$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: kn1qnelk5MdShkjsxWtRZNPwGFuS+I9qgf0cdXRZOZU= Subject key identifier: 71:32:1B:41:7B:CA:0B:5D:17:F2:F7:A1:31:D1:ED:2A:7B:4E:3F:A1 Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 01CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 01C1 Signing time: Wed 25 Mar 2026 03:07:43 +0000 Manifest this update: Wed 25 Mar 2026 03:07:43 +0000 Manifest next update: Wed 01 Apr 2026 03:07:43 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: msE/a1vIe7aKoC1x/WJH7uDHLbqegiC2lkKLO9n6Zf0=) 2: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: n/+iSZ/XdamVp91QYBtpJ28J2tmDpxBk4yTTzrUUrg0=) 3: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: JeqqccV0moh9xl5LOsL93SB6Ep+iaPUP/pq2BF+emVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:07:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 461 (0x1cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: Mar 25 03:07:43 2026 GMT Not After : Apr 1 03:07:43 2026 GMT Subject: CN=69c3517f-3d3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b3:5d:20:fd:8b:22:8a:f3:c0:ec:c9:80:db: a1:bf:ae:be:e0:fc:76:b4:13:e2:01:8d:b2:61:06: c5:26:ba:71:a0:fa:9f:69:3d:a3:f2:4d:b1:ea:d5: bf:dc:03:f5:f8:9a:d3:cc:9a:0f:49:ec:42:0f:84: 1d:a1:a3:94:45:26:ee:17:d1:d7:aa:3a:98:0c:e4: a3:83:5b:73:8b:f5:6f:e5:36:06:4a:17:db:03:99: 9d:32:5f:ef:bd:da:d9:8d:01:68:b9:f3:76:4b:e4: 5e:95:95:8a:95:38:b3:cb:2a:03:eb:3a:67:76:8e: ff:2a:4a:1a:1b:b1:01:8b:5b:d0:50:63:ee:68:6c: 32:31:b5:d3:7c:b4:4f:d3:2d:32:d8:19:a5:01:01: 3b:48:db:52:a0:1c:cf:72:f7:e6:4a:d2:cd:a0:db: d1:51:cc:1e:e3:11:ad:72:a5:bc:ab:58:f2:8d:a9: 5f:7c:62:03:32:00:0c:8c:04:29:a1:37:05:4a:40: 0e:e2:58:db:75:e6:12:45:52:62:f8:d0:4b:c6:32: 7f:76:d2:9c:da:e7:6a:19:57:5e:b8:ed:bc:73:1d: 35:63:b1:b5:c9:15:c9:b1:ee:3d:ba:1d:38:74:41: 64:97:52:8b:b7:8f:71:29:97:f5:1e:c7:a3:5b:42: ff:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:32:1B:41:7B:CA:0B:5D:17:F2:F7:A1:31:D1:ED:2A:7B:4E:3F:A1 X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:ac:77:13:bd:fd:46:43:33:07:73:f6:e8:eb:34:b5:14:fe: 45:a7:a9:f6:bd:42:3d:a2:58:4a:42:0f:97:b6:e8:46:22:73: 3f:cc:c2:01:5d:31:42:d3:01:e6:65:f5:a0:00:99:e2:02:a1: 98:37:64:21:18:c9:c8:3a:8b:7a:75:89:41:38:20:e2:72:0e: a5:6c:a8:0b:08:e7:71:e0:77:2e:7f:b6:fc:d8:97:cc:9d:15: dc:15:02:5f:8a:34:91:fe:3d:eb:e5:02:13:f2:a2:35:4b:54: 00:13:c8:a3:90:30:be:dc:b3:99:1c:c2:f1:88:36:c1:5f:e5: 37:40:b7:fd:e7:c9:2a:5c:76:5a:39:0a:b4:f9:f6:a5:46:8c: da:f6:49:a6:79:b9:bc:a6:dc:39:07:6b:27:fe:24:09:43:d8: 57:96:bd:48:6d:06:35:c5:c0:57:bc:e0:df:08:dd:c4:fd:93: 4a:ee:23:0e:36:f4:b8:71:79:fd:9a:f8:0b:a0:44:3b:e8:68: 85:7d:81:ad:54:8a:a8:04:df:73:cf:1b:f3:e7:40:3d:c7:4c: f8:a7:41:2f:37:31:6d:9f:f5:01:61:67:a0:39:1b:24:ac:79: 04:e8:45:1d:3e:8b:6d:a2:ca:7e:44:a9:4d:a4:6b:15:21:ff: ae:14:53:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjYwMzI1MDMwNzQzWhcNMjYwNDAxMDMwNzQzWjAYMRYwFAYD VQQDEw02OWMzNTE3Zi0zZDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7NdIP2LIorzwOzJgNuhv66+4Px2tBPiAY2yYQbFJrpxoPqfaT2j8k2x6tW/ 3AP1+JrTzJoPSexCD4QdoaOURSbuF9HXqjqYDOSjg1tzi/Vv5TYGShfbA5mdMl/v vdrZjQFoufN2S+RelZWKlTizyyoD6zpndo7/KkoaG7EBi1vQUGPuaGwyMbXTfLRP 0y0y2BmlAQE7SNtSoBzPcvfmStLNoNvRUcwe4xGtcqW8q1jyjalffGIDMgAMjAQp oTcFSkAO4ljbdeYSRVJi+NBLxjJ/dtKc2udqGVdeuO28cx01Y7G1yRXJse49uh04 dEFkl1KLt49xKZf1HsejW0L/wwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHEyG0F7 ygtdF/L3oTHR7Sp7Tj+hMB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUUxQi83NDk1MjUxNDdEMjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFk NXc3Tk1LclNlbW4wdWJJcncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMKx3E739RkMzB3P26Os0tRT+Raep9r1CPaJYSkIPl7boRiJzP8zCAV0xQtMB 5mX1oACZ4gKhmDdkIRjJyDqLenWJQTgg4nIOpWyoCwjnceB3Ln+2/NiXzJ0V3BUC X4o0kf496+UCE/KiNUtUABPIo5AwvtyzmRzC8Yg2wV/lN0C3/efJKlx2WjkKtPn2 pUaM2vZJpnm5vKbcOQdrJ/4kCUPYV5a9SG0GNcXAV7zg3wjdxP2TSu4jDjb0uHF5 /Zr4C6BEO+hohX2BrVSKqATfc88b8+dAPcdM+KdBLzcxbZ/1AWFnoDkbJKx5BOhF HT6LbaLKfkSpTaRrFSH/rhRTXw== -----END CERTIFICATE-----Generated at Thu Mar 26 23:18:08 2026 by rpki-client