$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft File: hoEbsmeu-FQA2-cpcCMtQRotmuk.mft (raw, json) Hash identifier: o2H2bG9i2XaGaN8A4y6O8WSKI6Lle+fqcSKs3afuS98= Subject key identifier: 41:FF:D8:9B:A8:7E:E3:83:FF:95:35:67:0D:FF:4E:27:54:C2:62:8E Authority key identifier: 86:81:1B:B2:67:AE:F8:54:00:DB:E7:29:70:23:2D:41:1A:2D:9A:E9 Certificate issuer: /CN=A913AE7C/serialNumber=86811BB267AEF85400DBE72970232D411A2D9AE9 Certificate serial: 0BD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft Manifest number: 0BCF Signing time: Fri 08 Aug 2025 19:08:37 +0000 Manifest this update: Fri 08 Aug 2025 19:08:37 +0000 Manifest next update: Fri 15 Aug 2025 19:08:37 +0000 Files and hashes: 1: hoEbsmeu-FQA2-cpcCMtQRotmuk.crl (hash: xXlueMq84LeEe4oLNQNpUCG687vhf+hhgvQ1xmeBZFc=) 2: CE9692E0222311EAAED0162CC4F9AE02.roa (hash: 6S9iC+lPGI+USP0kW2oo4gsRf8UiFa21s5yfHc7liEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.crl rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3030 (0xbd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE7C, serialNumber=86811BB267AEF85400DBE72970232D411A2D9AE9 Validity Not Before: Aug 8 19:08:37 2025 GMT Not After : Aug 15 19:08:37 2025 GMT Subject: CN=68964b35-a5a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6f:7d:f3:94:7d:e7:8f:63:5e:ec:c1:79:2c: 5c:16:84:81:66:22:cb:d0:0d:e7:b3:5d:eb:9a:dd: f8:6d:d9:40:64:2d:eb:07:97:78:d2:dd:32:96:af: 51:46:82:97:c1:15:c0:eb:2d:54:e9:01:9f:c2:51: 88:ee:4a:5d:28:7c:aa:c1:54:26:a2:ac:92:5a:6e: d2:b5:04:5b:ab:76:8d:57:99:3c:98:f7:b2:62:38: a8:d5:77:c4:3a:4e:60:85:2a:62:aa:15:cb:56:f6: ea:90:cf:5c:18:28:32:53:7b:4c:5c:73:cf:e5:3b: e8:f4:ef:d2:bc:ce:ff:33:72:84:20:25:4c:47:03: a2:e3:43:24:bb:27:47:63:78:83:f9:86:5a:ab:14: ce:a0:81:8b:ac:93:8b:90:f9:c9:ed:9b:2c:e7:76: 7f:21:8d:39:4b:9c:d9:e4:c4:56:18:45:c2:3e:3e: 98:d3:1e:91:d3:a8:83:7e:76:36:63:64:b0:ba:69: 07:b4:20:ad:89:3b:10:31:68:b5:35:27:48:c6:ac: cd:44:31:36:26:ea:82:68:48:9f:c1:8f:26:d2:ee: d2:0a:de:a6:23:5d:48:b5:3f:f1:99:8c:3c:68:3b: e6:b8:d6:ff:8e:4b:02:e2:f7:e9:c4:52:9f:31:d4: 59:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:FF:D8:9B:A8:7E:E3:83:FF:95:35:67:0D:FF:4E:27:54:C2:62:8E X509v3 Authority Key Identifier: keyid:86:81:1B:B2:67:AE:F8:54:00:DB:E7:29:70:23:2D:41:1A:2D:9A:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:6a:45:bc:95:02:07:09:4f:2c:b1:72:4d:41:6e:ca:19:62: 