$ rpki-client -vvf rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft File: hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft (raw, json) Hash identifier: AEzNwJXE9v59DKztHo13SqK5l4OLJNyfTZDNGQWvWug= Subject key identifier: 7E:9E:DE:48:9D:13:B2:44:95:2C:6A:A2:E9:4E:13:1C:65:C1:2D:41 Authority key identifier: 84:E4:FF:B6:92:7F:77:F5:C3:F0:A2:52:68:2F:71:DD:B3:77:B1:1D Certificate issuer: /CN=A911C743/serialNumber=84E4FFB6927F77F5C3F0A252682F71DDB377B11D Certificate serial: 0E5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft Manifest number: 0E50 Signing time: Wed 02 Jul 2025 18:26:20 +0000 Manifest this update: Wed 02 Jul 2025 18:26:20 +0000 Manifest next update: Wed 09 Jul 2025 18:26:20 +0000 Files and hashes: 1: hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl (hash: kVQh4g1FAiDwJupa0yLYTydNsDHWWnXYHVBc5sEBC9c=) 2: 2B21EC2EE4E111E981365C17C4F9AE02.roa (hash: MmZvnPTLEUK2uOO8LldttqheyhLmSNsa1D7UmikJt9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3678 (0xe5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C743, serialNumber=84E4FFB6927F77F5C3F0A252682F71DDB377B11D Validity Not Before: Jul 2 18:26:20 2025 GMT Not After : Jul 9 18:26:20 2025 GMT Subject: CN=686579cc-f72d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:58:63:7b:e5:a3:0e:1c:53:d1:f3:b9:ea:db: 09:e7:1a:19:f6:c3:12:87:34:f3:53:b9:46:11:b8: 53:47:e4:72:3a:4c:9f:9f:9c:79:bc:f1:73:26:79: 11:ad:d4:48:e9:42:b9:3b:d5:08:06:75:6e:3a:6c: 04:7c:a1:07:76:26:ed:7e:b0:cc:ec:51:8d:f1:02: a6:f5:23:74:81:02:85:8e:03:2e:9f:b3:5e:08:6f: 85:b3:dd:4b:c4:1f:75:7c:2a:b8:11:ae:5c:2f:13: 61:ca:3d:fb:69:d9:ac:6e:0c:13:24:70:0b:d0:6f: ac:c2:3a:41:7e:91:21:53:1a:dc:23:63:40:4c:c2: eb:f6:ed:d6:d4:a6:3f:5f:2e:ba:26:a8:d5:62:4f: 37:bf:d9:50:5c:73:fb:fd:d9:66:1d:1e:5f:82:25: 1f:8c:8b:4d:22:b2:bd:80:2a:9c:91:f4:c3:0c:8c: bf:f4:a2:88:7f:c9:31:f7:9c:b3:b1:c8:5d:7b:b1: 29:b3:3c:b2:28:c0:ac:9a:9a:b3:84:be:e4:1f:7b: 5c:b1:96:8e:1f:0d:20:fe:01:01:17:18:fd:56:8f: df:9e:f5:30:63:0e:e6:cf:05:26:50:c8:48:6a:d6: 83:a3:44:05:09:5f:36:07:bc:b6:c5:e9:c1:5f:33: 6c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:9E:DE:48:9D:13:B2:44:95:2C:6A:A2:E9:4E:13:1C:65:C1:2D:41 X509v3 Authority Key Identifier: keyid:84:E4:FF:B6:92:7F:77:F5:C3:F0:A2:52:68:2F:71:DD:B3:77:B1:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:84:8d:65:b7:9c:80:03:99:3a:56:03:a0:c8:92:96:34:1b: