$ rpki-client -vvf rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft File: hkRKM0kVEhS08nEbLF2gy5nlDxM.mft (raw, json) Hash identifier: +4qxhiYXEbb4ucxdtmHYde5jB+62ctF6GlV5xHQy3fc= Subject key identifier: 94:D9:5B:60:DC:23:9B:A5:57:CF:C3:3C:E5:75:90:6D:D5:62:C8:22 Authority key identifier: 86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 Certificate issuer: /CN=A915C48D/serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft Manifest number: B0 Signing time: Wed 05 Nov 2025 06:22:54 +0000 Manifest this update: Wed 05 Nov 2025 06:22:53 +0000 Manifest next update: Wed 12 Nov 2025 06:22:53 +0000 Files and hashes: 1: hkRKM0kVEhS08nEbLF2gy5nlDxM.crl (hash: XFRescPvDZ6DtLMRFHcWodpoLMh+dXGYNwykj7GcvOk=) 2: DE1B9460EDF511EF86CB7315C4F9AE02.roa (hash: 1aGxRTXwu6ybjRU4JNrtMNFs2xwtsiTJtnAFcF9bvmg=) 3: 55EFA6C0ECF711EF88590A69C4F9AE02.roa (hash: FC93rdM/vdZQAg1QRdAMhOId3DELs7nG9wTwZW4DnWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:22:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C48D, serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Validity Not Before: Nov 5 06:22:53 2025 GMT Not After : Nov 12 06:22:53 2025 GMT Subject: CN=690aed3d-59d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a0:04:df:0e:4e:73:ae:20:2f:22:40:e5:97: 7f:bf:a0:dd:92:47:73:b3:dc:e1:16:24:09:af:53: 08:22:7c:8f:1b:62:fd:79:3b:bd:96:20:41:4d:91: 96:7b:b1:78:ff:59:c8:b9:83:d9:57:0f:47:7f:04: ca:b3:9f:52:75:5e:3a:16:9f:3c:d0:c9:8e:9f:11: 38:be:99:22:ac:1c:0c:92:52:7b:31:fc:2c:83:57: 64:a3:8e:24:fb:3b:e9:e8:16:7c:c1:74:6b:21:3e: 81:91:13:1b:eb:46:4a:ee:d0:b5:96:88:2d:36:e4: 89:28:19:c3:b0:72:ba:d2:69:92:de:98:75:ef:df: 5a:3f:45:55:b8:d1:6c:5a:78:7e:c6:d7:4a:5d:ab: 9e:2f:9f:5b:06:5f:d6:e2:a4:76:27:97:5d:79:15: e8:c3:22:c7:e2:96:c7:7c:32:09:86:a3:8d:45:7f: e8:0a:76:c0:30:9c:db:ac:f0:f4:c0:f1:fd:e6:e8: 4c:93:b0:2d:2e:c5:50:fd:b1:26:58:58:a5:ae:88: f2:3f:1a:96:42:88:2d:00:a2:6e:42:fd:46:fc:e5: 74:41:e2:63:87:37:9e:08:71:ad:a8:81:27:51:c6: 03:4b:3b:ba:db:5f:2c:42:65:a2:1c:e9:dd:39:18: 14:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:D9:5B:60:DC:23:9B:A5:57:CF:C3:3C:E5:75:90:6D:D5:62:C8:22 X509v3 Authority Key Identifier: keyid:86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:af:47:0c:f6:10:f1:54:16:95:13:26:4f:ca:76:d5:2d:20: 