$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft File: hoEbsmeu-FQA2-cpcCMtQRotmuk.mft (raw, json) Hash identifier: PJvVRo8/B8qelAHqKsJDJb6jx5XoKu2Nr7877w/BN+s= Subject key identifier: 04:2D:A6:DC:56:9E:66:E8:F0:9A:4D:C4:F1:A6:C5:09:B8:4F:13:F0 Authority key identifier: 86:81:1B:B2:67:AE:F8:54:00:DB:E7:29:70:23:2D:41:1A:2D:9A:E9 Certificate issuer: /CN=A913AE7C/serialNumber=86811BB267AEF85400DBE72970232D411A2D9AE9 Certificate serial: 0C03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft Manifest number: 0BFC Signing time: Tue 04 Nov 2025 18:55:36 +0000 Manifest this update: Tue 04 Nov 2025 18:55:36 +0000 Manifest next update: Tue 11 Nov 2025 18:55:36 +0000 Files and hashes: 1: hoEbsmeu-FQA2-cpcCMtQRotmuk.crl (hash: 6TyIHf6DvFLRSxQU903s/ze/U25Af5+7/QmPXZ9eoME=) 2: CE9692E0222311EAAED0162CC4F9AE02.roa (hash: 6S9iC+lPGI+USP0kW2oo4gsRf8UiFa21s5yfHc7liEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.crl rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:55:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3075 (0xc03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE7C, serialNumber=86811BB267AEF85400DBE72970232D411A2D9AE9 Validity Not Before: Nov 4 18:55:36 2025 GMT Not After : Nov 11 18:55:36 2025 GMT Subject: CN=690a4c28-3d70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1e:99:d1:ff:4f:70:2a:a6:83:80:ab:84:6c: 62:42:73:bf:ad:5c:ec:fa:a4:0b:3f:26:b7:b1:38: d2:fa:83:1f:9b:29:20:2e:37:9e:a5:f2:fb:fd:cb: be:57:06:d9:af:7b:9c:fe:89:8d:20:22:ee:90:59: 55:31:96:69:f2:01:45:18:6a:36:10:63:77:aa:48: 4c:66:f4:e7:b0:69:3c:b6:35:a8:eb:4f:3a:90:4e: f5:fc:31:88:cf:1a:c3:9d:03:f9:82:de:c2:ac:c5: 7d:ae:28:06:ed:68:fc:1c:56:54:65:2d:32:2c:99: 15:4a:1d:d6:4d:72:95:18:46:e9:37:2d:cb:ac:03: b0:94:b8:df:6b:1a:67:78:57:b6:67:fc:16:9f:0a: e6:0f:50:fc:47:de:7a:a8:f1:67:f4:66:2b:46:7a: b7:96:ad:56:49:70:e6:5d:22:20:96:61:78:84:5b: 15:4c:48:e8:7b:51:62:e1:53:81:13:f1:fc:78:9e: 53:87:6e:9f:8e:4d:1c:d6:25:9e:19:ba:25:54:c7: 1e:e8:83:06:ab:38:4e:01:ae:68:ee:24:c6:e0:b5: 32:c9:28:8e:0b:6b:13:cf:38:37:c5:d7:f3:7f:2e: fb:2b:3d:12:02:96:4c:06:91:9f:74:ae:91:e3:ee: 0f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:2D:A6:DC:56:9E:66:E8:F0:9A:4D:C4:F1:A6:C5:09:B8:4F:13:F0 X509v3 Authority Key Identifier: keyid:86:81:1B:B2:67:AE:F8:54:00:DB:E7:29:70:23:2D:41:1A:2D:9A:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:42:23:bf:92:42:2d:70:d9:78:8a:50:ec:9c:db:e3:09:db: 