$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: dN+RiK+gBNGL77TpeXqX4v8K4AAXDS0nQHkRamERO5Q= Subject key identifier: B9:F7:87:14:F8:8C:F5:BE:1B:FA:02:96:6B:D1:61:49:20:41:36:61 Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: 01C8 Signing time: Sun 19 Oct 2025 05:32:53 +0000 Manifest this update: Sun 19 Oct 2025 05:32:52 +0000 Manifest next update: Sun 26 Oct 2025 05:32:52 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: Z8FbQVIxlESsScI52LYwNTBGOr2eGkf+N4BB0STX8sI=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: p/oubbOjEb8Zn+B8haVjlomp+846cFby5ixQFCvfJFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:32:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE, serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: Oct 19 05:32:52 2025 GMT Not After : Oct 26 05:32:52 2025 GMT Subject: CN=68f47804-eb68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:96:ea:21:99:35:b7:9d:21:ca:f1:e7:26:e6: c9:0e:c8:43:84:b6:5f:12:0b:2c:59:7b:d6:be:a9: 8b:16:c6:d7:ea:fa:08:e3:ea:b9:a4:70:45:e6:23: dc:be:3e:ec:8a:4a:e2:bf:65:14:67:26:5d:9f:17: 7c:1d:17:69:27:97:09:34:a4:87:9d:77:e2:61:5f: 20:47:cd:9d:e4:26:af:64:7c:f0:7e:88:ad:7e:67: 3b:ec:78:28:5a:65:6f:91:04:8a:6d:db:5b:ce:85: 9d:88:3b:30:bd:f4:23:54:ef:39:3f:ad:40:48:14: d3:5d:68:80:27:43:9b:0b:57:88:53:52:73:32:f3: 70:f2:37:da:88:7a:26:7f:fe:ad:26:db:c3:7d:d1: bc:d3:99:68:b7:21:3d:45:99:7a:7d:6f:1a:a6:21: 63:b7:a4:d6:6e:0b:d8:8c:30:f5:28:30:48:63:d6: 95:17:1d:d5:e5:e6:af:b9:d3:06:04:0c:a2:60:b4: d5:ae:74:30:89:ed:19:74:4b:8a:42:e5:6d:81:e7: ac:28:37:51:13:80:cb:75:3c:25:55:c5:b0:02:ad: 9f:32:61:e4:6d:7e:02:06:69:98:36:9c:22:8e:ec: d0:67:c2:32:19:5f:53:07:9e:a2:3c:63:12:18:00: 2d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:F7:87:14:F8:8C:F5:BE:1B:FA:02:96:6B:D1:61:49:20:41:36:61 X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:a2:5a:b9:f2:9f:2c:dc:34:8c:ab:74:b9:3f:6a:b6:cd:55: 69:1e:e0:a2:7f:40:b3:fb:50:e6:82:43:3a:6b:ab:e4:41:a0: 4a:e7:28:6b:02:7e:f6:27:7c:dc:48:a9:22:64:ee:b8:e2:24: 95:39:b6:09:fb:63:9c:1e:8d:04:f1:1d:5f:8c:00:2c:b7:1d: 14:74:c7:2f:a5:63:5b:7e:77:57:ff:39:fe:47:46:82:d4:30: fb:08:35:5a:ae:c9:4d:42:63:2b:57:0e:bd:32:8e:b4:47:4f: 90:bc:83:51:63:e8:9d:c0:b7:83:12:6f:83:88:9d:cc:76:51: 44:17:fb:75:10:97:9d:a7:33:04:da:e5:e0:c9:93:b9:cd:0c: 80:d1:c0:a4:40:7d:9c:7d:0b:51:9b:a4:8c:d8:9f:cd:e8:77: 3f:36:f3:e0:ad:17:e4:ec:b2:b0:d5:f0:6e:f9:81:82:c8:0e: 0f:85:ec:f5:67:54:86:17:e4:fb:9b:f7:f5:ad:e9:55:f9:46: 05:b1:53:6e:1e:c2:73:43:4e:3b:1c:41:09:42:10:71:1b:5a: 5e:5e:c4:4c:e3:76:59:5c:87:14:8d:8b:43:58:30:e4:09:14: 44:7a:54:11:31:fc:4e:a3:45:fa:fa:4d:3d:90:5d:b4:11:53: 66:cf:46:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjUxMDE5MDUzMjUyWhcNMjUxMDI2MDUzMjUyWjAYMRYwFAYD VQQDEw02OGY0NzgwNC1lYjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+ZbqIZk1t50hyvHnJubJDshDhLZfEgssWXvWvqmLFsbX6voI4+q5pHBF5iPc vj7sikriv2UUZyZdnxd8HRdpJ5cJNKSHnXfiYV8gR82d5CavZHzwfoitfmc77Hgo WmVvkQSKbdtbzoWdiDswvfQjVO85P61ASBTTXWiAJ0ObC1eIU1JzMvNw8jfaiHom f/6tJtvDfdG805lotyE9RZl6fW8apiFjt6TWbgvYjDD1KDBIY9aVFx3V5eavudMG BAyiYLTVrnQwie0ZdEuKQuVtgeesKDdRE4DLdTwlVcWwAq2fMmHkbX4CBmmYNpwi juzQZ8IyGV9TB56iPGMSGAAtkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLn3hxT4 jPW+G/oClmvRYUkgQTZhMB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqolq58p8s3DSMq3S5P2q2zVVpHuCif0Cz+1DmgkM6a6vkQaBK5yhr An72J3zcSKkiZO644iSVObYJ+2OcHo0E8R1fjAAstx0UdMcvpWNbfndX/zn+R0aC 1DD7CDVarslNQmMrVw69Mo60R0+QvINRY+idwLeDEm+DiJ3MdlFEF/t1EJedpzME 2uXgyZO5zQyA0cCkQH2cfQtRm6SM2J/N6Hc/NvPgrRfk7LKw1fBu+YGCyA4Phez1 Z1SGF+T7m/f1relV+UYFsVNuHsJzQ047HEEJQhBxG1peXsRM43ZZXIcUjYtDWDDk CRREelQRMfxOo0X6+k09kF20EVNmz0bP -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:51 2025 by rpki-client