$ rpki-client -vvf rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft File: hkRKM0kVEhS08nEbLF2gy5nlDxM.mft (raw, json) Hash identifier: +CmEoHestwJi5lXiIPrvsnR82QSMyrIrpZi+dt8TDvw= Subject key identifier: EB:E2:CF:F6:7D:25:DE:B0:08:7A:AA:08:1B:BF:19:63:03:E6:D1:58 Authority key identifier: 86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 Certificate issuer: /CN=A915C48D/serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft Manifest number: 0114 Signing time: Mon 11 May 2026 06:06:22 +0000 Manifest this update: Mon 11 May 2026 06:06:22 +0000 Manifest next update: Mon 18 May 2026 06:06:22 +0000 Files and hashes: 1: hkRKM0kVEhS08nEbLF2gy5nlDxM.crl (hash: wlPzRatifELweOLE4VmE78Ey8HKX4lpb7sV9Uoh9UzI=) 2: DE1B9460EDF511EF86CB7315C4F9AE02.roa (hash: E7TlvkUoTphr1MZbzvUv/cwDmCu/Xr2dNOXdFLK7X2o=) 3: 55EFA6C0ECF711EF88590A69C4F9AE02.roa (hash: 9kbxY7GStAtFWFHK4CxfmaeBQ9+u1bor9LZiasl/Umo=) 4: B2BB920001CE11F182556E3A746F56BC.roa (hash: jrD4pqdoiKJI9NO9x+4SiaHnYuar82tQXf2WpPGDnIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C48D, serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Validity Not Before: May 11 06:06:22 2026 GMT Not After : May 18 06:06:22 2026 GMT Subject: CN=6a0171de-3530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f0:b9:30:bd:d5:4e:b1:5d:60:20:f3:42:8d: dd:f9:98:82:01:d8:a2:6c:4f:d2:2e:de:40:f0:c7: 5b:fb:3f:6c:c5:9d:6d:f4:02:4b:94:c0:89:41:10: a4:84:6f:8a:53:19:f0:a3:15:c1:e6:53:0d:e8:84: fa:cf:26:b7:f3:6b:ec:3b:ae:4c:4f:dc:45:38:45: 7a:63:e4:ae:0f:65:fc:fa:6f:0f:63:fd:6a:38:12: 57:13:10:88:f8:8f:ee:eb:00:f7:e3:c4:91:1b:88: 49:52:6f:13:cf:f0:e3:e1:99:03:a5:ff:75:96:94: e0:16:1f:73:49:05:02:1f:23:0d:7a:07:c6:02:4c: 24:e9:fb:2c:9e:46:3e:66:e4:ce:a7:9b:65:e9:c0: f9:d5:97:07:ab:78:89:5e:d2:5e:78:0d:9c:5b:ee: 67:b4:5a:04:2b:f8:bf:3d:d0:b7:63:be:14:93:55: 2b:ed:3d:5b:a3:ab:43:bd:1d:f6:48:11:e2:f5:ec: 8a:a4:8a:0f:4a:fb:29:a3:89:fe:c4:e1:5b:45:2e: 84:e2:10:dd:fc:8a:a8:c3:e3:51:db:fa:a4:fc:11: c3:ae:02:1d:63:30:f0:99:43:e6:bb:2f:2d:b9:1d: ee:3f:a3:93:76:a3:ba:8b:be:e3:af:8f:08:e9:78: 18:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:E2:CF:F6:7D:25:DE:B0:08:7A:AA:08:1B:BF:19:63:03:E6:D1:58 X509v3 Authority Key Identifier: keyid:86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:f0:73:39:6f:86:b1:0b:e7:18:27:3b:7c:b9:0a:3c:dd:ed: