$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: JyU7hWqDP95GpHuu3pkLO6PbFtMiyeCMjFy4jTgc5YE= Subject key identifier: 2C:96:05:8F:CC:24:C8:BF:9D:D3:3D:02:78:A1:2B:DB:0F:31:9B:9E Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 016D Signing time: Sun 19 Oct 2025 06:31:49 +0000 Manifest this update: Sun 19 Oct 2025 06:31:48 +0000 Manifest next update: Sun 26 Oct 2025 06:31:48 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: mQQUwJZYouOeoabA0YaUp3RwbIhYZQVBW6euQvNl0ls=) 2: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: UKOODE+aPAFflvFmKVNYOJaCaH8V6bUeZIgoCqj/k80=) 3: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: IP+1b1MWNwsXEa5/Ri8CW/cM8GMHLYMixTxcrnkax+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: Oct 19 06:31:48 2025 GMT Not After : Oct 26 06:31:48 2025 GMT Subject: CN=68f485d5-669a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:8c:a3:64:5e:78:62:4a:e9:a8:0f:ef:3d:aa: 8d:48:b6:25:a0:a1:5d:ac:d7:ea:53:c0:e3:59:55: 04:9b:3a:e8:3e:7a:a6:aa:67:30:fd:b6:06:cd:29: da:dc:36:9f:d1:04:cd:6e:8b:b1:0d:52:53:8c:ef: db:eb:86:1a:29:4f:00:ba:ff:17:c8:83:ba:c5:e8: 1e:6f:47:d1:07:b9:4c:25:9f:de:5c:20:d7:1e:a6: c0:bd:ed:77:2f:0a:0b:ea:5d:87:50:ff:74:99:3e: 5d:fa:dc:7a:66:dc:2a:de:24:60:1f:5b:08:c1:73: 0f:ce:d9:7f:e4:25:17:2a:fc:a4:b6:86:e7:cc:74: ad:78:e9:c0:bb:d1:12:1f:80:d9:60:b7:88:af:e6: 2a:d5:13:47:4c:11:3e:1f:70:88:34:07:3a:cd:b5: 83:a6:a5:1e:33:16:f3:2e:44:22:59:8a:10:40:67: 6d:a7:68:6b:10:19:72:d2:75:e4:49:a8:8f:81:fd: 80:87:cd:9b:08:fc:01:69:7a:dc:21:a6:a8:d4:b2: 86:3d:bd:58:86:8d:1c:85:bd:e6:6f:55:3f:b3:36: 56:c1:1f:db:5e:11:7e:3c:c9:4c:61:cc:88:66:ad: 5c:77:d1:c2:0a:da:ae:1c:74:d5:50:23:df:ac:c8: 18:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:96:05:8F:CC:24:C8:BF:9D:D3:3D:02:78:A1:2B:DB:0F:31:9B:9E X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:f9:28:67:c5:cf:8c:56:4f:b7:ad:25:99:b4:0a:bb:e7:e0: 03:77:c9:1e:37:97:60:c1:3b:c9:70:6e:b1:f8:63:88:d0:63: b0:75:2f:3c:85:64:d6:d8:69:d1:0b:f5:08:1d:27:e0:99:2b: d2:8c:2c:7b:30:38:42:02:81:6b:70:2e:04:25:e8:ca:37:bb: c9:13:e0:cd:94:14:69:02:f6:0f:9b:df:e8:6b:f4:d0:01:87: 7a:cc:ac:4f:98:ab:a1:76:51:98:e2:66:b6:9b:9c:09:b4:54: bb:bf:2f:40:a5:ca:9a:11:ca:86:91:7b:e5:f9:ee:f0:34:af: 1f:3b:e9:d0:e6:03:5d:d6:ee:50:f0:74:b6:51:93:eb:db:94: 2d:d7:85:e4:b4:f3:4a:ff:e3:6e:3e:31:c8:d7:fb:a4:11:5e: f5:f4:a2:e6:e7:3c:ab:bb:07:c6:c1:d7:2d:7b:65:53:de:56: 25:47:4f:d4:82:00:9a:f6:2a:cf:69:51:c0:62:df:06:5d:fa: 65:99:bb:bd:2e:c2:36:d4:b9:13:d8:31:32:7d:44:0a:73:73: 85:e4:3e:95:a6:79:54:ef:99:b9:a2:62:29:98:76:95:3b:3e: f9:bd:a1:a2:65:c9:1f:92:c0:49:f6:f1:ae:41:56:28:24:79: d6:4c:4e:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjUxMDE5MDYzMTQ4WhcNMjUxMDI2MDYzMTQ4WjAYMRYwFAYD VQQDEw02OGY0ODVkNS02NjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmoyjZF54YkrpqA/vPaqNSLYloKFdrNfqU8DjWVUEmzroPnqmqmcw/bYGzSna 3Daf0QTNbouxDVJTjO/b64YaKU8Auv8XyIO6xegeb0fRB7lMJZ/eXCDXHqbAve13 LwoL6l2HUP90mT5d+tx6Ztwq3iRgH1sIwXMPztl/5CUXKvyktobnzHSteOnAu9ES H4DZYLeIr+Yq1RNHTBE+H3CINAc6zbWDpqUeMxbzLkQiWYoQQGdtp2hrEBly0nXk SaiPgf2Ah82bCPwBaXrcIaao1LKGPb1Yho0chb3mb1U/szZWwR/bXhF+PMlMYcyI Zq1cd9HCCtquHHTVUCPfrMgYTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCyWBY/M JMi/ndM9AnihK9sPMZueMB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUUxQi83NDk1MjUxNDdEMjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFk NXc3Tk1LclNlbW4wdWJJcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ+Shnxc+MVk+3rSWZtAq75+ADd8keN5dgwTvJcG6x+GOI0GOwdS88 hWTW2GnRC/UIHSfgmSvSjCx7MDhCAoFrcC4EJejKN7vJE+DNlBRpAvYPm9/oa/TQ AYd6zKxPmKuhdlGY4ma2m5wJtFS7vy9ApcqaEcqGkXvl+e7wNK8fO+nQ5gNd1u5Q 8HS2UZPr25Qt14XktPNK/+NuPjHI1/ukEV719KLm5zyruwfGwdcte2VT3lYlR0/U ggCa9irPaVHAYt8GXfplmbu9LsI21LkT2DEyfUQKc3OF5D6VpnlU75m5omIpmHaV Oz75vaGiZckfksBJ9vGuQVYoJHnWTE4+ -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:22 2025 by rpki-client