$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft File: 52j8yLln1vHIgeDUmgxCCN8H-zc.mft (raw, json) Hash identifier: ssKBELhS+apyBJzjDVDlcfUh+gCqWwPToI4JN3cQfSU= Subject key identifier: 62:F8:35:82:A0:DD:67:26:FD:EA:99:E7:1E:9A:2D:44:7C:85:3A:7F Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 Certificate issuer: /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft Manifest number: 040F Signing time: Thu 21 May 2026 00:29:40 +0000 Manifest this update: Thu 21 May 2026 00:29:39 +0000 Manifest next update: Thu 28 May 2026 00:29:39 +0000 Files and hashes: 1: 52j8yLln1vHIgeDUmgxCCN8H-zc.crl (hash: KMhUzfCtYGXIyH6qdH1N3P4rpoz23oh3OL6Y1sYYFFw=) 2: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (hash: dHW1Qook3wZ5zh5JBvm9IKVQr+R+p5FVYsj7ayk0Xrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:29:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C1AE, serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Validity Not Before: May 21 00:29:39 2026 GMT Not After : May 28 00:29:39 2026 GMT Subject: CN=6a0e51f4-d95d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9c:d5:6c:33:ff:02:91:c1:bd:66:57:e5:bd: a6:5f:b4:ac:21:ce:32:7a:33:e3:8d:2d:8a:0d:85: 0d:b6:41:88:c7:29:bc:22:8f:76:f6:00:c4:2c:02: 50:d2:fd:db:b6:f1:44:f3:90:59:44:1a:96:10:15: be:c9:57:60:65:36:3b:2b:b2:ad:9c:fc:8f:dc:db: 58:06:4d:b8:0f:99:9a:28:4f:e7:db:e8:5b:51:9a: fc:b6:84:da:33:fd:71:eb:bc:39:ef:d8:3a:7d:7c: e8:f0:c0:9f:c9:f2:8d:be:b1:70:81:3c:4e:ef:63: fd:4c:db:4e:68:3d:97:35:1a:fd:fd:29:cf:e4:63: 35:7f:bd:95:cf:90:d6:41:d8:3f:94:f8:b6:32:df: de:f6:cf:0b:be:2b:e6:96:32:51:8f:19:9c:4a:11: 73:49:ef:ad:32:a6:78:19:58:f4:16:28:ab:cf:b5: c0:29:b7:5b:63:04:4f:d2:11:7b:f4:7a:a7:65:ac: 5b:b1:e6:6c:a4:ef:2a:06:05:4f:fe:2f:df:8e:69: 24:bf:8d:c6:bf:52:f7:bc:1c:4f:48:58:af:a8:2b: d9:c0:87:90:d3:b1:ea:1c:e8:be:11:c1:1f:a7:7f: 75:86:46:c6:7a:db:00:d3:4e:c4:9e:48:25:c5:82: 02:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:F8:35:82:A0:DD:67:26:FD:EA:99:E7:1E:9A:2D:44:7C:85:3A:7F X509v3 Authority Key Identifier: keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:e0:44:da:ab:4c:50:e1:0c:c1:43:58:ec:15:a4:b4:01:3f: 38:50:4d:da:66:c0:84:6e:ab:b4:31:bd:54:90:b0:fb:dd:17: 8c:a5:d9:0b:91:73:0b:d3:e5:7a:9d:d7:af:79:2a:61:79:0e: 56:37:2e:81:01:53:1e:2b:f8:ee:86:9f:cd:03:db:ba:4e:b5: 7d:a5:cb:13:86:bd:49:a5:e0:df:a2:a7:cf:83:5d:e0:68:f8: ff:fc:39:77:37:bf:d0:0b:e6:55:2f:f8:ae:83:d2:79:35:23: 89:09:66:51:99:48:fd:4c:f1:26:ef:2d:01:52:fd:48:48:d4: 8b:7b:c1:de:75:9f:7d:ed:e5:b2:52:29:aa:7d:93:c9:be:40: dd:34:63:ce:77:eb:5b:04:ad:85:c6:ed:7d:bc:b6:ce:7c:cf: 8c:16:8c:c6:57:38:0c:0d:66:ab:96:b8:8c:a0:32:60:33:f4: 33:87:04:7b:dc:c3:69:66:b8:0f:8a:07:a6:e4:75:1a:f6:a2: 72:04:ac:55:4d:df:64:b7:a5:aa:5f:89:d8:eb:32:86:dc:c5: 30:5b:23:6a:a5:24:83:58:7b:0e:67:1d:8c:01:e3:b4:80:56: ed:e0:cd:eb:dc:30:43:52:5b:5b:57:05:1f:79:d6:3e:6d:96: ea:9b:42:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4 REYwN0ZCMzcwHhcNMjYwNTIxMDAyOTM5WhcNMjYwNTI4MDAyOTM5WjAYMRYwFAYD VQQDEw02YTBlNTFmNC1kOTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpzVbDP/ApHBvWZX5b2mX7SsIc4yejPjjS2KDYUNtkGIxym8Io929gDELAJQ 0v3btvFE85BZRBqWEBW+yVdgZTY7K7KtnPyP3NtYBk24D5maKE/n2+hbUZr8toTa M/1x67w579g6fXzo8MCfyfKNvrFwgTxO72P9TNtOaD2XNRr9/SnP5GM1f72Vz5DW Qdg/lPi2Mt/e9s8LvivmljJRjxmcShFzSe+tMqZ4GVj0Fiirz7XAKbdbYwRP0hF7 9HqnZaxbseZspO8qBgVP/i/fjmkkv43Gv1L3vBxPSFivqCvZwIeQ07HqHOi+EcEf p391hkbGetsA007EnkglxYICRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGL4NYKg 3Wcm/eqZ5x6aLUR8hTp/MB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2 NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzFBRS81OEQ5OTJERUI2NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2 SElnZURVbWd4Q0NOOEgtemMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYeBE2qtMUOEMwUNY7BWktAE/OFBN2mbAhG6rtDG9VJCw+90XjKXZC5FzC9Pl ep3Xr3kqYXkOVjcugQFTHiv47oafzQPbuk61faXLE4a9SaXg36Knz4Nd4Gj4//w5 dze/0AvmVS/4roPSeTUjiQlmUZlI/UzxJu8tAVL9SEjUi3vB3nWffe3lslIpqn2T yb5A3TRjznfrWwSthcbtfby2znzPjBaMxlc4DA1mq5a4jKAyYDP0M4cEe9zDaWa4 D4oHpuR1GvaicgSsVU3fZLelql+J2OsyhtzFMFsjaqUkg1h7DmcdjAHjtIBW7eDN 69wwQ1JbW1cFH3nWPm2W6ptCGA== -----END CERTIFICATE-----Generated at Thu May 21 10:39:01 2026 by rpki-client