$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: p8lKNchhpwFD+30S4uoepMGdTPHgYeQLJDGNSKC4W3k= Subject key identifier: 5E:CE:18:05:1A:F5:F7:0D:B2:45:9A:03:76:79:07:EA:36:BC:9C:8E Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 011F Signing time: Sat 17 May 2025 04:19:49 +0000 Manifest this update: Sat 17 May 2025 04:19:48 +0000 Manifest next update: Sat 24 May 2025 04:19:48 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: 16wGCCFyxm5F5kZiZMgmyhwmiviFY+YZX12alh/ukVU=) 2: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: UKOODE+aPAFflvFmKVNYOJaCaH8V6bUeZIgoCqj/k80=) 3: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: IP+1b1MWNwsXEa5/Ri8CW/cM8GMHLYMixTxcrnkax+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 04:19:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: May 17 04:19:48 2025 GMT Not After : May 24 04:19:48 2025 GMT Subject: CN=68280e65-1cdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:20:83:2e:bc:9b:02:ff:99:a0:c8:47:3b:b5: 7d:d1:2b:00:0a:18:a5:33:88:d7:43:1f:c5:f7:20: 74:76:00:0a:d4:e3:36:1d:0a:6a:ab:61:6e:2a:60: 7d:d2:69:1c:34:8e:50:64:e9:a5:80:5d:0c:0c:a1: 20:5b:9e:57:64:27:e7:c5:c1:19:b0:c5:e1:6d:26: 8d:ac:74:32:9b:f5:97:49:61:5b:a8:75:54:c2:d2: 0e:0f:e2:66:fb:29:c8:13:3a:4a:86:5c:dc:0d:a7: 20:65:41:5c:2b:b3:f9:7e:25:7f:ed:6d:db:fd:f0: 99:f5:2b:7b:60:eb:45:1c:18:86:41:07:e8:84:17: 99:bf:28:02:23:12:29:e7:f6:c6:60:f2:4a:c2:54: d9:9c:86:43:eb:a1:44:a8:b5:3a:a3:e6:56:47:f6: 0d:a3:26:06:ca:96:68:ff:ba:59:2c:49:7c:9c:4d: 1b:07:21:55:67:d4:11:44:3d:45:ca:48:40:44:f7: 0a:e6:6a:5b:f1:bf:f1:cf:98:fa:de:6d:05:bb:dc: ab:08:55:4d:7c:99:ca:56:40:37:18:d6:2f:7a:b8: ba:0e:99:ad:32:b0:05:51:5c:ec:9d:8f:5b:c6:2b: 13:f9:b8:28:8f:0b:da:ba:7e:61:c5:42:e8:90:23: 51:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:CE:18:05:1A:F5:F7:0D:B2:45:9A:03:76:79:07:EA:36:BC:9C:8E X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:df:7a:68:1a:09:7d:eb:59:66:a2:4a:25:5e:0e:05:e0:cb: 42:71:77:50:b5:2c:b4:f2:81:fd:95:4a:8d:8d:ce:b2:50:ae: bc:be:f9:cf:ca:38:6e:16:6b:2b:ef:dc:27:85:d2:de:07:03: e4:48:f6:6b:40:0a:76:7b:2c:c3:31:a0:fc:db:a8:b2:61:c9: 8d:ab:4e:04:35:cb:a2:8e:b0:ca:b6:0f:e0:08:b2:5e:0e:25: 53:7d:b9:cd:f7:ed:36:2a:27:a3:6b:b7:b3:b0:f7:1f:76:dc: 8b:20:34:5e:ae:03:2b:54:90:56:68:d7:9b:ab:03:b3:e4:c8: 40:bc:c8:9e:f0:c3:d7:a1:cd:a8:3a:6f:6c:57:63:2b:2d:38: 5a:8f:f3:10:18:9c:45:94:f3:41:e7:39:0e:a3:f3:61:51:5e: d5:e2:96:40:79:e7:4d:a7:d8:1b:c6:07:cb:7a:58:7a:cf:b5: 6e:cd:5a:c7:99:6c:af:03:12:96:ca:bf:8c:ae:db:d8:7e:7b: bb:fb:83:22:dc:31:19:63:c2:1c:1c:ff:a9:22:e5:19:b8:51: e9:f1:ab:c1:8f:44:49:75:1b:ff:62:7c:c7:d4:aa:34:25:f9: ad:a9:4e:24:06:59:40:37:33:4b:e8:0b:52:78:52:d3:7e:a4: 3c:29:c3:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjUwNTE3MDQxOTQ4WhcNMjUwNTI0MDQxOTQ4WjAYMRYwFAYD VQQDEw02ODI4MGU2NS0xY2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyCDLrybAv+ZoMhHO7V90SsAChilM4jXQx/F9yB0dgAK1OM2HQpqq2FuKmB9 0mkcNI5QZOmlgF0MDKEgW55XZCfnxcEZsMXhbSaNrHQym/WXSWFbqHVUwtIOD+Jm +ynIEzpKhlzcDacgZUFcK7P5fiV/7W3b/fCZ9St7YOtFHBiGQQfohBeZvygCIxIp 5/bGYPJKwlTZnIZD66FEqLU6o+ZWR/YNoyYGypZo/7pZLEl8nE0bByFVZ9QRRD1F ykhARPcK5mpb8b/xz5j63m0Fu9yrCFVNfJnKVkA3GNYveri6DpmtMrAFUVzsnY9b xisT+bgojwvaun5hxULokCNRlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7OGAUa 9fcNskWaA3Z5B+o2vJyOMB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUUxQi83NDk1MjUxNDdEMjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFk NXc3Tk1LclNlbW4wdWJJcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh33poGgl961lmokolXg4F4MtCcXdQtSy08oH9lUqNjc6yUK68vvnP yjhuFmsr79wnhdLeBwPkSPZrQAp2eyzDMaD826iyYcmNq04ENcuijrDKtg/gCLJe DiVTfbnN9+02Kieja7ezsPcfdtyLIDRergMrVJBWaNebqwOz5MhAvMie8MPXoc2o Om9sV2MrLThaj/MQGJxFlPNB5zkOo/NhUV7V4pZAeedNp9gbxgfLelh6z7VuzVrH mWyvAxKWyr+MrtvYfnu7+4Mi3DEZY8IcHP+pIuUZuFHp8avBj0RJdRv/YnzH1Ko0 JfmtqU4kBllANzNL6AtSeFLTfqQ8KcMt -----END CERTIFICATE-----Generated at Sat May 17 14:16:28 2025 by rpki-client