$ rpki-client -vvf rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft File: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft (raw, json) Hash identifier: kM3ayqT2pVVmivGaSqEXkOcq/KIe4ImmIZXxRvMzAlA= Subject key identifier: F2:F3:53:CB:09:86:1C:BD:C2:93:AC:FA:2A:23:6D:4C:4F:E9:38:8C Authority key identifier: 86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 Certificate issuer: /CN=A916E64F/serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Certificate serial: 1700 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft Manifest number: 16F5 Signing time: Thu 24 Apr 2025 16:39:54 +0000 Manifest this update: Thu 24 Apr 2025 16:39:54 +0000 Manifest next update: Thu 01 May 2025 16:39:54 +0000 Files and hashes: 1: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl (hash: W6J7YOv2kFy2Fq4wG40Vds+QeXU/rrDUQesyov9HNg0=) 2: 89317668E87B11E785247983C4F9AE02.roa (hash: QoI3M9VOUs5JmUvtm4ggvS0vOfMTJHqMj+I41B3uqls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:39:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5888 (0x1700) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E64F, serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Validity Not Before: Apr 24 16:39:54 2025 GMT Not After : May 1 16:39:54 2025 GMT Subject: CN=680a695a-63ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b0:27:2f:2c:c8:69:11:45:ab:a6:60:d0:50: c9:a0:4c:e1:37:10:d9:88:66:46:e3:7c:44:2c:de: bd:10:71:c8:de:ab:6d:72:bb:8f:5d:1b:58:59:8c: 16:43:f2:e2:23:e7:54:b9:92:10:95:e0:5c:ba:6f: 13:e6:cf:62:cb:bd:ae:08:9d:42:f1:c8:f6:4d:33: 54:73:a4:eb:22:3b:e8:0b:32:f4:08:3b:74:eb:bb: 09:7a:1b:3e:ec:0b:fc:e4:17:6b:4c:14:e9:f6:01: 29:51:73:6d:94:ff:2c:00:28:be:b0:1e:85:21:bd: 24:d2:30:f8:64:ce:e7:66:c1:de:05:2f:54:70:ad: e7:24:24:64:24:91:a2:1a:4e:39:8a:b0:1b:81:2c: 01:f6:b7:37:d9:b9:82:08:64:7a:7b:91:ba:5f:07: 28:44:6a:00:49:09:70:b2:0a:57:41:74:eb:b2:bb: 74:54:00:3b:1d:5f:fc:c2:26:2e:06:c5:a7:81:93: 47:38:6a:38:0e:b8:76:68:02:cf:c7:ff:bc:76:86: c6:c9:4e:e7:bc:32:3a:5b:44:d3:64:15:63:bd:f9: 0b:ec:d1:57:6e:f3:be:1f:45:22:07:f6:91:ab:55: 49:64:23:dd:94:ca:fc:62:3b:cc:eb:af:69:8d:64: b2:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:F3:53:CB:09:86:1C:BD:C2:93:AC:FA:2A:23:6D:4C:4F:E9:38:8C X509v3 Authority Key Identifier: keyid:86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:6d:1b:f9:a7:48:16:74:2e:83:85:f2:7b:74:38:1c:48:30: 17:49:05:ed:6d:a9:12:9e:62:51:a1:03:9a:a5:8a:e0:0a:77: 0d:9c:7e:be:ed:f0:86:7d:99:ab:43:ad:f6:ae:78:7e:7d:06: 9e:51:b4:4d:66:d9:bc:e9:95:d7:02:d4:22:1d:95:f6:11:21: f6:24:3a:1f:be:0d:01:50:a0:46:02:41:07:2e:1c:2f:5f:9d: 58:31:bf:60:1c:e8:56:03:12:24:25:bb:69:b7:b4:cc:03:79: 85:85:19:a7:e8:14:b5:b1:db:82:5c:b0:dc:2d:ea:11:5e:70: 10:f1:02:45:39:67:ca:b3:d1:a1:01:05:9e:f1:4b:b6:76:3b: d1:e9:30:7e:91:f9:cf:dc:a7:3d:fd:bf:9b:b8:59:3f:4e:d5: c2:2c:1c:00:2b:2b:5b:f7:98:9d:cf:17:d0:2f:16:b7:ee:16: 87:c6:42:8a:e2:a4:31:26:74:21:1a:08:45:de:3c:5a:92:1a: 6c:b7:ab:94:71:b8:cf:75:a5:5a:d8:7e:fe:5b:bd:af:d8:3c: 12:fb:31:0e:73:6e:b4:43:1e:72:1e:0b:e7:ad:41:8e:60:02: 39:5c:2e:de:74:eb:19:02:05:80:22:d3:ff:20:68:80:f3:d6: a4:a9:a5:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU2NEYxMTAvBgNVBAUTKDg2OEZDOEIxODdCREZEMzBBNzBCNTAyRjZEMTQ5RTY3 ODY5MjUzQjkwHhcNMjUwNDI0MTYzOTU0WhcNMjUwNTAxMTYzOTU0WjAYMRYwFAYD VQQDEw02ODBhNjk1YS02M2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrAnLyzIaRFFq6Zg0FDJoEzhNxDZiGZG43xELN69EHHI3qttcruPXRtYWYwW Q/LiI+dUuZIQleBcum8T5s9iy72uCJ1C8cj2TTNUc6TrIjvoCzL0CDt067sJehs+ 7Av85BdrTBTp9gEpUXNtlP8sACi+sB6FIb0k0jD4ZM7nZsHeBS9UcK3nJCRkJJGi Gk45irAbgSwB9rc32bmCCGR6e5G6XwcoRGoASQlwsgpXQXTrsrt0VAA7HV/8wiYu BsWngZNHOGo4Drh2aALPx/+8dobGyU7nvDI6W0TTZBVjvfkL7NFXbvO+H0UiB/aR q1VJZCPdlMr8YjvM669pjWSy8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLzU8sJ hhy9wpOs+iojbUxP6TiMMB8GA1UdIwQYMBaAFIaPyLGHvf0wpwtQL20UnmeGklO5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTY0Ri9ERDVDMTU4MkU4 N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9UQ25DMUF2YlJTZVo0YVNV N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvX0lzWWU5X1RDbkMxQXZiUlNlWjRhU1U3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTY0Ri9ERDVDMTU4MkU4N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9U Q25DMUF2YlJTZVo0YVNVN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDbRv5p0gWdC6DhfJ7dDgcSDAXSQXtbakSnmJRoQOapYrgCncNnH6+ 7fCGfZmrQ632rnh+fQaeUbRNZtm86ZXXAtQiHZX2ESH2JDofvg0BUKBGAkEHLhwv X51YMb9gHOhWAxIkJbtpt7TMA3mFhRmn6BS1sduCXLDcLeoRXnAQ8QJFOWfKs9Gh AQWe8Uu2djvR6TB+kfnP3Kc9/b+buFk/TtXCLBwAKytb95idzxfQLxa37haHxkKK 4qQxJnQhGghF3jxakhpst6uUcbjPdaVa2H7+W72v2DwS+zEOc260Qx5yHgvnrUGO YAI5XC7edOsZAgWAItP/IGiA89akqaVM -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:15 2025 by rpki-client