$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft File: 52j8yLln1vHIgeDUmgxCCN8H-zc.mft (raw, json) Hash identifier: hZckJgHLMttxoC6RRNiRdD4ZnHgLVrCFJD4630PE0Qs= Subject key identifier: DE:37:0D:B2:22:60:D8:7B:F1:E3:33:1A:61:00:91:33:DB:41:C6:78 Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 Certificate issuer: /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Certificate serial: 0394 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft Manifest number: 038F Signing time: Fri 19 Sep 2025 01:12:48 +0000 Manifest this update: Fri 19 Sep 2025 01:12:48 +0000 Manifest next update: Fri 26 Sep 2025 01:12:48 +0000 Files and hashes: 1: 52j8yLln1vHIgeDUmgxCCN8H-zc.crl (hash: 1BlOlMRcISozxxzUtAB9IJb1MZItBFai/B2vnn5okQ8=) 2: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (hash: 3vF76S8iWJW8vHG1MAht+7FYZNQsdje1uuqCEx57cyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 01:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 916 (0x394) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C1AE, serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Validity Not Before: Sep 19 01:12:48 2025 GMT Not After : Sep 26 01:12:48 2025 GMT Subject: CN=68ccae10-552f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:aa:ba:b6:9f:d8:36:35:8b:93:11:ab:fa:aa: 4e:2b:bb:a8:fd:63:d2:fa:54:73:10:41:42:18:98: 71:74:e7:98:60:50:d3:43:c5:9b:75:96:9c:61:0b: e5:90:e8:5a:da:b6:a0:33:40:86:7f:2a:30:3f:59: 6f:c5:fe:27:96:68:9c:84:70:06:25:b9:8f:94:78: 1a:8b:dd:91:87:80:65:ad:10:f0:93:74:e9:6b:2d: 62:1a:a6:0e:7a:18:7f:4e:cc:e3:8d:dd:9b:c8:b0: 00:4a:fc:aa:74:fb:c5:a7:6d:62:14:5c:ed:ce:81: 2f:7c:5e:7e:32:a8:ee:50:bd:d9:54:86:d8:1b:60: f3:82:1e:2e:f6:8f:e7:9f:83:d1:52:b6:55:0c:ae: e9:42:f2:ef:12:16:e0:2e:8e:7e:f6:a6:d8:f5:68: 48:94:89:a3:b0:4b:82:f1:db:89:67:11:6c:2f:39: 25:8f:a6:87:58:b9:73:2c:f2:39:bc:0f:b0:1d:69: 69:72:ac:33:62:2a:da:8d:8c:66:21:b1:34:74:d6: 44:db:10:5a:6d:4d:ae:29:ed:6c:22:73:29:87:db: 0e:9a:ed:36:e1:8c:b8:db:19:ea:a1:f4:cf:a5:56: 71:cc:12:49:91:a5:4c:5e:b3:34:41:91:6e:ff:15: e9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:37:0D:B2:22:60:D8:7B:F1:E3:33:1A:61:00:91:33:DB:41:C6:78 X509v3 Authority Key Identifier: keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:17:2c:2e:8b:c9:f7:d4:1a:08:59:41:ab:48:86:ee:57:a3: 78:15:3d:55:cb:81:e4:c0:95:ac:55:77:f5:c2:ed:e6:85:0b: d1:1c:91:73:b4:36:a6:83:ba:37:16:1f:7c:c4:a9:76:de:69: c8:c1:fb:67:96:e4:f4:c3:69:7c:4f:37:58:9f:d8:77:cf:21: c8:04:f0:eb:4c:53:3e:aa:24:21:73:51:74:11:d4:bb:db:65: 4f:7a:7a:d1:42:54:54:0c:76:71:22:8e:9b:5a:69:9a:75:bb: 60:c4:d1:a9:eb:a6:43:51:dc:86:c3:79:e8:16:ef:10:7e:99: 17:ab:4e:13:54:91:09:82:39:30:6a:57:17:e6:1b:a4:29:9f: 24:1d:47:15:24:65:40:72:ba:88:5c:af:9b:df:e4:a4:e6:5f: c0:99:07:6d:b5:94:19:4e:7c:de:a6:a9:21:2a:fd:bd:0e:68: b2:7b:69:e8:01:ac:6d:ef:92:e7:77:86:60:30:02:15:3d:e5: 0c:4b:b4:82:46:6a:48:46:9c:e5:95:6f:88:c0:9e:13:b7:7e: 0c:bd:bb:88:93:af:98:32:87:ff:31:eb:31:fc:cd:ca:fb:01: 8f:7a:8a:6c:0b:b7:6a:c3:bf:a5:59:b8:fb:e2:88:7f:50:4d: db:53:23:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4 REYwN0ZCMzcwHhcNMjUwOTE5MDExMjQ4WhcNMjUwOTI2MDExMjQ4WjAYMRYwFAYD VQQDEw02OGNjYWUxMC01NTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqq6tp/YNjWLkxGr+qpOK7uo/WPS+lRzEEFCGJhxdOeYYFDTQ8WbdZacYQvl kOha2ragM0CGfyowP1lvxf4nlmichHAGJbmPlHgai92Rh4BlrRDwk3Tpay1iGqYO ehh/Tszjjd2byLAASvyqdPvFp21iFFztzoEvfF5+MqjuUL3ZVIbYG2Dzgh4u9o/n n4PRUrZVDK7pQvLvEhbgLo5+9qbY9WhIlImjsEuC8duJZxFsLzklj6aHWLlzLPI5 vA+wHWlpcqwzYirajYxmIbE0dNZE2xBabU2uKe1sInMph9sOmu024Yy42xnqofTP pVZxzBJJkaVMXrM0QZFu/xXp5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN43DbIi YNh78eMzGmEAkTPbQcZ4MB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2 NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzFBRS81OEQ5OTJERUI2NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2 SElnZURVbWd4Q0NOOEgtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoFywui8n31BoIWUGrSIbuV6N4FT1Vy4HkwJWsVXf1wu3mhQvRHJFz tDamg7o3Fh98xKl23mnIwftnluT0w2l8TzdYn9h3zyHIBPDrTFM+qiQhc1F0EdS7 22VPenrRQlRUDHZxIo6bWmmadbtgxNGp66ZDUdyGw3noFu8QfpkXq04TVJEJgjkw alcX5hukKZ8kHUcVJGVAcrqIXK+b3+Sk5l/AmQdttZQZTnzepqkhKv29Dmiye2no Aaxt75Lnd4ZgMAIVPeUMS7SCRmpIRpzllW+IwJ4Tt34MvbuIk6+YMof/Mesx/M3K +wGPeopsC7dqw7+lWbj74oh/UE3bUyOM -----END CERTIFICATE-----Generated at Fri Sep 19 08:52:21 2025 by rpki-client