$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: +jj3KzORz5baK+V0u8pATk1c9NRJnW44LUXR7CwFQB4= Subject key identifier: 9D:92:7B:7D:BB:A5:9F:95:BE:66:35:79:CC:73:1D:C1:06:66:E2:25 Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 0125 Signing time: Sat 31 May 2025 04:18:27 +0000 Manifest this update: Sat 31 May 2025 04:18:27 +0000 Manifest next update: Sat 07 Jun 2025 04:18:27 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: BydFyrwfIpeJ7uYEit7ZVFDnwiKeKaUGbKXdv8YlJUI=) 2: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: UKOODE+aPAFflvFmKVNYOJaCaH8V6bUeZIgoCqj/k80=) 3: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: IP+1b1MWNwsXEa5/Ri8CW/cM8GMHLYMixTxcrnkax+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: May 31 04:18:27 2025 GMT Not After : Jun 7 04:18:27 2025 GMT Subject: CN=683a8313-a6f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:40:4b:a3:e4:fb:45:6c:5b:f4:eb:fe:68:b2: db:42:a3:8c:56:64:ca:64:c0:95:5c:de:24:1b:9b: ad:2c:58:7e:d3:63:24:44:b9:33:f7:56:01:84:2b: c4:c5:e7:8d:a9:02:44:75:5e:cb:80:7a:02:94:40: bc:5b:ed:59:01:5c:dd:2b:fb:2d:58:82:79:c4:39: 0e:a2:59:ae:e3:36:84:39:ab:06:ee:4a:29:80:b3: cb:df:cf:4a:a6:84:b1:15:d6:0d:24:68:a2:5d:7c: f0:0d:2f:ad:a9:8c:24:7b:8d:00:6c:5a:c5:99:bf: 45:f0:c6:c3:83:6c:3b:a5:65:9a:56:f3:a2:80:84: 2c:8b:86:11:44:51:c3:a5:90:bf:2a:9a:c2:c6:13: 13:57:5e:61:28:6f:d9:ee:9a:ea:db:35:ea:0a:c8: ec:68:21:5f:f1:d7:aa:39:1e:f3:47:58:49:61:52: 73:4a:76:7f:d2:6a:12:cf:1e:42:3f:34:06:a2:1e: bd:ee:69:69:eb:aa:c8:b1:6e:de:4c:c7:04:45:a7: 21:6c:99:81:cc:e4:ff:57:af:16:72:37:a8:3c:c9: 25:89:7a:d3:10:f3:f7:ea:1e:a6:fe:ce:16:9b:27: 85:15:69:7d:9b:fa:2d:ea:31:8f:19:0d:64:77:9e: f5:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:92:7B:7D:BB:A5:9F:95:BE:66:35:79:CC:73:1D:C1:06:66:E2:25 X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:37:cb:20:51:0c:2f:23:f3:d3:c9:74:b0:1e:8c:5e:8c:16: 73:db:13:67:c7:af:db:10:af:b7:13:0c:cc:a1:91:e4:00:d3: d9:bd:04:f4:c2:e9:18:4e:9f:19:be:8d:8d:ba:5e:01:a6:2f: c4:10:48:0f:c3:d1:8b:8c:a1:34:b3:5c:bf:10:bb:0a:f1:e4: cc:89:47:6b:95:e4:b9:1f:fb:8d:c3:be:88:3f:7e:55:1d:dc: f7:b0:83:19:0d:01:37:f9:1a:b4:95:71:c6:25:8d:87:1e:f1: e5:b1:5f:c9:d9:93:80:37:52:3c:5c:f1:73:1a:e8:a1:11:06: 3c:13:53:9e:29:90:39:50:0f:3e:0d:8b:8c:42:b0:11:77:e8: f6:79:fd:97:a2:da:cb:01:5f:87:06:7c:62:83:76:b0:e3:4c: 8d:64:5e:2a:53:5e:80:2c:5d:d8:15:d7:f3:49:52:bc:66:a5: ab:55:98:ec:7e:aa:58:d0:59:4b:32:16:f6:d1:63:b1:17:ba: 87:7d:55:e3:b3:ca:19:a6:74:ca:14:46:df:90:53:0e:c0:d4: 60:d7:08:b7:40:8e:28:a3:4d:06:77:d7:f2:f0:00:30:3a:dd: 11:56:f3:46:fd:d2:43:9b:e1:db:66:5e:6f:e7:29:ac:0e:01: 0a:9b:75:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjUwNTMxMDQxODI3WhcNMjUwNjA3MDQxODI3WjAYMRYwFAYD VQQDEw02ODNhODMxMy1hNmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0BLo+T7RWxb9Ov+aLLbQqOMVmTKZMCVXN4kG5utLFh+02MkRLkz91YBhCvE xeeNqQJEdV7LgHoClEC8W+1ZAVzdK/stWIJ5xDkOolmu4zaEOasG7kopgLPL389K poSxFdYNJGiiXXzwDS+tqYwke40AbFrFmb9F8MbDg2w7pWWaVvOigIQsi4YRRFHD pZC/KprCxhMTV15hKG/Z7prq2zXqCsjsaCFf8deqOR7zR1hJYVJzSnZ/0moSzx5C PzQGoh697mlp66rIsW7eTMcERachbJmBzOT/V68WcjeoPMkliXrTEPP36h6m/s4W myeFFWl9m/ot6jGPGQ1kd571pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2Se327 pZ+VvmY1ecxzHcEGZuIlMB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUUxQi83NDk1MjUxNDdEMjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFk NXc3Tk1LclNlbW4wdWJJcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMN8sgUQwvI/PTyXSwHoxejBZz2xNnx6/bEK+3EwzMoZHkANPZvQT0 wukYTp8Zvo2Nul4Bpi/EEEgPw9GLjKE0s1y/ELsK8eTMiUdrleS5H/uNw76IP35V Hdz3sIMZDQE3+Rq0lXHGJY2HHvHlsV/J2ZOAN1I8XPFzGuihEQY8E1OeKZA5UA8+ DYuMQrARd+j2ef2XotrLAV+HBnxig3aw40yNZF4qU16ALF3YFdfzSVK8ZqWrVZjs fqpY0FlLMhb20WOxF7qHfVXjs8oZpnTKFEbfkFMOwNRg1wi3QI4oo00Gd9fy8AAw Ot0RVvNG/dJDm+HbZl5v5ymsDgEKm3V2 -----END CERTIFICATE-----Generated at Sat May 31 17:54:52 2025 by rpki-client