$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: 0YBirzY0TC/WiOE30NGO4nLkZ+hCqTX87auWIUw6yr4= Subject key identifier: 05:A8:D4:98:6C:FF:95:A8:D1:7A:34:EE:4A:4D:30:39:4F:15:FA:B7 Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 01DA Signing time: Wed 13 May 2026 03:37:29 +0000 Manifest this update: Wed 13 May 2026 03:37:29 +0000 Manifest next update: Wed 20 May 2026 03:37:29 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: MD9z1i0o2CI9biZLc5CN6urr639Um5j1b3YhvdqMlTc=) 2: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: JeqqccV0moh9xl5LOsL93SB6Ep+iaPUP/pq2BF+emVw=) 3: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: n/+iSZ/XdamVp91QYBtpJ28J2tmDpxBk4yTTzrUUrg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 03:37:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: May 13 03:37:29 2026 GMT Not After : May 20 03:37:29 2026 GMT Subject: CN=6a03f1f9-c357 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c2:c1:3a:9b:51:a2:7b:06:e7:bb:ea:29:fd: 1e:c3:8f:9b:5e:ce:38:53:e1:d2:32:54:1c:b4:26: 23:e6:9e:9b:87:50:5f:79:81:5a:ff:8f:85:0f:39: c0:84:62:78:97:d2:3b:07:a0:90:be:c7:f7:fe:ef: 5f:db:84:bb:84:83:92:48:19:d2:3a:c3:79:21:6d: 59:04:fc:bf:0f:2b:50:d5:61:11:94:ef:51:41:fc: 1a:d0:5a:2d:02:01:81:32:41:82:cc:45:88:61:a6: 73:12:94:03:8a:fc:89:51:99:3d:f9:a8:05:ab:30: 1f:62:a8:c6:b2:79:cd:12:9f:5b:3b:64:09:97:69: 2f:c7:49:c5:a0:5f:a7:29:8d:24:50:2f:f9:ff:39: 7b:9c:20:d8:86:05:65:39:f4:ad:0e:f3:11:5e:cd: b6:ac:61:a2:bd:3c:0e:96:04:da:a1:03:0b:97:d0: a0:ec:54:ec:6b:27:1f:32:64:46:66:b0:82:8d:e1: 61:03:85:65:6b:c9:4a:7d:0e:6a:bb:64:96:2c:61: 7f:a4:fd:f6:5a:cc:d3:af:a0:4e:d1:47:4b:f2:85: 3b:c8:c3:2e:af:ab:06:e6:c8:cf:47:2d:98:6d:f2: 40:01:11:f2:a4:07:8e:67:d6:39:48:45:21:7e:de: 2e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A8:D4:98:6C:FF:95:A8:D1:7A:34:EE:4A:4D:30:39:4F:15:FA:B7 X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:ab:b8:c3:69:5c:d2:d2:d8:33:28:9c:df:fa:60:07:00:e0: 7a:21:f9:b9:f0:00:dd:a9:00:5c:58:4d:f3:5d:9f:3b:31:6f: 3e:d9:05:82:dc:ea:d4:d7:23:8a:36:9f:a0:83:a0:e6:1a:03: 2b:3c:d6:ee:7a:70:7d:d5:96:67:05:1a:90:28:a5:f6:48:c4: 97:22:fe:e0:7a:3d:45:ff:be:a1:ae:66:17:61:fc:cb:ff:5a: 49:40:c3:dd:6a:9b:6a:4f:65:73:c2:64:0d:10:e8:81:85:2e: cf:0d:de:45:93:48:26:3e:4c:bd:0c:28:15:6a:37:d9:a8:2d: 8f:5a:b5:50:a8:06:65:60:17:41:61:04:1c:b2:76:a2:85:60: 62:e6:98:d1:84:77:ef:f4:a7:9e:bc:02:57:57:27:cc:e5:e1: 75:21:d2:6a:e9:2d:a9:0f:47:e1:a6:96:5a:c1:3a:e8:13:b6: 2a:72:ed:f9:0e:e8:a3:c7:b9:e9:26:f9:0d:f7:c3:7e:34:05: c0:8a:a3:93:03:9a:4d:b6:3c:e4:0a:98:d4:6d:f5:2a:04:9c: 08:7d:5b:21:98:41:50:7e:4d:65:98:05:b4:f1:e5:b7:2c:e5: e8:29:9c:40:d4:74:93:66:a2:56:55:c6:b5:1b:e6:c5:4d:33: 30:ba:df:c0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjYwNTEzMDMzNzI5WhcNMjYwNTIwMDMzNzI5WjAYMRYwFAYD VQQDEw02YTAzZjFmOS1jMzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38LBOptRonsG57vqKf0ew4+bXs44U+HSMlQctCYj5p6bh1BfeYFa/4+FDznA hGJ4l9I7B6CQvsf3/u9f24S7hIOSSBnSOsN5IW1ZBPy/DytQ1WERlO9RQfwa0Fot AgGBMkGCzEWIYaZzEpQDivyJUZk9+agFqzAfYqjGsnnNEp9bO2QJl2kvx0nFoF+n KY0kUC/5/zl7nCDYhgVlOfStDvMRXs22rGGivTwOlgTaoQMLl9Cg7FTsaycfMmRG ZrCCjeFhA4Vla8lKfQ5qu2SWLGF/pP32WszTr6BO0UdL8oU7yMMur6sG5sjPRy2Y bfJAARHypAeOZ9Y5SEUhft4u1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAWo1Jhs /5Wo0Xo07kpNMDlPFfq3MB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUUxQi83NDk1MjUxNDdEMjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFk NXc3Tk1LclNlbW4wdWJJcncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPqu4w2lc0tLYMyic3/pgBwDgeiH5ufAA3akAXFhN812fOzFvPtkFgtzq1Ncj ijafoIOg5hoDKzzW7npwfdWWZwUakCil9kjElyL+4Ho9Rf++oa5mF2H8y/9aSUDD 3Wqbak9lc8JkDRDogYUuzw3eRZNIJj5MvQwoFWo32agtj1q1UKgGZWAXQWEEHLJ2 ooVgYuaY0YR37/SnnrwCV1cnzOXhdSHSauktqQ9H4aaWWsE66BO2KnLt+Q7oo8e5 6Sb5DffDfjQFwIqjkwOaTbY85AqY1G31KgScCH1bIZhBUH5NZZgFtPHltyzl6Cmc QNR0k2aiVlXGtRvmxU0zMLrfwA== -----END CERTIFICATE-----Generated at Wed May 13 09:30:26 2026 by rpki-client