$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft File: hoEbsmeu-FQA2-cpcCMtQRotmuk.mft (raw, json) Hash identifier: EJDRK8T2H+14Thf1/fYl4l3fq+Tk2FHwdTGAglJXMoI= Subject key identifier: 7D:6E:69:B5:FA:D8:98:35:C5:90:C0:EF:BE:FC:F3:CF:94:DD:3C:30 Authority key identifier: 86:81:1B:B2:67:AE:F8:54:00:DB:E7:29:70:23:2D:41:1A:2D:9A:E9 Certificate issuer: /CN=A913AE7C/serialNumber=86811BB267AEF85400DBE72970232D411A2D9AE9 Certificate serial: 0B9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft Manifest number: 0B98 Signing time: Thu 24 Apr 2025 18:54:01 +0000 Manifest this update: Thu 24 Apr 2025 18:54:01 +0000 Manifest next update: Thu 01 May 2025 18:54:01 +0000 Files and hashes: 1: hoEbsmeu-FQA2-cpcCMtQRotmuk.crl (hash: HQwBswG8gje1bJflNwDFblG5ofGhOPYtCETWM/3FVUA=) 2: CE9692E0222311EAAED0162CC4F9AE02.roa (hash: CvAiV/QKU9nzbsmVn16l0FaQPJa5PJfMBf74/ijJ5jk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.crl rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2974 (0xb9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE7C, serialNumber=86811BB267AEF85400DBE72970232D411A2D9AE9 Validity Not Before: Apr 24 18:54:01 2025 GMT Not After : May 1 18:54:01 2025 GMT Subject: CN=680a88c9-8fba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:06:2d:01:02:08:21:2f:1c:c8:18:67:50:b7: a1:3e:03:40:9a:3e:86:9c:e2:b8:dc:fa:d9:41:f0: 7e:64:b0:70:2b:9d:ac:23:77:c6:c3:c3:c5:9d:b9: 6e:df:00:0a:f2:bf:9e:84:0b:95:90:49:26:ef:5b: a3:2e:f7:c0:79:fe:cf:4c:6d:d9:9c:4d:d6:cf:4b: b2:a7:3e:51:e8:07:e3:10:8b:7e:b5:12:72:1b:64: 71:0c:78:ea:12:44:e3:28:d2:2b:fd:4f:ea:f2:65: f4:7c:54:8e:b6:8c:11:92:d8:ef:6b:05:b9:42:fd: 69:e5:fb:82:88:de:0e:dd:17:ed:08:de:9f:ab:6d: a4:63:36:e9:bd:b9:cf:35:cf:51:14:85:34:6a:48: f3:18:d8:b2:f8:e0:6b:93:77:2d:4e:2c:78:67:7f: 29:b9:db:a5:ec:b0:10:52:c2:cd:e1:6e:1f:ef:44: 77:2c:e6:74:a5:9f:56:35:59:fd:29:44:a8:b3:7e: 56:cd:c1:29:e7:68:a0:3d:09:cf:c0:24:3d:23:b5: 50:99:7d:1b:2e:0b:78:5a:be:54:10:6c:07:a0:5d: 58:27:37:57:6b:b4:4e:c5:3a:e6:53:1d:23:dc:d2: 83:29:00:ee:3d:8b:8c:4f:92:9f:5c:b7:c1:ad:f5: 00:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:6E:69:B5:FA:D8:98:35:C5:90:C0:EF:BE:FC:F3:CF:94:DD:3C:30 X509v3 Authority Key Identifier: keyid:86:81:1B:B2:67:AE:F8:54:00:DB:E7:29:70:23:2D:41:1A:2D:9A:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:8d:1f:5e:33:17:7b:f5:59:7f:b3:a1:d2:c0:04:b4:a0:af: 