$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft File: 526yVsD8sH4pB5eDQ-mtndIf4gY.mft (raw, json) Hash identifier: /qPtO3swcmVU5dBCeKNJNz2x2ppVRzST+/2n8TqPwcg= Subject key identifier: D0:E8:A2:93:04:C3:94:16:CD:23:F0:7F:22:AA:FB:98:08:DF:EE:87 Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Certificate serial: 39CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft Manifest number: 3748 Signing time: Wed 22 Oct 2025 14:32:21 +0000 Manifest this update: Wed 22 Oct 2025 14:32:20 +0000 Manifest next update: Wed 29 Oct 2025 14:32:20 +0000 Files and hashes: 1: 526yVsD8sH4pB5eDQ-mtndIf4gY.crl (hash: jqEelMOz617d0eyYvZfiXsaC4fprdKeOzdDOeJB8vH0=) 2: CF554666863D11F08BD39411C4F9AE02.roa (hash: xO1be/sHFWCSWufgswMtE4HFdmxcDzgkTtFF/fSGsp4=) 3: 66E3763C8DBA11F09481A638C4F9AE02.roa (hash: ClJ2xognp9dQQivIYTvbX4VBdte0BdI3w9fBbU51BA4=) 4: 34A857166DE211F0BE500371C4F9AE02.roa (hash: HmDUno0HSKluJWL/25Jv0NxVQMmd6xGWMJWd+mUOe9g=) 5: 696ECAD4881311F0BDB4B016C4F9AE02.roa (hash: WOqG+5tSWG84qPrc5s5ituMYLAvkj7e0xswpxjmVkbQ=) 6: B989BE689DAB11F0AB042165C4F9AE02.roa (hash: QsZHNBXsaOOub6PJrHvVDStwwy0DPIu+HjClpTd/rNg=) 7: F2DDF3C2A09011F096CB321AC4F9AE02.roa (hash: 67Z/YlrcqHHZj0W+93RA9Qxh45bUqVdREsOo3Yb71wQ=) 8: 5C696C684ABB11EFB64F1B36C4F9AE02.roa (hash: DpJlRaFGhxdvGqVu7m9VIpzHXrpSWXkrTNeb5efv6ao=) 9: 8F3D594E952211F0B8EBFB65C4F9AE02.roa (hash: 7yEULXCj/Jz2ysY4sQhkqvkh9pOxz55Df6jKf3N8a9o=) 10: 059AA6C236EC11F09677E64CC4F9AE02.roa (hash: 1TIqYxbhJpMCWZC+JAicjf6NUS2vrPDTIVCR78nJZiQ=) 11: 9EA1CDAAFBF611EEAEFDCB0CC4F9AE02.roa (hash: 4ynLb0Ypopkzl8emElYUHjGvnOkE64cL4WqzPSTgtgo=) 12: 21F334F091F111F0A634F345C4F9AE02.roa (hash: CDMmx0KtNY3s3YAsi7N1SgJ6PryOlKZo3OmwgFx2KMU=) 13: F64125BC6C7311F08E141A3DC4F9AE02.roa (hash: aS4YPz3WEsgv739ghiy1zDWE/HCfEBrkvC9D615/bFw=) 14: A9D80C50865811F09AC97D44C4F9AE02.roa (hash: MNpsO6J8WRzvYujCZ7hvce7Nx4dHp3rsOHZBfJgfkLs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:32:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14799 (0x39cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C83B, serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Validity Not Before: Oct 22 14:32:20 2025 GMT Not After : Oct 29 14:32:20 2025 GMT Subject: CN=68f8eaf5-d8ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f4:f3:0c:a3:cf:5e:f0:c9:9d:48:2d:14:dc: b2:49:7d:fb:66:c5:c1:3f:49:67:d2:e6:8a:eb:25: 59:f8:39:e8:dd:37:e6:ef:12:2a:92:fb:d4:5c:37: 25:0f:ad:6f:30:46:37:50:89:43:34:90:42:52:ca: 13:c9:33:d9:88:dc:87:5f:4a:fc:93:cf:3e:9c:28: 93:91:b9:a6:dc:3f:3b:b8:81:3f:7d:8a:31:8f:fe: de:e8:6b:5c:00:2f:32:dc:c2:48:f8:fb:d6:1b:49: 5b:7e:a6:b9:ad:b2:4c:bc:e6:d1:1e:4c:a6:25:19: 2e:7a:a9:dd:f6:c2:29:60:97:d2:8c:6f:fb:79:dc: 