$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: AF9lnbeIqwOTjkyUIRI3wLQ+7+W7NCHzLb1FGGtqH/M= Subject key identifier: 86:C8:EC:A7:E3:8B:C9:07:93:2C:5D:B4:E2:9D:A3:B3:10:7A:5A:BE Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 0150 Signing time: Sat 23 Aug 2025 04:19:11 +0000 Manifest this update: Sat 23 Aug 2025 04:19:10 +0000 Manifest next update: Sat 30 Aug 2025 04:19:10 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: OnTBzw3tuFJVo7VYH6WpHj7YRVsoP/vAK+s1+86ncXk=) 2: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: UKOODE+aPAFflvFmKVNYOJaCaH8V6bUeZIgoCqj/k80=) 3: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: IP+1b1MWNwsXEa5/Ri8CW/cM8GMHLYMixTxcrnkax+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:19:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: Aug 23 04:19:10 2025 GMT Not After : Aug 30 04:19:10 2025 GMT Subject: CN=68a9413e-aab6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cc:c9:65:4a:cd:2d:75:e1:8f:fe:4d:59:3d: b1:bf:a6:de:15:23:8a:91:2e:4c:6d:2e:99:50:e1: 84:4a:a8:3d:09:b2:a2:a0:f1:e4:be:67:f8:3b:92: a5:66:5f:a4:5d:8b:fe:99:84:d9:a4:52:2a:7d:93: 06:df:c1:fe:b6:1a:5c:48:7a:e4:49:03:da:bd:8d: d1:be:07:4e:16:50:2a:0a:ca:89:83:ef:bf:bd:6f: a4:c1:3f:45:77:41:a8:11:03:b8:71:20:b2:bb:c9: 7b:53:c1:e7:52:6e:0c:c4:e7:8d:1b:89:95:88:da: 3f:b4:22:a6:1e:80:70:61:81:d6:c5:83:c2:5f:d5: fc:ac:ae:da:86:1e:52:7f:66:86:dc:f2:15:94:b9: a6:c3:7a:3e:12:48:e2:14:29:f7:2c:e5:0a:4e:f5: 1d:da:b5:15:80:18:fc:3c:f4:07:c8:4b:f3:42:4a: 3d:cc:3c:72:b5:a6:df:8d:c6:25:ad:fb:5b:0c:6e: 38:fc:1b:8c:16:12:c9:00:1b:6d:3f:61:53:52:0c: aa:3c:61:08:15:d9:d3:6c:e5:94:8a:70:d6:b2:ba: f7:93:97:93:37:82:8c:d6:c8:a6:8a:83:ae:4d:ea: 9d:73:47:6c:ea:b3:0d:46:54:92:69:36:a6:3a:56: 4c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:C8:EC:A7:E3:8B:C9:07:93:2C:5D:B4:E2:9D:A3:B3:10:7A:5A:BE X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:f1:0d:32:e9:16:60:fc:e5:04:a4:4c:b0:af:ce:4c:54:68: fa:5b:c7:9b:b5:62:86:a3:eb:86:f5:38:34:3f:1d:cb:26:c3: 57:ff:42:62:a9:b3:65:88:60:6f:4b:35:44:2e:d3:96:a2:91: 56:02:99:52:4a:40:ac:25:4e:19:0a:61:83:c3:5e:80:ad:14: 9c:e3:63:b7:2f:2d:70:65:fd:50:25:c2:79:ab:6e:39:5e:9f: 66:cf:70:78:7a:02:39:7d:4c:0b:4e:f3:9f:57:aa:99:37:d9: 22:20:fb:b5:35:6a:66:26:08:20:43:9d:a5:de:2d:fe:e8:e0: c0:a8:6d:4e:5f:1d:27:4b:89:25:93:97:4a:28:f7:1f:c8:e3: 3d:ca:19:4d:72:f5:04:a3:65:8b:ba:41:b8:63:7b:71:d8:1a: 01:a8:51:11:0c:54:c0:10:98:11:7e:06:27:19:8a:41:61:ae: 28:74:f4:f7:51:2f:f1:ae:5e:07:c2:cb:4f:97:65:23:79:29: 62:c1:ee:5e:48:ec:d5:9f:5f:ad:a0:83:08:b2:73:17:98:fb: 4e:48:bf:6d:4b:b8:4a:59:89:f3:ba:fd:11:21:3c:1b:f0:32: c6:a2:65:b8:ab:3e:26:97:c2:f1:db:d6:f7:be:68:7e:f9:26: 9b:37:b2:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjUwODIzMDQxOTEwWhcNMjUwODMwMDQxOTEwWjAYMRYwFAYD VQQDEw02OGE5NDEzZS1hYWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8zJZUrNLXXhj/5NWT2xv6beFSOKkS5MbS6ZUOGESqg9CbKioPHkvmf4O5Kl Zl+kXYv+mYTZpFIqfZMG38H+thpcSHrkSQPavY3RvgdOFlAqCsqJg++/vW+kwT9F d0GoEQO4cSCyu8l7U8HnUm4MxOeNG4mViNo/tCKmHoBwYYHWxYPCX9X8rK7ahh5S f2aG3PIVlLmmw3o+EkjiFCn3LOUKTvUd2rUVgBj8PPQHyEvzQko9zDxytabfjcYl rftbDG44/BuMFhLJABttP2FTUgyqPGEIFdnTbOWUinDWsrr3k5eTN4KM1simioOu Teqdc0ds6rMNRlSSaTamOlZMtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbI7Kfj i8kHkyxdtOKdo7MQelq+MB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUUxQi83NDk1MjUxNDdEMjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFk NXc3Tk1LclNlbW4wdWJJcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn8Q0y6RZg/OUEpEywr85MVGj6W8ebtWKGo+uG9Tg0Px3LJsNX/0Ji qbNliGBvSzVELtOWopFWAplSSkCsJU4ZCmGDw16ArRSc42O3Ly1wZf1QJcJ5q245 Xp9mz3B4egI5fUwLTvOfV6qZN9kiIPu1NWpmJgggQ52l3i3+6ODAqG1OXx0nS4kl k5dKKPcfyOM9yhlNcvUEo2WLukG4Y3tx2BoBqFERDFTAEJgRfgYnGYpBYa4odPT3 US/xrl4HwstPl2UjeSliwe5eSOzVn1+toIMIsnMXmPtOSL9tS7hKWYnzuv0RITwb 8DLGomW4qz4ml8Lx29b3vmh++SabN7Il -----END CERTIFICATE-----Generated at Sun Aug 24 04:50:29 2025 by rpki-client