$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft File: x52oqmnxJno4UemSoGnAL1DoArw.mft (raw, json) Hash identifier: bsgxh1/JOZuGhIKQk76fpsQKMN7HPDAJ+a5RARt8Gfg= Subject key identifier: 3D:FD:A7:A5:48:3D:F4:71:A1:00:F9:AF:0A:36:74:68:0A:48:EC:B1 Authority key identifier: C7:9D:A8:AA:69:F1:26:7A:38:51:E9:92:A0:69:C0:2F:50:E8:02:BC Certificate issuer: /CN=A91DC524/serialNumber=C79DA8AA69F1267A3851E992A069C02F50E802BC Certificate serial: 0165 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft Manifest number: 0162 Signing time: Sun 15 Jun 2025 03:10:07 +0000 Manifest this update: Sun 15 Jun 2025 03:10:06 +0000 Manifest next update: Sun 22 Jun 2025 03:10:06 +0000 Files and hashes: 1: x52oqmnxJno4UemSoGnAL1DoArw.crl (hash: PzAq9CgKkwOs2QEoZ6oaB5p+wDgaGk70r9WV3r9xLpU=) 2: 0D705F8A2C5911EEBB4C2C4BC4F9AE02.roa (hash: ljYZPmOEJ2gVmqt+FLp/8ARO8gytp4GPuoxvLwL03ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.crl rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC524, serialNumber=C79DA8AA69F1267A3851E992A069C02F50E802BC Validity Not Before: Jun 15 03:10:06 2025 GMT Not After : Jun 22 03:10:06 2025 GMT Subject: CN=684e398e-3c70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:26:31:67:fa:c0:c0:74:1c:ae:3d:58:93:a5: 25:dd:33:ff:4a:82:3b:5f:34:3d:6a:1a:26:c4:a1: 05:ad:9e:9d:2f:71:23:2b:57:0a:96:33:f9:00:b2: f8:ae:bd:22:13:ae:60:05:45:38:c3:f9:e8:59:db: 4a:e7:7f:4c:c5:15:48:eb:94:56:50:03:b1:04:c1: d3:67:cc:d5:9b:c4:73:1d:00:a0:58:c4:25:fb:a9: a7:82:e7:8e:71:c8:17:e0:8d:6c:74:aa:1c:b2:4b: 9b:59:10:23:a1:9a:fb:2b:ba:0c:0b:d4:6e:83:6f: 8f:80:91:39:ae:de:1e:f0:af:6d:76:dc:c7:e3:20: b3:c2:79:3c:d4:93:7d:e4:ab:51:d4:7c:39:27:cc: d5:ff:93:bb:bf:ba:b3:07:cd:c9:75:a1:12:69:97: 71:39:b1:65:a5:90:2f:67:ac:6e:cf:5c:5e:76:ef: 1b:21:76:7d:20:d6:63:06:15:b4:7a:e7:a2:64:f4: 48:29:96:83:ba:f2:c8:c3:f4:7a:48:90:b3:03:08: 7b:a1:bd:33:6d:34:04:ce:27:bd:9d:5d:72:55:5c: bc:1e:75:5d:84:d0:2a:f5:95:82:db:8f:f0:b3:76: df:7c:6a:ba:9d:94:f3:26:7a:18:bf:40:e9:21:99: 20:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:FD:A7:A5:48:3D:F4:71:A1:00:F9:AF:0A:36:74:68:0A:48:EC:B1 X509v3 Authority Key Identifier: keyid:C7:9D:A8:AA:69:F1:26:7A:38:51:E9:92:A0:69:C0:2F:50:E8:02:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:9f:0a:b6:34:32:3e:e8:40:cb:30:5a:b6:b1:9b:f8:ac:d6: 