$ rpki-client -vvf rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft File: hdbxhJPYoIzHKxsJHUr1T48KKLM.mft (raw, json) Hash identifier: q+/Y+WYn6A/vjXFwyO4WBP6FpS1zsUav58FxvGlyGO4= Subject key identifier: 14:CA:EF:CC:CE:B5:A2:EE:50:4A:99:66:8D:42:DF:77:E9:51:AD:38 Authority key identifier: 85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 Certificate issuer: /CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Certificate serial: 071A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft Manifest number: 070E Signing time: Wed 20 May 2026 22:04:03 +0000 Manifest this update: Wed 20 May 2026 22:04:02 +0000 Manifest next update: Wed 27 May 2026 22:04:02 +0000 Files and hashes: 1: hdbxhJPYoIzHKxsJHUr1T48KKLM.crl (hash: qDBCyAmgMLgNM3hL8ZR74VdXEr+Cs+7sQtco8YOE4eI=) 2: F66F50628A9C11EB9B2E044BC4F9AE02.roa (hash: taqp3LL8tAiDHV2u6BkFdJRyNn3w2njiu3rh4Og8etQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 22:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1818 (0x71a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125225, serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Validity Not Before: May 20 22:04:02 2026 GMT Not After : May 27 22:04:02 2026 GMT Subject: CN=6a0e2fd2-fabd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6b:db:55:41:52:2b:e7:87:56:13:39:b2:48: 64:cc:79:6e:b0:89:98:ca:eb:40:ce:18:4b:2f:e9: 66:8f:1f:1e:76:4f:11:05:a3:ce:43:4d:84:c9:f0: 17:6d:be:81:24:9f:7e:87:aa:38:22:85:a8:6a:d4: db:bb:5b:45:24:14:9e:a6:bc:ed:98:a9:8f:9c:ad: 87:a8:56:f9:c3:82:f6:f1:86:03:9c:6f:1c:a5:7c: ec:65:dd:00:49:3e:d9:ff:fb:d5:85:78:a6:c8:08: c0:51:8b:ac:f4:e9:48:a5:6d:61:d1:dc:de:da:2a: 12:58:35:92:5e:82:5c:f9:b4:3c:5a:87:97:30:8e: f5:f9:76:c7:e2:fa:02:56:1a:39:62:22:42:eb:77: 35:76:84:a3:49:9a:a0:fd:2b:60:ec:e5:24:f0:13: 14:d3:ff:92:d4:7f:e9:19:56:80:66:2b:6a:dc:6a: b0:eb:1f:d5:5b:71:10:39:dd:13:ad:b2:be:fd:86: a2:49:c9:63:28:21:6f:fc:dc:c4:18:2b:96:ad:80: f4:cc:8f:be:ce:cd:5f:fa:51:e5:9f:d4:d2:74:b1: 91:a3:50:46:0d:4c:79:77:53:86:f5:99:24:ad:1e: c5:7d:9a:d3:35:54:f0:cc:0e:4d:4f:f3:d5:f8:47: 36:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:CA:EF:CC:CE:B5:A2:EE:50:4A:99:66:8D:42:DF:77:E9:51:AD:38 X509v3 Authority Key Identifier: keyid:85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:92:57:ea:7e:e3:0c:cc:ea:da:a0:9c:77:8b:89:43:b6:b5: 39:8e:0f:5a:ad:f7:f5:9c:44:8f:44:96:7b:52:96:d8:99:14: f1:20:11:59:e2:e7:6a:ec:a9:85:b8:52:08:f5:86:e1:74:73: 72:ec:9f:2e:de:84:b1:af:81:a8:a3:3f:d7:eb:94:b0:ba:a7: 33:11:54:62:69:8a:c7:30:df:63:be:84:a0:69:4c:f3:cf:4e: a1:bc:40:d1:3e:83:92:78:71:55:ed:89:79:d5:32:aa:e4:96: 6f:88:a8:a2:53:84:dd:40:0f:65:38:de:8b:56:14:94:30:a3: 63:89:90:17:5a:14:b3:ee:7d:b5:fe:91:56:df:5b:4a:4e:57: 2c:99:c8:e5:82:57:8a:b2:87:75:a2:19:73:bf:f5:e8:17:3a: 91:2a:d2:2e:5a:5a:2d:c3:9d:ef:b0:8d:c0:ce:52:a4:84:eb: eb:82:dc:4f:08:66:e6:cd:9b:01:3f:31:ed:43:ba:f4:78:1d: 38:5a:3b:33:e6:5b:14:be:28:a5:3c:7f:e7:42:d5:46:58:2e: ac:55:6a:44:a3:65:b1:24:cd:14:23:20:59:0b:bc:d6:44:9b: 4d:93:82:2f:a1:21:b1:27:bb:0e:7f:e2:94:d3:57:4d:7c:85: 29:5e:9e:31 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUyMjUxMTAvBgNVBAUTKDg1RDZGMTg0OTNEOEEwOENDNzJCMUIwOTFENEFGNTRG OEYwQTI4QjMwHhcNMjYwNTIwMjIwNDAyWhcNMjYwNTI3MjIwNDAyWjAYMRYwFAYD VQQDEw02YTBlMmZkMi1mYWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2WvbVUFSK+eHVhM5skhkzHlusImYyutAzhhLL+lmjx8edk8RBaPOQ02EyfAX bb6BJJ9+h6o4IoWoatTbu1tFJBSeprztmKmPnK2HqFb5w4L28YYDnG8cpXzsZd0A ST7Z//vVhXimyAjAUYus9OlIpW1h0dze2ioSWDWSXoJc+bQ8WoeXMI71+XbH4voC Vho5YiJC63c1doSjSZqg/Stg7OUk8BMU0/+S1H/pGVaAZitq3Gqw6x/VW3EQOd0T rbK+/YaiScljKCFv/NzEGCuWrYD0zI++zs1f+lHln9TSdLGRo1BGDUx5d1OG9Zkk rR7FfZrTNVTwzA5NT/PV+Ec2OwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBTK78zO taLuUEqZZo1C33fpUa04MB8GA1UdIwQYMBaAFIXW8YST2KCMxysbCR1K9U+PCiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTIyNS9DQTY5MDQ0MjhB OUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9JekhLeHNKSFVyMVQ0OEtL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hkYnhoSlBZb0l6SEt4c0pIVXIxVDQ4S0tMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTIyNS9DQTY5MDQ0MjhBOUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9J ekhLeHNKSFVyMVQ0OEtLTE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGJJX6n7jDMzq2qCcd4uJQ7a1OY4PWq339ZxEj0SWe1KW2JkU8SARWeLnauyp hbhSCPWG4XRzcuyfLt6Esa+BqKM/1+uUsLqnMxFUYmmKxzDfY76EoGlM889OobxA 0T6DknhxVe2JedUyquSWb4ioolOE3UAPZTjei1YUlDCjY4mQF1oUs+59tf6RVt9b Sk5XLJnI5YJXirKHdaIZc7/16Bc6kSrSLlpaLcOd77CNwM5SpITr64LcTwhm5s2b AT8x7UO69HgdOFo7M+ZbFL4opTx/50LVRlgurFVqRKNlsSTNFCMgWQu81kSbTZOC L6EhsSe7Dn/ilNNXTXyFKV6eMQ== -----END CERTIFICATE-----Generated at Thu May 21 11:16:40 2026 by rpki-client