$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft File: x52oqmnxJno4UemSoGnAL1DoArw.mft (raw, json) Hash identifier: qmYWpvButjHK83wX3icleijumHdSqaidQsQlJRyidyE= Subject key identifier: A5:73:69:31:A5:B8:5E:19:0B:E7:84:7A:AF:98:5C:CD:0C:DA:BA:A8 Authority key identifier: C7:9D:A8:AA:69:F1:26:7A:38:51:E9:92:A0:69:C0:2F:50:E8:02:BC Certificate issuer: /CN=A91DC524/serialNumber=C79DA8AA69F1267A3851E992A069C02F50E802BC Certificate serial: 0184 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft Manifest number: 0180 Signing time: Sat 09 Aug 2025 04:01:39 +0000 Manifest this update: Sat 09 Aug 2025 04:01:38 +0000 Manifest next update: Sat 16 Aug 2025 04:01:38 +0000 Files and hashes: 1: x52oqmnxJno4UemSoGnAL1DoArw.crl (hash: rZcUxs8LELv9XyFNBA6f47OdjCLD1FqRtkJ6qNnKxHM=) 2: 0D705F8A2C5911EEBB4C2C4BC4F9AE02.roa (hash: hOVAvRIUigVI0CAVOiiMzqa8BgN7YWxwOV488s7RJJ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.crl rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC524, serialNumber=C79DA8AA69F1267A3851E992A069C02F50E802BC Validity Not Before: Aug 9 04:01:38 2025 GMT Not After : Aug 16 04:01:38 2025 GMT Subject: CN=6896c823-a390 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e0:e0:e0:55:4b:be:d6:a8:6e:a7:e2:b9:b2: 7a:db:fc:8b:a1:76:fe:de:f4:64:c9:a4:e0:ce:67: 53:5d:49:5d:6c:fa:3f:c3:04:a3:5e:a6:16:c6:38: 60:fc:82:cd:33:2d:ec:e5:36:ea:26:d3:ef:56:ff: 0b:9f:40:db:66:39:3b:4e:ab:23:e8:eb:1d:6e:aa: ca:fb:75:5d:eb:92:f5:61:27:d9:17:5b:3e:f4:a7: 45:48:56:5d:41:12:6b:e9:70:af:6c:93:55:2c:f5: d4:3a:0a:dd:f8:98:0b:c1:d9:1d:26:32:4b:c1:a0: e2:06:eb:56:32:84:33:22:3b:4d:7f:ce:0b:ab:d8: 59:f4:83:fc:fd:99:99:89:2f:93:5e:7b:6d:0c:24: bd:2d:65:28:20:bb:40:91:b0:a5:0d:64:fb:64:3d: 41:cc:7c:de:d4:7b:7b:94:44:57:f1:4b:cb:e9:9d: 5d:2b:bc:a5:12:46:1c:ab:3c:0f:9e:f6:e2:4f:a8: 96:83:ad:30:3b:aa:2d:6a:48:24:9a:0f:a8:ff:5f: 1d:00:0d:79:54:ab:5a:c9:5d:8a:ea:1a:c7:32:68: fa:9c:a8:4b:91:c2:29:bf:db:9d:3e:17:c4:59:76: e9:1c:44:a2:95:8f:29:4d:58:c8:7d:f7:a3:f0:30: 80:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:73:69:31:A5:B8:5E:19:0B:E7:84:7A:AF:98:5C:CD:0C:DA:BA:A8 X509v3 Authority Key Identifier: keyid:C7:9D:A8:AA:69:F1:26:7A:38:51:E9:92:A0:69:C0:2F:50:E8:02:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:93:cb:d7:3b:f4:d5:fd:db:dd:4a:1a:ea:e7:db:36:f1:b4: 