$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft File: 52j8yLln1vHIgeDUmgxCCN8H-zc.mft (raw, json) Hash identifier: Ibq4RNP2dyC/6bUaz6e+wMQstqA/6tjDgIwVVRbh+is= Subject key identifier: 95:FD:E1:46:FC:82:C1:26:EF:03:95:D1:42:FE:5C:FA:21:32:53:71 Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 Certificate issuer: /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Certificate serial: 037F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft Manifest number: 037A Signing time: Sat 09 Aug 2025 01:24:04 +0000 Manifest this update: Sat 09 Aug 2025 01:24:03 +0000 Manifest next update: Sat 16 Aug 2025 01:24:03 +0000 Files and hashes: 1: 52j8yLln1vHIgeDUmgxCCN8H-zc.crl (hash: aTwRT8Hw6yQ0472qyRIPt/FCs0JV6LRJegktEpsNtoo=) 2: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (hash: 3vF76S8iWJW8vHG1MAht+7FYZNQsdje1uuqCEx57cyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 895 (0x37f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C1AE, serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Validity Not Before: Aug 9 01:24:03 2025 GMT Not After : Aug 16 01:24:03 2025 GMT Subject: CN=6896a334-2e1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d1:42:e8:bd:7a:c5:b9:61:37:81:1e:8a:ac: 1e:07:25:fe:bc:2b:10:2c:d0:81:7a:45:92:53:b6: 07:f8:5c:a0:61:24:ac:a2:eb:6f:d7:86:ae:82:61: c2:a2:58:82:a1:7b:38:5a:06:39:f5:52:a3:54:36: 86:ae:fd:da:72:9c:61:d4:be:79:cd:2b:98:17:26: 45:2d:b8:49:ef:5c:5f:e2:dc:60:71:54:0c:c8:b8: 7d:28:40:c7:b5:b0:1b:18:7d:90:18:37:80:0c:b8: ba:38:13:5c:99:f2:dc:3b:85:34:68:a2:ff:29:be: 59:8d:da:0a:8a:57:d7:23:03:81:d9:4a:08:17:28: 00:50:60:23:67:90:ae:94:c7:d1:be:46:95:9e:2d: 2a:9f:02:8c:d7:7b:84:b6:3b:2a:3e:06:cd:d8:b8: 23:8a:17:db:85:b7:54:cf:14:ae:75:13:34:d7:9f: 91:a4:1a:d1:1a:b9:1f:b9:72:cd:c3:1f:d3:f3:fe: 01:95:5f:87:d6:c1:4c:87:a0:e2:81:05:5d:aa:e6: af:c4:cd:e2:72:65:ea:2f:8f:fe:dc:19:92:d8:30: 09:31:18:ac:2b:5f:88:65:c3:54:87:25:50:2d:ba: bb:4e:4e:c1:a4:83:11:5f:8e:19:54:9d:2d:70:34: b0:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:FD:E1:46:FC:82:C1:26:EF:03:95:D1:42:FE:5C:FA:21:32:53:71 X509v3 Authority Key Identifier: keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:be:d7:65:ea:04:ed:bd:d8:4c:31:50:ce:83:c1:cf:05:72: 14:3b:7e:8f:49:22:32:f4:24:39:21:75:45:b3:92:6c:28:c0: 27:d3:7d:30:f8:82:15:e9:5f:8b:4d:84:16:84:a4:d5:11:33: 3c:a1:98:53:85:39:b4:c8:8b:fd:ab:19:ab:f9:cd:a5:3c:ff: 93:ab:80:b3:b1:e2:70:80:27:21:0f:34:6f:61:c1:aa:7a:e8: 2f:d0:b8:41:05:f1:aa:b9:b8:52:29:61:48:5a:a0:5e:d3:e3: 6f:f4:74:3e:da:7d:53:4c:0b:03:91:4f:bf:05:33:6d:81:ef: 39:fe:4e:57:94:f8:94:10:bd:d7:92:a7:c4:6a:02:36:dc:9a: 4d:c4:c3:51:03:5f:97:2c:ce:e3:55:2d:1a:13:76:2f:e5:86: 72:0d:95:ec:ad:e8:d9:27:0e:69:ac:25:26:92:bc:6b:80:1b: 68:c7:9f:af:f0:00:6f:e7:f2:fa:32:5e:7a:7e:5e:94:7b:9f: d7:45:ac:46:42:d6:7f:7b:00:58:2a:1a:3a:46:ef:ea:e4:c4: 5e:69:20:fa:4c:45:78:1e:e8:d3:13:fd:d1:81:21:01:89:6f: a3:b4:19:48:78:0a:a4:0a:e8:6e:67:98:59:3a:d0:59:ec:81: cc:0b:a8:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4 REYwN0ZCMzcwHhcNMjUwODA5MDEyNDAzWhcNMjUwODE2MDEyNDAzWjAYMRYwFAYD VQQDEw02ODk2YTMzNC0yZTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dFC6L16xblhN4EeiqweByX+vCsQLNCBekWSU7YH+FygYSSsoutv14augmHC oliCoXs4WgY59VKjVDaGrv3acpxh1L55zSuYFyZFLbhJ71xf4txgcVQMyLh9KEDH tbAbGH2QGDeADLi6OBNcmfLcO4U0aKL/Kb5ZjdoKilfXIwOB2UoIFygAUGAjZ5Cu lMfRvkaVni0qnwKM13uEtjsqPgbN2LgjihfbhbdUzxSudRM015+RpBrRGrkfuXLN wx/T8/4BlV+H1sFMh6DigQVdquavxM3icmXqL4/+3BmS2DAJMRisK1+IZcNUhyVQ Lbq7Tk7BpIMRX44ZVJ0tcDSwBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJX94Ub8 gsEm7wOV0UL+XPohMlNxMB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2 NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzFBRS81OEQ5OTJERUI2NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2 SElnZURVbWd4Q0NOOEgtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnvtdl6gTtvdhMMVDOg8HPBXIUO36PSSIy9CQ5IXVFs5JsKMAn030w +IIV6V+LTYQWhKTVETM8oZhThTm0yIv9qxmr+c2lPP+Tq4CzseJwgCchDzRvYcGq eugv0LhBBfGqubhSKWFIWqBe0+Nv9HQ+2n1TTAsDkU+/BTNtge85/k5XlPiUEL3X kqfEagI23JpNxMNRA1+XLM7jVS0aE3Yv5YZyDZXsrejZJw5prCUmkrxrgBtox5+v 8ABv5/L6Ml56fl6Ue5/XRaxGQtZ/ewBYKho6Ru/q5MReaSD6TEV4HujTE/3RgSEB iW+jtBlIeAqkCuhuZ5hZOtBZ7IHMC6jL -----END CERTIFICATE-----Generated at Sun Aug 10 05:00:37 2025 by rpki-client