$ rpki-client -vvf rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.mft File: 53p5hBmz84yLAlkKKUx7NffDREw.mft (raw, json) Hash identifier: 4OptuYqu8brTjOI/OXJSoBzllCUTI1T1kWLvGjQMCTs= Subject key identifier: 4B:D9:5C:E8:7E:24:20:BA:D5:C0:DF:BC:28:8F:37:FD:BF:12:99:7F Authority key identifier: E7:7A:79:84:19:B3:F3:8C:8B:02:59:0A:29:4C:7B:35:F7:C3:44:4C Certificate issuer: /CN=A914530B/serialNumber=E77A798419B3F38C8B02590A294C7B35F7C3444C Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/53p5hBmz84yLAlkKKUx7NffDREw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.mft Manifest number: 6A Signing time: Tue 01 Jul 2025 07:45:51 +0000 Manifest this update: Tue 01 Jul 2025 07:45:51 +0000 Manifest next update: Tue 08 Jul 2025 07:45:51 +0000 Files and hashes: 1: 53p5hBmz84yLAlkKKUx7NffDREw.crl (hash: Wza8eIMXILW+xgEABwMetRvfB9N1rdLiquTAmCibhgg=) 2: 87A33C66B79D11EF9A384C65C4F9AE02.roa (hash: PmWdGEFbgxUM5JARv+3955i+yLCgnSi8KLnrb7A4Hd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.crl rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/53p5hBmz84yLAlkKKUx7NffDREw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:45:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914530B, serialNumber=E77A798419B3F38C8B02590A294C7B35F7C3444C Validity Not Before: Jul 1 07:45:51 2025 GMT Not After : Jul 8 07:45:51 2025 GMT Subject: CN=6863922f-b7fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a1:e4:08:a9:b1:04:e9:a8:9b:f0:14:19:11: a2:b7:a4:5a:e1:c7:d8:dc:90:42:f4:a8:02:a8:86: 76:c8:d2:0e:a8:f9:44:54:6b:d5:b0:9f:42:70:64: c4:ec:9f:cb:e7:5e:ea:dd:7d:c5:6a:db:51:26:8f: 21:7b:c6:56:bb:0f:21:76:a1:ca:40:63:a7:22:33: 47:b5:9a:8c:13:c9:94:3a:49:70:41:6f:12:3d:3b: 79:6a:81:fc:05:3b:59:b6:47:53:a0:c8:3d:df:29: 7f:17:47:9b:3c:d5:b9:e1:2b:01:bf:a8:67:31:d0: d6:82:4a:d3:dd:b4:da:2a:df:f6:43:9b:95:09:f2: 35:0e:f0:75:be:f5:45:31:1d:94:73:ae:d3:bf:81: 29:34:ea:ed:c8:58:3a:da:13:aa:c5:cb:8c:94:1b: 17:14:49:66:e2:14:aa:02:bc:83:5d:4b:13:01:30: c7:f7:71:c3:6b:14:4c:ed:44:5d:27:2d:cc:5a:f8: be:d9:58:61:04:32:20:6e:7c:d9:1f:19:a8:ee:94: db:8c:98:41:92:bf:d9:4b:75:06:a9:71:e7:a0:75: 43:16:af:b2:30:e4:ca:9b:c4:18:e1:92:7c:e1:e5: f9:3d:74:7c:09:c4:20:e6:08:45:47:2c:01:07:7c: b4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:D9:5C:E8:7E:24:20:BA:D5:C0:DF:BC:28:8F:37:FD:BF:12:99:7F X509v3 Authority Key Identifier: keyid:E7:7A:79:84:19:B3:F3:8C:8B:02:59:0A:29:4C:7B:35:F7:C3:44:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/53p5hBmz84yLAlkKKUx7NffDREw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:93:23:35:8e:6f:d9:25:99:da:d8:a3:47:b8:22:77:83:1b: 07:39:45:31:04:be:91:11:b9:3f:00:32:36:7e:a0:c9:ae:f6: 4b:06:83:38:b2:8d:6c:f7:4e:26:c0:24:4d:53:0d:bb:85:a7: bf:14:77:9b:5a:70:05:78:c9:ac:3f:6d:49:31:44:95:b4:c9: cb:0b:d3:c8:86:af:4b:42:bd:73:d6:ec:b8:51:d5:f3:5b:64: 98:ea:10:9e:76:cc:80:a6:3c:d0:1a:b2:94:89:6c:2e:50:e1: b2:5f:30:d2:8d:1f:35:67:8b:17:18:83:80:ce:fb:42:98:4a: d3:15:44:3d:d0:7f:10:5f:b2:2d:3f:25:f4:e5:46:87:b7:7c: 3b:f1:eb:33:66:9d:ca:9b:e2:2b:50:5f:30:f4:48:a2:b9:b4: 73:03:75:c3:a7:54:53:b6:36:5f:e3:aa:20:92:c8:84:34:83: b7:5e:c7:87:3a:66:91:30:3d:a8:83:42:8d:f9:86:e9:8f:0f: 52:c8:1e:e9:70:bd:01:13:c0:32:f7:e6:ca:dd:9e:b9:53:1c: 02:55:96:80:1f:b7:ac:b3:9f:3b:05:aa:1d:2e:c6:38:e7:33: 1f:ac:f9:ba:fe:f6:3a:9b:6c:86:bb:cc:a9:ca:d6:69:0a:da: 87:d3:2a:a0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NTMwQjExMC8GA1UEBRMoRTc3QTc5ODQxOUIzRjM4QzhCMDI1OTBBMjk0QzdCMzVG N0MzNDQ0QzAeFw0yNTA3MDEwNzQ1NTFaFw0yNTA3MDgwNzQ1NTFaMBgxFjAUBgNV BAMTDTY4NjM5MjJmLWI3ZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSoeQIqbEE6aib8BQZEaK3pFrhx9jckEL0qAKohnbI0g6o+URUa9Wwn0JwZMTs n8vnXurdfcVq21EmjyF7xla7DyF2ocpAY6ciM0e1mowTyZQ6SXBBbxI9O3lqgfwF O1m2R1OgyD3fKX8XR5s81bnhKwG/qGcx0NaCStPdtNoq3/ZDm5UJ8jUO8HW+9UUx HZRzrtO/gSk06u3IWDraE6rFy4yUGxcUSWbiFKoCvINdSxMBMMf3ccNrFEztRF0n Lcxa+L7ZWGEEMiBufNkfGajulNuMmEGSv9lLdQapceegdUMWr7Iw5MqbxBjhknzh 5fk9dHwJxCDmCEVHLAEHfLQPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUS9lc6H4k ILrVwN+8KI83/b8SmX8wHwYDVR0jBBgwFoAU53p5hBmz84yLAlkKKUx7NffDREww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1MzBCLzlFNzVEREI2Qjc5 QTExRUZBMEQ2OTc1REM0RjlBRTAyLzUzcDVoQm16ODR5TEFsa0tLVXg3TmZmRFJF dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNTNwNWhCbXo4NHlMQWxrS0tVeDdOZmZEUkV3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 MzBCLzlFNzVEREI2Qjc5QTExRUZBMEQ2OTc1REM0RjlBRTAyLzUzcDVoQm16ODR5 TEFsa0tLVXg3TmZmRFJFdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKyTIzWOb9klmdrYo0e4IneDGwc5RTEEvpERuT8AMjZ+oMmu9ksGgziy jWz3TibAJE1TDbuFp78Ud5tacAV4yaw/bUkxRJW0ycsL08iGr0tCvXPW7LhR1fNb ZJjqEJ52zICmPNAaspSJbC5Q4bJfMNKNHzVnixcYg4DO+0KYStMVRD3QfxBfsi0/ JfTlRoe3fDvx6zNmncqb4itQXzD0SKK5tHMDdcOnVFO2Nl/jqiCSyIQ0g7dex4c6 ZpEwPaiDQo35humPD1LIHulwvQETwDL35srdnrlTHAJVloAft6yznzsFqh0uxjjn Mx+s+br+9jqbbIa7zKnK1mkK2ofTKqA= -----END CERTIFICATE-----Generated at Tue Jul 1 15:41:36 2025 by rpki-client