$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: Qw6r/219SrzUh8GogoqXjwmR7k0Yig0VGNGM802PpDA= Subject key identifier: E2:0A:8B:FB:E0:34:82:79:20:CC:16:FD:6E:DF:AA:51:1B:5F:AF:FB Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: 01A2 Signing time: Sat 09 Aug 2025 03:47:10 +0000 Manifest this update: Sat 09 Aug 2025 03:47:10 +0000 Manifest next update: Sat 16 Aug 2025 03:47:10 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: tkjgr0ffLzSMbdyTCdB9oEGvKDF/6lOmPtRQs2Lvsgg=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: iDm8Sz2b0EPRU9mpY2A4AYTMcRWbqHBXrtYgkLwsGY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE, serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: Aug 9 03:47:10 2025 GMT Not After : Aug 16 03:47:10 2025 GMT Subject: CN=6896c4be-d19e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:23:70:26:0b:05:73:5f:42:94:41:6f:d3:f0: 41:cb:7d:4a:af:2f:09:f8:73:54:90:7f:1d:07:4e: 34:78:48:22:59:a4:d9:1d:48:34:e6:88:f3:3e:33: 8f:7a:d6:2b:57:21:85:40:a9:5b:3b:9f:8f:6b:f0: c8:a8:c2:33:03:40:a4:2d:72:e4:18:49:f9:8c:90: e9:6f:90:13:09:fe:59:42:ba:1c:51:0f:2f:cb:c0: ca:54:07:b7:cc:5a:65:21:6c:b8:94:6a:1e:c9:e4: 0b:39:ce:e7:4e:9c:b8:f0:dc:54:68:cb:ed:58:2d: 45:82:d5:61:ac:d9:a1:b3:ce:96:06:f5:66:ea:3c: 8e:a3:95:4a:2a:ad:51:20:d4:d6:36:0a:08:f5:9f: 8a:8d:46:48:27:bf:6c:99:1f:ec:7d:37:7b:d5:86: 38:e2:d3:99:75:20:b5:a3:83:cd:65:25:ef:cd:15: 0b:19:7a:87:60:20:65:d9:91:06:68:27:9a:6d:98: 2e:9f:3b:b7:e1:1a:af:76:c7:57:72:61:49:ad:b6: b8:1b:4e:bc:03:83:c0:2f:82:e0:41:56:b0:2c:03: bd:1a:28:85:a1:32:83:ff:46:52:41:98:f6:9d:10: 41:08:3a:7b:7b:08:7b:d5:eb:b1:ac:cc:9f:53:0f: ce:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:0A:8B:FB:E0:34:82:79:20:CC:16:FD:6E:DF:AA:51:1B:5F:AF:FB X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:ec:4c:4a:f9:39:13:51:5e:8a:a8:53:66:5d:e6:24:c1:3a: a1:bf:95:1b:a3:95:a1:ed:ec:ac:b3:f9:0c:4e:30:95:62:77: 16:b3:ba:e6:d5:01:22:ea:40:54:34:bb:17:43:1d:30:d4:73: 88:9c:82:57:6f:f0:02:80:c4:52:62:9b:e2:1e:cd:82:88:33: 1c:85:2c:ea:0b:62:b3:64:c8:22:d0:36:9f:18:35:ff:cd:2a: 3b:af:a9:55:6d:3d:9b:13:6b:28:71:36:a7:39:22:60:69:fa: fb:b7:c5:95:ad:56:1f:04:33:b7:cb:6b:67:67:91:3c:62:93: 90:87:fd:7b:2f:c8:65:84:77:67:9a:aa:60:d9:bb:5d:77:58: 37:34:3c:64:ac:35:8b:bd:15:2f:c9:09:78:9f:31:70:d6:ed: e9:47:31:5e:b1:de:64:2f:e2:4e:8f:ae:91:68:52:33:88:7c: a3:19:b1:ff:22:5b:d8:9a:6e:0d:7a:83:bb:e0:f0:b1:9b:6c: 21:c0:6f:7f:47:c2:5f:ac:f4:fe:84:52:e3:d2:5a:d0:4c:b0: 12:8c:37:35:39:a7:07:00:0f:a7:3b:69:40:af:a4:f6:6a:19: 4c:66:53:b2:cc:97:02:90:03:59:74:d5:6a:6a:41:85:17:e5: 89:eb:f8:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjUwODA5MDM0NzEwWhcNMjUwODE2MDM0NzEwWjAYMRYwFAYD VQQDEw02ODk2YzRiZS1kMTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriNwJgsFc19ClEFv0/BBy31Kry8J+HNUkH8dB040eEgiWaTZHUg05ojzPjOP etYrVyGFQKlbO5+Pa/DIqMIzA0CkLXLkGEn5jJDpb5ATCf5ZQrocUQ8vy8DKVAe3 zFplIWy4lGoeyeQLOc7nTpy48NxUaMvtWC1FgtVhrNmhs86WBvVm6jyOo5VKKq1R INTWNgoI9Z+KjUZIJ79smR/sfTd71YY44tOZdSC1o4PNZSXvzRULGXqHYCBl2ZEG aCeabZgunzu34RqvdsdXcmFJrba4G068A4PAL4LgQVawLAO9GiiFoTKD/0ZSQZj2 nRBBCDp7ewh71euxrMyfUw/OWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIKi/vg NIJ5IMwW/W7fqlEbX6/7MB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf7ExK+TkTUV6KqFNmXeYkwTqhv5Ubo5Wh7eyss/kMTjCVYncWs7rm 1QEi6kBUNLsXQx0w1HOInIJXb/ACgMRSYpviHs2CiDMchSzqC2KzZMgi0DafGDX/ zSo7r6lVbT2bE2socTanOSJgafr7t8WVrVYfBDO3y2tnZ5E8YpOQh/17L8hlhHdn mqpg2btdd1g3NDxkrDWLvRUvyQl4nzFw1u3pRzFesd5kL+JOj66RaFIziHyjGbH/ IlvYmm4NeoO74PCxm2whwG9/R8JfrPT+hFLj0lrQTLASjDc1OacHAA+nO2lAr6T2 ahlMZlOyzJcCkANZdNVqakGFF+WJ6/ii -----END CERTIFICATE-----Generated at Sun Aug 10 10:35:11 2025 by rpki-client