$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft File: C33smHxhdR0-2h2_PnwipzoV3u0.mft (raw, json) Hash identifier: PiKYMzFiH+8tOV5aOkWc7ZfRCxBFtR6SO4ompP5EdxI= Subject key identifier: 63:7C:61:4D:02:7D:DF:D4:09:72:06:67:85:3A:50:30:6F:54:65:3E Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 04CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft Manifest number: 04C6 Signing time: Wed 30 Apr 2025 23:24:16 +0000 Manifest this update: Wed 30 Apr 2025 23:24:15 +0000 Manifest next update: Wed 07 May 2025 23:24:15 +0000 Files and hashes: 1: C33smHxhdR0-2h2_PnwipzoV3u0.crl (hash: 8sae5Y6+UkItF/zNbmtg//UpdWQN/CvZM/FTZ7TvBUo=) 2: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (hash: +PbEWtYSfIT5V18KuiJqAnYLDPzBVBUjvZLUMUeffC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 23:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1228 (0x4cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57, serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: Apr 30 23:24:15 2025 GMT Not After : May 7 23:24:15 2025 GMT Subject: CN=6812b120-f83f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8f:e4:51:4b:77:07:ef:46:c9:61:bc:4c:24: e4:6e:87:88:54:c4:1b:64:9c:c8:81:59:86:55:f5: b6:a2:fb:d7:5b:f5:5b:90:09:86:eb:2a:ec:ed:c4: 6c:bc:87:cf:5f:8c:79:81:c5:21:93:91:03:2a:b5: a3:df:90:35:ca:53:ca:65:a3:a3:5c:c5:af:6e:79: 05:1a:9c:58:63:5f:83:7b:c8:19:d9:d4:a8:ff:bf: 5f:48:e3:a4:4e:2b:4c:ea:aa:a6:86:be:c5:ee:27: bd:61:16:4a:89:da:66:c9:76:24:78:59:4f:e7:05: c5:9d:1f:81:3f:01:73:10:cc:8a:b7:9e:b7:32:06: 69:d7:38:f6:0e:ee:ef:4f:57:94:f4:e9:8c:72:67: f1:b8:19:62:fa:c8:8d:bd:f4:f8:a4:6a:3e:73:61: 5d:a7:71:eb:65:47:15:09:4a:9a:f1:92:b1:1c:3c: 32:75:40:ca:65:e4:2b:a8:5f:89:88:ae:b0:16:4b: 5b:c6:6a:a8:fc:19:77:75:be:80:6c:35:c9:0b:fc: b3:be:b6:31:1d:43:d6:fe:94:99:a9:58:d9:f5:3e: f4:ea:b3:91:67:db:67:70:1d:f7:b9:1a:c2:e9:29: f6:b5:86:64:8b:13:9c:10:df:a5:b7:83:c4:b0:b2: 63:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:7C:61:4D:02:7D:DF:D4:09:72:06:67:85:3A:50:30:6F:54:65:3E X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:3a:ac:ca:5d:28:69:fd:df:f5:19:21:9b:25:2c:49:9d:de: 0d:7a:6b:a2:7b:77:93:6b:cc:63:1d:48:30:a7:9f:f8:c1:a4: 14:9a:a7:b1:2b:65:17:70:1a:6d:f9:0b:f3:88:55:5b:7f:7a: 0e:1e:1d:d2:6f:15:86:25:04:12:8e:c7:b3:87:cc:35:40:63: 01:f5:1b:82:20:75:d6:8f:19:92:65:c6:f1:d4:8a:87:04:70: 76:b5:ab:5a:ba:85:5c:78:49:1b:15:95:66:90:bf:02:a3:ca: 49:a0:76:16:cf:7c:9c:1d:03:87:21:f7:90:72:0f:26:a0:7c: 1f:b0:e6:45:c1:e1:75:01:83:8f:65:56:db:71:e7:24:e7:77: e0:f8:fe:a2:a8:94:64:d1:ec:ec:86:e8:3c:4e:90:20:04:fe: cd:d2:83:f7:3b:21:7b:a1:d4:12:cb:77:2e:35:36:bd:f6:23: eb:41:9b:39:48:ec:d6:1e:00:17:96:fc:0d:e7:a8:82:76:ad: 67:c0:57:eb:8f:5c:89:27:bd:7e:10:7f:35:31:65:10:09:f3: ae:b2:3a:db:c6:cb:3a:f4:e4:ac:cc:31:bd:b8:48:a4:07:56: fa:d7:73:33:01:59:16:41:56:96:fe:ed:6d:0f:cd:d0:7f:8a: 87:82:14:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjUwNDMwMjMyNDE1WhcNMjUwNTA3MjMyNDE1WjAYMRYwFAYD VQQDEw02ODEyYjEyMC1mODNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwo/kUUt3B+9GyWG8TCTkboeIVMQbZJzIgVmGVfW2ovvXW/VbkAmG6yrs7cRs vIfPX4x5gcUhk5EDKrWj35A1ylPKZaOjXMWvbnkFGpxYY1+De8gZ2dSo/79fSOOk TitM6qqmhr7F7ie9YRZKidpmyXYkeFlP5wXFnR+BPwFzEMyKt563MgZp1zj2Du7v T1eU9OmMcmfxuBli+siNvfT4pGo+c2Fdp3HrZUcVCUqa8ZKxHDwydUDKZeQrqF+J iK6wFktbxmqo/Bl3db6AbDXJC/yzvrYxHUPW/pSZqVjZ9T706rORZ9tncB33uRrC 6Sn2tYZkixOcEN+lt4PEsLJjBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGN8YU0C fd/UCXIGZ4U6UDBvVGU+MB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1Ny9GQ0MxOEExNDIwNEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRS MC0yaDJfUG53aXB6b1YzdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9OqzKXShp/d/1GSGbJSxJnd4Nemuie3eTa8xjHUgwp5/4waQUmqex K2UXcBpt+QvziFVbf3oOHh3SbxWGJQQSjsezh8w1QGMB9RuCIHXWjxmSZcbx1IqH BHB2tatauoVceEkbFZVmkL8Co8pJoHYWz3ycHQOHIfeQcg8moHwfsOZFweF1AYOP ZVbbceck53fg+P6iqJRk0ezshug8TpAgBP7N0oP3OyF7odQSy3cuNTa99iPrQZs5 SOzWHgAXlvwN56iCdq1nwFfrj1yJJ71+EH81MWUQCfOusjrbxss69OSszDG9uEik B1b613MzAVkWQVaW/u1tD83Qf4qHghTH -----END CERTIFICATE-----Generated at Thu May 1 16:25:58 2025 by rpki-client