$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft File: C33smHxhdR0-2h2_PnwipzoV3u0.mft (raw, json) Hash identifier: 5fGLefBGUOaWsGVSJM9Szex/GlrvpyRPtt2PlK7QLyY= Subject key identifier: 1C:DD:98:36:38:FC:52:36:6E:E6:44:CB:4E:C1:44:F1:37:96:59:B9 Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 050E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft Manifest number: 0508 Signing time: Mon 08 Sep 2025 23:41:21 +0000 Manifest this update: Mon 08 Sep 2025 23:41:20 +0000 Manifest next update: Mon 15 Sep 2025 23:41:20 +0000 Files and hashes: 1: C33smHxhdR0-2h2_PnwipzoV3u0.crl (hash: 7sznfqrVfRgtN0/8/uzo4kjCix/kk8tTCrt43yodhrM=) 2: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (hash: +PbEWtYSfIT5V18KuiJqAnYLDPzBVBUjvZLUMUeffC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 23:41:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1294 (0x50e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57, serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: Sep 8 23:41:20 2025 GMT Not After : Sep 15 23:41:20 2025 GMT Subject: CN=68bf69a0-c73f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8f:38:56:68:1f:36:53:35:26:1c:93:2d:fa: 4f:6b:e5:d7:a7:3c:68:46:96:6f:8c:7f:95:6c:36: 17:4d:93:7a:0d:3a:3e:5b:b8:eb:5a:c8:8b:a2:38: b5:f3:71:cb:1e:72:0b:a0:af:70:11:54:cf:6c:33: f9:f2:1b:f5:e7:07:de:4a:5b:00:43:c2:b6:aa:a7: df:ce:56:38:37:1e:31:27:90:b6:da:bf:36:b7:f6: 66:77:1f:b5:59:ea:49:bb:38:9f:3a:c6:29:ed:30: c3:79:2a:14:08:fa:8f:ed:91:e2:ca:00:ec:ca:da: 1f:e1:bd:8c:44:40:ae:a1:d0:4b:f4:e1:65:c0:0a: bb:2c:78:54:b3:72:23:35:b6:c5:94:08:1a:45:ee: 0c:38:11:72:9d:61:46:27:d6:ca:99:67:8f:e3:2e: 74:ba:9a:de:ba:50:fa:fb:67:84:27:6a:bc:6a:a6: a0:a4:51:2c:77:25:b6:3d:24:30:46:9e:49:10:b4: 2d:bb:8b:e8:7f:ea:41:cd:fc:5d:28:80:e2:f9:bb: d9:3d:d8:d5:44:17:d9:fa:3e:be:7b:13:15:e1:0a: be:6a:06:8a:7f:2e:72:f5:29:ce:2c:da:95:b4:e0: d7:70:29:88:30:27:6d:85:0e:9a:86:3f:ec:de:38: ab:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:DD:98:36:38:FC:52:36:6E:E6:44:CB:4E:C1:44:F1:37:96:59:B9 X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:39:9f:c4:21:a8:59:de:83:5f:e2:b7:82:ad:54:c4:7d:b8: b1:fd:b4:22:19:ec:f5:c9:d9:86:f2:e7:03:a3:be:97:a1:22: 45:fa:90:c0:86:c5:a7:d7:d7:d8:6b:a8:a6:cc:4c:58:01:89: e0:8d:df:96:43:78:68:5c:49:f3:f1:20:9e:f3:a0:cd:0a:ad: 29:6d:53:b6:ca:7e:53:e3:04:e4:8e:59:e0:bb:d6:de:86:ed: 86:cc:37:81:26:1f:c2:3c:2b:f6:3d:2a:53:80:77:c0:20:89: 8b:e6:e7:04:a1:bb:9c:d0:da:f3:b4:3b:da:6b:e6:34:72:d9: d5:0b:dc:b6:fc:9f:5b:7b:b4:64:ae:24:45:12:49:b9:38:b4: 83:e3:ad:dd:bf:71:ca:86:f4:86:61:62:bb:6d:f3:6d:87:29: be:16:90:b8:83:8a:3f:92:9e:c1:b2:88:10:ff:29:b7:a1:fd: 70:f5:ca:39:de:a8:b8:a9:46:0b:16:9a:d3:2e:1c:81:53:20: 3b:61:4c:d8:7f:47:7e:47:cf:73:a4:72:13:ed:8b:ee:c5:3f: 09:a0:96:c2:91:29:8f:37:20:58:0c:bb:c2:23:4d:ec:16:b0: de:bd:2a:95:ee:ac:fd:57:e0:29:10:38:af:01:de:0d:8a:ab: f4:09:75:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjUwOTA4MjM0MTIwWhcNMjUwOTE1MjM0MTIwWjAYMRYwFAYD VQQDEw02OGJmNjlhMC1jNzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7I84VmgfNlM1JhyTLfpPa+XXpzxoRpZvjH+VbDYXTZN6DTo+W7jrWsiLoji1 83HLHnILoK9wEVTPbDP58hv15wfeSlsAQ8K2qqffzlY4Nx4xJ5C22r82t/Zmdx+1 WepJuzifOsYp7TDDeSoUCPqP7ZHiygDsytof4b2MRECuodBL9OFlwAq7LHhUs3Ij NbbFlAgaRe4MOBFynWFGJ9bKmWeP4y50upreulD6+2eEJ2q8aqagpFEsdyW2PSQw Rp5JELQtu4vof+pBzfxdKIDi+bvZPdjVRBfZ+j6+exMV4Qq+agaKfy5y9SnOLNqV tODXcCmIMCdthQ6ahj/s3jirXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzdmDY4 /FI2buZEy07BRPE3llm5MB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1Ny9GQ0MxOEExNDIwNEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRS MC0yaDJfUG53aXB6b1YzdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArOZ/EIahZ3oNf4reCrVTEfbix/bQiGez1ydmG8ucDo76XoSJF+pDA hsWn19fYa6imzExYAYngjd+WQ3hoXEnz8SCe86DNCq0pbVO2yn5T4wTkjlngu9be hu2GzDeBJh/CPCv2PSpTgHfAIImL5ucEobuc0NrztDvaa+Y0ctnVC9y2/J9be7Rk riRFEkm5OLSD463dv3HKhvSGYWK7bfNthym+FpC4g4o/kp7BsogQ/ym3of1w9co5 3qi4qUYLFprTLhyBUyA7YUzYf0d+R89zpHIT7YvuxT8JoJbCkSmPNyBYDLvCI03s FrDevSqV7qz9V+ApEDivAd4Niqv0CXVQ -----END CERTIFICATE-----Generated at Tue Sep 9 18:26:28 2025 by rpki-client