$ rpki-client -vvf rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft File: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft (raw, json) Hash identifier: U9vuCHuX4NZy40m8owh0iOTin1+HvsiDUtx4l7gsUJM= Subject key identifier: CC:50:DF:57:C4:5F:ED:4F:6B:FB:E6:75:92:27:46:65:6B:11:73:82 Authority key identifier: 86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 Certificate issuer: /CN=A916E64F/serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Certificate serial: 1723 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft Manifest number: 1718 Signing time: Wed 02 Jul 2025 16:45:47 +0000 Manifest this update: Wed 02 Jul 2025 16:45:47 +0000 Manifest next update: Wed 09 Jul 2025 16:45:47 +0000 Files and hashes: 1: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl (hash: nM1M1ZVZuRclXLN+hjvuhaFbauxADTntbLPVTcIk31c=) 2: 89317668E87B11E785247983C4F9AE02.roa (hash: QoI3M9VOUs5JmUvtm4ggvS0vOfMTJHqMj+I41B3uqls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5923 (0x1723) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E64F, serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Validity Not Before: Jul 2 16:45:47 2025 GMT Not After : Jul 9 16:45:47 2025 GMT Subject: CN=6865623b-3533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:8c:a2:06:9e:e0:b3:02:8b:7a:ae:b8:d7:64: 45:34:70:e6:ff:02:12:12:04:99:34:80:58:5f:b7: 6e:af:ad:ee:9d:f1:b3:28:55:08:57:90:fc:e9:00: 72:1d:e7:c4:32:10:fb:ea:ac:b3:b0:65:78:24:3f: 1a:a0:23:10:2b:39:17:d8:7a:70:e8:d7:0c:48:a7: ee:58:5e:f8:21:8c:03:eb:30:60:b3:eb:18:a3:4f: a8:69:3d:f1:8d:34:67:58:c0:00:c9:6d:23:60:46: 7a:13:73:1a:0d:0f:dc:72:0b:a2:e3:5a:db:78:7f: 68:cf:fe:1e:f3:f0:94:ed:d4:29:f6:1c:99:0b:74: 88:f4:a1:64:db:ee:72:95:39:ac:24:e8:3a:45:93: a3:44:20:59:1e:b0:15:07:0b:b3:a6:e2:5e:14:48: 07:d9:93:a0:7f:fe:96:dc:73:40:2d:c3:b8:a6:d9: 6f:44:34:a9:ef:03:22:bb:3e:dc:52:ec:e4:9a:87: 1a:30:1b:9b:0a:9a:62:0e:d2:1e:4d:56:fc:5b:23: 89:68:b5:31:4f:fb:e0:32:8d:5b:11:d5:f6:22:0b: 8f:78:9d:71:16:db:17:35:dd:ed:e4:08:20:56:5b: d6:3b:52:a3:98:35:68:cb:c3:82:8d:55:ee:1c:70: 51:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:50:DF:57:C4:5F:ED:4F:6B:FB:E6:75:92:27:46:65:6B:11:73:82 X509v3 Authority Key Identifier: keyid:86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:92:95:47:0c:73:85:ce:81:44:fa:fb:e0:ac:2e:d1:f2:e3: 5a:4f:df:66:75:44:f4:89:a7:31:4e:9c:17:2f:58:2c:00:99: 3e:9b:ea:0e:88:32:44:30:e6:54:c3:69:10:61:7d:fa:f4:45: 22:e5:85:3b:9c:e3:af:2b:7a:b3:37:f8:95:5a:cc:90:af:90: ca:7a:e7:c9:bb:2c:84:da:de:48:44:4b:2f:c6:14:c4:72:32: 0f:c4:51:01:12:9a:11:68:8c:12:c5:4d:64:7f:c7:93:9e:16: 74:6c:81:03:49:b6:32:ee:8a:54:50:d2:b2:e4:ff:70:7d:f8: 05:57:d0:11:87:b1:a0:99:79:c9:7c:a0:8d:52:53:d6:f6:2c: 4d:97:33:8f:c2:f3:91:1f:7e:56:3c:84:bd:81:9f:73:72:c2: fb:fe:a5:62:f5:b1:33:b3:70:82:2a:79:d6:b7:8a:c6:9d:91: 9d:93:ba:9a:6b:86:fe:3e:c4:86:6f:95:62:fd:2a:87:7c:23: 13:c4:99:11:49:8a:f2:f9:09:65:e5:6b:0f:e5:af:64:71:f9: 18:63:6b:69:16:3f:d2:7f:dd:00:78:1f:d1:e6:92:f8:72:79: 18:72:27:48:c9:bf:77:68:57:ea:23:73:6f:94:54:a1:2d:e4: c1:5f:1f:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU2NEYxMTAvBgNVBAUTKDg2OEZDOEIxODdCREZEMzBBNzBCNTAyRjZEMTQ5RTY3 ODY5MjUzQjkwHhcNMjUwNzAyMTY0NTQ3WhcNMjUwNzA5MTY0NTQ3WjAYMRYwFAYD VQQDEw02ODY1NjIzYi0zNTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmYyiBp7gswKLeq6412RFNHDm/wISEgSZNIBYX7dur63unfGzKFUIV5D86QBy HefEMhD76qyzsGV4JD8aoCMQKzkX2Hpw6NcMSKfuWF74IYwD6zBgs+sYo0+oaT3x jTRnWMAAyW0jYEZ6E3MaDQ/ccgui41rbeH9oz/4e8/CU7dQp9hyZC3SI9KFk2+5y lTmsJOg6RZOjRCBZHrAVBwuzpuJeFEgH2ZOgf/6W3HNALcO4ptlvRDSp7wMiuz7c UuzkmocaMBubCppiDtIeTVb8WyOJaLUxT/vgMo1bEdX2IguPeJ1xFtsXNd3t5Agg VlvWO1KjmDVoy8OCjVXuHHBRmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMxQ31fE X+1Pa/vmdZInRmVrEXOCMB8GA1UdIwQYMBaAFIaPyLGHvf0wpwtQL20UnmeGklO5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTY0Ri9ERDVDMTU4MkU4 N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9UQ25DMUF2YlJTZVo0YVNV N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvX0lzWWU5X1RDbkMxQXZiUlNlWjRhU1U3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTY0Ri9ERDVDMTU4MkU4N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9U Q25DMUF2YlJTZVo0YVNVN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQkpVHDHOFzoFE+vvgrC7R8uNaT99mdUT0iacxTpwXL1gsAJk+m+oO iDJEMOZUw2kQYX369EUi5YU7nOOvK3qzN/iVWsyQr5DKeufJuyyE2t5IREsvxhTE cjIPxFEBEpoRaIwSxU1kf8eTnhZ0bIEDSbYy7opUUNKy5P9wffgFV9ARh7GgmXnJ fKCNUlPW9ixNlzOPwvORH35WPIS9gZ9zcsL7/qVi9bEzs3CCKnnWt4rGnZGdk7qa a4b+PsSGb5Vi/SqHfCMTxJkRSYry+Qll5WsP5a9kcfkYY2tpFj/Sf90AeB/R5pL4 cnkYcidIyb93aFfqI3NvlFShLeTBXx8/ -----END CERTIFICATE-----Generated at Wed Jul 2 22:29:27 2025 by rpki-client