$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft File: 52j8yLln1vHIgeDUmgxCCN8H-zc.mft (raw, json) Hash identifier: b2+dV7kvcTtxihGXA20HsZd57KvOuMWFCHnC2SR/CQU= Subject key identifier: 80:DF:1E:69:64:8A:9E:95:84:27:63:94:09:FE:53:7E:BB:BF:25:0E Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 Certificate issuer: /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Certificate serial: 035B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft Manifest number: 0356 Signing time: Sat 31 May 2025 01:10:50 +0000 Manifest this update: Sat 31 May 2025 01:10:50 +0000 Manifest next update: Sat 07 Jun 2025 01:10:50 +0000 Files and hashes: 1: 52j8yLln1vHIgeDUmgxCCN8H-zc.crl (hash: 68IPVAkrijplRlKrgbHjfdz4t6d3/QcPEa3CG01MpMA=) 2: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (hash: 3vF76S8iWJW8vHG1MAht+7FYZNQsdje1uuqCEx57cyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:10:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 859 (0x35b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C1AE, serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Validity Not Before: May 31 01:10:50 2025 GMT Not After : Jun 7 01:10:50 2025 GMT Subject: CN=683a571a-7066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d5:d1:f3:d4:0e:32:db:bf:0d:44:58:25:9c: bf:1e:0b:17:39:9c:59:ee:18:e2:4c:3b:20:d8:44: f8:43:7d:55:7a:b0:19:6a:69:72:e6:90:64:f9:b0: 2e:a8:5a:3d:02:00:6e:65:b1:bc:27:ce:29:40:6a: e0:71:6f:76:a9:6c:fb:25:2e:8b:e1:25:83:49:4a: 0c:83:8c:74:d5:c6:fc:6b:95:53:b8:91:ad:28:f8: 05:a9:04:ca:be:bf:43:dc:2a:8e:bd:8b:61:23:3f: 4f:82:67:18:50:49:5e:4a:bd:39:11:b6:32:e6:49: 32:e5:de:b7:00:75:1b:79:33:90:b8:10:cb:31:9f: 73:e6:8b:43:1c:39:a3:45:fa:2f:ae:7d:c0:a8:85: 22:15:8d:e8:33:67:b1:33:f5:23:35:43:d5:cb:85: 5f:db:5b:bd:2b:59:0e:01:8f:4f:17:39:7e:fa:78: 76:60:1b:bf:13:74:56:61:e3:33:28:6d:45:6b:bd: f2:04:ac:b9:3d:44:88:5e:5d:b7:65:c3:b4:d5:fd: f7:b9:6b:87:b2:90:c6:00:58:16:f8:96:fd:a9:3f: 42:17:ad:1b:7c:ce:23:66:04:60:b4:7e:67:e6:39: 44:25:96:7e:89:11:c5:9a:65:7d:52:59:88:2f:17: d2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:DF:1E:69:64:8A:9E:95:84:27:63:94:09:FE:53:7E:BB:BF:25:0E X509v3 Authority Key Identifier: keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:e2:0f:57:67:e1:03:7c:3b:2b:73:38:88:4b:08:ef:07:f0: 95:fa:1e:57:a1:7f:9e:8c:0a:a8:3d:82:21:f3:0e:f0:2d:46: 8c:81:2a:d5:29:0e:b8:02:ff:23:a7:9d:6d:ce:10:75:b3:d3: 5d:ff:ad:2b:1f:af:d8:03:ea:bb:e9:21:c8:f8:c3:cb:dd:39: 47:1b:d0:5a:7c:4e:7d:f9:54:f4:3a:c2:db:1d:15:b6:ab:43: ff:8b:42:31:ef:98:dc:d3:d0:4b:19:72:96:16:dc:f3:cf:11: 85:f8:6c:90:eb:95:17:8f:fd:f5:65:90:2a:5b:c0:34:9a:91: dd:1c:fb:e0:9a:d4:b0:63:c5:eb:5c:8e:48:4a:69:95:cf:ec: 14:7b:84:64:60:ea:12:c2:1f:e7:51:51:fc:02:1e:ca:aa:30: ec:aa:53:08:4f:84:40:60:34:d8:37:9a:eb:cd:70:40:dd:05: 71:28:70:eb:41:0f:fb:c6:3f:de:3e:fb:da:65:e4:52:d5:27: 64:af:3b:7e:9c:18:50:3b:52:12:6f:e0:be:01:9b:8b:59:e1: 2f:8b:09:c0:3a:92:1c:d3:51:25:c8:3b:4f:5b:08:71:88:cc: a1:c0:4c:dc:89:5a:9c:62:df:64:2d:3d:3c:87:80:96:64:a1: e4:57:bc:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4 REYwN0ZCMzcwHhcNMjUwNTMxMDExMDUwWhcNMjUwNjA3MDExMDUwWjAYMRYwFAYD VQQDEw02ODNhNTcxYS03MDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtXR89QOMtu/DURYJZy/HgsXOZxZ7hjiTDsg2ET4Q31VerAZamly5pBk+bAu qFo9AgBuZbG8J84pQGrgcW92qWz7JS6L4SWDSUoMg4x01cb8a5VTuJGtKPgFqQTK vr9D3CqOvYthIz9PgmcYUEleSr05EbYy5kky5d63AHUbeTOQuBDLMZ9z5otDHDmj Rfovrn3AqIUiFY3oM2exM/UjNUPVy4Vf21u9K1kOAY9PFzl++nh2YBu/E3RWYeMz KG1Fa73yBKy5PUSIXl23ZcO01f33uWuHspDGAFgW+Jb9qT9CF60bfM4jZgRgtH5n 5jlEJZZ+iRHFmmV9UlmILxfS7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDfHmlk ip6VhCdjlAn+U367vyUOMB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2 NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzFBRS81OEQ5OTJERUI2NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2 SElnZURVbWd4Q0NOOEgtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDF4g9XZ+EDfDsrcziISwjvB/CV+h5XoX+ejAqoPYIh8w7wLUaMgSrV KQ64Av8jp51tzhB1s9Nd/60rH6/YA+q76SHI+MPL3TlHG9BafE59+VT0OsLbHRW2 q0P/i0Ix75jc09BLGXKWFtzzzxGF+GyQ65UXj/31ZZAqW8A0mpHdHPvgmtSwY8Xr XI5ISmmVz+wUe4RkYOoSwh/nUVH8Ah7KqjDsqlMIT4RAYDTYN5rrzXBA3QVxKHDr QQ/7xj/ePvvaZeRS1Sdkrzt+nBhQO1ISb+C+AZuLWeEviwnAOpIc01ElyDtPWwhx iMyhwEzciVqcYt9kLT08h4CWZKHkV7xn -----END CERTIFICATE-----Generated at Sat May 31 17:23:33 2025 by rpki-client