$ rpki-client -vvf rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft File: hkRKM0kVEhS08nEbLF2gy5nlDxM.mft (raw, json) Hash identifier: 7cLGqdpVChKbRFzMS9I/+Z5ONJ6vSTvM5Hjjxpn4nRg= Subject key identifier: B2:04:FF:20:6A:69:59:8F:61:A6:C9:DD:7E:F1:28:0A:2B:51:84:34 Authority key identifier: 86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 Certificate issuer: /CN=A915C48D/serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft Manifest number: A8 Signing time: Sun 19 Oct 2025 09:28:35 +0000 Manifest this update: Sun 19 Oct 2025 09:28:34 +0000 Manifest next update: Sun 26 Oct 2025 09:28:34 +0000 Files and hashes: 1: hkRKM0kVEhS08nEbLF2gy5nlDxM.crl (hash: v0Oo1kFUDRcbPgZHjXglZtWxfBJ8OW3kENu8PYkFPkA=) 2: DE1B9460EDF511EF86CB7315C4F9AE02.roa (hash: 1aGxRTXwu6ybjRU4JNrtMNFs2xwtsiTJtnAFcF9bvmg=) 3: 55EFA6C0ECF711EF88590A69C4F9AE02.roa (hash: FC93rdM/vdZQAg1QRdAMhOId3DELs7nG9wTwZW4DnWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C48D, serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Validity Not Before: Oct 19 09:28:34 2025 GMT Not After : Oct 26 09:28:34 2025 GMT Subject: CN=68f4af43-f995 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:89:89:d1:6d:02:9f:ab:4b:56:7f:4a:4a:1e: c6:83:7d:81:fb:eb:4c:34:7a:19:04:3e:fa:dc:d6: bd:c0:2f:95:db:7e:f1:d1:30:b6:c1:1b:19:ed:f0: 3e:f7:9b:ea:e1:fb:ea:cf:59:f7:46:4b:c1:98:79: 8d:6b:14:21:1f:65:bd:51:7f:84:9f:63:1b:4f:20: c1:36:b6:a4:26:f3:18:f1:63:d9:99:11:1b:b9:2e: 5a:88:43:31:c1:7d:c8:b4:a4:7a:f2:fd:3a:30:eb: e6:99:6a:15:82:2f:b7:c1:90:69:45:6b:7b:d8:61: ec:54:86:62:99:60:15:d2:1d:82:3b:56:ae:95:4b: 4a:16:1c:b1:18:5c:e3:77:ad:df:33:58:2d:4a:84: a4:b3:86:26:c8:e9:5b:c4:50:e2:0d:92:a3:c3:c7: b9:de:70:20:7d:50:bc:a7:bc:29:bc:98:42:ed:6a: 79:e7:8e:fc:6a:f7:1e:fd:ec:ba:e5:09:5d:64:2b: 70:95:0b:b1:79:9e:5a:3e:d2:e6:b5:14:5b:d7:f3: 4f:dc:b5:3c:60:87:a5:ff:d7:ef:a7:23:75:af:2a: 8e:fa:3b:7b:20:9e:89:71:84:0a:f3:c2:98:86:3b: d4:e5:bf:ec:1c:29:2f:9b:59:e4:4a:74:d8:4c:75: 4b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:04:FF:20:6A:69:59:8F:61:A6:C9:DD:7E:F1:28:0A:2B:51:84:34 X509v3 Authority Key Identifier: keyid:86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:26:97:5e:85:2c:a9:f3:ef:ee:13:59:0c:6a:a9:99:dd:e9: b8:5d:59:37:d2:71:df:86:59:62:34:24:59:64:09:92:9e:48: