$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: USGM0XR/fiunR7sgL8AcXeEXDb8kWUWQzSLk70jnazg= Subject key identifier: D5:01:7C:7C:8A:0B:FA:F8:47:07:C0:B8:74:65:56:D8:95:C9:AF:00 Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: 0178 Signing time: Sat 31 May 2025 03:29:35 +0000 Manifest this update: Sat 31 May 2025 03:29:35 +0000 Manifest next update: Sat 07 Jun 2025 03:29:35 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: L/4I8CWkgMZNQXPcJRHYap4iFQ1EGiPfBbjPphSgt+I=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: gqwxGQWBn0ifV5GWNADtIX2e8pyTnC/qJOLYqwhr17g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:29:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE, serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: May 31 03:29:35 2025 GMT Not After : Jun 7 03:29:35 2025 GMT Subject: CN=683a779f-3900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8b:b1:c4:a2:c9:5b:1c:fb:8f:76:ee:31:fc: 6d:da:a6:5c:35:9b:97:9d:88:45:9d:99:8b:2e:25: 77:da:14:bb:f8:60:51:f7:e1:4b:cb:90:3b:65:c6: fd:c2:89:f9:22:70:e6:45:d1:ba:a5:ba:b9:58:39: 1c:23:9f:c4:dc:63:e5:0d:ff:fb:70:14:ae:a6:c9: d2:9a:4d:64:d6:ab:29:14:e7:cd:64:40:01:af:21: a7:96:76:f5:1e:49:d5:52:ba:a0:86:8f:00:02:73: e7:33:0d:1e:5a:43:e5:8a:a2:dc:8b:fd:22:13:9b: f9:4a:65:e6:6d:ce:7c:b4:bb:d2:a9:59:63:53:85: 0e:dd:de:85:01:02:e4:81:ab:eb:7b:05:bb:82:99: 11:c5:8d:b7:30:9f:8e:ce:f4:49:94:a6:aa:91:b8: f5:ac:c8:a9:89:67:7f:39:d4:dc:a3:c6:82:d5:5f: 53:51:a1:d3:70:2c:64:52:99:22:93:d1:8a:49:16: 57:c7:d1:40:e2:8a:03:5c:f1:ab:c3:67:7a:b8:e0: 06:12:49:dd:78:70:ec:cd:6c:55:d9:93:d0:97:58: 54:0f:b1:f6:ae:4f:76:82:f6:44:69:cf:9c:10:f3: e8:69:3b:01:57:00:f1:67:62:8d:06:85:5d:eb:ed: 96:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:01:7C:7C:8A:0B:FA:F8:47:07:C0:B8:74:65:56:D8:95:C9:AF:00 X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:cc:0f:26:be:6f:38:b0:7b:d9:6e:36:60:be:6a:f5:97:b3: 84:5b:44:d0:72:dd:3a:51:c8:a3:f8:60:4b:31:4a:0c:69:68: 6e:f5:b1:c7:84:e3:e3:84:90:e5:f5:b0:19:0f:0f:ca:ce:65: 39:62:d8:b9:4e:1b:f3:89:eb:48:ca:b0:a6:7a:4c:61:56:44: 92:6f:f3:d7:98:9b:2b:bc:ef:84:a7:a4:eb:9d:6d:3b:39:e1: 4f:b5:2e:c8:7a:83:3a:79:45:41:ad:e9:4e:3c:0d:0f:fd:01: 38:ea:85:48:ba:43:47:3e:75:50:45:4d:a5:f1:53:e4:d3:69: df:fe:b9:74:15:84:76:62:f8:26:24:1b:4d:34:22:78:7d:54: ef:00:cc:ff:27:e4:39:8c:5e:d8:5e:7e:d3:7b:7b:32:eb:c0: 51:38:d4:91:f6:79:87:87:c9:c7:98:62:9f:76:d5:41:5c:a9: 47:29:da:e3:f5:af:f7:11:39:c5:68:72:9f:ed:2c:55:c9:aa: b1:c6:c2:25:98:7e:7f:e4:b7:3f:33:24:0a:02:43:4f:29:3b: 99:9b:6e:0b:c3:d8:1e:af:1d:ec:87:7c:49:48:c9:26:a1:aa: 26:eb:84:4c:a2:54:16:af:1a:83:7c:93:fd:fc:87:d2:2d:b9: f2:05:0e:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjUwNTMxMDMyOTM1WhcNMjUwNjA3MDMyOTM1WjAYMRYwFAYD VQQDEw02ODNhNzc5Zi0zOTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIuxxKLJWxz7j3buMfxt2qZcNZuXnYhFnZmLLiV32hS7+GBR9+FLy5A7Zcb9 won5InDmRdG6pbq5WDkcI5/E3GPlDf/7cBSupsnSmk1k1qspFOfNZEABryGnlnb1 HknVUrqgho8AAnPnMw0eWkPliqLci/0iE5v5SmXmbc58tLvSqVljU4UO3d6FAQLk gavrewW7gpkRxY23MJ+OzvRJlKaqkbj1rMipiWd/OdTco8aC1V9TUaHTcCxkUpki k9GKSRZXx9FA4ooDXPGrw2d6uOAGEkndeHDszWxV2ZPQl1hUD7H2rk92gvZEac+c EPPoaTsBVwDxZ2KNBoVd6+2WpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUBfHyK C/r4RwfAuHRlVtiVya8AMB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8zA8mvm84sHvZbjZgvmr1l7OEW0TQct06Ucij+GBLMUoMaWhu9bHH hOPjhJDl9bAZDw/KzmU5Yti5ThvzietIyrCmekxhVkSSb/PXmJsrvO+Ep6TrnW07 OeFPtS7IeoM6eUVBrelOPA0P/QE46oVIukNHPnVQRU2l8VPk02nf/rl0FYR2Yvgm JBtNNCJ4fVTvAMz/J+Q5jF7YXn7Te3sy68BRONSR9nmHh8nHmGKfdtVBXKlHKdrj 9a/3ETnFaHKf7SxVyaqxxsIlmH5/5Lc/MyQKAkNPKTuZm24Lw9gerx3sh3xJSMkm oaom64RMolQWrxqDfJP9/IfSLbnyBQ40 -----END CERTIFICATE-----Generated at Sat May 31 17:14:43 2025 by rpki-client