a9:ce:be:a0:54:2f:fd:39:b3:1d:39:7e:59:fc:e3:48:08:1f: 85:58:5e:d8:64:de:dd:94:d8:22:48:89:c9:27:ed:0b:87:8c: 51:1b:ea:00:92:43:ed:35:fc:59:7b:22:6a:06:00:1d:96:02: 05:f7:0e:88:97:85:77:55:ed:56:28:99:8c:12:ac:b3:e1:78: c1:55:77:04:a9:86:dd:d5:7e:21:02:0c:33:3f:a2:c4:47:06: a0:d1:09:e2:b1:de:62:b5:5b:0c:2e:c5:d5:a4:49:1e:a4:fc: 79:bc:7e:3f:7d:0a:39:be:6d:01:95:aa:69:e8:1c:b8:6c:f8: 55:42:03:3d:e6:2a:e7:d7:52:4d:bc:9b:51:22:90:b7:4f:73: 0c:ee:38:8d:b2:e9:ab:30:c6:07:27:20:43:fb:40:85:15:e3: 53:5a:fb:71:77:29:86:04:b1:55:a1:58:ea:eb:b6:48:a3:88: ea:4f:ec:06:4f:7f:99:90:bb:3e:10:17:df:57:05:51:e6:7b: 65:67:bd:b7:50:e0:dd:9f:b1:1a:be:1c:51:2d:77:4d:b2:eb: 19:8c:32:39:9f:1a:86:79:f7:92:ec:ab:1f:de:0b:13:b5:44: 59:cb:db:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM0OEQxMTAvBgNVBAUTKDg2NDQ0QTMzNDkxNTEyMTRCNEYyNzExQjJDNURBMENC OTlFNTBGMTMwHhcNMjYwNTExMDYwNjIyWhcNMjYwNTE4MDYwNjIyWjAYMRYwFAYD VQQDEw02YTAxNzFkZS0zNTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPC5ML3VTrFdYCDzQo3d+ZiCAdiibE/SLt5A8Mdb+z9sxZ1t9AJLlMCJQRCk hG+KUxnwoxXB5lMN6IT6zya382vsO65MT9xFOEV6Y+SuD2X8+m8PY/1qOBJXExCI +I/u6wD348SRG4hJUm8Tz/Dj4ZkDpf91lpTgFh9zSQUCHyMNegfGAkwk6fssnkY+ ZuTOp5tl6cD51ZcHq3iJXtJeeA2cW+5ntFoEK/i/PdC3Y74Uk1Ur7T1bo6tDvR32 SBHi9eyKpIoPSvspo4n+xOFbRS6E4hDd/Iqow+NR2/qk/BHDrgIdYzDwmUPmuy8t uR3uP6OTdqO6i77jr48I6XgYLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOviz/Z9 Jd6wCHqqCBu/GWMD5tFYMB8GA1UdIwQYMBaAFIZESjNJFRIUtPJxGyxdoMuZ5Q8T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzQ4RC8wQzIxNThCMkIy QzkxMUVGOTAzRjc4ODNDNEY5QUUwMi9oa1JLTTBrVkVoUzA4bkViTEYyZ3k1bmxE eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hrUktNMGtWRWhTMDhuRWJMRjJneTVubER4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzQ4RC8wQzIxNThCMkIyQzkxMUVGOTAzRjc4ODNDNEY5QUUwMi9oa1JLTTBrVkVo UzA4bkViTEYyZ3k1bmxEeE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQPBzOW+GsQvnGCc7fLkKPN3tqc6+oFQv/TmzHTl+WfzjSAgfhVhe2GTe3ZTY IkiJySftC4eMURvqAJJD7TX8WXsiagYAHZYCBfcOiJeFd1XtViiZjBKss+F4wVV3 BKmG3dV+IQIMMz+ixEcGoNEJ4rHeYrVbDC7F1aRJHqT8ebx+P30KOb5tAZWqaegc uGz4VUIDPeYq59dSTbybUSKQt09zDO44jbLpqzDGBycgQ/tAhRXjU1r7cXcphgSx VaFY6uu2SKOI6k/sBk9/mZC7PhAX31cFUeZ7ZWe9t1Dg3Z+xGr4cUS13TbLrGYwy OZ8ahnn3kuyrH94LE7VEWcvbQA== -----END CERTIFICATE-----Generated at Wed May 13 04:40:52 2026 by rpki-client