04:4c:41:19:b5:b2:5f:88:3a:fc:5f:a5:92:6c:16:e1:3b:fd: f1:c5:a2:00:0d:1f:ce:4f:e7:60:a9:f9:6f:f0:4a:8e:b5:ca: 57:c5:fd:39:40:47:e4:3e:92:63:60:ef:02:24:8b:2c:82:0d: f0:f8:89:c7:51:5c:1f:5c:d2:93:08:70:42:5e:11:fe:47:0b: 72:4d:13:4b:78:3f:eb:be:94:69:04:14:18:82:be:43:79:5b: b7:e1:5e:98:a6:ae:13:d6:76:8f:00:38:ad:9a:02:28:64:94: 1f:06:79:08:8e:96:92:d0:c0:cc:58:02:0c:7f:42:5a:c6:57: 47:31:d2:61:ae:c3:13:c7:22:d8:ca:22:dc:ac:5f:8f:e4:d5: 88:53:77:9a:24:57:de:26:e6:87:17:fe:fd:84:d2:3f:0d:b0: 21:e2:03:c1:e3:ff:e5:93:91:7b:2e:56:30:44:31:ee:6d:bc: d5:86:78:f1:04:c7:a9:88:0b:23:2f:0e:59:0a:48:44:aa:30: d6:ba:70:da:77:d8:96:92:f6:82:7d:66:e3:11:29:2c:5e:46: fc:56:8e:33:c4:94:68:19:c2:bd:09:80:13:34:a4:55:4c:f5: 65:3f:94:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM0OEQxMTAvBgNVBAUTKDg2NDQ0QTMzNDkxNTEyMTRCNEYyNzExQjJDNURBMENC OTlFNTBGMTMwHhcNMjUxMTA1MDYyMjUzWhcNMjUxMTEyMDYyMjUzWjAYMRYwFAYD VQQDEw02OTBhZWQzZC01OWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaAE3w5Oc64gLyJA5Zd/v6Ddkkdzs9zhFiQJr1MIInyPG2L9eTu9liBBTZGW e7F4/1nIuYPZVw9HfwTKs59SdV46Fp880MmOnxE4vpkirBwMklJ7Mfwsg1dko44k +zvp6BZ8wXRrIT6BkRMb60ZK7tC1logtNuSJKBnDsHK60mmS3ph1799aP0VVuNFs Wnh+xtdKXaueL59bBl/W4qR2J5ddeRXowyLH4pbHfDIJhqONRX/oCnbAMJzbrPD0 wPH95uhMk7AtLsVQ/bEmWFilrojyPxqWQogtAKJuQv1G/OV0QeJjhzeeCHGtqIEn UcYDSzu6218sQmWiHOndORgUNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTZW2Dc I5ulV8/DPOV1kG3VYsgiMB8GA1UdIwQYMBaAFIZESjNJFRIUtPJxGyxdoMuZ5Q8T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzQ4RC8wQzIxNThCMkIy QzkxMUVGOTAzRjc4ODNDNEY5QUUwMi9oa1JLTTBrVkVoUzA4bkViTEYyZ3k1bmxE eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hrUktNMGtWRWhTMDhuRWJMRjJneTVubER4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzQ4RC8wQzIxNThCMkIyQzkxMUVGOTAzRjc4ODNDNEY5QUUwMi9oa1JLTTBrVkVo UzA4bkViTEYyZ3k1bmxEeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAr0cM9hDxVBaVEyZPynbVLSAETEEZtbJfiDr8X6WSbBbhO/3xxaIA DR/OT+dgqflv8EqOtcpXxf05QEfkPpJjYO8CJIssgg3w+InHUVwfXNKTCHBCXhH+ RwtyTRNLeD/rvpRpBBQYgr5DeVu34V6Ypq4T1naPADitmgIoZJQfBnkIjpaS0MDM WAIMf0JaxldHMdJhrsMTxyLYyiLcrF+P5NWIU3eaJFfeJuaHF/79hNI/DbAh4gPB 4//lk5F7LlYwRDHubbzVhnjxBMepiAsjLw5ZCkhEqjDWunDad9iWkvaCfWbjESks Xkb8Vo4zxJRoGcK9CYATNKRVTPVlP5SZ -----END CERTIFICATE-----Generated at Wed Nov 5 15:40:08 2025 by rpki-client