$ rpki-client -vvf rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft File: -KpwkWtspYPANj63qaX38mJ9c2A.mft (raw, json) Hash identifier: DwehNV/W4GeQHqsvNbaEqTX27aJx0IXpz5hc6oAuybo= Subject key identifier: 2F:F8:A7:9D:AD:38:E8:E5:52:A4:F7:59:43:4F:5B:D1:03:3E:20:B3 Authority key identifier: F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 Certificate issuer: /CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Certificate serial: 268C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft Manifest number: 2587 Signing time: Sat 18 Oct 2025 16:00:26 +0000 Manifest this update: Sat 18 Oct 2025 16:00:25 +0000 Manifest next update: Sat 25 Oct 2025 16:00:25 +0000 Files and hashes: 1: -KpwkWtspYPANj63qaX38mJ9c2A.crl (hash: cCtgr6V9X0KnEmx9s/AOsBApGFDMIefr9WtgJv4xFdU=) 2: 9DBB8670790211EC9EE24885C4F9AE02.roa (hash: HAVp5cljtBnNfexhpbWp3fQD4oxFEGOqIu7ZTxc+Cn0=) 3: 5CCAC7F8528C11ECB6101B10C4F9AE02.roa (hash: RIyr8Ughbt9mob5hXoVNYqj5DjcM8cytuIahFNZG+OY=) 4: 86D13B7E571C11EC81276481C4F9AE02.roa (hash: MOs76+y2ZzpmyQheXk3mTC95IHPkn0FNf96cGXOiX14=) 5: 63C97CBAC49E11EBAC936D7AC4F9AE02.roa (hash: Z5qSs34sPKp/u0MZu0MdqYO0kmHEtkJPsT5iKOnHCCM=) 6: CFF5A20078E011EC8357FA15C4F9AE02.roa (hash: 0lnFnxu0rWa+p9n4oerH1rvUz5x82J6mnvG019TSBpo=) 7: 15812F82C4A111EBAE6C7F49C4F9AE02.roa (hash: lPqoKt6e9WB68QkGqWF9uf0n021O/vJN6Ok+8vPm99E=) 8: 6E042EFCABF011EC92152E22C4F9AE02.roa (hash: nSFw75IcZdLxXGKGRDjDilcmAybSCgLtcoRvUszM+xw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9868 (0x268c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EE53, serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Validity Not Before: Oct 18 16:00:25 2025 GMT Not After : Oct 25 16:00:25 2025 GMT Subject: CN=68f3b999-6c49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:08:98:3f:9b:d5:22:54:3a:b8:ba:56:c3:e9: f2:84:52:75:26:af:af:b8:4c:d3:86:3f:82:f9:5f: 18:33:ab:a0:a3:22:a7:c5:3f:e4:13:ee:64:b3:84: 94:fd:fe:22:65:45:ee:7c:e2:17:6b:e3:ff:e4:64: 71:0f:d0:c1:90:97:66:93:ef:01:0e:74:98:49:49: c3:7d:72:11:71:39:40:15:5b:da:32:00:c6:47:c7: d9:8c:4d:d6:d1:ff:4c:fe:64:e3:7a:77:20:4f:0c: 54:1d:e1:15:1f:b6:05:3b:6d:c9:84:c3:c2:a7:74: 29:d4:5e:9c:5d:5e:34:f2:2d:63:8d:81:b5:a8:2c: e5:5c:4c:da:8d:dd:04:8d:fb:88:37:1f:c8:3b:19: 2d:cf:0c:d4:3e:2a:14:b6:64:a6:90:7f:e5:1d:64: c7:58:30:32:02:c5:bb:37:7a:6f:29:e6:12:94:c0: 4b:df:24:23:ec:71:88:68:b2:39:78:32:47:03:2b: 62:a7:c7:57:8c:ea:c7:74:09:ee:05:44:ba:c9:f0: 59:b4:a5:fa:99:a6:93:b4:64:f5:c7:99:84:e7:ab: c0:0e:c3:ee:d1:ce:e2:5f:26:77:77:7e:e5:69:e3: 0a:39:99:28:28:ee:2a:b7:24:80:98:65:df:d1:96: af:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:F8:A7:9D:AD:38:E8:E5:52:A4:F7:59:43:4F:5B:D1:03:3E:20:B3 X509v3 Authority Key Identifier: keyid:F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:1f:f3:82:d7:a1:e1:b8:3e:64:1c:ff:21:9d:1d:4b:ba:0e: 7c:a2:57:d4:22:13:a0:38:5a:22:6a:82:5c:22:6d:f0:f2:be: 04:ee:f0:bd:da:e1:c4:e9:f1:bb:11:47:36:45:71:eb:ae:ee: 9b:95:5c:7a:c9:7a:84:f7:f6:55:3a:37:df:da:45:43:0b:ff: 20:cc:b7:8f:99:bf:a2:0f:49:37:84:3c:75:2a:62:4d:5a:16: 11:7a:40:9c:5a:94:34:a5:c0:c2:54:1b:00:90:95:da:c0:08: aa:d4:e6:07:75:42:ec:81:4a:9a:ec:5a:60:01:6f:4c:4d:a4: cd:e0:55:bc:75:b5:6a:4e:fb:5c:7d:14:7c:d8:14:6c:3a:71: a6:c6:d8:2b:98:64:42:24:8e:97:5b:a5:e5:17:f4:fc:62:57: 49:ed:cd:81:16:9f:21:2d:a2:59:e3:8c:43:39:1f:e8:15:b7: f2:fa:38:6f:c1:c1:b5:cf:45:d8:ac:40:91:38:d6:a6:1b:96: b0:13:25:7b:d2:83:d8:79:14:96:14:c2:81:9f:02:a2:9d:36: 71:ec:d5:83:9d:6f:fb:eb:b5:8e:78:0f:e0:27:14:b7:92:98: 4a:de:15:57:eb:65:d8:39:1c:03:5b:6d:48:a5:2e:23:8a:d4: 7d:c5:ed:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVFNTMxMTAvBgNVBAUTKEY4QUE3MDkxNkI2Q0E1ODNDMDM2M0VCN0E5QTVGN0Yy NjI3RDczNjAwHhcNMjUxMDE4MTYwMDI1WhcNMjUxMDI1MTYwMDI1WjAYMRYwFAYD VQQDEw02OGYzYjk5OS02YzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8wiYP5vVIlQ6uLpWw+nyhFJ1Jq+vuEzThj+C+V8YM6ugoyKnxT/kE+5ks4SU /f4iZUXufOIXa+P/5GRxD9DBkJdmk+8BDnSYSUnDfXIRcTlAFVvaMgDGR8fZjE3W 0f9M/mTjencgTwxUHeEVH7YFO23JhMPCp3Qp1F6cXV408i1jjYG1qCzlXEzajd0E jfuINx/IOxktzwzUPioUtmSmkH/lHWTHWDAyAsW7N3pvKeYSlMBL3yQj7HGIaLI5 eDJHAytip8dXjOrHdAnuBUS6yfBZtKX6maaTtGT1x5mE56vADsPu0c7iXyZ3d37l aeMKOZkoKO4qtySAmGXf0ZavpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/4p52t OOjlUqT3WUNPW9EDPiCzMB8GA1UdIwQYMBaAFPiqcJFrbKWDwDY+t6ml9/JifXNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUU1My8zODUxMTg0MDQ1 ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZUEFOajYzcWFYMzhtSjlj MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1LcHdrV3RzcFlQQU5qNjNxYVgzOG1KOWMyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUU1My8zODUxMTg0MDQ1ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZ UEFOajYzcWFYMzhtSjljMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+H/OC16HhuD5kHP8hnR1Lug58olfUIhOgOFoiaoJcIm3w8r4E7vC9 2uHE6fG7EUc2RXHrru6blVx6yXqE9/ZVOjff2kVDC/8gzLePmb+iD0k3hDx1KmJN WhYRekCcWpQ0pcDCVBsAkJXawAiq1OYHdULsgUqa7FpgAW9MTaTN4FW8dbVqTvtc fRR82BRsOnGmxtgrmGRCJI6XW6XlF/T8YldJ7c2BFp8hLaJZ44xDOR/oFbfy+jhv wcG1z0XYrECRONamG5awEyV70oPYeRSWFMKBnwKinTZx7NWDnW/767WOeA/gJxS3 kphK3hVX62XYORwDW21IpS4jitR9xe0z -----END CERTIFICATE-----Generated at Mon Oct 20 10:49:42 2025 by rpki-client