8b:c1:35:b8:ab:ce:3a:0f:5c:e2:ab:1a:14:bc:a5:72:5c:f8: cc:3f:14:ae:53:17:a9:79:bc:41:95:52:e2:8d:e4:e2:25:45: 20:cc:a3:10:8f:99:d8:80:b7:4e:ab:fa:2c:81:2a:d0:82:28: 26:d3:f3:9f:f5:48:5c:2b:20:1c:2a:eb:7f:52:a7:a0:2e:07: 7f:a7:45:a0:c8:ed:d7:32:f0:06:d9:a1:2e:54:0c:25:8e:ca: db:e0:45:c6:ac:e7:ca:08:ea:f2:40:1b:b9:97:24:8f:53:2e: 5f:67:8c:8f:2e:e2:c1:ad:01:78:4b:fa:69:33:29:b4:69:3d: 61:b2:06:97:3c:9e:cf:08:95:87:a3:4e:8f:a9:e4:6f:84:c9: 57:1c:7b:66:c0:3a:b7:23:8b:bf:98:94:0a:d0:e1:59:1f:6f: 03:5b:37:1f:4e:f4:64:f4:e9:05:4d:28:05:7b:ba:fc:a8:c1: e0:13:27:af:52:d8:96:fd:55:a8:98:8d:bb:cb:bf:27:a8:32: e9:e2:21:2f:f1:c6:be:93:25:25:78:be:c2:77:8d:23:9f:6f: a0:1e:9e:ed:d4:21:22:d8:f8:df:11:4c:30:30:c0:2b:31:13: ec:2a:89:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1MjQxMTAvBgNVBAUTKEM3OURBOEFBNjlGMTI2N0EzODUxRTk5MkEwNjlDMDJG NTBFODAyQkMwHhcNMjUwODA5MDQwMTM4WhcNMjUwODE2MDQwMTM4WjAYMRYwFAYD VQQDEw02ODk2YzgyMy1hMzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl+Dg4FVLvtaobqfiubJ62/yLoXb+3vRkyaTgzmdTXUldbPo/wwSjXqYWxjhg /ILNMy3s5TbqJtPvVv8Ln0DbZjk7Tqsj6OsdbqrK+3Vd65L1YSfZF1s+9KdFSFZd QRJr6XCvbJNVLPXUOgrd+JgLwdkdJjJLwaDiButWMoQzIjtNf84Lq9hZ9IP8/ZmZ iS+TXnttDCS9LWUoILtAkbClDWT7ZD1BzHze1Ht7lERX8UvL6Z1dK7ylEkYcqzwP nvbiT6iWg60wO6otakgkmg+o/18dAA15VKtayV2K6hrHMmj6nKhLkcIpv9udPhfE WXbpHESilY8pTVjIffej8DCATQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVzaTGl uF4ZC+eEeq+YXM0M2rqoMB8GA1UdIwQYMBaAFMedqKpp8SZ6OFHpkqBpwC9Q6AK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzUyNC9CNUMyQjczNDJD NTcxMUVFQkIxODg2MjlDNEY5QUUwMi94NTJvcW1ueEpubzRVZW1Tb0duQUwxRG9B cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1Mm9xbW54Sm5vNFVlbVNvR25BTDFEb0Fydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzUyNC9CNUMyQjczNDJDNTcxMUVFQkIxODg2MjlDNEY5QUUwMi94NTJvcW1ueEpu bzRVZW1Tb0duQUwxRG9BcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/k8vXO/TV/dvdShrq59s28bSLwTW4q846D1ziqxoUvKVyXPjMPxSu UxepebxBlVLijeTiJUUgzKMQj5nYgLdOq/osgSrQgigm0/Of9UhcKyAcKut/Uqeg Lgd/p0WgyO3XMvAG2aEuVAwljsrb4EXGrOfKCOryQBu5lySPUy5fZ4yPLuLBrQF4 S/ppMym0aT1hsgaXPJ7PCJWHo06PqeRvhMlXHHtmwDq3I4u/mJQK0OFZH28DWzcf TvRk9OkFTSgFe7r8qMHgEyevUtiW/VWomI27y78nqDLp4iEv8ca+kyUleL7Cd40j n2+gHp7t1CEi2PjfEUwwMMArMRPsKom8 -----END CERTIFICATE-----Generated at Sun Aug 10 15:58:46 2025 by rpki-client