$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: GxQffJwi3OKnRc8TlcLyUpEJRjoUMJ9RvpYj4WH66nw= Subject key identifier: FA:41:CA:D6:50:65:09:E6:19:71:4B:3D:A9:70:27:AF:0A:44:6D:07 Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: 018E Signing time: Tue 01 Jul 2025 04:03:26 +0000 Manifest this update: Tue 01 Jul 2025 04:03:26 +0000 Manifest next update: Tue 08 Jul 2025 04:03:26 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: PLehItQn+TVcKArQTAuYmwQ1MOfXGHyJGpU5/wJFg2A=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: iDm8Sz2b0EPRU9mpY2A4AYTMcRWbqHBXrtYgkLwsGY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:03:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE, serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: Jul 1 04:03:26 2025 GMT Not After : Jul 8 04:03:26 2025 GMT Subject: CN=68635e0e-31c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:61:c2:ca:80:53:b0:66:e4:f9:f8:63:4b:93: 8d:23:1d:e4:9d:51:ec:8e:1f:7d:dd:d9:0a:d8:b8: 2a:53:19:ef:23:73:73:3c:c3:96:0d:ad:8a:21:3c: aa:4d:57:9e:20:b6:1b:10:e6:ef:72:84:aa:4c:5e: c3:26:8c:0b:04:11:77:3a:1d:1a:0a:61:c2:4e:bd: fc:5a:99:39:2b:2c:a7:29:74:00:4f:25:77:67:d3: b7:60:39:77:fb:d6:6d:4f:e7:6a:86:ba:52:6c:cb: f4:b0:4e:b6:0c:58:1b:9c:41:7c:ee:17:8c:01:2b: 06:d9:eb:c2:84:c8:7b:df:c9:ab:1e:f5:46:08:1f: cb:85:09:9b:16:5c:03:22:a5:ee:af:6c:70:ff:c9: ad:13:ac:d2:9b:f3:3a:64:52:3e:40:60:ff:35:23: 61:c2:9e:3d:b6:64:54:ca:f0:09:15:9a:c0:8f:18: c5:7a:3a:95:06:30:14:20:2c:af:94:15:19:de:48: 16:4e:54:ae:98:49:56:51:cc:fe:cb:0f:91:2f:3c: a6:e1:b1:ea:15:6a:13:de:bf:2f:f5:c2:53:45:f0: 95:26:cf:cb:06:04:1b:ae:0a:18:a6:15:4a:7a:8e: bc:43:57:08:f0:c0:04:3b:68:e7:4f:aa:21:33:f1: 56:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:41:CA:D6:50:65:09:E6:19:71:4B:3D:A9:70:27:AF:0A:44:6D:07 X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:50:eb:96:1d:4b:c0:82:71:5d:5e:65:52:ae:62:09:71:ad: 4c:9e:ee:04:55:1f:db:c0:14:47:08:5d:a9:8c:ff:8b:a2:87: a4:db:c6:47:49:31:59:fa:84:21:7a:71:98:94:7b:b4:a3:7e: 91:1a:8d:65:b1:18:3f:68:6f:71:db:2e:34:11:39:9c:f1:86: ae:21:3c:45:4e:58:4b:0c:ba:70:39:2c:b0:52:e7:ff:22:99: 3c:a1:f9:e1:63:c1:2d:30:c5:38:a5:c9:a9:b6:62:3c:36:af: 51:20:d8:42:69:39:3e:94:16:bf:57:9f:00:9d:f6:c2:b8:ed: cd:04:85:45:f3:47:9d:ce:88:a2:b6:48:cd:0e:06:43:76:a4: 02:10:76:ad:dd:8d:33:41:c7:2e:95:c7:77:7d:c3:5f:f0:af: 0f:d3:58:78:2b:a7:c3:25:fe:da:8e:ee:b6:3f:bf:62:30:9f: 30:2d:4f:93:bc:a0:c0:2d:28:13:47:78:6a:ee:9c:7c:0c:3c: 82:e4:14:9c:fb:0f:1c:a0:a2:97:0e:6c:01:41:f3:8c:35:f7: 87:84:56:d8:7d:84:89:dd:4c:c0:74:88:56:d9:2c:80:8c:98: 77:af:ca:f3:bc:e4:1a:31:d1:25:2a:e3:97:13:75:ef:30:da: 9d:4d:04:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjUwNzAxMDQwMzI2WhcNMjUwNzA4MDQwMzI2WjAYMRYwFAYD VQQDEw02ODYzNWUwZS0zMWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GHCyoBTsGbk+fhjS5ONIx3knVHsjh993dkK2LgqUxnvI3NzPMOWDa2KITyq TVeeILYbEObvcoSqTF7DJowLBBF3Oh0aCmHCTr38Wpk5KyynKXQATyV3Z9O3YDl3 +9ZtT+dqhrpSbMv0sE62DFgbnEF87heMASsG2evChMh738mrHvVGCB/LhQmbFlwD IqXur2xw/8mtE6zSm/M6ZFI+QGD/NSNhwp49tmRUyvAJFZrAjxjFejqVBjAUICyv lBUZ3kgWTlSumElWUcz+yw+RLzym4bHqFWoT3r8v9cJTRfCVJs/LBgQbrgoYphVK eo68Q1cI8MAEO2jnT6ohM/FWlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPpBytZQ ZQnmGXFLPalwJ68KRG0HMB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxUOuWHUvAgnFdXmVSrmIJca1Mnu4EVR/bwBRHCF2pjP+Looek28ZH STFZ+oQhenGYlHu0o36RGo1lsRg/aG9x2y40ETmc8YauITxFTlhLDLpwOSywUuf/ Ipk8ofnhY8EtMMU4pcmptmI8Nq9RINhCaTk+lBa/V58AnfbCuO3NBIVF80edzoii tkjNDgZDdqQCEHat3Y0zQcculcd3fcNf8K8P01h4K6fDJf7aju62P79iMJ8wLU+T vKDALSgTR3hq7px8DDyC5BSc+w8coKKXDmwBQfOMNfeHhFbYfYSJ3UzAdIhW2SyA jJh3r8rzvOQaMdElKuOXE3XvMNqdTQRQ -----END CERTIFICATE-----Generated at Thu Jul 3 01:12:49 2025 by rpki-client