$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: xJQjiX4ZQ+lv4UQ6nNLffhcZZ8H60CcuPszs4W744x0= Subject key identifier: 97:6E:C2:97:BB:59:7A:DB:2D:23:7D:6F:42:0B:13:5C:87:EC:6D:E3 Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 0163 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 015D Signing time: Wed 17 Sep 2025 04:36:13 +0000 Manifest this update: Wed 17 Sep 2025 04:36:13 +0000 Manifest next update: Wed 24 Sep 2025 04:36:13 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: TkTODa9pFnM1nniYyTTbE/Dfr6iPFQme8BdOnrOpqVk=) 2: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: UKOODE+aPAFflvFmKVNYOJaCaH8V6bUeZIgoCqj/k80=) 3: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: IP+1b1MWNwsXEa5/Ri8CW/cM8GMHLYMixTxcrnkax+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 355 (0x163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: Sep 17 04:36:13 2025 GMT Not After : Sep 24 04:36:13 2025 GMT Subject: CN=68ca3abd-fb03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cb:8a:76:10:5e:c2:28:e4:48:5a:96:64:7d: 32:4f:f8:db:75:f2:22:01:05:ad:2f:54:58:d9:87: a0:00:68:ad:6d:fa:de:1d:a8:45:fa:10:19:2a:8c: 7b:52:c7:f0:a9:51:e1:6a:fe:4b:c1:58:43:30:19: 33:d6:2a:51:71:72:28:7d:ae:7b:11:0a:06:14:de: 64:8a:b2:13:f7:84:d9:fa:9e:57:55:21:b2:a5:67: 47:52:b9:f7:59:c2:10:89:33:5a:45:1e:de:fc:d8: ee:e7:64:a1:06:21:f0:91:8d:0e:c5:b4:a9:cb:ad: ac:ed:5a:21:ca:a4:55:8c:6c:e3:ce:de:04:8a:b3: 98:df:19:98:22:fa:fc:20:fe:0a:51:ad:ff:68:95: ca:98:e8:ff:a1:5e:3f:88:b0:29:d9:00:1f:9c:4d: fd:24:e9:4d:0b:7d:57:ca:00:dd:60:6d:e4:f2:e2: d9:4a:c4:72:2c:ab:b7:27:3b:66:9d:6a:9b:42:14: a1:4c:8c:af:6d:0e:71:4c:34:6e:14:21:57:e0:49: 80:f0:eb:76:6d:69:d3:22:76:f3:8e:49:bf:13:a6: 59:0b:06:9c:4e:55:14:ca:fe:7a:5b:12:7b:8a:1e: 78:d2:86:51:09:1b:c4:e1:41:7a:7e:33:10:cf:f1: d0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:6E:C2:97:BB:59:7A:DB:2D:23:7D:6F:42:0B:13:5C:87:EC:6D:E3 X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:22:53:f4:6b:37:47:a7:95:30:a7:84:38:84:37:27:e2:3a: 53:e3:6e:75:ff:04:41:c6:66:de:0b:33:7f:b9:a9:33:bb:be: d3:35:1d:92:1a:c5:9e:a2:09:5e:9c:74:0b:db:95:5e:1c:1d: 95:fa:05:a3:52:90:69:da:87:cf:65:98:52:19:73:92:3e:51: 36:5a:45:9d:58:9b:0c:16:57:61:93:a3:94:71:97:79:b3:14: bf:f0:85:4d:b4:dc:1e:ac:5d:b4:c4:f7:06:5f:fb:14:2b:20: da:04:fa:44:a1:7c:8a:3e:47:63:10:80:48:90:62:fc:ea:9f: e6:33:94:68:b9:91:3a:d3:98:70:4a:c1:e3:8b:54:04:c6:b5: 8a:f7:08:30:99:cb:42:e7:85:12:d0:8f:00:e8:54:4f:a4:1f: 28:f8:d1:1d:09:18:2e:20:d8:b4:d2:bd:86:fa:37:c9:90:53: 9e:6d:fa:1b:e1:f5:50:9d:a8:f9:bf:aa:d3:ad:87:1b:c4:de: b8:f5:f9:bb:64:f5:ad:aa:35:5c:09:0a:5f:78:82:7a:08:89: 7b:b8:7f:52:75:91:a1:cb:32:cc:24:08:d3:f8:44:61:15:3b: b7:a0:5a:e6:b9:f1:3f:f8:89:4d:9a:10:c6:2f:25:86:c6:d2: 08:24:cb:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjUwOTE3MDQzNjEzWhcNMjUwOTI0MDQzNjEzWjAYMRYwFAYD VQQDEw02OGNhM2FiZC1mYjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8uKdhBewijkSFqWZH0yT/jbdfIiAQWtL1RY2YegAGitbfreHahF+hAZKox7 UsfwqVHhav5LwVhDMBkz1ipRcXIofa57EQoGFN5kirIT94TZ+p5XVSGypWdHUrn3 WcIQiTNaRR7e/Nju52ShBiHwkY0OxbSpy62s7VohyqRVjGzjzt4EirOY3xmYIvr8 IP4KUa3/aJXKmOj/oV4/iLAp2QAfnE39JOlNC31XygDdYG3k8uLZSsRyLKu3Jztm nWqbQhShTIyvbQ5xTDRuFCFX4EmA8Ot2bWnTInbzjkm/E6ZZCwacTlUUyv56WxJ7 ih540oZRCRvE4UF6fjMQz/HQUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJduwpe7 WXrbLSN9b0ILE1yH7G3jMB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUUxQi83NDk1MjUxNDdEMjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFk NXc3Tk1LclNlbW4wdWJJcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVIlP0azdHp5Uwp4Q4hDcn4jpT4251/wRBxmbeCzN/uakzu77TNR2S GsWeoglenHQL25VeHB2V+gWjUpBp2ofPZZhSGXOSPlE2WkWdWJsMFldhk6OUcZd5 sxS/8IVNtNwerF20xPcGX/sUKyDaBPpEoXyKPkdjEIBIkGL86p/mM5RouZE605hw SsHji1QExrWK9wgwmctC54US0I8A6FRPpB8o+NEdCRguINi00r2G+jfJkFOebfob 4fVQnaj5v6rTrYcbxN649fm7ZPWtqjVcCQpfeIJ6CIl7uH9SdZGhyzLMJAjT+ERh FTu3oFrmufE/+IlNmhDGLyWGxtIIJMsS -----END CERTIFICATE-----Generated at Thu Sep 18 23:30:11 2025 by rpki-client