$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: tjOVswERIXwoVVhyDoROS1vPsx8Sqj0+UXa096gbz0A= Subject key identifier: A8:3E:82:31:10:37:8F:61:75:A1:E7:9B:7F:9F:E6:C6:86:EA:0E:D4 Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: 01A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: 019A Signing time: Fri 25 Jul 2025 03:43:09 +0000 Manifest this update: Fri 25 Jul 2025 03:43:08 +0000 Manifest next update: Fri 01 Aug 2025 03:43:08 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: AIkt8v+sH8147RiJDymXIpBiYKFXdl1H8gy8uyJAag4=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: iDm8Sz2b0EPRU9mpY2A4AYTMcRWbqHBXrtYgkLwsGY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 03:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE, serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: Jul 25 03:43:08 2025 GMT Not After : Aug 1 03:43:08 2025 GMT Subject: CN=6882fd4c-dbaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:07:ad:d3:46:7d:40:9a:f2:da:e8:52:e6:8d: 00:51:f9:27:74:31:01:66:f6:f7:3a:43:1e:ed:23: f1:b5:e0:bc:af:80:ac:7d:e4:eb:3c:39:22:61:40: 09:eb:ea:88:53:ca:fe:27:f3:6b:b7:09:a1:4d:d8: e6:05:f7:3a:e9:61:55:43:f4:b6:b9:7b:c8:df:7c: a5:08:6b:44:ad:bd:72:0a:71:38:78:17:9a:28:22: cd:f3:4a:71:af:bc:0c:56:bc:bc:52:27:96:38:16: 81:47:aa:4d:38:e8:9d:b4:ca:88:4a:78:d3:0a:a7: be:83:86:c7:4d:fb:7a:3b:54:3c:9a:9c:98:5f:bd: 5d:93:c2:22:42:18:b9:1a:21:e4:bd:62:a8:4d:b0: 5d:f2:f8:73:5c:62:ff:1a:80:51:75:2f:94:a2:73: 30:73:90:85:b7:12:bd:27:a5:3b:b1:d3:8b:5d:74: af:84:fb:97:3d:83:06:8b:0c:ad:d4:1e:db:4e:e6: 72:97:e6:d9:31:6e:bf:d5:9d:6b:a3:f2:0d:b9:9e: 5c:f5:ac:1d:6e:ac:52:1b:f1:a6:a6:7e:42:89:b4: 94:02:81:76:3e:67:b4:b2:19:23:1f:35:6e:0e:f0: 30:bd:17:9c:5d:48:d7:db:a8:28:1c:66:7f:3f:43: 33:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:3E:82:31:10:37:8F:61:75:A1:E7:9B:7F:9F:E6:C6:86:EA:0E:D4 X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:94:4d:af:ee:8a:1a:ab:13:23:a4:32:75:34:60:7f:23:fa: d9:28:e6:9f:94:71:a4:9a:37:0c:b1:79:92:f2:f3:b6:04:51: 4e:57:f1:b1:26:c7:c0:43:7d:06:65:89:7b:0a:b1:88:8e:cc: b1:76:48:e4:ca:28:e0:8e:48:25:0a:85:26:cc:68:b4:5e:e5: f5:03:f3:77:5d:73:ee:85:58:cb:e8:20:4e:31:09:1e:13:67: 4e:4a:db:95:32:7f:12:70:90:86:b5:99:fa:18:33:46:f3:08: 06:d6:82:77:17:31:57:cc:61:78:99:3c:33:7d:e7:7c:1c:22: 2b:8a:3b:13:8d:2f:c8:ff:11:32:8f:7d:84:c8:78:7f:49:8e: a3:6e:63:38:cf:42:0b:a2:a2:49:df:60:ed:df:c4:90:d1:62: 70:b8:bd:5b:a6:07:11:26:28:76:5c:12:0a:83:ae:4c:55:46: f2:37:9e:30:99:ab:6b:2a:dd:f8:15:22:29:a8:b2:f1:6d:90: 81:04:68:9d:98:61:f2:d8:44:d4:30:36:f8:a0:c8:72:ff:2b: 34:10:be:7d:02:6c:46:4b:00:52:1c:1c:9c:ea:2f:cf:01:84: a2:b8:67:48:68:5c:1e:98:5a:4d:b0:e0:44:0a:b2:37:cd:91: f8:db:4f:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjUwNzI1MDM0MzA4WhcNMjUwODAxMDM0MzA4WjAYMRYwFAYD VQQDEw02ODgyZmQ0Yy1kYmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAet00Z9QJry2uhS5o0AUfkndDEBZvb3OkMe7SPxteC8r4CsfeTrPDkiYUAJ 6+qIU8r+J/NrtwmhTdjmBfc66WFVQ/S2uXvI33ylCGtErb1yCnE4eBeaKCLN80px r7wMVry8UieWOBaBR6pNOOidtMqISnjTCqe+g4bHTft6O1Q8mpyYX71dk8IiQhi5 GiHkvWKoTbBd8vhzXGL/GoBRdS+UonMwc5CFtxK9J6U7sdOLXXSvhPuXPYMGiwyt 1B7bTuZyl+bZMW6/1Z1ro/INuZ5c9awdbqxSG/Gmpn5CibSUAoF2Pme0shkjHzVu DvAwvRecXUjX26goHGZ/P0MzIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKg+gjEQ N49hdaHnm3+f5saG6g7UMB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAolE2v7ooaqxMjpDJ1NGB/I/rZKOaflHGkmjcMsXmS8vO2BFFOV/Gx JsfAQ30GZYl7CrGIjsyxdkjkyijgjkglCoUmzGi0XuX1A/N3XXPuhVjL6CBOMQke E2dOStuVMn8ScJCGtZn6GDNG8wgG1oJ3FzFXzGF4mTwzfed8HCIrijsTjS/I/xEy j32EyHh/SY6jbmM4z0ILoqJJ32Dt38SQ0WJwuL1bpgcRJih2XBIKg65MVUbyN54w matrKt34FSIpqLLxbZCBBGidmGHy2ETUMDb4oMhy/ys0EL59AmxGSwBSHByc6i/P AYSiuGdIaFwemFpNsOBECrI3zZH420/n -----END CERTIFICATE-----Generated at Sat Jul 26 20:43:48 2025 by rpki-client