$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft File: 52j8yLln1vHIgeDUmgxCCN8H-zc.mft (raw, json) Hash identifier: 8lH+jp6NbhXtf25FrYERfG4tkWkQiGZGiF4dtb9PcTg= Subject key identifier: D7:A3:70:7D:1B:16:B3:85:DA:91:76:62:7E:DE:76:02:7B:0E:99:2C Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 Certificate issuer: /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Certificate serial: 0375 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft Manifest number: 0370 Signing time: Mon 21 Jul 2025 01:10:15 +0000 Manifest this update: Mon 21 Jul 2025 01:10:14 +0000 Manifest next update: Mon 28 Jul 2025 01:10:14 +0000 Files and hashes: 1: 52j8yLln1vHIgeDUmgxCCN8H-zc.crl (hash: J2+dR+TRepF3ieM5MIrlllnzyEgSLhip+P6+eobdV9c=) 2: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (hash: 3vF76S8iWJW8vHG1MAht+7FYZNQsdje1uuqCEx57cyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 885 (0x375) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C1AE, serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Validity Not Before: Jul 21 01:10:14 2025 GMT Not After : Jul 28 01:10:14 2025 GMT Subject: CN=687d9377-bf4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4a:0f:0c:74:b7:35:c7:ba:a6:f0:d6:06:96: d1:01:e7:3a:4c:ec:a1:a1:b6:e3:c3:eb:5d:fa:7f: 6b:8c:ec:b4:09:f7:26:43:95:95:60:f1:13:5e:ec: 10:c6:8d:f3:ae:3d:b2:ee:90:39:60:6e:ad:cc:61: f0:9d:ef:b4:b5:96:1d:c4:37:12:d2:54:bc:50:d3: 2d:56:91:f1:4f:32:ef:53:77:87:c6:f8:1c:c6:2c: 99:f0:52:53:4f:c8:2e:46:cc:51:e8:87:7e:aa:05: 45:d9:d4:4f:e1:36:6b:31:02:93:30:e7:da:5b:67: e2:5d:d1:10:4a:2c:b6:35:c6:5a:39:99:09:0a:07: 3d:56:21:f5:c2:70:1a:5c:62:6a:c5:d6:8c:1a:66: 75:d7:91:3b:14:5a:bf:60:b7:72:51:6b:39:80:66: ae:4f:9d:ce:6d:92:36:28:7a:7d:b3:a7:e0:21:5e: 36:35:e1:0d:70:b7:8a:b2:61:5e:36:d2:e1:a7:cd: 0f:93:ef:b5:46:08:d5:f8:f1:09:02:c0:c8:23:76: 59:29:3f:ae:d6:60:a1:6d:73:5a:44:a8:29:1e:91: 44:43:25:6e:2a:d4:2e:42:1f:8b:12:77:08:f1:5f: 6e:77:3c:cc:cf:f7:2c:a2:44:d3:be:95:ad:a0:10: 37:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:A3:70:7D:1B:16:B3:85:DA:91:76:62:7E:DE:76:02:7B:0E:99:2C X509v3 Authority Key Identifier: keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:c8:17:c4:74:e6:dd:09:ea:cb:86:90:66:73:bd:4f:90:7f: ec:96:fe:d4:5a:f9:54:cf:24:d2:04:91:4f:d4:f5:55:51:57: 85:c3:e3:2e:36:32:78:8c:15:a8:41:c1:b4:c6:e5:1a:6f:33: e0:85:86:85:25:09:39:33:a5:72:04:0c:bc:6b:3f:c6:06:0e: 86:f1:3b:e2:da:f3:5d:d0:8a:c2:b2:28:86:41:57:c6:b3:b5: 15:5e:e9:ad:93:77:9e:48:39:40:7f:b4:e3:bd:6f:03:c3:d1: ea:8b:99:46:73:b5:65:31:82:23:d4:d4:0d:77:f5:e5:3d:0a: b7:50:af:81:ea:48:fb:e9:24:e5:79:3c:02:35:48:c8:76:c0: 7d:03:f6:ec:2e:12:b4:30:ec:51:99:e7:3d:3e:54:03:a6:ad: f6:86:48:ed:b0:33:58:e7:bd:2c:08:a9:96:a4:9a:16:d1:8e: d0:5b:7c:22:b3:05:fc:a3:93:74:9b:b0:20:77:ef:6b:61:21: 44:c9:e2:8c:19:d9:3a:aa:91:57:03:47:be:15:ef:f1:35:c7: a7:f5:58:96:a5:d2:70:60:28:9f:cf:dd:f0:b1:85:bb:5e:65: 40:94:53:80:1b:ef:4c:f8:b1:50:a6:87:bb:34:6e:17:95:1a: d9:f4:3a:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4 REYwN0ZCMzcwHhcNMjUwNzIxMDExMDE0WhcNMjUwNzI4MDExMDE0WjAYMRYwFAYD VQQDEw02ODdkOTM3Ny1iZjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUoPDHS3Nce6pvDWBpbRAec6TOyhobbjw+td+n9rjOy0CfcmQ5WVYPETXuwQ xo3zrj2y7pA5YG6tzGHwne+0tZYdxDcS0lS8UNMtVpHxTzLvU3eHxvgcxiyZ8FJT T8guRsxR6Id+qgVF2dRP4TZrMQKTMOfaW2fiXdEQSiy2NcZaOZkJCgc9ViH1wnAa XGJqxdaMGmZ115E7FFq/YLdyUWs5gGauT53ObZI2KHp9s6fgIV42NeENcLeKsmFe NtLhp80Pk++1RgjV+PEJAsDII3ZZKT+u1mChbXNaRKgpHpFEQyVuKtQuQh+LEncI 8V9udzzMz/csokTTvpWtoBA3fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNejcH0b FrOF2pF2Yn7edgJ7DpksMB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2 NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzFBRS81OEQ5OTJERUI2NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2 SElnZURVbWd4Q0NOOEgtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtyBfEdObdCerLhpBmc71PkH/slv7UWvlUzyTSBJFP1PVVUVeFw+Mu NjJ4jBWoQcG0xuUabzPghYaFJQk5M6VyBAy8az/GBg6G8Tvi2vNd0IrCsiiGQVfG s7UVXumtk3eeSDlAf7TjvW8Dw9Hqi5lGc7VlMYIj1NQNd/XlPQq3UK+B6kj76STl eTwCNUjIdsB9A/bsLhK0MOxRmec9PlQDpq32hkjtsDNY570sCKmWpJoW0Y7QW3wi swX8o5N0m7Agd+9rYSFEyeKMGdk6qpFXA0e+Fe/xNcen9ViWpdJwYCifz93wsYW7 XmVAlFOAG+9M+LFQpoe7NG4XlRrZ9DoD -----END CERTIFICATE-----Generated at Tue Jul 22 05:01:47 2025 by rpki-client