$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft File: C33smHxhdR0-2h2_PnwipzoV3u0.mft (raw, json) Hash identifier: 633eS+qm0jceocwPfhNv+DskR5JlUFByRvRwMqsK2xs= Subject key identifier: 54:EC:24:0F:47:04:49:8C:B0:A9:4E:76:51:E9:F9:F8:B6:74:5E:4E Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 05A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft Manifest number: 0599 Signing time: Fri 12 Jun 2026 23:14:19 +0000 Manifest this update: Fri 12 Jun 2026 23:14:19 +0000 Manifest next update: Fri 19 Jun 2026 23:14:19 +0000 Files and hashes: 1: C33smHxhdR0-2h2_PnwipzoV3u0.crl (hash: XbGjkNnzaivzm+KSWFAeTI49S5NH7S6Ex73Sagtcnak=) 2: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (hash: 1OTKEgqlZnaKGpmz6oNBNrSZubeFhZS/c5pM2HU9abQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 23:14:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1442 (0x5a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57, serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: Jun 12 23:14:19 2026 GMT Not After : Jun 19 23:14:19 2026 GMT Subject: CN=6a2c92cb-0500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8c:66:b9:6f:35:54:3e:5b:74:7d:62:8f:26: 7e:5e:26:9c:e3:0a:a9:12:58:a3:23:2d:f4:0e:55: da:47:17:73:6c:8a:2c:90:2a:59:07:e0:0a:9d:42: 5f:83:98:57:9f:5d:15:c8:ac:1d:d2:c8:ff:a2:3b: c2:8b:12:6f:14:4c:52:dc:be:54:8f:2d:a8:22:86: d2:e7:c0:ed:b6:22:dc:7a:18:4b:32:02:2d:70:82: 6d:2f:64:95:96:dc:db:79:58:31:ea:05:d5:5c:18: 0a:7b:21:14:20:2d:ef:34:d1:09:4b:0a:36:ff:2f: 46:84:ef:e4:b5:38:2e:a8:83:08:43:95:e7:3a:15: d8:4e:30:14:90:d6:af:72:be:82:f9:3b:4d:be:4b: ba:13:0c:79:de:63:b1:c7:b2:b3:c7:25:de:06:29: 0a:fd:3d:13:d8:98:1a:b4:77:77:d1:81:86:1b:b4: 8f:85:9a:01:1f:c3:35:6b:e9:53:f5:af:9c:73:40: 2e:17:1f:7a:89:50:d7:b5:53:59:86:e4:a5:04:7c: 59:83:98:8f:33:78:6e:62:1d:17:6a:cc:d3:17:56: 4e:9b:01:32:43:ff:3f:9e:d4:f6:ab:55:ac:a2:dc: 6d:9f:d6:c2:e9:73:04:7d:2d:da:4f:86:e5:69:22: c6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:EC:24:0F:47:04:49:8C:B0:A9:4E:76:51:E9:F9:F8:B6:74:5E:4E X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:7d:14:91:35:99:08:31:66:ec:17:3b:40:ee:b3:4a:0b:66: 47:71:05:c9:25:dc:f2:87:c0:90:0f:ac:41:e4:ed:46:34:c6: 41:76:06:7c:6a:a1:72:58:b6:be:a1:e6:32:7c:9a:22:b7:9b: ef:2a:fe:9c:db:b4:c2:62:cb:d4:4e:7b:6d:29:1c:34:5f:94: 04:00:b0:09:64:00:db:8a:3e:8d:2d:31:21:59:da:e2:c0:51: 43:1f:9f:37:35:cb:48:55:66:5d:d3:c8:d0:04:69:99:0e:7e: a5:11:cc:9b:8f:0f:b2:1c:d4:c1:4d:f4:7e:6a:4c:bb:1a:55: 25:4f:3d:35:3b:19:3d:3f:44:73:05:23:71:57:e1:57:82:9b: 57:19:8f:b7:35:12:2e:cb:b8:01:89:12:61:2c:f0:93:dd:4d: af:ab:9f:c4:ee:ac:15:a3:6b:cb:da:a4:c3:aa:21:82:fa:03: 52:f0:f9:66:6c:4c:74:38:89:a0:fa:8d:c3:1d:dd:7c:0f:0b: f7:f6:e6:c8:55:f9:64:b1:6c:49:c9:77:82:9a:37:a5:dc:83: c0:06:9e:83:1c:35:96:3f:da:ad:ab:04:7c:3d:36:4a:d5:e7: 24:65:2d:1f:e5:03:16:60:f3:31:49:0f:5a:48:1e:7a:7f:bd: 5a:11:e2:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjYwNjEyMjMxNDE5WhcNMjYwNjE5MjMxNDE5WjAYMRYwFAYD VQQDEw02YTJjOTJjYi0wNTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4xmuW81VD5bdH1ijyZ+Xiac4wqpElijIy30DlXaRxdzbIoskCpZB+AKnUJf g5hXn10VyKwd0sj/ojvCixJvFExS3L5Ujy2oIobS58DttiLcehhLMgItcIJtL2SV ltzbeVgx6gXVXBgKeyEUIC3vNNEJSwo2/y9GhO/ktTguqIMIQ5XnOhXYTjAUkNav cr6C+TtNvku6Ewx53mOxx7KzxyXeBikK/T0T2JgatHd30YGGG7SPhZoBH8M1a+lT 9a+cc0AuFx96iVDXtVNZhuSlBHxZg5iPM3huYh0XaszTF1ZOmwEyQ/8/ntT2q1Ws otxtn9bC6XMEfS3aT4blaSLGLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFTsJA9H BEmMsKlOdlHp+fi2dF5OMB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1Ny9GQ0MxOEExNDIwNEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRS MC0yaDJfUG53aXB6b1YzdTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfH0UkTWZCDFm7Bc7QO6zSgtmR3EFySXc8ofAkA+sQeTtRjTGQXYGfGqhcli2 vqHmMnyaIreb7yr+nNu0wmLL1E57bSkcNF+UBACwCWQA24o+jS0xIVna4sBRQx+f NzXLSFVmXdPI0ARpmQ5+pRHMm48PshzUwU30fmpMuxpVJU89NTsZPT9EcwUjcVfh V4KbVxmPtzUSLsu4AYkSYSzwk91Nr6ufxO6sFaNry9qkw6ohgvoDUvD5ZmxMdDiJ oPqNwx3dfA8L9/bmyFX5ZLFsScl3gpo3pdyDwAaegxw1lj/arasEfD02StXnJGUt H+UDFmDzMUkPWkgeen+9WhHi/A== -----END CERTIFICATE-----Generated at Sat Jun 13 08:46:13 2026 by rpki-client