$ rpki-client -vvf rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft File: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft (raw, json) Hash identifier: 97+ytQuplKIub7412r6S8ziriJeuzILRndMzhd+Ph5U= Subject key identifier: 52:32:DA:5E:A4:31:78:A9:16:A1:38:E7:9F:4E:85:7E:B6:9F:7D:4A Authority key identifier: 86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 Certificate issuer: /CN=A916E64F/serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Certificate serial: 1736 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft Manifest number: 172B Signing time: Fri 08 Aug 2025 16:47:31 +0000 Manifest this update: Fri 08 Aug 2025 16:47:30 +0000 Manifest next update: Fri 15 Aug 2025 16:47:30 +0000 Files and hashes: 1: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl (hash: K+LcQ8tU5/oJ6EpVoyjZdaL0v/usji6zfvQhlRITXK8=) 2: 89317668E87B11E785247983C4F9AE02.roa (hash: QoI3M9VOUs5JmUvtm4ggvS0vOfMTJHqMj+I41B3uqls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5942 (0x1736) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E64F, serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Validity Not Before: Aug 8 16:47:30 2025 GMT Not After : Aug 15 16:47:30 2025 GMT Subject: CN=68962a22-801e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2c:7b:c8:b5:af:a8:9d:cd:4a:96:59:ab:c2: 31:ff:3f:92:98:1c:82:e0:e7:2f:03:e5:52:3f:08: d1:88:1f:e7:44:b2:76:4a:dd:76:3b:ae:94:f5:6e: e1:af:c3:a2:7c:e4:d0:fb:9f:78:63:df:5b:ed:60: 49:a0:0d:5c:9c:52:7b:2d:94:22:d0:41:8d:d4:30: 80:9c:79:79:21:4e:f0:1d:fe:19:4c:9c:41:36:1b: 3c:61:44:c0:ca:ef:1d:35:38:31:d0:f3:2c:a2:20: dc:d9:ea:11:c4:7f:be:c3:f8:a7:3c:cb:bb:b6:fa: 54:33:0f:9e:34:52:f8:6b:e6:f4:1f:1d:2c:29:58: f4:d2:da:f9:24:ba:00:f1:d6:47:b3:be:f7:01:b5: 32:a1:f3:83:dd:eb:44:07:16:43:38:0e:14:cf:80: 06:0b:56:ae:87:88:24:b2:67:6f:84:e2:18:af:d5: 3b:8a:43:c5:b2:ba:93:35:62:cb:0c:4e:60:97:41: 35:b2:e4:86:d9:2e:fc:55:7a:9a:e1:fb:06:cf:f7: 2a:38:c5:f4:d0:d1:cb:09:a3:74:43:22:ba:0e:40: 5d:d4:42:3d:b7:aa:8d:68:08:c3:b0:79:7b:0a:fd: d8:61:92:2e:27:0c:7e:33:29:2e:d4:3f:40:25:bf: d3:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:32:DA:5E:A4:31:78:A9:16:A1:38:E7:9F:4E:85:7E:B6:9F:7D:4A X509v3 Authority Key Identifier: keyid:86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:2b:27:65:06:3e:a1:17:40:4c:b1:36:d2:81:d3:84:c5:fd: 49:d7:0b:60:aa:af:37:25:47:7d:89:e4:38:8c:0e:3f:82:27: 06:a5:83:f6:82:ed:22:12:be:26:3f:81:88:4f:ef:97:1b:4e: a0:e4:62:b9:62:8b:7a:ac:2b:0a:97:f9:8a:d9:a5:40:e9:2c: 0a:00:5c:2d:f0:d7:09:49:fa:ab:38:d5:f3:8c:1b:f2:f6:76: a2:dc:44:62:0f:9c:fd:63:8e:81:2d:fe:f4:66:a2:5f:5f:e4: 2e:15:ef:58:0b:24:23:58:25:50:95:45:25:83:b9:e5:0e:81: af:0f:30:15:8b:8d:ef:a3:1a:fc:61:e4:ce:f6:af:9f:4c:9b: 62:bf:fe:1f:b1:39:88:f3:ca:69:e7:13:3d:2a:b2:3a:ae:c5: 4c:f6:27:59:95:34:b3:01:bd:41:4d:28:dd:03:c3:af:dd:d5: f5:9e:a0:9e:8d:19:f2:36:6b:bd:5a:0d:d0:e1:10:ce:b9:42: 4f:53:22:a1:dd:5f:00:72:1d:88:7f:84:81:69:3a:b3:68:e5: fb:c1:fc:ff:04:78:4d:8d:af:d7:cb:54:35:03:27:54:3d:6e: 58:9f:65:45:97:c1:d4:25:21:ea:1e:72:93:85:ab:41:89:be: 97:36:87:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU2NEYxMTAvBgNVBAUTKDg2OEZDOEIxODdCREZEMzBBNzBCNTAyRjZEMTQ5RTY3 ODY5MjUzQjkwHhcNMjUwODA4MTY0NzMwWhcNMjUwODE1MTY0NzMwWjAYMRYwFAYD VQQDEw02ODk2MmEyMi04MDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCx7yLWvqJ3NSpZZq8Ix/z+SmByC4OcvA+VSPwjRiB/nRLJ2St12O66U9W7h r8OifOTQ+594Y99b7WBJoA1cnFJ7LZQi0EGN1DCAnHl5IU7wHf4ZTJxBNhs8YUTA yu8dNTgx0PMsoiDc2eoRxH++w/inPMu7tvpUMw+eNFL4a+b0Hx0sKVj00tr5JLoA 8dZHs773AbUyofOD3etEBxZDOA4Uz4AGC1auh4gksmdvhOIYr9U7ikPFsrqTNWLL DE5gl0E1suSG2S78VXqa4fsGz/cqOMX00NHLCaN0QyK6DkBd1EI9t6qNaAjDsHl7 Cv3YYZIuJwx+Myku1D9AJb/TRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIy2l6k MXipFqE4559OhX62n31KMB8GA1UdIwQYMBaAFIaPyLGHvf0wpwtQL20UnmeGklO5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTY0Ri9ERDVDMTU4MkU4 N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9UQ25DMUF2YlJTZVo0YVNV N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvX0lzWWU5X1RDbkMxQXZiUlNlWjRhU1U3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTY0Ri9ERDVDMTU4MkU4N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9U Q25DMUF2YlJTZVo0YVNVN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUKydlBj6hF0BMsTbSgdOExf1J1wtgqq83JUd9ieQ4jA4/gicGpYP2 gu0iEr4mP4GIT++XG06g5GK5Yot6rCsKl/mK2aVA6SwKAFwt8NcJSfqrONXzjBvy 9nai3ERiD5z9Y46BLf70ZqJfX+QuFe9YCyQjWCVQlUUlg7nlDoGvDzAVi43voxr8 YeTO9q+fTJtiv/4fsTmI88pp5xM9KrI6rsVM9idZlTSzAb1BTSjdA8Ov3dX1nqCe jRnyNmu9Wg3Q4RDOuUJPUyKh3V8Ach2If4SBaTqzaOX7wfz/BHhNja/Xy1Q1AydU PW5Yn2VFl8HUJSHqHnKThatBib6XNodE -----END CERTIFICATE-----Generated at Sun Aug 10 13:53:27 2025 by rpki-client