$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: sCSJNAZptymTfY0whw/QnWiWv7DSo2FnvGAccJ8ySe4= Subject key identifier: 7C:8A:FE:98:53:AF:F8:A6:82:01:9F:26:48:32:A4:28:58:C5:94:0B Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 01DE Signing time: Thu 21 May 2026 03:33:18 +0000 Manifest this update: Thu 21 May 2026 03:33:17 +0000 Manifest next update: Thu 28 May 2026 03:33:17 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: ourZBm8qkAjnYPRACCkVTtzkibJwuxEabyTteM2cWZk=) 2: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: n/+iSZ/XdamVp91QYBtpJ28J2tmDpxBk4yTTzrUUrg0=) 3: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: JeqqccV0moh9xl5LOsL93SB6Ep+iaPUP/pq2BF+emVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: May 21 03:33:17 2026 GMT Not After : May 28 03:33:17 2026 GMT Subject: CN=6a0e7cfe-06ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ed:49:c9:72:b3:ba:3a:0d:9b:8d:55:60:12: 12:56:b9:e2:5e:cc:6d:d9:9f:8e:27:48:3e:45:ad: c6:4d:d2:02:0f:6b:bd:18:03:54:fd:a5:0c:c5:39: 65:f2:b2:bb:f8:83:3b:7f:cc:c1:40:e2:ff:18:ea: 1b:57:4a:4e:cb:07:ba:ff:56:62:9c:83:9f:ce:70: 87:96:fc:f3:70:17:d3:0e:50:64:aa:ea:89:34:dd: b0:02:46:33:e4:79:30:9e:fc:e1:3e:58:46:bd:28: bc:9f:8f:b0:98:f5:eb:57:3d:6c:6f:f9:c1:88:25: 94:09:4c:c6:15:7f:bf:48:8d:0b:31:05:4f:58:11: 9d:44:13:d7:62:fa:2e:f7:65:8f:f0:69:06:83:9f: a5:ee:fd:78:fd:5d:41:66:2b:32:54:69:2d:77:94: 47:89:00:e3:b3:c2:ae:a2:00:48:7b:f6:9a:6a:fa: ce:d0:6e:a8:9e:f0:a0:1c:45:21:7a:1d:76:fd:79: 8c:a2:d9:49:38:c2:24:87:b6:bc:a6:8e:13:03:ee: 87:2c:25:d4:ad:97:0b:18:54:55:02:50:c9:eb:00: b8:0d:c2:bc:31:94:af:60:6a:f0:cc:d9:b7:7d:f9: 02:2a:5e:57:28:9a:90:a0:63:8b:2a:93:ca:4f:88: 6b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:8A:FE:98:53:AF:F8:A6:82:01:9F:26:48:32:A4:28:58:C5:94:0B X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:e4:ea:ad:c5:a3:9d:3b:05:3f:29:07:12:78:8c:2a:72:f3: 08:7d:52:00:2e:72:a8:ea:da:1f:0c:c5:ca:e2:09:62:11:85: ec:3f:16:06:f1:94:3d:4f:e0:de:5c:90:9d:4a:15:eb:58:e5: b4:08:b2:65:c3:3c:bd:aa:ab:de:12:33:cc:c7:3d:50:4c:46: 5e:1c:ac:84:1a:e4:4b:11:b4:23:5d:2a:a6:0a:4f:33:3b:d6: f6:06:bd:38:1a:97:26:a0:d0:74:d1:3a:62:d2:69:61:34:7d: 2d:50:31:ad:13:9c:76:6e:0c:4f:be:cb:2f:81:42:14:e6:e6: f5:07:4a:37:b0:c9:5a:76:d6:4e:8a:5a:0c:b5:db:f4:ba:e9: 9f:e4:36:cc:df:44:93:dd:77:11:9b:a3:d7:ce:0e:67:86:55: b6:6b:79:5f:94:f0:79:bc:85:a0:83:5d:f2:8c:4d:f2:70:25: 33:57:5a:4f:ec:7f:08:5d:0c:de:f9:22:b6:4d:8c:63:35:1e: 87:a1:95:b2:65:86:0c:b5:e7:9a:55:4c:30:12:8d:b5:ff:83: 75:d2:37:a4:05:41:99:18:e4:71:51:25:7f:cb:17:17:4f:4d: f5:5f:09:9e:49:d9:22:9a:23:1c:b2:3c:b8:3f:89:70:92:97: 4b:f5:c3:76 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjYwNTIxMDMzMzE3WhcNMjYwNTI4MDMzMzE3WjAYMRYwFAYD VQQDEw02YTBlN2NmZS0wNmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxO1JyXKzujoNm41VYBISVrniXsxt2Z+OJ0g+Ra3GTdICD2u9GANU/aUMxTll 8rK7+IM7f8zBQOL/GOobV0pOywe6/1ZinIOfznCHlvzzcBfTDlBkquqJNN2wAkYz 5HkwnvzhPlhGvSi8n4+wmPXrVz1sb/nBiCWUCUzGFX+/SI0LMQVPWBGdRBPXYvou 92WP8GkGg5+l7v14/V1BZisyVGktd5RHiQDjs8KuogBIe/aaavrO0G6onvCgHEUh eh12/XmMotlJOMIkh7a8po4TA+6HLCXUrZcLGFRVAlDJ6wC4DcK8MZSvYGrwzNm3 ffkCKl5XKJqQoGOLKpPKT4hrOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHyK/phT r/imggGfJkgypChYxZQLMB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUUxQi83NDk1MjUxNDdEMjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFk NXc3Tk1LclNlbW4wdWJJcncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjeTqrcWjnTsFPykHEniMKnLzCH1SAC5yqOraHwzFyuIJYhGF7D8WBvGUPU/g 3lyQnUoV61jltAiyZcM8vaqr3hIzzMc9UExGXhyshBrkSxG0I10qpgpPMzvW9ga9 OBqXJqDQdNE6YtJpYTR9LVAxrROcdm4MT77LL4FCFObm9QdKN7DJWnbWTopaDLXb 9Lrpn+Q2zN9Ek913EZuj184OZ4ZVtmt5X5TwebyFoINd8oxN8nAlM1daT+x/CF0M 3vkitk2MYzUeh6GVsmWGDLXnmlVMMBKNtf+DddI3pAVBmRjkcVElf8sXF09N9V8J nknZIpojHLI8uD+JcJKXS/XDdg== -----END CERTIFICATE-----Generated at Thu May 21 14:43:53 2026 by rpki-client