fd:bd:05:43:45:e1:4c:4e:f9:5c:66:b4:9c:85:d3:bb:fa:8c: f0:34:cd:46:79:87:bc:ee:50:78:98:eb:9f:27:5e:6f:65:45: 5a:50:9b:5a:85:55:98:5c:1d:dc:7c:01:bb:72:34:97:1d:3d: d4:53:b0:ad:8b:ce:3e:68:80:ab:29:09:a2:c2:1e:85:a8:67: fc:f4:d7:bb:32:66:b9:1f:b7:7a:01:12:78:d1:86:9e:00:45: 29:b3:e8:75:12:d4:7b:9c:78:a5:d4:df:d2:00:b6:fe:62:7a: 58:ce:a1:16:60:c1:4e:08:bd:9f:5c:4e:e6:cd:e7:8f:b5:30: e5:ef:ea:9a:6f:27:99:61:3f:2e:37:80:51:e1:11:ef:16:ff: a3:fb:e4:ca:f0:0b:83:f5:91:8f:7a:94:75:7a:d3:80:50:46: b9:db:5a:bd:86:37:6e:85:b5:07:de:84:46:96:52:4f:41:88: 8a:3b:0b:d2:57:45:44:57:11:ca:80:c9:06:74:81:6f:f0:0b: 0e:d6:aa:51:98:59:dc:cc:09:c3:76:be:45:e5:20:56:93:85: 11:9d:d3:18:99:13:e8:e8:92:51:10:a7:4c:73:eb:08:e6:00: 50:bf:a6:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM3NDMxMTAvBgNVBAUTKDg0RTRGRkI2OTI3Rjc3RjVDM0YwQTI1MjY4MkY3MURE QjM3N0IxMUQwHhcNMjUwNzAyMTgyNjIwWhcNMjUwNzA5MTgyNjIwWjAYMRYwFAYD VQQDEw02ODY1NzljYy1mNzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1hje+WjDhxT0fO56tsJ5xoZ9sMShzTzU7lGEbhTR+RyOkyfn5x5vPFzJnkR rdRI6UK5O9UIBnVuOmwEfKEHdibtfrDM7FGN8QKm9SN0gQKFjgMun7NeCG+Fs91L xB91fCq4Ea5cLxNhyj37admsbgwTJHAL0G+swjpBfpEhUxrcI2NATMLr9u3W1KY/ Xy66JqjVYk83v9lQXHP7/dlmHR5fgiUfjItNIrK9gCqckfTDDIy/9KKIf8kx95yz schde7EpszyyKMCsmpqzhL7kH3tcsZaOHw0g/gEBFxj9Vo/fnvUwYw7mzwUmUMhI ataDo0QFCV82B7y2xenBXzNs2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6e3kid E7JElSxqoulOExxlwS1BMB8GA1UdIwQYMBaAFITk/7aSf3f1w/CiUmgvcd2zd7Ed MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzc0My9GOEFFMjg4MEEy MUQxMUU5ODI0MkFEODFDNEY5QUUwMi9oT1RfdHBKX2RfWEQ4S0pTYUM5eDNiTjNz UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hPVF90cEpfZF9YRDhLSlNhQzl4M2JOM3NSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Qzc0My9GOEFFMjg4MEEyMUQxMUU5ODI0MkFEODFDNEY5QUUwMi9oT1RfdHBKX2Rf WEQ4S0pTYUM5eDNiTjNzUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAshI1lt5yAA5k6VgOgyJKWNBv9vQVDReFMTvlcZrSchdO7+ozwNM1G eYe87lB4mOufJ15vZUVaUJtahVWYXB3cfAG7cjSXHT3UU7Cti84+aICrKQmiwh6F qGf89Ne7Mma5H7d6ARJ40YaeAEUps+h1EtR7nHil1N/SALb+YnpYzqEWYMFOCL2f XE7mzeePtTDl7+qabyeZYT8uN4BR4RHvFv+j++TK8AuD9ZGPepR1etOAUEa521q9 hjduhbUH3oRGllJPQYiKOwvSV0VEVxHKgMkGdIFv8AsO1qpRmFnczAnDdr5F5SBW k4URndMYmRPo6JJREKdMc+sI5gBQv6aD -----END CERTIFICATE-----Generated at Thu Jul 3 04:30:58 2025 by rpki-client