$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft File: 52j8yLln1vHIgeDUmgxCCN8H-zc.mft (raw, json) Hash identifier: sD9zjYnVaRNlR9VOOYjuv0tJhbuZg3hDPjll9uoAYfM= Subject key identifier: 60:28:14:A7:DD:F3:A1:B6:5E:1B:47:BE:A3:47:8E:D6:69:78:3D:05 Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 Certificate issuer: /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Certificate serial: 03EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft Manifest number: 03E6 Signing time: Mon 02 Mar 2026 01:56:28 +0000 Manifest this update: Mon 02 Mar 2026 01:56:27 +0000 Manifest next update: Mon 09 Mar 2026 01:56:27 +0000 Files and hashes: 1: 52j8yLln1vHIgeDUmgxCCN8H-zc.crl (hash: uFabURT9UzQRpqOYNS3YD6mVSY8hYCy2ovSsy51BDh4=) 2: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (hash: dHW1Qook3wZ5zh5JBvm9IKVQr+R+p5FVYsj7ayk0Xrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1006 (0x3ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C1AE, serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Validity Not Before: Mar 2 01:56:27 2026 GMT Not After : Mar 9 01:56:27 2026 GMT Subject: CN=69a4ee4c-d23b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cc:e1:0f:3c:6b:7c:37:d7:85:00:01:f9:cb: 83:33:8f:73:ab:fd:9f:a6:1f:97:a9:8d:c5:f3:97: 76:71:2b:43:19:f8:d6:e3:3b:73:ea:9f:26:9e:34: ea:a2:03:b1:18:71:3e:ef:73:7a:02:52:4c:24:70: dc:b7:b2:61:70:df:d7:9d:53:ac:bf:78:d3:e9:82: f9:a3:bf:07:e7:e6:79:d8:25:5f:f8:33:eb:39:2d: 65:e5:1d:67:27:06:02:a8:20:a9:1b:fc:54:4e:45: 16:83:ae:2d:e5:46:6c:7c:21:d4:37:26:5f:f4:87: b3:3f:5a:ff:f4:e1:35:20:df:d3:b7:41:36:7e:ef: e2:23:f7:cc:2b:c1:5f:12:8c:4f:2f:12:2d:c7:57: bc:8c:95:90:2a:26:e1:b8:63:5e:bf:06:76:1d:55: d2:c2:d6:9a:73:90:c4:1d:a8:7a:41:ae:53:8c:35: c3:63:b0:2e:96:c4:c7:8d:9f:a1:95:6f:30:a3:34: a4:0d:76:bd:36:ce:6e:49:be:33:54:6b:b1:df:ea: 8e:28:34:5d:07:e4:e3:d0:83:dc:53:4a:dd:5f:31: 05:55:5a:2b:bf:26:de:22:e9:40:5d:03:9e:19:7f: f2:8b:1f:d2:f8:f8:3f:e3:88:b3:99:25:72:ac:a2: 3a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:28:14:A7:DD:F3:A1:B6:5E:1B:47:BE:A3:47:8E:D6:69:78:3D:05 X509v3 Authority Key Identifier: keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:a8:04:63:ce:38:b0:b6:4b:b9:df:d7:db:06:e2:39:c3:6e: 6d:03:c8:cf:2c:a0:6d:14:2b:d2:fe:1c:9c:d7:37:2d:cd:fb: 76:6a:14:dc:9b:13:40:d2:be:82:5c:54:de:10:b7:6a:2f:d1: 62:e2:69:43:ed:4b:90:99:17:0c:c8:54:de:5f:cc:0a:58:4f: fa:9c:d9:d1:53:90:6c:b0:6d:fe:d0:35:5b:33:8c:b8:29:10: 64:7f:69:a4:10:e3:28:b9:39:ab:72:db:f1:95:d2:94:80:db: 3c:df:48:6d:1e:f0:07:da:89:03:e3:db:95:cb:b4:97:0f:70: 52:22:7c:7d:0c:a2:f3:56:24:e4:93:3a:44:47:f8:5f:cc:0b: eb:da:a7:67:d7:73:b1:d3:23:43:af:9e:29:23:27:e5:08:2b: 40:bf:a3:05:3b:33:cb:35:5f:44:10:7e:b8:4d:17:dd:35:4d: bf:92:d1:b8:5c:15:2f:d9:fe:b5:84:9e:78:e6:c0:a3:15:70: 43:3b:83:b3:71:8b:7c:a7:aa:0e:fa:ca:f5:6d:fc:b2:e4:2d: 17:68:2b:f9:e8:7e:be:f2:86:69:65:0c:b3:60:50:f0:77:c0: 3b:be:91:6a:0e:80:4f:3b:d1:73:46:04:1a:11:9f:bb:39:87: 89:f3:30:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4 REYwN0ZCMzcwHhcNMjYwMzAyMDE1NjI3WhcNMjYwMzA5MDE1NjI3WjAYMRYwFAYD VQQDEw02OWE0ZWU0Yy1kMjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8zhDzxrfDfXhQAB+cuDM49zq/2fph+XqY3F85d2cStDGfjW4ztz6p8mnjTq ogOxGHE+73N6AlJMJHDct7JhcN/XnVOsv3jT6YL5o78H5+Z52CVf+DPrOS1l5R1n JwYCqCCpG/xUTkUWg64t5UZsfCHUNyZf9IezP1r/9OE1IN/Tt0E2fu/iI/fMK8Ff EoxPLxItx1e8jJWQKibhuGNevwZ2HVXSwtaac5DEHah6Qa5TjDXDY7AulsTHjZ+h lW8wozSkDXa9Ns5uSb4zVGux3+qOKDRdB+Tj0IPcU0rdXzEFVVorvybeIulAXQOe GX/yix/S+Pg/44izmSVyrKI6GwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGAoFKfd 86G2XhtHvqNHjtZpeD0FMB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2 NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzFBRS81OEQ5OTJERUI2NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2 SElnZURVbWd4Q0NOOEgtemMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAl6gEY844sLZLud/X2wbiOcNubQPIzyygbRQr0v4cnNc3Lc37dmoU3JsTQNK+ glxU3hC3ai/RYuJpQ+1LkJkXDMhU3l/MClhP+pzZ0VOQbLBt/tA1WzOMuCkQZH9p pBDjKLk5q3Lb8ZXSlIDbPN9IbR7wB9qJA+Pblcu0lw9wUiJ8fQyi81Yk5JM6REf4 X8wL69qnZ9dzsdMjQ6+eKSMn5QgrQL+jBTszyzVfRBB+uE0X3TVNv5LRuFwVL9n+ tYSeeObAoxVwQzuDs3GLfKeqDvrK9W38suQtF2gr+eh+vvKGaWUMs2BQ8HfAO76R ag6ATzvRc0YEGhGfuzmHifMw1g== -----END CERTIFICATE-----Generated at Mon Mar 2 22:22:11 2026 by rpki-client