$ rpki-client -vvf rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft File: hdbxhJPYoIzHKxsJHUr1T48KKLM.mft (raw, json) Hash identifier: 1IE8DPe0rk6aYpFFxTUM3/BoQa+ggZlxCOwBxxSfh7o= Subject key identifier: 74:F8:E8:60:95:38:CE:BB:ED:AF:2B:43:60:F8:55:B3:83:43:E5:37 Authority key identifier: 85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 Certificate issuer: /CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Certificate serial: 0703 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft Manifest number: 06F7 Signing time: Sat 04 Apr 2026 21:53:04 +0000 Manifest this update: Sat 04 Apr 2026 21:53:04 +0000 Manifest next update: Sat 11 Apr 2026 21:53:04 +0000 Files and hashes: 1: hdbxhJPYoIzHKxsJHUr1T48KKLM.crl (hash: A3pC6Lw2Nng9gufG6Br4dtcjowYs8kW/IEod+teooPk=) 2: F66F50628A9C11EB9B2E044BC4F9AE02.roa (hash: taqp3LL8tAiDHV2u6BkFdJRyNn3w2njiu3rh4Og8etQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:53:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1795 (0x703) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125225, serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Validity Not Before: Apr 4 21:53:04 2026 GMT Not After : Apr 11 21:53:04 2026 GMT Subject: CN=69d18840-68c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:de:5f:d0:cc:fe:c4:24:e0:06:53:6e:bd:52: bb:bb:cf:c0:91:c0:a9:6b:13:c4:78:bf:a6:fd:55: 02:8f:5d:74:2f:39:a3:64:8c:99:07:bb:ae:ec:f5: 12:9e:ea:4e:4c:23:6b:ca:da:40:c4:cc:18:9c:61: 77:e2:24:ef:d3:91:fd:f1:f4:49:77:e9:63:1d:9f: 34:46:91:af:9a:44:20:b6:e8:30:6c:1a:e3:4c:c7: 72:43:b1:c7:ad:c8:9b:91:72:db:b5:9f:b7:68:1a: 44:b6:90:cc:68:f2:8e:9e:26:6a:ac:a7:f8:99:4f: 31:46:67:0b:88:28:78:a9:a8:0d:39:ed:88:25:50: 5f:06:68:01:c8:ac:e4:7a:4c:26:c7:d8:36:6f:75: f1:cf:af:ea:d6:2c:1f:0b:f4:63:ed:b3:86:58:54: 33:6f:92:ba:fd:f0:38:65:ed:86:e2:e5:86:eb:17: a7:9f:fa:cb:81:dd:b5:84:56:39:59:51:c2:24:e1: 87:99:0a:82:9b:cb:07:a1:e0:36:bb:6f:8e:1d:b5: 2e:5f:9f:22:a1:78:24:76:9f:5f:03:24:6c:c6:9e: ff:59:d4:c9:00:82:37:c0:05:66:a3:32:e1:ab:2a: 82:10:2e:ea:46:48:9a:7f:82:72:df:46:27:35:10: aa:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F8:E8:60:95:38:CE:BB:ED:AF:2B:43:60:F8:55:B3:83:43:E5:37 X509v3 Authority Key Identifier: keyid:85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:bf:ae:4f:97:f7:5a:e3:b8:6d:36:b2:ab:6f:4e:ed:5b:bc: a2:33:28:97:44:bf:d2:bf:56:19:ac:a3:5c:91:70:6e:3d:08: 6e:b7:a7:09:77:aa:a8:16:92:04:13:65:60:9a:a1:cb:80:5a: fa:c2:67:0d:ef:22:73:4a:3b:f7:5e:a3:d2:08:96:8b:ed:e4: ae:11:dd:da:35:6b:df:00:c7:d5:66:bf:37:17:0b:3e:a1:d5: 24:18:3d:d5:c2:35:f0:cc:eb:58:05:31:ca:e6:88:e5:06:d2: 6c:7e:8f:0d:d6:5b:ad:cc:ba:53:57:be:25:f9:4e:ee:38:00: a8:49:9e:a3:73:bb:59:b2:23:8a:3c:62:3e:ad:af:99:a8:a4: 9d:1f:46:c7:e9:5f:aa:78:a3:ef:c3:08:cd:a7:9f:e9:84:e3: 54:45:5e:9a:f3:a7:80:b1:69:c1:52:84:f0:c2:d3:13:c7:4e: 82:fd:65:7d:42:a6:a4:df:fe:4b:7b:ac:dd:ec:6a:1f:e8:50: 31:54:24:9e:c3:54:0c:20:a7:f7:bb:0a:d2:a7:0d:25:7d:e7: 67:1f:48:09:75:10:64:f0:cf:c6:9c:22:6a:48:81:35:72:ef: 24:83:e5:03:7a:fe:30:5e:ec:8e:dd:29:27:00:24:c1:ce:6a: 5a:17:be:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUyMjUxMTAvBgNVBAUTKDg1RDZGMTg0OTNEOEEwOENDNzJCMUIwOTFENEFGNTRG OEYwQTI4QjMwHhcNMjYwNDA0MjE1MzA0WhcNMjYwNDExMjE1MzA0WjAYMRYwFAYD VQQDEw02OWQxODg0MC02OGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkN5f0Mz+xCTgBlNuvVK7u8/AkcCpaxPEeL+m/VUCj110LzmjZIyZB7uu7PUS nupOTCNrytpAxMwYnGF34iTv05H98fRJd+ljHZ80RpGvmkQgtugwbBrjTMdyQ7HH rcibkXLbtZ+3aBpEtpDMaPKOniZqrKf4mU8xRmcLiCh4qagNOe2IJVBfBmgByKzk ekwmx9g2b3Xxz6/q1iwfC/Rj7bOGWFQzb5K6/fA4Ze2G4uWG6xenn/rLgd21hFY5 WVHCJOGHmQqCm8sHoeA2u2+OHbUuX58ioXgkdp9fAyRsxp7/WdTJAII3wAVmozLh qyqCEC7qRkiaf4Jy30YnNRCqqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHT46GCV OM677a8rQ2D4VbODQ+U3MB8GA1UdIwQYMBaAFIXW8YST2KCMxysbCR1K9U+PCiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTIyNS9DQTY5MDQ0MjhB OUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9JekhLeHNKSFVyMVQ0OEtL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hkYnhoSlBZb0l6SEt4c0pIVXIxVDQ4S0tMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTIyNS9DQTY5MDQ0MjhBOUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9J ekhLeHNKSFVyMVQ0OEtLTE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbL+uT5f3WuO4bTayq29O7Vu8ojMol0S/0r9WGayjXJFwbj0IbrenCXeqqBaS BBNlYJqhy4Ba+sJnDe8ic0o7916j0giWi+3krhHd2jVr3wDH1Wa/NxcLPqHVJBg9 1cI18MzrWAUxyuaI5QbSbH6PDdZbrcy6U1e+JflO7jgAqEmeo3O7WbIjijxiPq2v maiknR9Gx+lfqnij78MIzaef6YTjVEVemvOngLFpwVKE8MLTE8dOgv1lfUKmpN/+ S3us3exqH+hQMVQknsNUDCCn97sK0qcNJX3nZx9ICXUQZPDPxpwiakiBNXLvJIPl A3r+MF7sjt0pJwAkwc5qWhe+7g== -----END CERTIFICATE-----Generated at Mon Apr 6 08:42:25 2026 by rpki-client