$ rpki-client -vvf rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft File: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft (raw, json) Hash identifier: nnS3KLcK0AMuYrcmHvB8NF7kM3wiKQ22UrlGO08Q7Yk= Subject key identifier: 7E:FF:E5:10:88:A4:40:B4:3D:55:2C:E9:B5:D1:2A:EF:E3:DB:FB:14 Authority key identifier: 86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 Certificate issuer: /CN=A916E64F/serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Certificate serial: 171C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft Manifest number: 1711 Signing time: Wed 18 Jun 2025 16:38:08 +0000 Manifest this update: Wed 18 Jun 2025 16:38:07 +0000 Manifest next update: Wed 25 Jun 2025 16:38:07 +0000 Files and hashes: 1: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl (hash: E3l1cMITOsiEnzQfYqE8Dos0AAjr6S/h+J+Fk1tQ8m8=) 2: 89317668E87B11E785247983C4F9AE02.roa (hash: QoI3M9VOUs5JmUvtm4ggvS0vOfMTJHqMj+I41B3uqls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 16:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5916 (0x171c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E64F, serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Validity Not Before: Jun 18 16:38:07 2025 GMT Not After : Jun 25 16:38:07 2025 GMT Subject: CN=6852eb6f-b154 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:61:23:54:9d:31:6f:6a:d6:9e:03:c1:45:63: 68:ae:17:39:3e:79:e0:9d:d0:51:3a:19:cc:59:34: 74:27:49:99:f8:f2:69:02:66:cf:c3:ce:67:26:16: b1:55:e0:ed:e5:20:de:d0:6d:2f:4f:8b:61:b3:80: 91:c5:95:5f:7e:18:70:60:a3:55:47:d6:cc:ca:56: 2e:49:d6:23:4b:00:cf:fe:5e:75:aa:3a:62:02:47: 01:6b:56:b3:0b:38:1b:69:11:1a:96:c1:d9:9b:df: 96:2c:ff:47:81:99:e4:b5:9a:38:c1:14:82:df:f4: 5e:b5:5c:c9:e4:33:2c:60:64:82:67:3a:58:00:15: f9:32:b8:b5:1d:3f:46:16:23:65:55:bc:60:dd:79: 64:14:55:a6:86:ff:97:47:dc:34:8f:9a:c5:d2:21: 23:f3:0f:70:eb:d1:55:d0:20:85:65:36:a5:cf:9e: ea:e7:4d:a7:2f:6c:6d:8a:a4:09:ba:fc:d5:76:74: dc:09:aa:ff:9b:68:40:4a:30:55:36:18:9b:5e:44: a6:d5:10:37:8a:05:23:5c:ce:59:53:71:17:08:ae: ef:33:60:24:03:8e:fa:b3:94:5a:03:4f:e1:3c:0c: fe:35:5d:a1:88:cf:0f:57:bf:70:7a:c1:76:40:0b: 40:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:FF:E5:10:88:A4:40:B4:3D:55:2C:E9:B5:D1:2A:EF:E3:DB:FB:14 X509v3 Authority Key Identifier: keyid:86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:d2:b6:f8:44:79:41:64:ee:f2:f2:db:f0:82:d8:72:77:2b: a9:34:c9:f2:93:c7:73:f4:75:09:54:e7:99:0a:3c:d9:0e:8c: db:95:1a:7c:41:0d:8f:75:c7:20:12:0b:e7:1a:dc:02:fc:9f: db:74:1a:2b:48:b2:05:f0:76:f9:cc:59:4b:06:70:ee:d8:8a: b7:ab:d3:42:0f:11:4f:20:06:b9:66:06:b0:78:fc:82:63:06: 12:88:90:30:18:f7:9f:1c:c4:b3:39:ce:a6:57:3c:d1:9c:97: 74:a1:ef:74:e9:06:a7:5d:b4:5e:ad:47:e7:be:85:aa:aa:f8: 7d:b6:9d:69:24:e1:5d:1d:29:a2:fc:0a:58:b1:02:d7:71:ab: 2b:9c:76:06:a7:f0:e6:e3:56:95:d1:21:5f:5a:0c:2c:5c:c7: c9:ac:9f:96:a7:72:fd:33:ad:3e:d2:91:2c:0f:7d:15:82:af: 2a:9e:c9:07:2e:2e:7d:83:aa:fa:dd:e1:75:47:01:04:f9:42: 6a:20:cf:f2:7f:01:44:95:36:b5:3e:b2:6d:6a:db:8d:c6:72: e0:f9:65:5c:29:84:23:76:52:39:3a:43:1d:d3:cd:c7:41:7d: 66:2c:80:94:66:cf:fc:40:6e:b7:ff:10:dc:0b:27:bd:1c:2a: a5:16:74:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU2NEYxMTAvBgNVBAUTKDg2OEZDOEIxODdCREZEMzBBNzBCNTAyRjZEMTQ5RTY3 ODY5MjUzQjkwHhcNMjUwNjE4MTYzODA3WhcNMjUwNjI1MTYzODA3WjAYMRYwFAYD VQQDEw02ODUyZWI2Zi1iMTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4mEjVJ0xb2rWngPBRWNorhc5PnngndBROhnMWTR0J0mZ+PJpAmbPw85nJhax VeDt5SDe0G0vT4ths4CRxZVffhhwYKNVR9bMylYuSdYjSwDP/l51qjpiAkcBa1az CzgbaREalsHZm9+WLP9HgZnktZo4wRSC3/RetVzJ5DMsYGSCZzpYABX5Mri1HT9G FiNlVbxg3XlkFFWmhv+XR9w0j5rF0iEj8w9w69FV0CCFZTalz57q502nL2xtiqQJ uvzVdnTcCar/m2hASjBVNhibXkSm1RA3igUjXM5ZU3EXCK7vM2AkA476s5RaA0/h PAz+NV2hiM8PV79wesF2QAtAPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7/5RCI pEC0PVUs6bXRKu/j2/sUMB8GA1UdIwQYMBaAFIaPyLGHvf0wpwtQL20UnmeGklO5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTY0Ri9ERDVDMTU4MkU4 N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9UQ25DMUF2YlJTZVo0YVNV N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvX0lzWWU5X1RDbkMxQXZiUlNlWjRhU1U3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTY0Ri9ERDVDMTU4MkU4N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9U Q25DMUF2YlJTZVo0YVNVN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa0rb4RHlBZO7y8tvwgthydyupNMnyk8dz9HUJVOeZCjzZDozblRp8 QQ2PdccgEgvnGtwC/J/bdBorSLIF8Hb5zFlLBnDu2Iq3q9NCDxFPIAa5ZgawePyC YwYSiJAwGPefHMSzOc6mVzzRnJd0oe906QanXbRerUfnvoWqqvh9tp1pJOFdHSmi /ApYsQLXcasrnHYGp/Dm41aV0SFfWgwsXMfJrJ+Wp3L9M60+0pEsD30Vgq8qnskH Li59g6r63eF1RwEE+UJqIM/yfwFElTa1PrJtatuNxnLg+WVcKYQjdlI5OkMd083H QX1mLICUZs/8QG63/xDcCye9HCqlFnQ5 -----END CERTIFICATE-----Generated at Thu Jun 19 21:21:50 2025 by rpki-client