6k63s/KK3fhLrhd8y5LNRSmSK33qvOnHjZKA/ONjedJQkq43OO7tBDWwe 5HWTY+Ca/FfhApB6myV9Czq7H3NEXTzvGezrdK/YNtL4bss6KE0VzbflUEsYz2kt WrwUYBRmv8glC2VNGSgPnIuUoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKul/Nyo /7NDudfYfDPcy3/UCo0PMB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2 NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzFBRS81OEQ5OTJERUI2NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2 SElnZURVbWd4Q0NOOEgtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA37InZBP71NFYZmU02w0fwXbNEoJC7iAsSUMDVSFHXhMCPQz6+m/kI sZ6mPi6y1TzP7n0ua1JdmJLwXpy8jRojxKb7/XwNOt45PKWFeMC/tZWrvyD+d8Sf jQwekA0XFgEhGIF3mBD2/CEJSATQcgGVI96GXt8iRcXfrMsoxGdMI6q+k9R27CBw MwdSlg2B3JJtN67f+s2Js5zzwmKLOvQ1AWwDcrSkDe0K1t5dHt03N7L+FQFurv8y W+bNqZvyJ3gDDyX1FjLe9G4570ZP5vyjcpzo/2p4hJjzViX0BMLj4NLgMbmVadXU PXeLjPEFZJya2NYmAXD5KQy4ySItnftI -----END CERTIFICATE-----Generated at Sun Jun 15 09:49:22 2025 by rpki-client