$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft File: C33smHxhdR0-2h2_PnwipzoV3u0.mft (raw, json) Hash identifier: BKZoZW50CF4coNkP6lOUm2syzDGT+6a4wsqFDWEgS2g= Subject key identifier: 46:38:7C:A6:B7:51:E0:02:E7:30:44:42:2E:3A:2D:09:04:54:E6:CD Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 0522 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft Manifest number: 051C Signing time: Sun 19 Oct 2025 01:19:16 +0000 Manifest this update: Sun 19 Oct 2025 01:19:16 +0000 Manifest next update: Sun 26 Oct 2025 01:19:16 +0000 Files and hashes: 1: C33smHxhdR0-2h2_PnwipzoV3u0.crl (hash: AinqHr9fvd+OSmL5/ly3jC76ajdKPSKTjnKmqB19NDo=) 2: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (hash: +PbEWtYSfIT5V18KuiJqAnYLDPzBVBUjvZLUMUeffC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:19:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1314 (0x522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57, serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: Oct 19 01:19:16 2025 GMT Not After : Oct 26 01:19:16 2025 GMT Subject: CN=68f43c94-770a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9e:00:08:bc:60:d3:ad:61:46:ac:09:d6:d8: 1b:0b:f5:fa:f9:cf:dd:b2:b6:f9:9d:e2:ec:91:db: 7c:83:6a:f9:9f:9b:76:0e:fd:46:78:77:c5:42:d3: b1:fd:38:24:96:74:07:b4:77:3f:df:14:2b:88:3e: 47:74:de:cb:10:1b:c8:58:0c:a8:ed:ed:b6:6a:46: 0b:63:a1:3d:e7:6d:ac:d4:6a:33:3b:6a:c3:e3:43: 75:e4:00:3e:dd:d3:a3:6b:97:39:7e:de:c0:e8:c0: 90:6c:31:34:34:15:e4:a8:15:19:c0:4d:41:96:5f: 17:59:2b:18:49:70:50:e4:d4:ce:08:59:5f:cc:8d: 1e:b1:2b:b9:26:86:23:52:71:16:f4:e9:f7:89:01: 6f:5f:a3:e6:1f:59:fc:68:4f:90:39:a8:2f:d0:6c: 99:25:b0:f6:c2:bb:73:e4:56:9e:16:fe:34:30:1f: a4:0e:c8:06:71:97:21:be:d3:18:b6:da:2d:f1:24: 57:e4:da:d0:b6:34:ad:12:f3:cd:9f:7d:ea:52:cb: 84:26:af:51:e1:29:a4:30:31:47:ec:c1:63:de:a4: d4:6b:fc:41:da:31:3f:f7:a0:61:5e:42:2e:8a:f7: 1a:b1:7c:3c:24:56:94:b3:c0:e8:6e:69:ac:3d:4c: 15:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:38:7C:A6:B7:51:E0:02:E7:30:44:42:2E:3A:2D:09:04:54:E6:CD X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:b7:7c:e0:5b:d2:ce:22:95:1a:c1:46:1a:b1:bb:56:47:d9: e1:94:5c:1c:96:46:cd:99:b9:9b:ae:25:06:a0:15:79:cc:fa: 67:91:f6:75:58:1f:69:16:e4:6f:8a:62:49:5f:6f:98:e3:0f: 29:1a:7b:81:29:df:3a:1d:0b:38:d7:8b:17:57:b9:87:3c:7a: b8:f1:3a:be:93:11:86:c3:18:94:cc:cb:24:1a:d7:05:fb:22: 58:ef:1a:ea:28:37:bf:58:96:22:a3:73:bc:c7:9f:fc:57:f7: 8a:d0:85:87:4a:75:8b:b5:34:a5:d0:c6:f7:e4:a4:8a:05:1a: be:99:9f:ea:51:25:78:8f:de:31:ee:85:99:ef:aa:a3:f6:69: 0b:34:f1:25:35:dc:b0:d3:0c:ee:41:77:d0:66:4b:0c:58:4a: b2:6d:44:8d:60:68:80:fa:74:1b:df:f8:37:1c:a5:dc:58:aa: 49:72:b7:b8:97:ed:3b:00:e9:9e:5f:e5:94:b0:35:39:4c:23: 3a:83:d5:8d:21:b7:bd:71:92:a7:31:cc:31:b9:24:c2:51:45: 55:ea:4d:ed:49:71:e0:7e:f7:24:41:9b:25:f5:aa:f5:82:2e: 7d:57:95:1b:e6:8d:92:71:8b:10:c6:e7:5d:ed:0e:14:be:9a: 03:4d:27:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjUxMDE5MDExOTE2WhcNMjUxMDI2MDExOTE2WjAYMRYwFAYD VQQDEw02OGY0M2M5NC03NzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZ4ACLxg061hRqwJ1tgbC/X6+c/dsrb5neLskdt8g2r5n5t2Dv1GeHfFQtOx /TgklnQHtHc/3xQriD5HdN7LEBvIWAyo7e22akYLY6E9522s1GozO2rD40N15AA+ 3dOja5c5ft7A6MCQbDE0NBXkqBUZwE1Bll8XWSsYSXBQ5NTOCFlfzI0esSu5JoYj UnEW9On3iQFvX6PmH1n8aE+QOagv0GyZJbD2wrtz5FaeFv40MB+kDsgGcZchvtMY ttot8SRX5NrQtjStEvPNn33qUsuEJq9R4SmkMDFH7MFj3qTUa/xB2jE/96BhXkIu ivcasXw8JFaUs8DobmmsPUwVTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEY4fKa3 UeAC5zBEQi46LQkEVObNMB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1Ny9GQ0MxOEExNDIwNEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRS MC0yaDJfUG53aXB6b1YzdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHt3zgW9LOIpUawUYasbtWR9nhlFwclkbNmbmbriUGoBV5zPpnkfZ1 WB9pFuRvimJJX2+Y4w8pGnuBKd86HQs414sXV7mHPHq48Tq+kxGGwxiUzMskGtcF +yJY7xrqKDe/WJYio3O8x5/8V/eK0IWHSnWLtTSl0Mb35KSKBRq+mZ/qUSV4j94x 7oWZ76qj9mkLNPElNdyw0wzuQXfQZksMWEqybUSNYGiA+nQb3/g3HKXcWKpJcre4 l+07AOmeX+WUsDU5TCM6g9WNIbe9cZKnMcwxuSTCUUVV6k3tSXHgfvckQZsl9ar1 gi59V5Ub5o2ScYsQxudd7Q4UvpoDTSes -----END CERTIFICATE-----Generated at Mon Oct 20 14:35:16 2025 by rpki-client