14:79:b6:66:5c:c7:93:5d:f4:17:13:5f:dc:1c:23: 67:fe:32:57:52:73:bb:ce:6c:50:a5:06:ca:ce:58: ac:8d:ee:9a:49:f3:46:31:a8:c8:c3:cc:99:a8:94: 94:cf:86:45:23:5c:1e:85:6f:8b:1f:aa:e4:48:5e: 01:0a:b3:8d:c9:42:b5:3c:6e:30:f8:e4:8e:44:46: 3d:1b:01:3c:42:fd:13:0a:2c:88:6d:34:a1:41:b4: 6a:4b:21:b4:4e:d0:0a:eb:45:8d:58:97:af:7c:65: a0:b8:94:ab:68:b1:e4:98:89:aa:02:01:a9:37:2f: c8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:E8:A2:93:04:C3:94:16:CD:23:F0:7F:22:AA:FB:98:08:DF:EE:87 X509v3 Authority Key Identifier: keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:d4:56:73:10:e2:7c:e1:e9:de:bc:2b:4e:57:45:c5:18:f5: b5:f3:53:2a:ba:55:75:73:97:6a:86:ab:8f:fa:cf:3b:6f:45: 37:eb:3d:6a:09:fb:ca:86:b7:26:b9:45:e2:b3:33:1d:6e:e0: 4b:46:b2:4a:47:64:7e:86:d3:1d:76:aa:86:60:6c:94:56:a2: f9:c6:fc:63:49:67:2f:12:30:f1:2a:91:25:05:ee:43:69:8e: 1c:c9:a1:d9:b1:6d:fb:3d:9b:25:bf:c7:6b:8c:a5:c6:67:16: b4:00:1d:de:c9:15:cf:c9:a6:94:8d:70:1b:78:5d:93:d3:a9: 9d:f9:ce:49:0b:a0:e0:00:ee:ec:fa:49:85:c7:cc:76:7b:07: 90:a2:c0:a5:a2:ab:9d:5b:0d:b4:29:f4:cf:07:ca:d4:7c:79: 9c:16:e3:81:ea:81:28:58:27:27:be:81:ae:83:cc:14:e9:6c: 71:7b:9d:00:ce:7c:40:3c:15:5a:b3:73:38:22:ce:db:95:22: 44:ec:29:d2:7c:18:e6:e5:df:63:2a:17:9c:a0:01:e9:1d:24: e5:6f:af:85:ed:b2:61:c2:05:34:e7:b9:e9:ea:79:1a:98:1f: 95:d3:d5:8f:c6:e8:e9:54:6c:55:01:f0:79:21:d5:d4:d6:a1: 56:17:7e:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICOc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE RDIxRkUyMDYwHhcNMjUxMDIyMTQzMjIwWhcNMjUxMDI5MTQzMjIwWjAYMRYwFAYD VQQDEw02OGY4ZWFmNS1kOGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4fTzDKPPXvDJnUgtFNyySX37ZsXBP0ln0uaK6yVZ+Dno3Tfm7xIqkvvUXDcl D61vMEY3UIlDNJBCUsoTyTPZiNyHX0r8k88+nCiTkbmm3D87uIE/fYoxj/7e6Gtc AC8y3MJI+PvWG0lbfqa5rbJMvObRHkymJRkueqnd9sIpYJfSjG/7edwUebZmXMeT XfQXE1/cHCNn/jJXUnO7zmxQpQbKzlisje6aSfNGMajIw8yZqJSUz4ZFI1wehW+L H6rkSF4BCrONyUK1PG4w+OSOREY9GwE8Qv0TCiyIbTShQbRqSyG0TtAK60WNWJev fGWguJSraLHkmImqAgGpNy/IQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDoopME w5QWzSPwfyKq+5gI3+6HMB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzgzQi9FNEUxMEI0QTFEODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNI NHBCNWVEUS1tdG5kSWY0Z1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB71FZzEOJ84enevCtOV0XFGPW181MqulV1c5dqhquP+s87b0U36z1q CfvKhrcmuUXiszMdbuBLRrJKR2R+htMddqqGYGyUVqL5xvxjSWcvEjDxKpElBe5D aY4cyaHZsW37PZslv8drjKXGZxa0AB3eyRXPyaaUjXAbeF2T06md+c5JC6DgAO7s +kmFx8x2eweQosCloqudWw20KfTPB8rUfHmcFuOB6oEoWCcnvoGug8wU6Wxxe50A znxAPBVas3M4Is7blSJE7CnSfBjm5d9jKhecoAHpHSTlb6+F7bJhwgU057np6nka mB+V09WPxujpVGxVAfB5IdXU1qFWF34Q -----END CERTIFICATE-----Generated at Thu Oct 23 10:12:50 2025 by rpki-client