$ rpki-client -vvf rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft File: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft (raw, json) Hash identifier: Q7AFXmqK8lT3qi/FndDwr1lVq+ZNm6pHGMURZ9YX/AM= Subject key identifier: 0F:07:5E:9B:64:97:C1:19:9E:19:01:77:9C:92:EE:F1:1B:28:CF:E7 Authority key identifier: 86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 Certificate issuer: /CN=A916E64F/serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Certificate serial: 1709 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft Manifest number: 16FE Signing time: Mon 12 May 2025 16:34:47 +0000 Manifest this update: Mon 12 May 2025 16:34:47 +0000 Manifest next update: Mon 19 May 2025 16:34:47 +0000 Files and hashes: 1: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl (hash: +Tec2y6xEovEm613LKE9pZzPy01LW9i8ijynEDjM3Tg=) 2: 89317668E87B11E785247983C4F9AE02.roa (hash: QoI3M9VOUs5JmUvtm4ggvS0vOfMTJHqMj+I41B3uqls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:34:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5897 (0x1709) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E64F, serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Validity Not Before: May 12 16:34:47 2025 GMT Not After : May 19 16:34:47 2025 GMT Subject: CN=68222327-feea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:db:c0:b9:4b:18:8b:23:c2:83:ce:cc:78:60: 84:bc:62:30:91:ea:37:67:88:37:55:1a:70:98:7c: 81:95:54:50:88:fc:dc:42:b6:ca:61:67:1a:bd:88: 33:21:ec:30:fc:91:f5:aa:65:e5:0b:09:3d:a4:fb: bd:d9:c9:ce:1c:fd:86:64:f9:22:1b:3a:44:d5:a0: cb:bb:c2:bd:94:72:04:19:8d:1f:50:01:1d:0d:3f: ea:59:19:f4:35:a9:7b:a7:f6:04:3f:f2:62:f3:69: d2:e1:a1:22:71:6c:4f:20:52:64:5d:47:34:ca:62: 58:29:b5:41:1b:0e:1a:48:f9:2a:71:21:a7:e2:c2: 72:34:f6:e0:c2:93:96:6e:37:0f:7f:91:b4:19:02: a6:a5:fe:9a:65:9f:53:c3:a5:5f:c8:60:59:c1:d2: fd:9c:2b:90:42:8c:53:f4:21:59:09:35:85:7f:79: b5:16:e6:7d:9c:37:bf:2f:de:e2:95:da:c6:e6:1b: 76:c0:5b:b1:7c:6b:81:6b:a9:f6:40:a1:b1:1d:09: e4:bb:c5:3e:1e:02:2e:e6:ed:1a:4f:b3:0c:6d:95: 95:87:35:9d:36:5d:ea:94:8f:63:79:d4:cd:69:fb: b8:ee:a7:ec:f2:a5:36:51:34:eb:41:6f:25:fe:33: 39:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:07:5E:9B:64:97:C1:19:9E:19:01:77:9C:92:EE:F1:1B:28:CF:E7 X509v3 Authority Key Identifier: keyid:86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:28:f0:e3:63:ab:f2:d6:b8:89:63:f8:d6:e1:ea:51:8c:13: f7:3d:47:69:3a:87:89:7c:c7:62:80:df:c9:18:d3:3e:e6:d9: 2b:33:f0:ac:3e:a8:2a:fc:12:94:49:62:ff:f2:e8:ec:8c:b5: 28:e1:39:bc:96:9b:e7:62:e1:e5:11:7a:6c:53:dc:20:3a:10: 6e:6a:fa:3f:40:7a:44:7e:55:b4:0d:29:a2:0a:a5:92:c0:35: 18:0b:95:9e:42:2e:9c:80:e3:ad:22:69:68:d3:82:d5:1d:20: fb:5b:4a:88:70:36:79:da:f4:a7:c3:a7:12:75:78:33:6d:98: 5b:ee:77:ba:31:0d:af:ba:47:f8:73:b0:5f:40:21:d4:1f:88: 69:33:02:4e:dc:c1:4f:ae:4c:b0:bd:06:f4:66:b3:e4:b3:a1: dd:e9:1c:7c:97:53:c0:b5:ec:4b:57:7d:5e:5f:cb:6c:6a:eb: 07:fc:a1:ff:6c:28:24:48:1f:da:51:6c:1b:0e:eb:cf:ce:08: c1:c7:32:66:5b:18:08:ca:6b:28:b0:71:4d:16:6a:f7:03:47: 6b:0d:9e:fd:44:dd:ff:8a:08:f6:01:24:e5:89:18:d0:b3:b0: 77:c3:42:40:6b:84:36:67:86:cb:52:3c:6f:62:fb:ed:a3:db: e7:9f:c7:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU2NEYxMTAvBgNVBAUTKDg2OEZDOEIxODdCREZEMzBBNzBCNTAyRjZEMTQ5RTY3 ODY5MjUzQjkwHhcNMjUwNTEyMTYzNDQ3WhcNMjUwNTE5MTYzNDQ3WjAYMRYwFAYD VQQDEw02ODIyMjMyNy1mZWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNvAuUsYiyPCg87MeGCEvGIwkeo3Z4g3VRpwmHyBlVRQiPzcQrbKYWcavYgz Ieww/JH1qmXlCwk9pPu92cnOHP2GZPkiGzpE1aDLu8K9lHIEGY0fUAEdDT/qWRn0 Nal7p/YEP/Ji82nS4aEicWxPIFJkXUc0ymJYKbVBGw4aSPkqcSGn4sJyNPbgwpOW bjcPf5G0GQKmpf6aZZ9Tw6VfyGBZwdL9nCuQQoxT9CFZCTWFf3m1FuZ9nDe/L97i ldrG5ht2wFuxfGuBa6n2QKGxHQnku8U+HgIu5u0aT7MMbZWVhzWdNl3qlI9jedTN afu47qfs8qU2UTTrQW8l/jM5QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8HXptk l8EZnhkBd5yS7vEbKM/nMB8GA1UdIwQYMBaAFIaPyLGHvf0wpwtQL20UnmeGklO5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTY0Ri9ERDVDMTU4MkU4 N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9UQ25DMUF2YlJTZVo0YVNV N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvX0lzWWU5X1RDbkMxQXZiUlNlWjRhU1U3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTY0Ri9ERDVDMTU4MkU4N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9U Q25DMUF2YlJTZVo0YVNVN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCKPDjY6vy1riJY/jW4epRjBP3PUdpOoeJfMdigN/JGNM+5tkrM/Cs Pqgq/BKUSWL/8ujsjLUo4Tm8lpvnYuHlEXpsU9wgOhBuavo/QHpEflW0DSmiCqWS wDUYC5WeQi6cgOOtImlo04LVHSD7W0qIcDZ52vSnw6cSdXgzbZhb7ne6MQ2vukf4 c7BfQCHUH4hpMwJO3MFPrkywvQb0ZrPks6Hd6Rx8l1PAtexLV31eX8tsausH/KH/ bCgkSB/aUWwbDuvPzgjBxzJmWxgIymsosHFNFmr3A0drDZ79RN3/igj2ASTliRjQ s7B3w0JAa4Q2Z4bLUjxvYvvto9vnn8er -----END CERTIFICATE-----Generated at Wed May 14 06:26:35 2025 by rpki-client