4d:0d:4d:1a:fa:88:ce:e6:42:a1:6c:1d:b6:18:34:af:32:01: 86:dc:2e:c5:09:4b:22:21:f5:ac:4c:d4:4d:ea:06:29:a3:d5: 82:a6:64:83:21:f4:97:df:53:bf:48:bc:8a:07:2b:99:c3:91: 54:b4:de:7b:b6:e8:7c:52:c5:af:22:84:a1:83:e2:c6:d0:a0: 1c:8c:78:86:5a:55:84:da:0c:13:15:ac:28:ae:d6:43:68:cd: 52:ce:f4:83:20:ea:9c:d1:93:86:40:a6:d8:57:9e:d0:43:76: b4:7c:e9:0b:e6:20:99:4b:53:26:2a:7e:0c:26:51:30:bb:a2: 6f:41:45:03:a8:5c:79:9b:0a:6f:b0:05:29:2c:f9:a7:6f:43: 64:75:90:88:1d:a0:d5:7d:fb:e3:57:6c:d2:9a:77:98:03:32: 75:9d:55:72:84:bb:ab:e0:a5:09:86:a2:37:b7:d7:03:7a:fa: fc:43:2c:64:87:d2:7d:ae:3a:57:a0:a8:a0:bc:7e:7e:1b:a4: 2f:3a:6a:83:89:8d:79:8d:ca:1c:37:ad:27:0a:44:4f:bb:44: 4a:e4:6c:81:74:16:69:c8:54:ba:fc:eb:22:52:f3:45:34:f2: ac:fe:0c:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1MjQxMTAvBgNVBAUTKEM3OURBOEFBNjlGMTI2N0EzODUxRTk5MkEwNjlDMDJG NTBFODAyQkMwHhcNMjUwNjE1MDMxMDA2WhcNMjUwNjIyMDMxMDA2WjAYMRYwFAYD VQQDEw02ODRlMzk4ZS0zYzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyYxZ/rAwHQcrj1Yk6Ul3TP/SoI7XzQ9ahomxKEFrZ6dL3EjK1cKljP5ALL4 rr0iE65gBUU4w/noWdtK539MxRVI65RWUAOxBMHTZ8zVm8RzHQCgWMQl+6mngueO ccgX4I1sdKocskubWRAjoZr7K7oMC9Rug2+PgJE5rt4e8K9tdtzH4yCzwnk81JN9 5KtR1Hw5J8zV/5O7v7qzB83JdaESaZdxObFlpZAvZ6xuz1xedu8bIXZ9INZjBhW0 eueiZPRIKZaDuvLIw/R6SJCzAwh7ob0zbTQEzie9nV1yVVy8HnVdhNAq9ZWC24/w s3bffGq6nZTzJnoYv0DpIZkgEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD39p6VI PfRxoQD5rwo2dGgKSOyxMB8GA1UdIwQYMBaAFMedqKpp8SZ6OFHpkqBpwC9Q6AK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzUyNC9CNUMyQjczNDJD NTcxMUVFQkIxODg2MjlDNEY5QUUwMi94NTJvcW1ueEpubzRVZW1Tb0duQUwxRG9B cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1Mm9xbW54Sm5vNFVlbVNvR25BTDFEb0Fydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzUyNC9CNUMyQjczNDJDNTcxMUVFQkIxODg2MjlDNEY5QUUwMi94NTJvcW1ueEpu bzRVZW1Tb0duQUwxRG9BcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfnwq2NDI+6EDLMFq2sZv4rNZNDU0a+ojO5kKhbB22GDSvMgGG3C7F CUsiIfWsTNRN6gYpo9WCpmSDIfSX31O/SLyKByuZw5FUtN57tuh8UsWvIoShg+LG 0KAcjHiGWlWE2gwTFawortZDaM1SzvSDIOqc0ZOGQKbYV57QQ3a0fOkL5iCZS1Mm Kn4MJlEwu6JvQUUDqFx5mwpvsAUpLPmnb0NkdZCIHaDVffvjV2zSmneYAzJ1nVVy hLur4KUJhqI3t9cDevr8Qyxkh9J9rjpXoKigvH5+G6QvOmqDiY15jcocN60nCkRP u0RK5GyBdBZpyFS6/OsiUvNFNPKs/gwO -----END CERTIFICATE-----Generated at Sun Jun 15 07:09:18 2025 by rpki-client