da:7f:9f:2d:85:27:f2:a7:21:44:9a:27:c0:17:09:14:d3:6d: 67:6e:4a:c8:41:7c:1f:b7:57:7a:bc:1b:7d:8a:5d:3c:37:fc: 2d:69:7d:d2:56:ee:4c:f8:ff:2b:38:d6:2f:a5:4d:0f:61:1a: 7d:38:55:c7:85:80:71:6c:6a:03:58:3a:a4:63:a1:9c:7c:ee: 71:5d:cf:c0:aa:de:99:40:d7:14:d7:b7:1e:e2:64:d6:59:8d: 4a:88:ae:d5:45:49:45:84:2b:6c:bc:f0:c3:2b:41:91:92:75: 06:d0:27:40:58:7d:4b:a1:3b:be:ff:51:a3:4d:d6:c3:16:01: 8b:bb:7a:9e:3c:92:3e:6b:b1:d1:0f:c2:fe:b9:79:7b:29:86: 7b:81:06:a6:23:92:4f:aa:5c:82:06:40:58:32:c6:07:86:e1: f2:b3:2f:cf:db:df:c8:35:51:a3:34:1f:08:f8:78:cd:6b:0c: 86:04:ce:ee:7a:98:b8:58:42:01:99:ba:81:e8:89:bc:2a:9d: 83:26:2a:5e:38:9d:c9:9b:81:9c:f6:66:ba:3c:03:87:e0:9d: 1b:c7:23:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM0OEQxMTAvBgNVBAUTKDg2NDQ0QTMzNDkxNTEyMTRCNEYyNzExQjJDNURBMENC OTlFNTBGMTMwHhcNMjUxMDE5MDkyODM0WhcNMjUxMDI2MDkyODM0WjAYMRYwFAYD VQQDEw02OGY0YWY0My1mOTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuImJ0W0Cn6tLVn9KSh7Gg32B++tMNHoZBD763Na9wC+V237x0TC2wRsZ7fA+ 95vq4fvqz1n3RkvBmHmNaxQhH2W9UX+En2MbTyDBNrakJvMY8WPZmREbuS5aiEMx wX3ItKR68v06MOvmmWoVgi+3wZBpRWt72GHsVIZimWAV0h2CO1aulUtKFhyxGFzj d63fM1gtSoSks4YmyOlbxFDiDZKjw8e53nAgfVC8p7wpvJhC7Wp55478avce/ey6 5QldZCtwlQuxeZ5aPtLmtRRb1/NP3LU8YIel/9fvpyN1ryqO+jt7IJ6JcYQK88KY hjvU5b/sHCkvm1nkSnTYTHVLMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIE/yBq aVmPYabJ3X7xKAorUYQ0MB8GA1UdIwQYMBaAFIZESjNJFRIUtPJxGyxdoMuZ5Q8T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzQ4RC8wQzIxNThCMkIy QzkxMUVGOTAzRjc4ODNDNEY5QUUwMi9oa1JLTTBrVkVoUzA4bkViTEYyZ3k1bmxE eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hrUktNMGtWRWhTMDhuRWJMRjJneTVubER4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzQ4RC8wQzIxNThCMkIyQzkxMUVGOTAzRjc4ODNDNEY5QUUwMi9oa1JLTTBrVkVo UzA4bkViTEYyZ3k1bmxEeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeJpdehSyp8+/uE1kMaqmZ3em4XVk30nHfhlliNCRZZAmSnkjaf58t hSfypyFEmifAFwkU021nbkrIQXwft1d6vBt9il08N/wtaX3SVu5M+P8rONYvpU0P YRp9OFXHhYBxbGoDWDqkY6GcfO5xXc/Aqt6ZQNcU17ce4mTWWY1KiK7VRUlFhCts vPDDK0GRknUG0CdAWH1LoTu+/1GjTdbDFgGLu3qePJI+a7HRD8L+uXl7KYZ7gQam I5JPqlyCBkBYMsYHhuHysy/P29/INVGjNB8I+HjNawyGBM7uepi4WEIBmbqB6Im8 Kp2DJipeOJ3Jm4Gc9ma6PAOH4J0bxyPv -----END CERTIFICATE-----Generated at Mon Oct 20 16:42:49 2025 by rpki-client