$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft File: C33smHxhdR0-2h2_PnwipzoV3u0.mft (raw, json) Hash identifier: Id5X8z6TjTWoKUlx1R7RzJCftTYf5aGPlx5jNoHh7i4= Subject key identifier: 90:50:53:CE:1C:9A:0E:E4:14:B2:7E:91:94:5A:45:B3:4D:6F:6F:42 Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 0505 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft Manifest number: 04FF Signing time: Fri 22 Aug 2025 23:51:30 +0000 Manifest this update: Fri 22 Aug 2025 23:51:29 +0000 Manifest next update: Fri 29 Aug 2025 23:51:29 +0000 Files and hashes: 1: C33smHxhdR0-2h2_PnwipzoV3u0.crl (hash: Utlkgztbkga9DNypaR/08DtoIs/KmSwBj2xPw9T0GRk=) 2: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (hash: +PbEWtYSfIT5V18KuiJqAnYLDPzBVBUjvZLUMUeffC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:51:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1285 (0x505) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57, serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: Aug 22 23:51:29 2025 GMT Not After : Aug 29 23:51:29 2025 GMT Subject: CN=68a90281-751c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:63:7f:92:ef:c2:ce:20:c7:5e:15:61:6a:36: f5:53:28:be:cb:c7:0f:bb:50:0d:84:67:65:ed:41: 8c:21:b1:24:d7:20:20:2a:6c:fe:2d:31:14:19:76: aa:87:04:e8:76:00:8d:bd:35:54:5c:68:f3:91:ec: 59:d6:d2:7e:47:b3:df:3a:76:11:ab:45:ee:1b:4c: b4:45:53:de:cd:43:1c:6a:7d:5b:b4:ed:c3:b5:27: ee:2a:86:c4:14:07:d3:06:07:8b:36:a5:e6:31:a3: 84:67:36:44:b5:e5:80:a7:10:dd:20:30:37:9d:3f: cb:25:04:3e:57:a6:fa:4b:b4:e5:51:dd:c1:54:0e: b7:55:55:c5:3c:c1:29:3a:86:2f:a4:06:c4:e1:33: 15:46:58:74:f9:b0:2c:08:fd:8d:e4:22:a0:19:5e: 58:27:55:d6:2a:6f:9c:be:2e:4d:17:74:36:71:8a: a1:22:3d:9a:5d:1d:7f:92:ef:0c:ca:9a:27:33:9d: c1:01:ee:99:db:6e:6b:66:4b:92:81:d0:63:cd:4a: 6b:17:79:86:5a:1f:31:57:f2:c8:3a:0b:09:61:dd: a2:72:37:dc:2a:cb:6f:22:32:d6:8d:09:00:92:72: 68:a4:8f:f6:e3:85:e6:46:61:62:37:50:93:e8:ae: 9c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:50:53:CE:1C:9A:0E:E4:14:B2:7E:91:94:5A:45:B3:4D:6F:6F:42 X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:6b:3f:e5:74:46:34:15:fc:0c:49:f1:5a:13:3f:5d:81:73: 5b:5e:ff:f1:df:af:79:f2:3c:39:4c:64:45:34:2b:93:53:3b: 98:69:ca:d0:bb:63:87:a7:33:be:18:53:77:87:a1:e8:d7:b1: 5d:fd:3d:c9:ad:2a:c8:b3:90:1f:b0:e0:5a:85:c0:f3:28:4a: b2:25:0b:0f:1c:c3:1a:6d:7d:b3:e8:c2:65:5e:fa:02:55:78: ca:5f:64:83:3f:42:73:23:1b:b3:ce:b9:30:84:12:19:24:ac: 24:7c:69:f9:d8:cd:0a:8f:b0:c3:03:9c:bf:14:c0:6e:d6:e9: 59:6e:8a:a9:e0:8d:e0:80:f9:2e:f7:03:8f:1e:0d:c3:eb:e8: 91:26:58:9b:4c:88:f4:b2:01:11:b3:c2:69:95:f4:d5:26:3d: 0b:55:e6:c2:64:11:8a:d6:de:8f:67:84:ce:da:ce:94:5a:d6: 96:0e:7d:5b:60:77:6c:ca:5c:90:90:c6:15:66:72:1a:3e:e2: ea:d0:29:e5:65:16:57:de:76:62:ee:ac:ce:b9:8c:fc:83:56: e3:aa:34:07:6b:4c:50:b8:88:d2:5e:39:4f:7f:69:66:07:07: d5:62:02:05:dc:3b:08:78:d3:b2:4d:54:0c:73:c7:8a:0f:e5: 23:b0:80:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjUwODIyMjM1MTI5WhcNMjUwODI5MjM1MTI5WjAYMRYwFAYD VQQDEw02OGE5MDI4MS03NTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5WN/ku/CziDHXhVhajb1Uyi+y8cPu1ANhGdl7UGMIbEk1yAgKmz+LTEUGXaq hwTodgCNvTVUXGjzkexZ1tJ+R7PfOnYRq0XuG0y0RVPezUMcan1btO3DtSfuKobE FAfTBgeLNqXmMaOEZzZEteWApxDdIDA3nT/LJQQ+V6b6S7TlUd3BVA63VVXFPMEp OoYvpAbE4TMVRlh0+bAsCP2N5CKgGV5YJ1XWKm+cvi5NF3Q2cYqhIj2aXR1/ku8M yponM53BAe6Z225rZkuSgdBjzUprF3mGWh8xV/LIOgsJYd2icjfcKstvIjLWjQkA knJopI/244XmRmFiN1CT6K6cPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBQU84c mg7kFLJ+kZRaRbNNb29CMB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1Ny9GQ0MxOEExNDIwNEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRS MC0yaDJfUG53aXB6b1YzdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWaz/ldEY0FfwMSfFaEz9dgXNbXv/x36958jw5TGRFNCuTUzuYacrQ u2OHpzO+GFN3h6Ho17Fd/T3JrSrIs5AfsOBahcDzKEqyJQsPHMMabX2z6MJlXvoC VXjKX2SDP0JzIxuzzrkwhBIZJKwkfGn52M0Kj7DDA5y/FMBu1ulZboqp4I3ggPku 9wOPHg3D6+iRJlibTIj0sgERs8JplfTVJj0LVebCZBGK1t6PZ4TO2s6UWtaWDn1b YHdsylyQkMYVZnIaPuLq0CnlZRZX3nZi7qzOuYz8g1bjqjQHa0xQuIjSXjlPf2lm BwfVYgIF3DsIeNOyTVQMc8eKD+UjsICm -----END CERTIFICATE-----Generated at Sat Aug 23 19:03:54 2025 by rpki-client