$ rpki-client -vvf rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft File: hkRKM0kVEhS08nEbLF2gy5nlDxM.mft (raw, json) Hash identifier: JxYV3McYTi6YYi/vUK1ePaZD6Q6cPlEzfWaCFYuimSg= Subject key identifier: 91:FF:F6:9A:82:53:DA:15:F6:92:E2:E4:D5:58:E5:7F:FC:57:79:F4 Authority key identifier: 86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 Certificate issuer: /CN=A915C48D/serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft Manifest number: 8B Signing time: Sat 23 Aug 2025 06:51:12 +0000 Manifest this update: Sat 23 Aug 2025 06:51:12 +0000 Manifest next update: Sat 30 Aug 2025 06:51:12 +0000 Files and hashes: 1: hkRKM0kVEhS08nEbLF2gy5nlDxM.crl (hash: YP0Fibi0xGjW1kSoKG08K5p/zY1itV0Q2X8pjui6eIE=) 2: DE1B9460EDF511EF86CB7315C4F9AE02.roa (hash: 1aGxRTXwu6ybjRU4JNrtMNFs2xwtsiTJtnAFcF9bvmg=) 3: 55EFA6C0ECF711EF88590A69C4F9AE02.roa (hash: FC93rdM/vdZQAg1QRdAMhOId3DELs7nG9wTwZW4DnWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:51:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C48D, serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Validity Not Before: Aug 23 06:51:12 2025 GMT Not After : Aug 30 06:51:12 2025 GMT Subject: CN=68a964e0-b7f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:b7:a4:ee:50:5f:d7:e3:5e:fe:8d:d3:35:86: 26:25:98:24:51:7a:ac:8d:3b:d5:f8:1f:80:aa:44: 94:30:cf:49:2a:0f:63:a9:e5:77:70:9f:09:a8:8f: 91:1b:9b:e5:b1:45:62:eb:b1:fd:a6:4a:02:88:d1: 6c:8c:a7:68:d2:e8:70:bf:8f:09:9a:09:99:6f:b6: 58:64:d0:44:6e:b4:13:e6:ea:ce:1d:66:3d:84:69: 2f:8f:15:f5:04:dc:a4:73:e4:22:6e:7a:b2:7d:8c: 59:97:9f:b1:06:24:b1:e4:e8:ab:a8:91:c6:78:13: d3:b4:40:b6:b9:29:ea:55:99:29:31:07:70:59:a0: 96:be:43:c9:76:b4:c8:bf:4f:9c:a8:d5:e5:6e:f5: d4:b6:14:a3:20:c3:3e:67:ca:b8:c3:82:98:22:7e: de:d8:77:7b:00:06:5d:4d:fd:a4:9f:76:06:63:2e: 39:2a:14:25:21:94:61:7c:be:5c:a0:46:94:e4:b5: 5c:22:28:fc:1e:bf:89:a8:01:f9:98:c8:75:bb:1e: 1a:fd:2c:a7:0d:21:c2:7e:89:c1:1c:d3:42:f4:21: 91:b9:b9:a4:2d:94:7b:ad:5c:b1:f7:d8:f8:82:8e: b8:71:9c:46:be:c3:3f:de:2c:f7:e3:f3:b6:d4:40: b1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:FF:F6:9A:82:53:DA:15:F6:92:E2:E4:D5:58:E5:7F:FC:57:79:F4 X509v3 Authority Key Identifier: keyid:86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:af:c4:d7:cd:e7:44:d1:d1:d1:20:13:fd:2e:53:75:ce:9d: b1:75:10:5e:6b:94:18:15:30:46:40:95:39:d1:a2:32:82:b2: a7:88:69:dd:83:cc:3f:9f:af:ea:99:df:cb:50:b3:e6:48:26: 13:c3:85:8e:be:2f:8f:d2:4e:c4:de:83:35:fd:ec:91:6c:47: 76:3e:d4:55:e7:8e:21:92:45:02:90:7e:e4:ab:8a:92:eb:51: eb:7c:02:f5:d3:f7:f5:b0:f8:3c:a3:5e:16:be:e9:8c:72:5e: 8f:a7:1a:a1:4f:15:41:8a:bb:26:cd:50:5e:6f:01:69:f0:dd: 5f:9e:29:d9:fd:1a:2a:e5:77:1d:a6:31:84:70:be:61:61:2a: e7:fc:03:89:86:1c:63:fe:c3:f7:e9:ef:09:a0:ec:94:a3:b5: dd:0c:cc:f6:4c:f8:2e:b4:29:3e:fd:09:f0:61:ef:09:27:48: 16:49:2c:ba:39:8c:d7:46:e8:91:de:9a:b9:fc:de:4c:6b:e1: e7:c6:56:11:44:0a:ba:a8:85:58:d3:df:a8:6d:f3:88:1c:9d: 1b:fe:8f:c5:62:36:b3:e2:3d:1b:57:b0:bb:4f:fb:1c:c3:74: 45:87:2e:25:12:6e:c8:02:c1:2d:ea:fb:b7:11:df:4c:17:c2: 9b:a2:c9:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM0OEQxMTAvBgNVBAUTKDg2NDQ0QTMzNDkxNTEyMTRCNEYyNzExQjJDNURBMENC OTlFNTBGMTMwHhcNMjUwODIzMDY1MTEyWhcNMjUwODMwMDY1MTEyWjAYMRYwFAYD VQQDEw02OGE5NjRlMC1iN2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7rek7lBf1+Ne/o3TNYYmJZgkUXqsjTvV+B+AqkSUMM9JKg9jqeV3cJ8JqI+R G5vlsUVi67H9pkoCiNFsjKdo0uhwv48JmgmZb7ZYZNBEbrQT5urOHWY9hGkvjxX1 BNykc+QibnqyfYxZl5+xBiSx5OirqJHGeBPTtEC2uSnqVZkpMQdwWaCWvkPJdrTI v0+cqNXlbvXUthSjIMM+Z8q4w4KYIn7e2Hd7AAZdTf2kn3YGYy45KhQlIZRhfL5c oEaU5LVcIij8Hr+JqAH5mMh1ux4a/SynDSHCfonBHNNC9CGRubmkLZR7rVyx99j4 go64cZxGvsM/3iz34/O21ECxSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJH/9pqC U9oV9pLi5NVY5X/8V3n0MB8GA1UdIwQYMBaAFIZESjNJFRIUtPJxGyxdoMuZ5Q8T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzQ4RC8wQzIxNThCMkIy QzkxMUVGOTAzRjc4ODNDNEY5QUUwMi9oa1JLTTBrVkVoUzA4bkViTEYyZ3k1bmxE eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hrUktNMGtWRWhTMDhuRWJMRjJneTVubER4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzQ4RC8wQzIxNThCMkIyQzkxMUVGOTAzRjc4ODNDNEY5QUUwMi9oa1JLTTBrVkVo UzA4bkViTEYyZ3k1bmxEeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvr8TXzedE0dHRIBP9LlN1zp2xdRBea5QYFTBGQJU50aIygrKniGnd g8w/n6/qmd/LULPmSCYTw4WOvi+P0k7E3oM1/eyRbEd2PtRV544hkkUCkH7kq4qS 61HrfAL10/f1sPg8o14WvumMcl6PpxqhTxVBirsmzVBebwFp8N1fninZ/Roq5Xcd pjGEcL5hYSrn/AOJhhxj/sP36e8JoOyUo7XdDMz2TPgutCk+/QnwYe8JJ0gWSSy6 OYzXRuiR3pq5/N5Ma+HnxlYRRAq6qIVY09+obfOIHJ0b/o/FYjaz4j0bV7C7T/sc w3RFhy4lEm7IAsEt6vu3Ed9MF8KbosmX -----END CERTIFICATE-----Generated at Sat Aug 23 10:54:35 2025 by rpki-client