$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: Edk1WEzAT9XsLvkleGwLDqs/fMRx2Gzb9YHtEsNZrL4= Subject key identifier: 65:03:47:BE:2A:87:8B:66:33:E7:2B:67:68:FA:EF:D1:05:7B:A7:B2 Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 0175 Signing time: Wed 05 Nov 2025 03:56:02 +0000 Manifest this update: Wed 05 Nov 2025 03:56:02 +0000 Manifest next update: Wed 12 Nov 2025 03:56:02 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: 5HdiGVjOhMx6/O6qg6lib6RmwQU9kWQcRNXq9tmXUvU=) 2: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: UKOODE+aPAFflvFmKVNYOJaCaH8V6bUeZIgoCqj/k80=) 3: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: IP+1b1MWNwsXEa5/Ri8CW/cM8GMHLYMixTxcrnkax+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:56:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: Nov 5 03:56:02 2025 GMT Not After : Nov 12 03:56:02 2025 GMT Subject: CN=690acad2-35a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e2:42:2d:4c:ae:52:30:5a:a8:ca:52:dd:83: 93:62:3b:08:19:22:39:d3:23:10:b9:b6:c7:cc:d1: 5f:ac:95:0e:fc:54:5d:f1:51:0a:7f:ae:e1:2c:c9: 47:af:96:31:4b:62:fc:b5:4e:f5:ef:05:7d:3c:17: 22:12:b5:15:ac:53:46:5f:5b:3e:72:c2:79:0d:21: a6:10:dd:06:73:f5:db:d0:52:05:04:b6:71:1f:1a: 3a:73:72:a8:62:c6:d6:e8:3e:b7:d2:41:1f:b7:2c: 0c:ec:05:02:04:7c:1d:d5:6a:d9:4f:c6:bd:a2:65: 38:c4:16:9c:5b:c6:10:78:cf:1c:9f:1b:c4:a1:29: b3:de:04:a0:ed:40:d1:e2:71:60:ad:6e:b6:6d:f9: 47:25:54:eb:fb:e8:07:ea:57:60:18:4e:aa:c1:64: 6c:67:d3:b8:e2:92:f5:96:6e:d0:02:f2:dd:9f:0f: bf:de:d2:dd:52:d1:cc:f3:dc:16:67:88:88:b2:5e: 4c:51:cc:ca:c1:52:47:f2:ea:a0:6f:b5:a1:18:8b: 65:2b:20:f4:76:2c:39:e4:da:e7:04:39:ca:9f:15: 3f:f7:df:bd:e7:3c:72:6c:97:e6:cf:ab:15:06:7c: 56:e6:22:b1:22:dd:f8:ae:66:44:54:ea:68:db:65: 56:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:03:47:BE:2A:87:8B:66:33:E7:2B:67:68:FA:EF:D1:05:7B:A7:B2 X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:b0:d2:7a:d3:92:da:b5:7b:f9:7f:56:f5:25:5a:4e:29:3e: f2:9b:27:3f:13:3f:b5:92:c2:d9:b3:70:89:88:92:85:37:30: 7d:20:c6:c7:ee:1a:65:f8:98:31:5d:42:1d:27:a6:b2:82:d3: dc:22:4d:f7:18:b1:7c:c2:62:d5:11:86:d6:7a:b1:61:af:10: 97:88:f1:7a:7b:be:cd:97:53:fb:43:a6:56:b1:01:ae:f4:ca: 1d:d9:40:8b:51:ec:3c:51:9f:25:98:6d:15:95:44:5e:60:58: 0b:70:3f:1d:5e:6b:1f:95:92:62:c3:90:3d:82:b9:f1:3f:5b: 41:56:96:31:a2:6d:4d:90:00:0f:ed:39:ed:e8:d3:cf:6f:8d: 8c:b0:aa:ff:1e:0b:4b:cb:00:79:e5:ef:c8:2a:5b:e0:1f:12: 17:e7:e5:dc:a7:a6:38:25:00:81:e7:4f:fe:a9:43:a2:e9:5a: 62:0d:1f:1d:cc:9e:82:15:3e:5d:9a:57:bc:ea:8d:ee:bd:62: bd:a7:72:1b:de:f2:a2:50:f3:40:1b:2d:8d:a0:11:11:2a:17: 6f:c1:85:f5:e9:d9:72:13:e7:9f:83:f3:58:a4:4f:91:72:52: 3e:58:2c:c4:07:42:9e:bc:ab:69:c9:a6:66:86:3f:3d:19:7f: c2:05:a5:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjUxMTA1MDM1NjAyWhcNMjUxMTEyMDM1NjAyWjAYMRYwFAYD VQQDEw02OTBhY2FkMi0zNWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6uJCLUyuUjBaqMpS3YOTYjsIGSI50yMQubbHzNFfrJUO/FRd8VEKf67hLMlH r5YxS2L8tU717wV9PBciErUVrFNGX1s+csJ5DSGmEN0Gc/Xb0FIFBLZxHxo6c3Ko YsbW6D630kEftywM7AUCBHwd1WrZT8a9omU4xBacW8YQeM8cnxvEoSmz3gSg7UDR 4nFgrW62bflHJVTr++gH6ldgGE6qwWRsZ9O44pL1lm7QAvLdnw+/3tLdUtHM89wW Z4iIsl5MUczKwVJH8uqgb7WhGItlKyD0diw55NrnBDnKnxU/99+95zxybJfmz6sV BnxW5iKxIt34rmZEVOpo22VW7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUDR74q h4tmM+crZ2j679EFe6eyMB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUUxQi83NDk1MjUxNDdEMjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFk NXc3Tk1LclNlbW4wdWJJcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrsNJ605LatXv5f1b1JVpOKT7ymyc/Ez+1ksLZs3CJiJKFNzB9IMbH 7hpl+JgxXUIdJ6aygtPcIk33GLF8wmLVEYbWerFhrxCXiPF6e77Nl1P7Q6ZWsQGu 9Mod2UCLUew8UZ8lmG0VlUReYFgLcD8dXmsflZJiw5A9grnxP1tBVpYxom1NkAAP 7Tnt6NPPb42MsKr/HgtLywB55e/IKlvgHxIX5+Xcp6Y4JQCB50/+qUOi6VpiDR8d zJ6CFT5dmle86o3uvWK9p3Ib3vKiUPNAGy2NoBERKhdvwYX16dlyE+efg/NYpE+R clI+WCzEB0KevKtpyaZmhj89GX/CBaVl -----END CERTIFICATE-----Generated at Wed Nov 5 18:36:37 2025 by rpki-client