7e:66:d4:ac:db:ea:47:52:8e:94:85:da:f1:34:75:4f:80:bb: 3e:45:e3:27:14:e0:b5:af:c5:91:2c:ac:75:43:cf:a3:7b:c3: 9b:4c:1c:74:8f:62:20:91:d6:08:c1:0f:30:9e:c0:ff:38:ea: 58:c8:6c:ee:3c:40:65:06:9d:27:6b:7f:6a:c8:d3:08:a2:c9: 51:ea:1c:73:4c:01:c3:51:c2:7a:5a:04:52:77:ee:9a:d4:c1: 99:16:34:1c:67:75:22:51:9b:8e:de:bc:20:89:b6:ae:2f:40: be:55:0e:91:3c:8f:2c:2d:1f:2e:d3:b2:ca:97:88:d8:2c:39: d3:f3:2d:39:4e:1b:ff:77:27:74:d5:f6:98:9a:05:a1:2f:ea: 05:be:f9:29:0a:1c:36:f8:ab:bc:67:0a:96:c7:e6:ad:e2:a1: 4a:36:02:7f:37:a4:56:09:dd:8e:55:a1:89:f7:8c:c3:b1:73: d5:a5:cf:71:e9:29:24:11:d7:a5:af:f3:68:31:13:f3:6c:b0: 23:3e:22:07:de:74:67:2b:0a:07:7c:43:8e:22:72:05:05:28: 71:88:5b:c0:f8:e7:da:00:e0:5b:ad:a1:a2:12:36:be:29:f6: 2a:fc:a5:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFN0MxMTAvBgNVBAUTKDg2ODExQkIyNjdBRUY4NTQwMERCRTcyOTcwMjMyRDQx MUEyRDlBRTkwHhcNMjUwNDI0MTg1NDAxWhcNMjUwNTAxMTg1NDAxWjAYMRYwFAYD VQQDEw02ODBhODhjOS04ZmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3AYtAQIIIS8cyBhnULehPgNAmj6GnOK43PrZQfB+ZLBwK52sI3fGw8PFnblu 3wAK8r+ehAuVkEkm71ujLvfAef7PTG3ZnE3Wz0uypz5R6AfjEIt+tRJyG2RxDHjq EkTjKNIr/U/q8mX0fFSOtowRktjvawW5Qv1p5fuCiN4O3RftCN6fq22kYzbpvbnP Nc9RFIU0akjzGNiy+OBrk3ctTix4Z38pudul7LAQUsLN4W4f70R3LOZ0pZ9WNVn9 KUSos35WzcEp52igPQnPwCQ9I7VQmX0bLgt4Wr5UEGwHoF1YJzdXa7ROxTrmUx0j 3NKDKQDuPYuMT5KfXLfBrfUAbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1uabX6 2Jg1xZDA777888+U3TwwMB8GA1UdIwQYMBaAFIaBG7JnrvhUANvnKXAjLUEaLZrp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU3Qy9GMzQwN0U1NDIy MjIxMUVBODc3REQ1MkFDNEY5QUUwMi9ob0Vic21ldS1GUUEyLWNwY0NNdFFSb3Rt dWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvRWJzbWV1LUZRQTItY3BjQ010UVJvdG11ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUU3Qy9GMzQwN0U1NDIyMjIxMUVBODc3REQ1MkFDNEY5QUUwMi9ob0Vic21ldS1G UUEyLWNwY0NNdFFSb3RtdWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMjR9eMxd79Vl/s6HSwAS0oK9+ZtSs2+pHUo6UhdrxNHVPgLs+ReMn FOC1r8WRLKx1Q8+je8ObTBx0j2IgkdYIwQ8wnsD/OOpYyGzuPEBlBp0na39qyNMI oslR6hxzTAHDUcJ6WgRSd+6a1MGZFjQcZ3UiUZuO3rwgibauL0C+VQ6RPI8sLR8u 07LKl4jYLDnT8y05Thv/dyd01faYmgWhL+oFvvkpChw2+Ku8ZwqWx+at4qFKNgJ/ N6RWCd2OVaGJ94zDsXPVpc9x6SkkEdelr/NoMRPzbLAjPiIH3nRnKwoHfEOOInIF BShxiFvA+OfaAOBbraGiEja+KfYq/KXh -----END CERTIFICATE-----Generated at Sat Apr 26 04:24:31 2025 by rpki-client