$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft File: 52j8yLln1vHIgeDUmgxCCN8H-zc.mft (raw, json) Hash identifier: 5UA0M49Ygfxphk19RevmYWGXXNtwSArSGOFw0U8m1gc= Subject key identifier: 9A:5C:8C:FF:66:BB:82:01:A1:67:B6:6F:9B:96:65:23:97:D5:42:55 Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 Certificate issuer: /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Certificate serial: 03AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft Manifest number: 03A5 Signing time: Mon 03 Nov 2025 00:41:05 +0000 Manifest this update: Mon 03 Nov 2025 00:41:05 +0000 Manifest next update: Mon 10 Nov 2025 00:41:05 +0000 Files and hashes: 1: 52j8yLln1vHIgeDUmgxCCN8H-zc.crl (hash: uhNO8arWIcCyDdMoGtzvStWrgOM7HUbSDyufPZ0TuKk=) 2: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (hash: 3vF76S8iWJW8vHG1MAht+7FYZNQsdje1uuqCEx57cyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:41:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 938 (0x3aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C1AE, serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Validity Not Before: Nov 3 00:41:05 2025 GMT Not After : Nov 10 00:41:05 2025 GMT Subject: CN=6907fa21-aa60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3e:3a:71:61:f6:95:25:4c:40:57:35:e9:5a: 36:13:a9:6a:b3:6a:6f:b7:69:7b:6f:a4:a8:15:ed: 09:1f:0b:63:35:7c:57:f7:02:ef:19:e4:ee:14:0d: b4:62:ae:43:59:2f:f3:30:f1:e5:d1:54:bd:e4:b8: 5e:ca:df:2e:60:63:d0:74:03:ce:d4:84:6b:56:ce: ab:47:c8:2e:5c:97:5d:29:b1:39:90:f0:3b:08:59: a2:2e:16:23:66:0e:d1:c6:ab:cd:8b:5c:3a:62:29: fd:6f:62:9f:6d:66:30:1f:e0:49:e2:6e:c7:75:48: 78:24:97:ae:f4:f4:ba:8b:e7:b8:2a:04:c1:3b:62: 2f:55:31:e6:c3:88:02:ee:d6:df:5c:54:9e:58:71: 73:b9:ff:a4:4c:82:b7:49:2a:c5:b3:ed:c7:ac:39: 43:e4:45:d6:79:0b:6e:cf:f4:1f:0e:3e:28:49:9c: 3b:89:9b:10:61:e1:01:fe:a4:70:82:a2:4d:7e:1c: 14:1d:e8:ef:09:85:2f:f0:aa:60:cf:4a:09:b3:dd: fe:7e:d1:7a:2c:28:a2:3e:45:40:c6:e1:46:02:8e: 06:fa:ed:89:e0:aa:d8:a2:78:22:15:50:85:73:09: 28:b5:36:ae:da:68:75:b7:a3:33:08:f9:a2:fb:8c: f6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:5C:8C:FF:66:BB:82:01:A1:67:B6:6F:9B:96:65:23:97:D5:42:55 X509v3 Authority Key Identifier: keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:02:b2:2e:de:82:26:96:6a:81:6c:5f:92:50:71:33:59:60: 3f:7e:cf:7e:0d:a8:5a:6e:5e:6b:69:88:fa:4e:28:50:c7:ea: f5:7f:fa:23:95:bf:e8:9e:d4:f1:c4:f5:cb:6c:a2:b1:60:ee: 1f:a5:d7:c3:7f:b2:9e:c0:33:a1:2a:23:b2:1d:d9:b7:0e:7c: 38:d8:16:62:ed:2c:97:e7:64:64:f0:e8:de:e7:c8:1c:d4:f5: 61:d3:09:48:42:77:90:2e:62:fb:73:32:07:e6:c2:9a:12:ff: 33:85:79:82:dd:d7:04:d4:d8:1b:cc:8f:35:bc:7a:c3:60:4d: 08:4b:d2:90:fe:2a:7b:dd:0a:c4:cd:10:cf:05:ba:47:eb:54: dd:31:dd:a3:ca:9c:f8:99:24:b6:e3:df:df:f8:73:5c:f9:14: 52:ba:7a:72:36:6c:4c:08:bf:60:97:c2:3e:96:d3:52:c2:d5: 59:a5:10:dd:4d:66:2a:40:07:20:ee:22:07:38:77:cd:f9:17: 15:0c:7c:89:f8:eb:b5:f9:39:53:03:38:02:46:bd:a0:b7:5e: 0a:be:ea:b3:db:8c:a7:85:82:31:1e:fc:aa:8d:74:42:9f:39: 7e:83:3a:c9:8d:c7:41:64:7c:b9:cd:bd:d5:4a:21:89:4b:bd: 48:b8:aa:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4 REYwN0ZCMzcwHhcNMjUxMTAzMDA0MTA1WhcNMjUxMTEwMDA0MTA1WjAYMRYwFAYD VQQDEw02OTA3ZmEyMS1hYTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3T46cWH2lSVMQFc16Vo2E6lqs2pvt2l7b6SoFe0JHwtjNXxX9wLvGeTuFA20 Yq5DWS/zMPHl0VS95Lheyt8uYGPQdAPO1IRrVs6rR8guXJddKbE5kPA7CFmiLhYj Zg7RxqvNi1w6Yin9b2KfbWYwH+BJ4m7HdUh4JJeu9PS6i+e4KgTBO2IvVTHmw4gC 7tbfXFSeWHFzuf+kTIK3SSrFs+3HrDlD5EXWeQtuz/QfDj4oSZw7iZsQYeEB/qRw gqJNfhwUHejvCYUv8Kpgz0oJs93+ftF6LCiiPkVAxuFGAo4G+u2J4KrYongiFVCF cwkotTau2mh1t6MzCPmi+4z2jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpcjP9m u4IBoWe2b5uWZSOX1UJVMB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2 NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzFBRS81OEQ5OTJERUI2NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2 SElnZURVbWd4Q0NOOEgtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4ArIu3oImlmqBbF+SUHEzWWA/fs9+Dahabl5raYj6TihQx+r1f/oj lb/ontTxxPXLbKKxYO4fpdfDf7KewDOhKiOyHdm3Dnw42BZi7SyX52Rk8Oje58gc 1PVh0wlIQneQLmL7czIH5sKaEv8zhXmC3dcE1NgbzI81vHrDYE0IS9KQ/ip73QrE zRDPBbpH61TdMd2jypz4mSS249/f+HNc+RRSunpyNmxMCL9gl8I+ltNSwtVZpRDd TWYqQAcg7iIHOHfN+RcVDHyJ+Ou1+TlTAzgCRr2gt14Kvuqz24ynhYIxHvyqjXRC nzl+gzrJjcdBZHy5zb3VSiGJS71IuKpD -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:45 2025 by rpki-client