$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: h3ezOXozZ9nLIowc45bKFrTXXQZHh3lGtR9rNzRXGzw= Subject key identifier: 56:3A:8C:1F:5C:E1:57:43:4E:59:2C:6F:E8:19:34:7E:4E:B4:64:16 Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 0136 Signing time: Thu 03 Jul 2025 04:34:41 +0000 Manifest this update: Thu 03 Jul 2025 04:34:41 +0000 Manifest next update: Thu 10 Jul 2025 04:34:41 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: U2YcnbaUpQxMO4uequ4mAgBgJYHX9GrsVWRfp7BWhyQ=) 2: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: UKOODE+aPAFflvFmKVNYOJaCaH8V6bUeZIgoCqj/k80=) 3: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: IP+1b1MWNwsXEa5/Ri8CW/cM8GMHLYMixTxcrnkax+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: Jul 3 04:34:41 2025 GMT Not After : Jul 10 04:34:41 2025 GMT Subject: CN=68660861-93f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f8:d6:d4:1c:9d:96:0b:f3:1b:78:64:24:bd: 0b:ba:9c:f8:bb:f7:36:79:9a:32:50:8e:d0:55:b3: 74:72:67:4f:d9:31:89:23:9f:d5:b4:3d:8d:86:54: bf:2a:da:67:08:53:2b:47:ad:11:5c:14:cf:1b:cd: 9d:cb:13:f8:89:49:b9:a3:fe:af:ef:00:9a:cd:eb: d6:ec:71:66:01:a2:b7:3d:9e:51:94:28:9c:d5:c1: df:c2:fe:fd:b3:0b:e6:1f:39:ed:ad:f4:62:db:0d: aa:e4:78:72:84:d9:b3:71:9c:13:f8:fa:de:b2:2d: cd:8d:df:47:33:7d:13:20:4e:41:ca:3d:c5:e5:85: 8c:be:b1:b6:35:4e:b6:4e:af:fe:6e:ef:b1:4b:c0: c3:bb:3e:a5:14:20:81:1b:45:67:26:f7:16:88:98: 0e:96:5a:70:44:cf:b8:92:97:db:a2:20:02:2b:54: fd:23:44:21:bc:64:27:6e:e1:d9:f0:b7:45:c9:a9: 96:e5:21:f3:d4:47:ce:ba:26:96:f0:63:60:9b:27: 15:8d:e2:69:41:ea:e7:58:d3:14:8f:0e:81:dc:40: 46:53:d7:d3:af:01:4e:d7:ba:e1:94:c0:49:7a:c6: af:2d:28:f4:86:c5:23:f9:be:f8:e1:7e:5c:63:90: b9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:3A:8C:1F:5C:E1:57:43:4E:59:2C:6F:E8:19:34:7E:4E:B4:64:16 X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:92:6c:4d:10:aa:51:ad:cb:7c:66:48:c2:d9:df:4f:8b:4d: 4e:fb:e8:4c:e5:90:b5:bc:e9:fb:01:05:70:d7:97:28:3f:81: ee:6f:55:96:3d:b2:0a:03:42:f5:df:df:f2:00:df:77:ad:de: 6e:a2:f8:b9:4f:8e:4c:b3:94:2c:d0:d7:91:6b:1c:02:c7:6b: 67:e4:b1:6e:b0:67:31:c7:bf:bf:76:ca:dc:0a:91:01:79:06: 89:76:a2:1b:70:df:b7:7d:e3:78:3d:11:50:47:b5:a5:94:7e: 47:ad:26:47:1e:b3:07:01:12:9b:15:d4:64:98:32:d8:33:b1: 3f:a1:1a:a8:36:98:cf:70:15:1e:9b:72:36:d2:fa:aa:b6:ce: 65:3b:47:24:a1:24:0b:c9:bd:75:8a:ae:61:ce:3b:00:01:75: e0:07:3c:52:30:8e:cc:f0:d5:48:bb:77:9a:6d:13:8b:91:a5: 06:13:04:29:1e:48:d7:c1:45:41:e9:32:64:f4:95:6c:41:d5: 51:73:cd:7d:21:07:e0:01:09:b3:0f:00:38:b4:84:13:10:96: 11:f7:28:93:52:f9:b4:43:c7:49:4d:6e:85:42:7f:62:22:d5: 16:d2:2e:03:a7:2c:89:bf:20:34:dc:2a:88:5b:2d:09:b9:a3: 49:d1:09:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjUwNzAzMDQzNDQxWhcNMjUwNzEwMDQzNDQxWjAYMRYwFAYD VQQDEw02ODY2MDg2MS05M2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPjW1BydlgvzG3hkJL0Lupz4u/c2eZoyUI7QVbN0cmdP2TGJI5/VtD2NhlS/ KtpnCFMrR60RXBTPG82dyxP4iUm5o/6v7wCazevW7HFmAaK3PZ5RlCic1cHfwv79 swvmHzntrfRi2w2q5HhyhNmzcZwT+Presi3Njd9HM30TIE5Byj3F5YWMvrG2NU62 Tq/+bu+xS8DDuz6lFCCBG0VnJvcWiJgOllpwRM+4kpfboiACK1T9I0QhvGQnbuHZ 8LdFyamW5SHz1EfOuiaW8GNgmycVjeJpQernWNMUjw6B3EBGU9fTrwFO17rhlMBJ esavLSj0hsUj+b744X5cY5C5gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFY6jB9c 4VdDTlksb+gZNH5OtGQWMB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUUxQi83NDk1MjUxNDdEMjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFk NXc3Tk1LclNlbW4wdWJJcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRkmxNEKpRrct8ZkjC2d9Pi01O++hM5ZC1vOn7AQVw15coP4Hub1WW PbIKA0L139/yAN93rd5uovi5T45Ms5Qs0NeRaxwCx2tn5LFusGcxx7+/dsrcCpEB eQaJdqIbcN+3feN4PRFQR7WllH5HrSZHHrMHARKbFdRkmDLYM7E/oRqoNpjPcBUe m3I20vqqts5lO0ckoSQLyb11iq5hzjsAAXXgBzxSMI7M8NVIu3eabROLkaUGEwQp HkjXwUVB6TJk9JVsQdVRc819IQfgAQmzDwA4tIQTEJYR9yiTUvm0Q8dJTW6FQn9i ItUW0i4DpyyJvyA03CqIWy0JuaNJ0Qkv -----END CERTIFICATE-----Generated at Thu Jul 3 18:35:14 2025 by rpki-client