$ rpki-client -vvf rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft File: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft (raw, json) Hash identifier: 5AycEooUr7K6uzQHVmAwppFrDvkQzumGLBH9M2egC54= Subject key identifier: A6:1F:AE:A2:07:69:83:84:02:5D:7D:B6:88:D4:DD:23:9E:A8:F9:C9 Authority key identifier: 86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 Certificate issuer: /CN=A916E64F/serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Certificate serial: 175A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft Manifest number: 174F Signing time: Sat 18 Oct 2025 17:00:58 +0000 Manifest this update: Sat 18 Oct 2025 17:00:58 +0000 Manifest next update: Sat 25 Oct 2025 17:00:58 +0000 Files and hashes: 1: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl (hash: mWzgCCMLVLehWJ5TqePNY/ads/1gsM+wG/dRqXuIH80=) 2: 89317668E87B11E785247983C4F9AE02.roa (hash: QoI3M9VOUs5JmUvtm4ggvS0vOfMTJHqMj+I41B3uqls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5978 (0x175a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E64F, serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Validity Not Before: Oct 18 17:00:58 2025 GMT Not After : Oct 25 17:00:58 2025 GMT Subject: CN=68f3c7ca-3cdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:80:e7:17:c9:95:d5:6c:92:b7:d5:ec:40:13: b6:d0:bf:71:c0:a5:2b:3b:27:7e:00:a5:37:fd:26: 3a:54:36:db:1a:ee:44:a4:8e:da:97:d8:28:05:0d: f5:ca:fd:f1:08:db:1c:1a:10:d0:50:8c:3b:94:54: 96:d6:c8:90:63:5a:0b:75:9b:4c:1d:5d:e0:57:99: da:31:e1:ee:ac:00:26:42:b8:01:80:76:74:62:0b: ff:5a:70:82:f3:38:5e:13:6a:12:02:15:13:e5:70: 78:c1:3c:7d:35:49:f1:7f:da:43:a3:69:82:fa:fb: 71:f8:ac:2f:a3:bc:c0:5e:b5:8b:ed:1a:69:98:86: 8a:c9:0c:a3:f4:6c:4f:7b:28:d0:8d:21:3c:86:d5: c3:79:03:89:1e:9d:20:5d:fc:83:8c:e3:c1:87:4e: a8:4c:bf:5f:5c:0d:23:67:49:ea:84:fa:41:73:d8: 28:bc:18:ee:b2:bb:93:46:c1:ef:5a:4d:80:a1:04: 7f:15:54:66:00:83:be:41:4a:74:29:48:28:d8:7f: f0:f5:4a:db:4c:1f:09:ce:ee:c1:99:31:28:f1:9a: 4b:3b:8d:7c:f0:2f:54:e7:e3:3c:4e:01:b0:ef:8e: c1:ec:e8:76:10:18:ec:83:fa:c9:60:9b:9b:74:45: 4f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:1F:AE:A2:07:69:83:84:02:5D:7D:B6:88:D4:DD:23:9E:A8:F9:C9 X509v3 Authority Key Identifier: keyid:86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:02:1c:df:d8:3f:34:63:f9:8c:da:0e:80:39:6b:9c:d4:b0: e1:35:e0:a4:a0:08:5f:8b:76:ec:e6:ec:41:25:7b:df:a5:4f: 9c:55:67:fb:0f:bb:53:9a:9f:fc:19:b6:bc:25:83:c4:2f:8f: e7:fe:72:7f:4a:1d:e2:f1:bb:9b:19:22:a0:a4:ad:b7:7d:57: 18:1e:95:7d:02:db:2b:55:e7:2c:c3:cb:b6:45:6e:cc:d3:e6: 7e:2b:e3:23:96:24:b0:6c:b1:b4:a1:c5:8d:c5:39:12:ae:83: 03:f3:e2:9d:7b:18:da:4e:4f:e1:86:e4:38:50:aa:b6:ea:c7: 8b:9f:b0:5a:e5:75:04:8b:f7:03:6f:14:ae:3c:ae:82:2b:1a: b6:29:42:e6:14:e2:b2:e5:03:93:08:8e:de:94:30:51:04:ca: 8d:48:bd:44:ba:e1:34:50:3c:7d:49:34:ef:e9:e9:f9:35:6a: 8c:b9:d8:f5:f8:96:16:d7:18:6f:b6:41:dd:79:3d:24:52:53: a3:a5:67:a5:4a:53:44:d1:7d:db:22:a6:ad:05:62:cf:d1:0f: 84:11:f8:29:6e:8e:04:93:0d:24:89:63:d1:4c:85:21:bb:1b: 3e:64:68:99:35:89:c6:11:4d:1a:f8:da:8e:86:80:d1:f7:3d: 33:5a:8f:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU2NEYxMTAvBgNVBAUTKDg2OEZDOEIxODdCREZEMzBBNzBCNTAyRjZEMTQ5RTY3 ODY5MjUzQjkwHhcNMjUxMDE4MTcwMDU4WhcNMjUxMDI1MTcwMDU4WjAYMRYwFAYD VQQDEw02OGYzYzdjYS0zY2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn4DnF8mV1WySt9XsQBO20L9xwKUrOyd+AKU3/SY6VDbbGu5EpI7al9goBQ31 yv3xCNscGhDQUIw7lFSW1siQY1oLdZtMHV3gV5naMeHurAAmQrgBgHZ0Ygv/WnCC 8zheE2oSAhUT5XB4wTx9NUnxf9pDo2mC+vtx+Kwvo7zAXrWL7RppmIaKyQyj9GxP eyjQjSE8htXDeQOJHp0gXfyDjOPBh06oTL9fXA0jZ0nqhPpBc9govBjusruTRsHv Wk2AoQR/FVRmAIO+QUp0KUgo2H/w9UrbTB8Jzu7BmTEo8ZpLO4188C9U5+M8TgGw 747B7Oh2EBjsg/rJYJubdEVPXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYfrqIH aYOEAl19tojU3SOeqPnJMB8GA1UdIwQYMBaAFIaPyLGHvf0wpwtQL20UnmeGklO5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTY0Ri9ERDVDMTU4MkU4 N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9UQ25DMUF2YlJTZVo0YVNV N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvX0lzWWU5X1RDbkMxQXZiUlNlWjRhU1U3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTY0Ri9ERDVDMTU4MkU4N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9U Q25DMUF2YlJTZVo0YVNVN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNAhzf2D80Y/mM2g6AOWuc1LDhNeCkoAhfi3bs5uxBJXvfpU+cVWf7 D7tTmp/8Gba8JYPEL4/n/nJ/Sh3i8bubGSKgpK23fVcYHpV9AtsrVecsw8u2RW7M 0+Z+K+MjliSwbLG0ocWNxTkSroMD8+KdexjaTk/hhuQ4UKq26seLn7Ba5XUEi/cD bxSuPK6CKxq2KULmFOKy5QOTCI7elDBRBMqNSL1EuuE0UDx9STTv6en5NWqMudj1 +JYW1xhvtkHdeT0kUlOjpWelSlNE0X3bIqatBWLP0Q+EEfgpbo4Ekw0kiWPRTIUh uxs+ZGiZNYnGEU0a+NqOhoDR9z0zWo9c -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:20 2025 by rpki-client