$ rpki-client -vvf rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft File: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft (raw, json) Hash identifier: lrfoKAnwz/+bQUy6L8D+SWHgQaD7gpmZ7GbPQ0sDgVs= Subject key identifier: 82:90:71:BB:4B:02:18:A3:A4:2A:9F:EE:88:80:F7:A0:CF:C4:C5:68 Authority key identifier: 86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 Certificate issuer: /CN=A916E64F/serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Certificate serial: 1765 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft Manifest number: 1759 Signing time: Sun 02 Nov 2025 16:36:32 +0000 Manifest this update: Sun 02 Nov 2025 16:36:32 +0000 Manifest next update: Sun 09 Nov 2025 16:36:32 +0000 Files and hashes: 1: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl (hash: lLuD7uxCNAzTmTmaj1L4xL0KvucnV0F2pQtVMhbjKIM=) 2: 89317668E87B11E785247983C4F9AE02.roa (hash: nzDDDyGYndishzLD7fUyGn3b75yg/sxKqZxJCeL11YE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5989 (0x1765) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E64F, serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Validity Not Before: Nov 2 16:36:32 2025 GMT Not After : Nov 9 16:36:32 2025 GMT Subject: CN=69078890-9e73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:dc:a4:15:7c:ad:55:71:18:90:d8:31:c9:4d: 66:f3:28:d7:57:4f:83:f2:41:74:d8:44:27:64:c6: 21:3a:d3:e8:93:82:32:79:59:4d:f7:2b:db:c7:e6: ea:8d:3c:2a:72:b7:5a:61:85:90:b6:5e:e6:e2:c7: 28:80:03:29:49:bf:0a:28:f7:fb:63:e2:4c:c6:4d: 09:7e:d4:7c:f0:fb:7b:30:32:c3:a5:d6:11:bf:5c: 08:1f:0e:68:80:52:70:18:0a:3e:8c:6f:30:83:ea: 77:72:a7:e0:74:1d:db:1a:67:e3:eb:2c:80:f0:0d: 67:d7:2f:58:d7:bf:98:4a:6c:4c:86:54:4d:cc:53: 4e:2d:53:01:35:8c:06:6c:f3:4a:f7:6a:0a:de:4e: 9d:e1:99:3d:5e:fd:a5:a5:96:7c:be:0f:2f:cb:c7: e5:a8:f0:a8:2e:ec:07:08:11:3a:d1:75:c5:8a:57: ac:86:8d:ea:e7:05:c2:f5:76:5c:4f:89:20:7f:15: 06:c8:1b:40:e8:b5:70:f0:64:7d:dd:67:cd:c0:27: 06:da:17:cd:42:4d:a7:9b:e9:2a:99:ac:69:bf:54: 5f:89:4f:28:b2:5f:09:88:58:69:61:93:45:92:2a: 0a:66:9c:0a:f9:08:90:6f:65:d4:8b:42:bc:94:2a: f0:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:90:71:BB:4B:02:18:A3:A4:2A:9F:EE:88:80:F7:A0:CF:C4:C5:68 X509v3 Authority Key Identifier: keyid:86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:35:47:47:91:87:e0:79:aa:89:03:b0:c5:d3:24:c5:6f:ce: 3d:d4:78:60:02:bb:11:f6:b4:09:a3:37:3a:85:2a:23:0b:87: e3:3a:4f:d0:04:de:27:c7:45:a4:f0:d0:15:ee:bc:24:bf:40: 0a:58:91:f7:25:b7:3e:bd:a7:9d:1c:86:5e:3d:45:71:0f:f5: 53:47:34:7e:6e:3a:24:ee:80:b1:c0:25:46:fc:41:5c:52:17: f4:2e:3a:fc:29:85:b6:5b:33:25:6e:1b:52:f9:24:be:90:7e: 1e:f0:3b:b4:4e:02:36:22:a0:c3:0a:ca:8e:ce:c7:f2:90:95: 08:25:f4:ad:51:ca:6f:56:d4:3a:2b:87:7a:92:87:66:a5:85: bb:b9:2f:7d:28:21:6a:94:d0:7f:81:8c:30:1b:a4:43:f8:ff: 7b:99:62:d3:8e:d3:5e:3a:8b:38:d1:09:53:0e:f0:c0:22:bf: bc:c5:f6:b3:99:f1:85:40:b1:cd:51:2a:f2:5d:6d:5c:0f:6f: 68:ec:33:38:fd:ec:89:09:b6:50:2f:1a:03:05:1d:d7:e5:8d: 0e:fc:aa:6b:98:a0:fe:8e:e5:6d:39:64:9f:b8:01:96:8c:58: f3:af:14:1f:a5:a3:58:7a:b1:d8:7e:9f:b9:04:2f:98:90:fb: 2f:83:58:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU2NEYxMTAvBgNVBAUTKDg2OEZDOEIxODdCREZEMzBBNzBCNTAyRjZEMTQ5RTY3 ODY5MjUzQjkwHhcNMjUxMTAyMTYzNjMyWhcNMjUxMTA5MTYzNjMyWjAYMRYwFAYD VQQDEw02OTA3ODg5MC05ZTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9ykFXytVXEYkNgxyU1m8yjXV0+D8kF02EQnZMYhOtPok4IyeVlN9yvbx+bq jTwqcrdaYYWQtl7m4scogAMpSb8KKPf7Y+JMxk0JftR88Pt7MDLDpdYRv1wIHw5o gFJwGAo+jG8wg+p3cqfgdB3bGmfj6yyA8A1n1y9Y17+YSmxMhlRNzFNOLVMBNYwG bPNK92oK3k6d4Zk9Xv2lpZZ8vg8vy8flqPCoLuwHCBE60XXFilesho3q5wXC9XZc T4kgfxUGyBtA6LVw8GR93WfNwCcG2hfNQk2nm+kqmaxpv1RfiU8osl8JiFhpYZNF kioKZpwK+QiQb2XUi0K8lCrwpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKQcbtL AhijpCqf7oiA96DPxMVoMB8GA1UdIwQYMBaAFIaPyLGHvf0wpwtQL20UnmeGklO5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTY0Ri9ERDVDMTU4MkU4 N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9UQ25DMUF2YlJTZVo0YVNV N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvX0lzWWU5X1RDbkMxQXZiUlNlWjRhU1U3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTY0Ri9ERDVDMTU4MkU4N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9U Q25DMUF2YlJTZVo0YVNVN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKNUdHkYfgeaqJA7DF0yTFb8491HhgArsR9rQJozc6hSojC4fjOk/Q BN4nx0Wk8NAV7rwkv0AKWJH3Jbc+vaedHIZePUVxD/VTRzR+bjok7oCxwCVG/EFc Uhf0Ljr8KYW2WzMlbhtS+SS+kH4e8Du0TgI2IqDDCsqOzsfykJUIJfStUcpvVtQ6 K4d6kodmpYW7uS99KCFqlNB/gYwwG6RD+P97mWLTjtNeOos40QlTDvDAIr+8xfaz mfGFQLHNUSryXW1cD29o7DM4/eyJCbZQLxoDBR3X5Y0O/KprmKD+juVtOWSfuAGW jFjzrxQfpaNYerHYfp+5BC+YkPsvg1gM -----END CERTIFICATE-----Generated at Tue Nov 4 08:20:01 2025 by rpki-client