$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft File: C33smHxhdR0-2h2_PnwipzoV3u0.mft (raw, json) Hash identifier: +bF/ChZ6EXUGGkJTODv2fxzZkI4Ngp97emUImSulGBc= Subject key identifier: 23:1D:E3:56:F7:A5:22:77:C1:40:BB:DC:1A:C4:3C:2D:41:7C:4D:DB Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 04FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft Manifest number: 04F9 Signing time: Sun 10 Aug 2025 23:48:06 +0000 Manifest this update: Sun 10 Aug 2025 23:48:06 +0000 Manifest next update: Sun 17 Aug 2025 23:48:06 +0000 Files and hashes: 1: C33smHxhdR0-2h2_PnwipzoV3u0.crl (hash: 61+fEHRPKi+8wC7Zz239jjrNsnJ5dRN1J18u2VbPnMI=) 2: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (hash: +PbEWtYSfIT5V18KuiJqAnYLDPzBVBUjvZLUMUeffC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1279 (0x4ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57, serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: Aug 10 23:48:06 2025 GMT Not After : Aug 17 23:48:06 2025 GMT Subject: CN=68992fb6-9fca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0b:4a:92:1a:6b:4c:2b:5f:af:bf:d8:b2:d8: 0e:56:c6:63:97:41:0e:0a:2b:45:f7:57:17:19:8b: 0b:6e:43:3f:7f:37:a1:b7:db:bc:b3:c5:ae:89:ad: 09:31:5f:1b:3a:4e:cf:d0:cc:15:2b:a4:fa:cf:4d: e0:6f:14:e3:f2:26:1c:e3:02:43:d2:b4:a2:86:83: a8:91:7e:51:b9:37:44:53:83:94:c9:51:50:d2:80: fb:36:91:01:6b:88:53:57:72:91:a9:d1:2c:0c:8a: b0:cf:d8:6a:02:1a:8a:df:c8:e9:fe:92:7c:b4:40: bb:99:6a:5b:5e:80:52:c2:64:b1:64:85:ca:f9:e9: 86:72:c0:a8:57:45:90:24:e7:a4:c9:f3:dc:53:02: 50:08:c9:0a:66:fd:c9:67:52:78:4f:43:0c:20:31: 78:32:ac:cf:8c:72:d5:99:e8:51:7a:bf:bb:7f:38: d8:64:0f:bf:9d:94:ec:80:75:e3:0e:25:a1:45:b7: e0:9d:ff:86:29:a5:a3:72:79:18:a9:93:da:9c:ad: 3e:f5:7f:22:86:7c:07:28:d9:07:5b:38:d5:e7:73: dd:5d:54:00:33:51:0b:8f:a0:c5:cd:17:fe:76:8b: 00:bf:f9:1d:d4:af:da:93:e2:5a:46:b9:03:2d:31: c8:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:1D:E3:56:F7:A5:22:77:C1:40:BB:DC:1A:C4:3C:2D:41:7C:4D:DB X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:46:91:74:2b:0d:bb:c7:8d:a1:32:a7:3d:92:de:c9:85:86: e9:bc:29:7c:de:53:ea:16:a6:ca:d7:36:17:9d:f0:bd:fa:97: 67:10:0d:ec:25:27:31:11:26:43:81:31:43:1a:b4:7f:7e:67: a1:9c:41:8d:9d:8e:2f:4e:6e:2c:85:69:18:fe:c1:86:cd:9e: a4:4a:34:20:81:e1:58:55:5a:cc:24:28:39:a1:8a:15:0d:f9: cc:5c:fa:e3:68:3c:62:37:19:22:1f:b4:5e:7c:e4:2b:eb:ab: 7e:6d:5e:36:4b:09:ac:94:c8:49:78:fe:c9:48:3a:a2:45:62: 60:0c:ac:73:fa:5e:24:6c:65:ba:63:a0:3e:e8:66:a4:cd:53: 42:73:53:19:bc:25:68:ef:46:86:45:53:53:dc:f7:a5:fd:1a: ab:3e:96:46:a4:1b:fe:31:84:86:7f:79:65:5e:96:f6:59:a6: 3c:26:45:e6:0f:63:36:e8:49:0a:e3:29:51:3c:1b:f5:ba:30: f5:f9:cd:9d:5d:86:2a:21:20:96:c3:4b:98:4e:6c:d7:7a:70: f2:f4:52:e8:80:9c:52:da:47:6e:50:c8:b0:9c:15:2d:a3:ed: 7e:58:27:12:4c:f4:94:9c:73:a7:41:96:d4:b5:fa:27:ad:dd: f1:db:b3:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjUwODEwMjM0ODA2WhcNMjUwODE3MjM0ODA2WjAYMRYwFAYD VQQDEw02ODk5MmZiNi05ZmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQtKkhprTCtfr7/YstgOVsZjl0EOCitF91cXGYsLbkM/fzeht9u8s8Wuia0J MV8bOk7P0MwVK6T6z03gbxTj8iYc4wJD0rSihoOokX5RuTdEU4OUyVFQ0oD7NpEB a4hTV3KRqdEsDIqwz9hqAhqK38jp/pJ8tEC7mWpbXoBSwmSxZIXK+emGcsCoV0WQ JOekyfPcUwJQCMkKZv3JZ1J4T0MMIDF4MqzPjHLVmehRer+7fzjYZA+/nZTsgHXj DiWhRbfgnf+GKaWjcnkYqZPanK0+9X8ihnwHKNkHWzjV53PdXVQAM1ELj6DFzRf+ dosAv/kd1K/ak+JaRrkDLTHI7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMd41b3 pSJ3wUC73BrEPC1BfE3bMB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1Ny9GQ0MxOEExNDIwNEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRS MC0yaDJfUG53aXB6b1YzdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkRpF0Kw27x42hMqc9kt7JhYbpvCl83lPqFqbK1zYXnfC9+pdnEA3s JScxESZDgTFDGrR/fmehnEGNnY4vTm4shWkY/sGGzZ6kSjQggeFYVVrMJCg5oYoV DfnMXPrjaDxiNxkiH7RefOQr66t+bV42SwmslMhJeP7JSDqiRWJgDKxz+l4kbGW6 Y6A+6GakzVNCc1MZvCVo70aGRVNT3Pel/RqrPpZGpBv+MYSGf3llXpb2WaY8JkXm D2M26EkK4ylRPBv1ujD1+c2dXYYqISCWw0uYTmzXenDy9FLogJxS2kduUMiwnBUt o+1+WCcSTPSUnHOnQZbUtfonrd3x27NP -----END CERTIFICATE-----Generated at Mon Aug 11 10:10:12 2025 by rpki-client