$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft File: hoEbsmeu-FQA2-cpcCMtQRotmuk.mft (raw, json) Hash identifier: TTCIQH2FYSep0v8Pdqz64e+9pC2cxJ+9PaXH/TUnBmk= Subject key identifier: D6:50:00:4C:C7:F0:40:B1:5F:68:EA:0B:38:DA:E2:C4:6E:E3:77:78 Authority key identifier: 86:81:1B:B2:67:AE:F8:54:00:DB:E7:29:70:23:2D:41:1A:2D:9A:E9 Certificate issuer: /CN=A913AE7C/serialNumber=86811BB267AEF85400DBE72970232D411A2D9AE9 Certificate serial: 0BB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft Manifest number: 0BB2 Signing time: Mon 16 Jun 2025 18:50:33 +0000 Manifest this update: Mon 16 Jun 2025 18:50:33 +0000 Manifest next update: Mon 23 Jun 2025 18:50:33 +0000 Files and hashes: 1: hoEbsmeu-FQA2-cpcCMtQRotmuk.crl (hash: Pd85yHJhmTMz3hqVw6jG7STdOHtWLUYoaT3zQcmw1ak=) 2: CE9692E0222311EAAED0162CC4F9AE02.roa (hash: CvAiV/QKU9nzbsmVn16l0FaQPJa5PJfMBf74/ijJ5jk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.crl rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 18:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3000 (0xbb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE7C, serialNumber=86811BB267AEF85400DBE72970232D411A2D9AE9 Validity Not Before: Jun 16 18:50:33 2025 GMT Not After : Jun 23 18:50:33 2025 GMT Subject: CN=68506779-c556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:22:4f:96:cd:dd:1e:79:33:9b:92:2a:41:a5: 15:e6:1c:74:3f:93:e5:d9:cf:ef:b2:29:7b:2a:b7: d9:7e:b2:de:5e:56:f6:5b:70:1d:78:27:d6:f2:d5: 23:50:5f:d2:cb:a8:df:ef:52:08:f5:2e:78:32:28: 31:f2:0c:2f:f1:a7:8a:45:97:e5:99:d8:71:e4:8f: 6b:eb:43:b4:3c:e2:46:1c:84:85:b3:93:c4:7e:59: 8b:b5:d6:8b:02:ef:08:f0:17:3d:9a:e2:4a:f7:3b: 28:3a:c1:67:d2:ed:7c:8c:14:d6:83:7d:86:8c:94: 8c:16:c8:93:24:ec:47:65:96:4c:55:17:6e:9f:75: 48:90:50:f5:63:0a:79:86:ec:23:f7:cd:be:e7:01: d4:f6:2e:83:76:a5:84:59:ad:3c:05:23:86:01:45: 44:24:e0:f6:aa:00:ae:ba:14:8f:75:63:06:7d:32: ee:6d:4f:46:0b:7b:8e:7d:44:93:16:30:43:34:f8: 42:f2:5b:c0:51:d5:31:35:a6:4a:f2:cf:80:01:f9: c8:da:56:43:b7:6b:26:58:52:41:9a:fd:d3:97:10: 07:68:f4:a4:38:64:bc:6b:90:3a:1b:db:e0:fa:aa: 99:ca:a8:a0:31:8d:34:d1:b3:d8:bb:fc:5e:39:a7: 14:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:50:00:4C:C7:F0:40:B1:5F:68:EA:0B:38:DA:E2:C4:6E:E3:77:78 X509v3 Authority Key Identifier: keyid:86:81:1B:B2:67:AE:F8:54:00:DB:E7:29:70:23:2D:41:1A:2D:9A:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:74:90:8d:cc:29:20:33:2c:3e:e5:35:d8:f1:03:4d:3f:b7: d5:8d:fb:96:96:ff:19:46:df:8c:94:5e:46:8e:5f:12:0d:b9: 8c:2b:24:a3:ab:c9:bb:7e:1f:0f:ff:d1:2c:a3:1c:23:f7:c0: a1:4f:4d:e5:c0:6e:2f:35:06:79:2a:ca:6a:b5:9f:71:d9:2d: a1:ba:ec:7d:2d:5e:b5:47:d3:bd:cd:a0:e7:df:58:ab:d5:be: e4:a3:08:78:7f:b6:85:59:a9:6f:ea:82:da:f4:0e:6b:d3:f4: d8:ad:5a:a4:7a:3b:95:a8:f3:be:24:89:bb:1f:bd:02:76:55: 8f:df:a9:6e:6d:6c:81:26:57:b6:7a:c2:9a:5d:fe:78:93:a4: 04:8b:8d:25:14:a5:27:fd:57:b6:4a:76:d6:2b:da:4b:ae:e5: 3b:51:5a:05:0e:18:05:30:d4:0a:e2:f2:77:44:ea:47:75:8b: 42:17:d3:f4:20:b7:c9:93:fc:01:1f:d4:cc:d0:79:4e:0a:f9: 24:3f:3c:3c:3c:87:09:27:17:50:91:ad:87:10:4e:c2:b1:82: 3c:87:15:91:3e:8d:3f:32:56:b2:52:2f:29:38:e0:da:d6:63: 73:32:a1:3a:04:20:09:ee:0b:f7:f1:35:3f:d1:fb:70:a3:65: 23:62:15:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFN0MxMTAvBgNVBAUTKDg2ODExQkIyNjdBRUY4NTQwMERCRTcyOTcwMjMyRDQx MUEyRDlBRTkwHhcNMjUwNjE2MTg1MDMzWhcNMjUwNjIzMTg1MDMzWjAYMRYwFAYD VQQDEw02ODUwNjc3OS1jNTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiJPls3dHnkzm5IqQaUV5hx0P5Pl2c/vsil7KrfZfrLeXlb2W3AdeCfW8tUj UF/Sy6jf71II9S54Migx8gwv8aeKRZflmdhx5I9r60O0POJGHISFs5PEflmLtdaL Au8I8Bc9muJK9zsoOsFn0u18jBTWg32GjJSMFsiTJOxHZZZMVRdun3VIkFD1Ywp5 huwj982+5wHU9i6DdqWEWa08BSOGAUVEJOD2qgCuuhSPdWMGfTLubU9GC3uOfUST FjBDNPhC8lvAUdUxNaZK8s+AAfnI2lZDt2smWFJBmv3TlxAHaPSkOGS8a5A6G9vg +qqZyqigMY000bPYu/xeOacUrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZQAEzH 8ECxX2jqCzja4sRu43d4MB8GA1UdIwQYMBaAFIaBG7JnrvhUANvnKXAjLUEaLZrp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU3Qy9GMzQwN0U1NDIy MjIxMUVBODc3REQ1MkFDNEY5QUUwMi9ob0Vic21ldS1GUUEyLWNwY0NNdFFSb3Rt dWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvRWJzbWV1LUZRQTItY3BjQ010UVJvdG11ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUU3Qy9GMzQwN0U1NDIyMjIxMUVBODc3REQ1MkFDNEY5QUUwMi9ob0Vic21ldS1G UUEyLWNwY0NNdFFSb3RtdWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBndJCNzCkgMyw+5TXY8QNNP7fVjfuWlv8ZRt+MlF5Gjl8SDbmMKySj q8m7fh8P/9Esoxwj98ChT03lwG4vNQZ5KspqtZ9x2S2huux9LV61R9O9zaDn31ir 1b7kowh4f7aFWalv6oLa9A5r0/TYrVqkejuVqPO+JIm7H70CdlWP36lubWyBJle2 esKaXf54k6QEi40lFKUn/Ve2SnbWK9pLruU7UVoFDhgFMNQK4vJ3ROpHdYtCF9P0 ILfJk/wBH9TM0HlOCvkkPzw8PIcJJxdQka2HEE7CsYI8hxWRPo0/MlayUi8pOODa 1mNzMqE6BCAJ7gv38TU/0ftwo2UjYhVR -----END CERTIFICATE-----Generated at Wed Jun 18 01:47:55 2025 by rpki-client