8c:82:74:5b:d2:2f:42:5d:c1:dd:00:a5:42:d5:08:dc:0a:e5: e6:16:7f:3e:36:be:76:0b:d3:3c:30:26:19:b7:13:60:7c:17: 23:43:79:74:74:23:47:86:61:26:d2:ad:0c:ad:7b:ac:8a:5c: 8d:60:d8:5b:af:63:2e:e4:28:b2:f1:43:f1:d8:4b:4b:de:51: 2a:9c:cf:90:11:ae:86:20:fb:66:a3:41:3f:6e:9b:ea:d4:38: 6e:2f:29:df:2e:86:29:e5:1b:94:31:6d:79:47:0a:f1:dc:bd: a5:03:54:0e:7b:77:a9:ce:0b:76:ca:2e:4c:8f:3c:96:9a:a1: 38:9f:9a:7b:e6:04:c5:94:01:69:e7:e3:88:fd:45:10:d0:df: a2:3c:20:55:72:31:98:7a:4b:f2:ea:ff:55:01:d6:62:58:fd: 31:52:42:29:5c:68:55:c8:bd:7e:0c:6f:43:64:09:de:3d:21: 95:ac:aa:2c:00:81:12:50:4e:28:6d:5e:5c:61:d1:cf:d0:41: 48:a7:8b:01:ff:ee:84:12:01:d9:d3:10:e2:20:8e:f2:91:94: b1:c1:b8:c5:3d:bd:59:1e:ec:61:3a:ae:15:0d:93:d7:bd:62: 10:52:68:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFN0MxMTAvBgNVBAUTKDg2ODExQkIyNjdBRUY4NTQwMERCRTcyOTcwMjMyRDQx MUEyRDlBRTkwHhcNMjUxMTA0MTg1NTM2WhcNMjUxMTExMTg1NTM2WjAYMRYwFAYD VQQDEw02OTBhNGMyOC0zZDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyh6Z0f9PcCqmg4CrhGxiQnO/rVzs+qQLPya3sTjS+oMfmykgLjeepfL7/cu+ VwbZr3uc/omNICLukFlVMZZp8gFFGGo2EGN3qkhMZvTnsGk8tjWo6086kE71/DGI zxrDnQP5gt7CrMV9rigG7Wj8HFZUZS0yLJkVSh3WTXKVGEbpNy3LrAOwlLjfaxpn eFe2Z/wWnwrmD1D8R956qPFn9GYrRnq3lq1WSXDmXSIglmF4hFsVTEjoe1Fi4VOB E/H8eJ5Th26fjk0c1iWeGbolVMce6IMGqzhOAa5o7iTG4LUyySiOC2sTzzg3xdfz fy77Kz0SApZMBpGfdK6R4+4P1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQtptxW nmbo8JpNxPGmxQm4TxPwMB8GA1UdIwQYMBaAFIaBG7JnrvhUANvnKXAjLUEaLZrp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU3Qy9GMzQwN0U1NDIy MjIxMUVBODc3REQ1MkFDNEY5QUUwMi9ob0Vic21ldS1GUUEyLWNwY0NNdFFSb3Rt dWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvRWJzbWV1LUZRQTItY3BjQ010UVJvdG11ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUU3Qy9GMzQwN0U1NDIyMjIxMUVBODc3REQ1MkFDNEY5QUUwMi9ob0Vic21ldS1G UUEyLWNwY0NNdFFSb3RtdWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwQiO/kkItcNl4ilDsnNvjCduMgnRb0i9CXcHdAKVC1QjcCuXmFn8+ Nr52C9M8MCYZtxNgfBcjQ3l0dCNHhmEm0q0MrXusilyNYNhbr2Mu5Ciy8UPx2EtL 3lEqnM+QEa6GIPtmo0E/bpvq1DhuLynfLoYp5RuUMW15Rwrx3L2lA1QOe3epzgt2 yi5MjzyWmqE4n5p75gTFlAFp5+OI/UUQ0N+iPCBVcjGYekvy6v9VAdZiWP0xUkIp XGhVyL1+DG9DZAnePSGVrKosAIESUE4obV5cYdHP0EFIp4sB/+6EEgHZ0xDiII7y kZSxwbjFPb1ZHuxhOq4VDZPXvWIQUmgW -----END CERTIFICATE-----Generated at Wed Nov 5 01:57:08 2025 by rpki-client