$ rpki-client -vvf rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft File: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft (raw, json) Hash identifier: kCk8LCutKQALM2PpgtKkZqGO/sf2enzYcPAOBWYCs7A= Subject key identifier: 75:6D:E7:36:2A:82:78:65:42:24:F9:ED:FE:25:89:C2:AD:21:BE:92 Authority key identifier: 86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 Certificate issuer: /CN=A916E64F/serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Certificate serial: 173D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft Manifest number: 1732 Signing time: Fri 22 Aug 2025 16:43:45 +0000 Manifest this update: Fri 22 Aug 2025 16:43:44 +0000 Manifest next update: Fri 29 Aug 2025 16:43:44 +0000 Files and hashes: 1: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl (hash: bmi6Tv5e+UxHrbpzXAvSJBGQ0yeHqwKTNR+8ZabavIw=) 2: 89317668E87B11E785247983C4F9AE02.roa (hash: QoI3M9VOUs5JmUvtm4ggvS0vOfMTJHqMj+I41B3uqls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:43:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5949 (0x173d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E64F, serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Validity Not Before: Aug 22 16:43:44 2025 GMT Not After : Aug 29 16:43:44 2025 GMT Subject: CN=68a89e41-84b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0d:9d:03:cc:c0:92:70:06:ba:b7:cf:3c:94: 3b:ff:65:07:8e:15:d3:c3:3b:de:e6:9a:5d:4e:1d: 2a:da:56:d7:26:77:fa:2d:7d:e0:7b:73:c7:f3:d0: 8e:5b:6f:31:64:8a:f7:35:1e:94:f1:30:f8:a9:2a: 42:ee:ff:7f:30:46:d7:95:86:36:e7:e4:d1:63:c6: 57:10:64:79:d6:b9:b6:f0:64:33:af:d8:51:24:bb: ff:40:e5:21:ad:a5:d6:79:38:60:d8:0f:d4:5a:0c: 3e:03:e5:5f:30:29:a5:32:ab:fa:eb:cd:b0:64:df: 97:80:16:64:7e:d7:6c:0d:e9:cb:d0:98:e0:6f:17: 7b:7c:ae:2c:6c:c1:3f:4d:13:33:be:7a:ed:d7:f4: e0:ef:10:eb:b1:21:da:e2:6c:5c:cf:0d:45:df:32: b3:a4:54:96:36:6e:04:39:2c:95:f4:63:1b:02:30: 8f:ed:92:f3:ae:26:90:27:b4:b7:0e:6b:b2:07:a7: 94:69:b4:52:24:86:d5:aa:6c:e2:3d:bd:f8:f4:d7: a5:16:dc:fb:6a:f4:71:af:4d:fc:d1:0f:b0:c4:fd: 50:f8:69:9b:c6:db:35:f9:ae:d2:7d:34:e5:87:e3: 5f:3d:c8:3c:aa:5a:62:dc:55:38:a3:ac:c6:54:91: 15:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:6D:E7:36:2A:82:78:65:42:24:F9:ED:FE:25:89:C2:AD:21:BE:92 X509v3 Authority Key Identifier: keyid:86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:98:cf:33:15:a0:ec:d3:e0:de:bb:51:ef:9f:95:48:6f:9f: 86:66:f9:b8:d9:ff:12:71:82:46:bf:a9:34:d1:d4:23:6f:9b: 1c:e9:27:c0:32:da:05:02:76:7b:7a:d1:aa:2e:32:ff:b1:71: 70:91:df:48:ff:54:0b:8e:9b:ea:43:22:60:ca:4a:89:33:57: 2d:24:3f:5e:51:fa:c0:79:45:5d:81:bd:02:eb:47:55:99:fb: e6:16:89:52:16:0b:65:24:3d:64:ea:e1:3c:79:26:c6:b5:8b: e3:2e:84:38:4b:e5:f1:0d:f6:b6:40:14:cf:bc:89:88:2e:6a: 10:ee:90:24:c6:c7:02:66:f7:40:7d:09:92:b7:9c:ae:42:12: c4:37:89:ca:82:e0:37:ef:d2:65:25:11:c7:fb:d7:e7:4a:e7: 0c:66:5a:9d:59:3b:ad:cd:2f:f2:fb:d4:78:ff:6f:8a:55:48: e9:a3:a8:27:7b:9f:1b:98:ae:a0:3b:a2:b4:56:3c:d6:b0:e2: 13:e6:0e:a9:a4:f8:09:fc:b3:90:20:f8:d6:3f:68:8d:ab:a9: 54:45:09:86:2d:a4:77:16:18:86:cd:60:48:ca:ee:fb:41:50: 67:f2:52:58:fb:d1:a9:ad:d3:0a:10:eb:de:f5:d0:83:ef:fc: ac:aa:2d:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU2NEYxMTAvBgNVBAUTKDg2OEZDOEIxODdCREZEMzBBNzBCNTAyRjZEMTQ5RTY3 ODY5MjUzQjkwHhcNMjUwODIyMTY0MzQ0WhcNMjUwODI5MTY0MzQ0WjAYMRYwFAYD VQQDEw02OGE4OWU0MS04NGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQ2dA8zAknAGurfPPJQ7/2UHjhXTwzve5ppdTh0q2lbXJnf6LX3ge3PH89CO W28xZIr3NR6U8TD4qSpC7v9/MEbXlYY25+TRY8ZXEGR51rm28GQzr9hRJLv/QOUh raXWeThg2A/UWgw+A+VfMCmlMqv6682wZN+XgBZkftdsDenL0Jjgbxd7fK4sbME/ TRMzvnrt1/Tg7xDrsSHa4mxczw1F3zKzpFSWNm4EOSyV9GMbAjCP7ZLzriaQJ7S3 DmuyB6eUabRSJIbVqmziPb349NelFtz7avRxr0380Q+wxP1Q+Gmbxts1+a7SfTTl h+NfPcg8qlpi3FU4o6zGVJEVxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVt5zYq gnhlQiT57f4licKtIb6SMB8GA1UdIwQYMBaAFIaPyLGHvf0wpwtQL20UnmeGklO5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTY0Ri9ERDVDMTU4MkU4 N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9UQ25DMUF2YlJTZVo0YVNV N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvX0lzWWU5X1RDbkMxQXZiUlNlWjRhU1U3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTY0Ri9ERDVDMTU4MkU4N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9U Q25DMUF2YlJTZVo0YVNVN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnmM8zFaDs0+Deu1Hvn5VIb5+GZvm42f8ScYJGv6k00dQjb5sc6SfA MtoFAnZ7etGqLjL/sXFwkd9I/1QLjpvqQyJgykqJM1ctJD9eUfrAeUVdgb0C60dV mfvmFolSFgtlJD1k6uE8eSbGtYvjLoQ4S+XxDfa2QBTPvImILmoQ7pAkxscCZvdA fQmSt5yuQhLEN4nKguA379JlJRHH+9fnSucMZlqdWTutzS/y+9R4/2+KVUjpo6gn e58bmK6gO6K0VjzWsOIT5g6ppPgJ/LOQIPjWP2iNq6lURQmGLaR3FhiGzWBIyu77 QVBn8lJY+9GprdMKEOve9dCD7/ysqi1g -----END CERTIFICATE-----Generated at Sat Aug 23 19:11:08 2025 by rpki-client