28:60:03:e1:60:f5:33:cf:be:b2:a4:17:72:f4:10:9f:8c:70: 6d:ab:c5:ab:81:61:07:26:a6:23:df:40:80:b2:1f:6b:54:6f: 92:0b:29:c2:46:18:f8:e3:0e:f7:8e:19:7d:47:58:84:3c:07: fd:d1:84:b1:86:74:5d:2a:74:37:66:70:2a:47:20:de:0c:1c: 2c:d5:24:c9:f2:ba:68:2d:d7:65:01:64:c8:e6:12:b9:a1:df: 55:1b:40:21:ef:6c:fb:a2:4e:f4:23:12:9f:1a:0f:d0:3e:ba: 31:0e:27:50:d9:7f:b5:b7:d1:d9:5f:ee:5b:bf:ce:e8:e1:13: bf:e7:64:ae:df:af:83:67:69:31:2c:cf:57:0a:03:a2:dd:6e: a9:6d:50:55:fe:e4:02:3c:d4:25:3a:32:a5:cf:1a:71:b7:5a: 57:1c:98:14:26:97:69:b8:c6:2c:a4:1f:41:5d:af:78:fe:48: 71:52:82:d5:5b:80:2c:7a:c0:93:67:72:84:c9:a3:ab:53:d6: cc:1c:8a:ed:0a:d0:0d:70:f3:f1:0f:5d:b4:97:d6:c9:52:f9: 71:e9:f7:67:99:10:c6:cf:c0:26:18:e0:97:75:83:1e:e3:3a: 2f:d1:20:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFN0MxMTAvBgNVBAUTKDg2ODExQkIyNjdBRUY4NTQwMERCRTcyOTcwMjMyRDQx MUEyRDlBRTkwHhcNMjUwODA4MTkwODM3WhcNMjUwODE1MTkwODM3WjAYMRYwFAYD VQQDEw02ODk2NGIzNS1hNWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp29985R9549jXuzBeSxcFoSBZiLL0A3ns13rmt34bdlAZC3rB5d40t0ylq9R RoKXwRXA6y1U6QGfwlGI7kpdKHyqwVQmoqySWm7StQRbq3aNV5k8mPeyYjio1XfE Ok5ghSpiqhXLVvbqkM9cGCgyU3tMXHPP5Tvo9O/SvM7/M3KEICVMRwOi40MkuydH Y3iD+YZaqxTOoIGLrJOLkPnJ7Zss53Z/IY05S5zZ5MRWGEXCPj6Y0x6R06iDfnY2 Y2SwumkHtCCtiTsQMWi1NSdIxqzNRDE2JuqCaEifwY8m0u7SCt6mI11ItT/xmYw8 aDvmuNb/jksC4vfpxFKfMdRZ1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEH/2Juo fuOD/5U1Zw3/TidUwmKOMB8GA1UdIwQYMBaAFIaBG7JnrvhUANvnKXAjLUEaLZrp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU3Qy9GMzQwN0U1NDIy MjIxMUVBODc3REQ1MkFDNEY5QUUwMi9ob0Vic21ldS1GUUEyLWNwY0NNdFFSb3Rt dWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvRWJzbWV1LUZRQTItY3BjQ010UVJvdG11ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUU3Qy9GMzQwN0U1NDIyMjIxMUVBODc3REQ1MkFDNEY5QUUwMi9ob0Vic21ldS1G UUEyLWNwY0NNdFFSb3RtdWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEakW8lQIHCU8ssXJNQW7KGWIoYAPhYPUzz76ypBdy9BCfjHBtq8Wr gWEHJqYj30CAsh9rVG+SCynCRhj44w73jhl9R1iEPAf90YSxhnRdKnQ3ZnAqRyDe DBws1STJ8rpoLddlAWTI5hK5od9VG0Ah72z7ok70IxKfGg/QProxDidQ2X+1t9HZ X+5bv87o4RO/52Su36+DZ2kxLM9XCgOi3W6pbVBV/uQCPNQlOjKlzxpxt1pXHJgU JpdpuMYspB9BXa94/khxUoLVW4AsesCTZ3KEyaOrU9bMHIrtCtANcPPxD120l9bJ Uvlx6fdnmRDGz8AmGOCXdYMe4zov0SBj -----END CERTIFICATE-----Generated at Sat Aug 9 05:41:58 2025 by rpki-client