$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: WJckB5Zer38lPK76h6rmzxo8V4lE5+q5Zv1I74BO248= Subject key identifier: 3A:6C:99:64:73:DA:66:85:03:DE:F7:51:56:AE:9C:B6:17:B8:BD:18 Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: 0186 Signing time: Sun 15 Jun 2025 02:56:46 +0000 Manifest this update: Sun 15 Jun 2025 02:56:45 +0000 Manifest next update: Sun 22 Jun 2025 02:56:45 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: LsjOealrQc6tsqxu2esaFeN7IzssQ9IR7X+phcF4Yqs=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: iDm8Sz2b0EPRU9mpY2A4AYTMcRWbqHBXrtYgkLwsGY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE, serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: Jun 15 02:56:45 2025 GMT Not After : Jun 22 02:56:45 2025 GMT Subject: CN=684e366e-c318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b3:28:45:84:f2:3b:1f:ca:4b:0d:1c:3a:d9: 55:41:a0:40:0c:c3:e7:1a:df:ed:f8:40:6a:4e:a9: 34:fe:a0:14:fc:08:98:fe:36:9e:06:5d:b1:66:8c: 94:a6:9b:2b:41:3a:23:a3:d4:81:5a:0c:c0:93:3d: 04:2d:91:8b:cd:e5:d4:d7:0b:a6:40:c5:74:bc:b8: 81:ec:81:16:e8:49:8d:c9:6b:be:a2:88:3b:2e:d4: 86:5a:d2:19:90:f8:f7:81:37:00:6f:9b:0f:0a:39: 61:57:b6:82:41:f4:8c:8d:4d:a0:5f:8c:03:df:e7: 51:31:2f:bd:2f:2a:ad:84:93:64:4a:ff:ec:d7:22: 7b:85:3a:81:f6:f7:b6:4c:3e:21:4e:02:2a:28:f2: b0:6d:79:f2:b2:a0:a9:c8:53:21:14:68:19:79:93: 39:08:9f:98:7b:c6:53:fa:f1:40:8e:c1:b9:9f:9f: b3:aa:0f:a9:a0:f3:cc:9a:3c:85:f0:02:13:eb:e2: e3:19:53:16:47:ac:f8:14:b9:e0:3f:53:01:31:63: aa:97:ca:4e:37:c6:19:a9:07:1d:d3:72:59:31:f5: 64:16:ad:a1:d1:c3:99:57:12:8f:5e:b0:27:72:76: de:1e:bf:48:c2:7a:c3:a4:06:2b:1f:1c:e4:80:d1: 27:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:6C:99:64:73:DA:66:85:03:DE:F7:51:56:AE:9C:B6:17:B8:BD:18 X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:1d:b9:f6:22:f4:4d:c7:08:a9:a2:d8:5a:d5:9d:9e:57:77: c0:b1:e8:48:76:42:16:c1:a4:15:ae:9d:60:e4:fb:95:54:ec: 0e:c2:d4:98:f0:af:ae:c6:57:0f:5c:a5:1f:6a:8e:64:dd:bc: 9c:f7:13:80:d3:1b:54:1e:ea:47:40:5b:45:f7:9d:52:53:3d: 79:6a:29:88:50:5c:10:3e:7f:7a:1f:a1:36:ec:0f:13:13:f7: 31:cf:9c:2f:ab:0b:27:8a:67:32:54:8a:0b:50:89:45:5b:8d: 33:ac:0b:7d:1d:be:13:9b:a7:28:cb:b2:e2:2c:ac:dd:7e:2c: c3:ae:bb:65:07:cb:62:df:96:37:4d:8d:86:15:32:43:1e:83: 78:8e:3d:fa:66:77:fd:99:75:df:bf:81:a1:74:60:d9:2a:d2: 89:01:1a:e5:2a:81:e8:ef:ab:3a:0c:c2:d4:3c:76:42:ab:97: 42:01:c1:05:7e:68:38:60:cc:43:dc:66:d6:04:97:b9:cc:bd: 61:89:2a:a7:cf:64:0b:17:56:9e:ed:98:fc:9a:40:5e:3c:82: 20:43:d8:0e:b2:33:02:45:a4:22:d9:4d:7b:ad:47:d5:ae:31: b7:1b:41:6b:ec:a3:0d:2d:94:4e:94:a5:af:6d:48:b1:59:b0: 9f:f5:05:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjUwNjE1MDI1NjQ1WhcNMjUwNjIyMDI1NjQ1WjAYMRYwFAYD VQQDEw02ODRlMzY2ZS1jMzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrMoRYTyOx/KSw0cOtlVQaBADMPnGt/t+EBqTqk0/qAU/AiY/jaeBl2xZoyU ppsrQTojo9SBWgzAkz0ELZGLzeXU1wumQMV0vLiB7IEW6EmNyWu+oog7LtSGWtIZ kPj3gTcAb5sPCjlhV7aCQfSMjU2gX4wD3+dRMS+9LyqthJNkSv/s1yJ7hTqB9ve2 TD4hTgIqKPKwbXnysqCpyFMhFGgZeZM5CJ+Ye8ZT+vFAjsG5n5+zqg+poPPMmjyF 8AIT6+LjGVMWR6z4FLngP1MBMWOql8pON8YZqQcd03JZMfVkFq2h0cOZVxKPXrAn cnbeHr9IwnrDpAYrHxzkgNEnJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpsmWRz 2maFA973UVaunLYXuL0YMB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWHbn2IvRNxwipotha1Z2eV3fAsehIdkIWwaQVrp1g5PuVVOwOwtSY 8K+uxlcPXKUfao5k3byc9xOA0xtUHupHQFtF951SUz15aimIUFwQPn96H6E27A8T E/cxz5wvqwsnimcyVIoLUIlFW40zrAt9Hb4Tm6coy7LiLKzdfizDrrtlB8ti35Y3 TY2GFTJDHoN4jj36Znf9mXXfv4GhdGDZKtKJARrlKoHo76s6DMLUPHZCq5dCAcEF fmg4YMxD3GbWBJe5zL1hiSqnz2QLF1ae7Zj8mkBePIIgQ9gOsjMCRaQi2U17rUfV rjG3G0Fr7KMNLZROlKWvbUixWbCf9QX8 -----END CERTIFICATE-----Generated at Sun Jun 15 09:30:04 2025 by rpki-client