$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft File: 52j8yLln1vHIgeDUmgxCCN8H-zc.mft (raw, json) Hash identifier: O1V97kIREjGoWYXUbGIhIgMGN418dDD4ItWzZt0F+OE= Subject key identifier: 03:4B:6D:46:F3:DF:61:0C:8C:B5:AE:F4:3A:1A:A0:45:D3:FF:34:03 Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 Certificate issuer: /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Certificate serial: 03AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft Manifest number: 03A6 Signing time: Wed 05 Nov 2025 00:48:46 +0000 Manifest this update: Wed 05 Nov 2025 00:48:45 +0000 Manifest next update: Wed 12 Nov 2025 00:48:45 +0000 Files and hashes: 1: 52j8yLln1vHIgeDUmgxCCN8H-zc.crl (hash: SoNkltjS5BoOSO0xk5Lr7CqmAvWFFZl3970kUNV4ZnU=) 2: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (hash: 3vF76S8iWJW8vHG1MAht+7FYZNQsdje1uuqCEx57cyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:48:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 939 (0x3ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C1AE, serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Validity Not Before: Nov 5 00:48:45 2025 GMT Not After : Nov 12 00:48:45 2025 GMT Subject: CN=690a9eed-d913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:88:ae:b4:84:9e:0b:47:dc:18:40:36:8b:59: 15:cb:e1:50:89:e5:0b:2e:5e:25:23:3d:12:1e:37: 04:3c:7f:bf:9f:82:6f:b1:e2:7a:4c:a2:53:de:10: 8a:04:78:03:db:68:5d:58:e1:6f:bb:96:49:8c:b8: f0:ce:de:c2:63:cc:92:8b:b0:47:13:07:e4:c1:11: 26:73:9a:7b:be:e7:10:a8:63:3a:bf:db:0e:e2:ab: 79:ca:30:a2:c5:9c:6c:e4:64:3d:ad:db:b7:78:9e: 8f:84:76:01:68:6e:fa:f4:0f:71:da:17:8e:e1:24: f6:6a:54:dc:9e:e1:11:d4:22:14:26:fd:fc:d8:d4: c0:2c:c5:f6:12:f5:d4:65:08:67:f5:ab:af:3a:eb: 89:a9:85:36:dd:28:2b:08:02:3b:db:09:7a:c7:45: 66:9c:35:98:73:63:62:20:21:7f:16:c5:d7:56:b5: de:39:91:b0:5b:79:c0:35:9c:74:7b:53:f9:1f:a6: c5:13:7d:92:ca:d4:6c:b8:70:30:9e:4f:d2:44:9b: ac:82:a8:f3:92:3f:91:57:0c:fa:85:bd:eb:6d:5d: d3:b0:bb:13:d9:82:d1:df:a9:5d:7d:9d:3c:b7:7d: 8a:7f:ea:2f:bf:5b:a8:5e:c7:49:35:e8:1f:2c:12: 7f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:4B:6D:46:F3:DF:61:0C:8C:B5:AE:F4:3A:1A:A0:45:D3:FF:34:03 X509v3 Authority Key Identifier: keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:4f:b8:9c:bc:c8:4a:5e:92:b7:04:a6:64:e0:c4:de:65:62: a3:cb:09:18:78:57:66:a0:19:e3:6f:dc:53:2a:de:b4:64:7c: a9:c0:a0:dd:09:d5:c6:a5:56:66:0a:53:ef:e4:2e:db:b4:87: bb:9f:97:de:80:d2:89:b9:55:a1:a0:ea:ac:5b:be:d9:ca:67: 99:b7:20:06:70:fe:64:71:99:50:a8:ce:c0:42:d5:51:22:3e: 2e:bf:96:af:54:d4:fc:3d:c5:6d:7f:5d:9f:27:02:ce:3f:01: ff:25:58:b1:b8:fb:5f:ce:4f:b8:40:76:36:cd:ac:47:94:f0: b1:72:09:de:21:70:12:d0:fa:7d:38:72:3a:cb:3f:3b:2d:71: fa:82:c7:87:8d:0d:df:1d:44:c0:b1:3f:c6:89:15:bb:77:ef: 30:e1:05:4a:93:45:13:44:25:08:95:7e:d4:15:92:dd:9b:20: 96:9d:12:95:3a:f8:9b:1a:9b:95:75:94:5a:b7:b2:41:60:44: 1e:62:d5:83:a1:9c:ba:5f:f2:bb:34:85:33:09:df:01:d5:c7: fe:5d:a0:7f:df:04:25:7b:d1:ab:94:c7:3a:79:6c:f0:08:25: 56:cb:b2:f1:ae:19:30:15:85:e1:21:fd:27:fd:25:ac:79:d7: 79:76:74:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4 REYwN0ZCMzcwHhcNMjUxMTA1MDA0ODQ1WhcNMjUxMTEyMDA0ODQ1WjAYMRYwFAYD VQQDEw02OTBhOWVlZC1kOTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4iutISeC0fcGEA2i1kVy+FQieULLl4lIz0SHjcEPH+/n4JvseJ6TKJT3hCK BHgD22hdWOFvu5ZJjLjwzt7CY8ySi7BHEwfkwREmc5p7vucQqGM6v9sO4qt5yjCi xZxs5GQ9rdu3eJ6PhHYBaG769A9x2heO4ST2alTcnuER1CIUJv382NTALMX2EvXU ZQhn9auvOuuJqYU23SgrCAI72wl6x0VmnDWYc2NiICF/FsXXVrXeOZGwW3nANZx0 e1P5H6bFE32SytRsuHAwnk/SRJusgqjzkj+RVwz6hb3rbV3TsLsT2YLR36ldfZ08 t32Kf+ovv1uoXsdJNegfLBJ/1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANLbUbz 32EMjLWu9DoaoEXT/zQDMB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2 NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzFBRS81OEQ5OTJERUI2NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2 SElnZURVbWd4Q0NOOEgtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhT7icvMhKXpK3BKZk4MTeZWKjywkYeFdmoBnjb9xTKt60ZHypwKDd CdXGpVZmClPv5C7btIe7n5fegNKJuVWhoOqsW77ZymeZtyAGcP5kcZlQqM7AQtVR Ij4uv5avVNT8PcVtf12fJwLOPwH/JVixuPtfzk+4QHY2zaxHlPCxcgneIXAS0Pp9 OHI6yz87LXH6gseHjQ3fHUTAsT/GiRW7d+8w4QVKk0UTRCUIlX7UFZLdmyCWnRKV OvibGpuVdZRat7JBYEQeYtWDoZy6X/K7NIUzCd8B1cf+XaB/3wQle9GrlMc6eWzw CCVWy7LxrhkwFYXhIf0n/SWsedd5dnSG -----END CERTIFICATE-----Generated at Wed Nov 5 19:46:54 2025 by rpki-client