$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: mSGVdrOWjVwHRe1jLsfXlorVM2gP+R7UFgDy6Yl/DDc= Subject key identifier: D2:12:EA:C0:6D:AE:A7:16:B6:3B:E4:18:07:9E:23:E5:A7:62:E2:A1 Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: 015A Signing time: Thu 03 Apr 2025 03:24:02 +0000 Manifest this update: Thu 03 Apr 2025 03:24:01 +0000 Manifest next update: Thu 10 Apr 2025 03:24:01 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: fDm7Lj4dD5rqgttuhO+Tcv9vwpRi6HJtHHj+K40XzVk=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: 22aaI99D5AWtJSeJ++1PDVBO7upMl84FHbNH+yIrm8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:24:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE Validity Not Before: Apr 3 03:24:01 2025 GMT Not After : Apr 10 03:24:01 2025 GMT Subject: CN=67edff52-4956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e5:39:f6:ba:24:26:b4:39:41:76:9e:19:dc: eb:c1:ee:ec:e7:6d:66:36:f3:79:23:2c:11:1e:26: 6e:fc:04:ff:e6:43:64:84:f2:4e:2b:3d:93:b4:b4: 99:14:b6:1f:e5:77:bc:8c:a2:a5:49:97:46:87:f3: c3:f1:5d:32:44:c5:e0:12:0c:cb:c6:ac:e2:8e:29: 3a:3c:ff:84:f5:c0:54:bc:54:d7:a0:e8:b0:b9:d9: 0a:bf:6a:75:0c:eb:bc:f8:c7:04:83:dd:87:db:ed: 71:6c:91:e7:8b:5c:1d:d8:6c:75:1a:97:89:76:d7: 42:01:68:ea:1e:4b:34:ba:07:c6:3f:91:93:e5:5d: 22:1c:4f:72:65:ac:1b:ba:9c:87:49:e5:f5:eb:bc: 5f:93:bd:63:7e:59:e0:65:33:03:ed:73:17:ed:d6: ba:98:55:c3:fe:ac:54:89:93:5e:5c:10:e9:64:bf: 5e:53:a4:fb:a7:a5:94:35:8d:ab:fe:7a:b0:d9:5d: c4:6d:4e:56:83:5b:4a:fe:cc:54:e2:06:73:c0:5c: c0:79:54:bc:bd:fb:35:49:8a:e8:be:63:ee:0d:ac: 2a:7d:e5:bf:02:37:3b:76:61:9d:47:37:9a:b1:8a: 5a:77:8c:ce:a6:9b:44:cf:ad:67:ef:53:28:00:62: 76:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:12:EA:C0:6D:AE:A7:16:B6:3B:E4:18:07:9E:23:E5:A7:62:E2:A1 X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:74:4c:6f:44:9c:c8:49:f2:a9:4d:82:38:5e:13:e0:d3:c0: 52:91:1b:d4:6e:f4:69:56:e0:93:ef:93:3b:fb:87:70:9a:5b: f3:6c:88:2d:1e:08:e7:7b:a7:11:cc:3e:53:e5:8f:42:5a:e4: 84:a3:1e:3d:a0:b4:ac:5b:3a:40:54:b5:ae:ad:e7:ad:69:d9: d0:d6:fd:19:29:31:cf:5d:cc:5a:81:12:f4:87:ca:51:6a:c3: 81:0c:7e:fc:9a:a5:f6:4f:28:00:ce:6e:5f:2b:79:05:be:cb: 4c:be:ea:9c:63:6a:d6:6b:89:65:18:86:a4:cc:c8:2a:e0:20: 4d:25:41:a5:ff:d2:f3:96:e2:32:98:d4:a6:75:20:8d:ae:5f: 35:10:93:ed:7b:61:24:cc:e6:d2:d0:05:c5:11:fb:8e:16:af: 1e:38:2f:8f:9d:46:d9:d0:3a:88:67:f6:34:7f:1a:ba:22:51: 3b:27:8c:f8:79:41:94:be:29:45:d5:be:83:18:8f:2f:3d:ef: 02:23:cd:20:89:d7:2f:b8:62:4c:d0:e7:0b:13:9d:0a:7a:6b: 27:58:d9:f6:d3:e3:7a:d5:dd:c8:60:32:9b:fe:bb:17:5c:4e: b1:63:fd:09:29:e7:37:e8:0d:21:c5:ef:98:00:02:f6:5d:a8: 4f:0b:33:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjUwNDAzMDMyNDAxWhcNMjUwNDEwMDMyNDAxWjAYMRYwFAYD VQQDEw02N2VkZmY1Mi00OTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueU59rokJrQ5QXaeGdzrwe7s521mNvN5IywRHiZu/AT/5kNkhPJOKz2TtLSZ FLYf5Xe8jKKlSZdGh/PD8V0yRMXgEgzLxqzijik6PP+E9cBUvFTXoOiwudkKv2p1 DOu8+McEg92H2+1xbJHni1wd2Gx1GpeJdtdCAWjqHks0ugfGP5GT5V0iHE9yZawb upyHSeX167xfk71jflngZTMD7XMX7da6mFXD/qxUiZNeXBDpZL9eU6T7p6WUNY2r /nqw2V3EbU5Wg1tK/sxU4gZzwFzAeVS8vfs1SYrovmPuDawqfeW/Ajc7dmGdRzea sYpad4zOpptEz61n71MoAGJ2cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNIS6sBt rqcWtjvkGAeeI+WnYuKhMB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArdExvRJzISfKpTYI4XhPg08BSkRvUbvRpVuCT75M7+4dwmlvzbIgt Hgjne6cRzD5T5Y9CWuSEox49oLSsWzpAVLWureetadnQ1v0ZKTHPXcxagRL0h8pR asOBDH78mqX2TygAzm5fK3kFvstMvuqcY2rWa4llGIakzMgq4CBNJUGl/9LzluIy mNSmdSCNrl81EJPte2EkzObS0AXFEfuOFq8eOC+PnUbZ0DqIZ/Y0fxq6IlE7J4z4 eUGUvilF1b6DGI8vPe8CI80gidcvuGJM0OcLE50KemsnWNn20+N61d3IYDKb/rsX XE6xY/0JKec36A0hxe+YAAL2XahPCzOC -----END CERTIFICATE-----Generated at Fri Apr 4 22:09:10 2025 by rpki-client