$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft File: C33smHxhdR0-2h2_PnwipzoV3u0.mft (raw, json) Hash identifier: +2GXTpM6cMsPdIZQ7db6Rn0aJrbYMoXlQyfExxNrBhY= Subject key identifier: DC:E0:3C:00:AF:71:CF:38:D3:F8:6F:FC:B0:FA:58:D3:36:F1:0B:EF Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 04EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft Manifest number: 04E5 Signing time: Thu 03 Jul 2025 00:04:20 +0000 Manifest this update: Thu 03 Jul 2025 00:04:20 +0000 Manifest next update: Thu 10 Jul 2025 00:04:20 +0000 Files and hashes: 1: C33smHxhdR0-2h2_PnwipzoV3u0.crl (hash: Sh/9WF2BA7APAml7CNFgOC9nfEj8b9BnHYb7UzZtRT0=) 2: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (hash: +PbEWtYSfIT5V18KuiJqAnYLDPzBVBUjvZLUMUeffC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:04:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1259 (0x4eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57, serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: Jul 3 00:04:20 2025 GMT Not After : Jul 10 00:04:20 2025 GMT Subject: CN=6865c904-420d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b3:dc:8e:46:87:c0:a9:ac:84:36:71:30:0d: c7:4b:97:78:df:60:b3:67:2e:df:83:28:4e:31:4d: c0:a0:c1:18:fe:71:a9:e1:63:b4:b8:90:72:90:a0: 75:29:00:a1:b1:09:7d:1e:79:10:12:ca:a5:61:b9: e9:c2:08:78:cc:61:35:f6:38:a0:37:98:33:b9:d8: ca:d4:af:e7:3c:68:a1:94:41:76:7f:82:94:9f:78: 48:34:fb:15:4e:c3:cc:06:2e:ad:b4:7e:4a:25:b4: 7b:c4:11:f9:66:d4:ac:be:9a:b3:9b:93:d7:d6:94: 70:2e:c4:74:6c:33:a4:1a:50:a2:45:ac:96:45:54: 83:d8:9d:95:50:27:d4:ed:b7:8a:d4:c3:03:ba:98: e6:2f:0b:70:20:07:bc:cd:c7:d9:f1:f2:f7:34:e1: 06:88:8f:af:2a:fe:c0:61:5a:c2:30:73:00:c6:a7: 50:82:b1:0e:ad:77:f2:f8:4c:0d:ff:ea:3b:90:b6: 7b:86:f4:57:a7:ba:d0:3d:55:d8:e1:7e:fa:cf:b7: ba:ff:cc:c3:79:df:31:f8:86:20:2f:b2:d5:92:ef: b3:ed:75:f1:13:07:f8:e0:ec:e7:d2:a6:79:a5:38: 70:59:ad:29:bd:24:cb:b9:77:a1:e2:22:b7:7a:31: 11:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:E0:3C:00:AF:71:CF:38:D3:F8:6F:FC:B0:FA:58:D3:36:F1:0B:EF X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:55:1f:60:ca:68:d7:a0:3a:df:5a:17:57:23:76:f2:f2:f7: 2c:3d:41:f8:34:5c:76:f4:15:e9:64:d2:52:98:4d:b5:22:db: f3:32:3e:1a:2a:8b:55:79:03:01:96:13:ff:1c:f9:e7:84:e3: 3d:a2:51:a0:e2:d0:a0:e0:3d:5b:32:55:bc:d5:1a:06:7a:69: a0:73:d2:58:35:0c:0d:29:12:38:f9:b2:96:ce:f8:a0:de:b9: d3:88:c4:8d:2f:a1:b4:42:c6:76:de:02:35:a8:d3:4b:20:34: c8:c9:6a:d5:49:bc:5d:4e:b1:0c:65:c9:ff:61:75:b4:43:40: f9:5d:1b:5f:73:54:c7:b0:3c:0e:d2:60:56:7c:3c:8e:b8:bf: 25:0d:b8:f2:31:15:ca:a8:95:13:87:13:ac:29:6f:f6:8b:34: 39:51:05:62:1b:5c:b1:95:e0:f5:13:c6:93:21:43:28:9d:3b: 90:24:7f:bf:28:7a:10:36:f5:3c:3f:40:25:2e:c0:d3:11:31: 4e:31:20:37:7b:60:5c:65:8e:f7:9a:fe:ce:55:6f:6c:ec:d1: 57:1e:ef:23:e3:65:e1:ae:f6:c3:96:e6:6b:62:e8:c4:f3:11: db:0f:45:4a:2d:18:42:75:10:53:ed:3c:0d:ca:3a:27:da:ac: f5:1c:d5:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjUwNzAzMDAwNDIwWhcNMjUwNzEwMDAwNDIwWjAYMRYwFAYD VQQDEw02ODY1YzkwNC00MjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7PcjkaHwKmshDZxMA3HS5d432CzZy7fgyhOMU3AoMEY/nGp4WO0uJBykKB1 KQChsQl9HnkQEsqlYbnpwgh4zGE19jigN5gzudjK1K/nPGihlEF2f4KUn3hINPsV TsPMBi6ttH5KJbR7xBH5ZtSsvpqzm5PX1pRwLsR0bDOkGlCiRayWRVSD2J2VUCfU 7beK1MMDupjmLwtwIAe8zcfZ8fL3NOEGiI+vKv7AYVrCMHMAxqdQgrEOrXfy+EwN /+o7kLZ7hvRXp7rQPVXY4X76z7e6/8zDed8x+IYgL7LVku+z7XXxEwf44Ozn0qZ5 pThwWa0pvSTLuXeh4iK3ejERyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzgPACv cc840/hv/LD6WNM28QvvMB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1Ny9GQ0MxOEExNDIwNEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRS MC0yaDJfUG53aXB6b1YzdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWVR9gymjXoDrfWhdXI3by8vcsPUH4NFx29BXpZNJSmE21ItvzMj4a KotVeQMBlhP/HPnnhOM9olGg4tCg4D1bMlW81RoGemmgc9JYNQwNKRI4+bKWzvig 3rnTiMSNL6G0QsZ23gI1qNNLIDTIyWrVSbxdTrEMZcn/YXW0Q0D5XRtfc1THsDwO 0mBWfDyOuL8lDbjyMRXKqJUThxOsKW/2izQ5UQViG1yxleD1E8aTIUMonTuQJH+/ KHoQNvU8P0AlLsDTETFOMSA3e2BcZY73mv7OVW9s7NFXHu8j42XhrvbDluZrYujE 8xHbD0VKLRhCdRBT7TwNyjon2qz1HNXR -----END CERTIFICATE-----Generated at Thu Jul 3 07:20:14 2025 by rpki-client