$ rpki-client -vvf rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft File: MOI2HN2l66cF86ay--vl232vEPE.mft (raw, json) Hash identifier: qSCy93QCjZP4VTKW/yw6bmRSvAerkqzHFwemYi2teBA= Subject key identifier: E1:FE:38:63:F6:A9:82:6B:A0:A7:67:64:5B:93:60:C1:0B:14:1E:87 Authority key identifier: 30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 Certificate issuer: /CN=A91386E8/serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Certificate serial: 063D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft Manifest number: 0633 Signing time: Sun 10 Aug 2025 22:50:30 +0000 Manifest this update: Sun 10 Aug 2025 22:50:29 +0000 Manifest next update: Sun 17 Aug 2025 22:50:29 +0000 Files and hashes: 1: MOI2HN2l66cF86ay--vl232vEPE.crl (hash: nL1TzfUNd7AqJ655nvLJ7yGQFyRiRz6ndCi0hkO4+g4=) 2: 65C6DD42E15211EC8EEE9668C4F9AE02.roa (hash: BLYldDR5zxqTMcX8NQEJYFIKVTzk5VrQGbTFGjfROjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 22:50:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1597 (0x63d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91386E8, serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Validity Not Before: Aug 10 22:50:29 2025 GMT Not After : Aug 17 22:50:29 2025 GMT Subject: CN=68992236-4fb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:0a:b4:ca:e6:cf:03:9d:48:d7:0c:85:04:c6: 84:9f:9c:9c:d7:5e:4a:7e:2c:14:9e:af:e9:0e:84: 3f:b5:82:8b:da:a0:27:8c:46:42:2a:01:99:9b:78: 48:17:e6:bf:88:6d:bd:98:8f:4c:26:38:79:f3:71: fb:b5:cf:3f:93:92:11:2c:86:74:98:82:69:4a:7d: 75:b2:72:f0:3f:55:93:c9:28:f8:2c:4b:43:77:49: 6a:10:d2:8f:8c:00:92:4e:d0:be:d2:98:83:64:10: 49:38:02:0d:29:32:47:d7:b1:e7:3f:14:bc:ea:ed: 98:db:5a:69:9c:68:48:18:f5:4c:41:89:2b:ee:09: 85:88:d3:12:c3:66:6f:1f:23:9e:b7:34:2b:44:72: ae:92:0d:ca:4d:53:04:ab:ea:00:b5:d2:b7:88:68: be:c0:bc:2f:92:e6:21:30:d6:32:e4:0e:2c:1c:ab: 51:62:11:98:96:60:02:79:81:9e:ae:2f:92:80:ef: 4e:90:15:4d:af:91:03:26:4b:80:3f:d0:46:62:1b: 55:fa:63:aa:52:53:78:45:98:e9:0b:b9:ea:da:5c: 56:dc:98:03:b8:54:3f:99:d6:be:db:64:d8:55:b2: f0:f8:5b:ac:bd:13:3b:c0:22:1b:fd:6f:01:79:b9: 5e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:FE:38:63:F6:A9:82:6B:A0:A7:67:64:5B:93:60:C1:0B:14:1E:87 X509v3 Authority Key Identifier: keyid:30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:7f:8a:84:9b:d4:f0:ec:a0:3c:78:6c:8f:43:a7:d9:08:8c: 5a:3c:8b:00:89:a2:2c:38:f5:2d:31:1d:1c:61:68:91:f2:57: 89:f5:93:f9:9f:69:eb:58:4b:41:13:cb:43:b9:fc:63:3c:18: 52:b0:3c:59:70:5f:b9:f9:7b:a2:d9:00:eb:47:13:9f:f2:b7: 4f:ed:a0:20:ef:4c:6c:05:a5:dc:cd:8a:47:7b:42:39:36:de: a7:47:7a:7e:c4:fe:f5:e8:e6:d3:7c:e4:c1:d0:e6:d3:e6:55: 72:ee:40:dd:47:0d:ba:f5:9e:02:e8:80:08:4e:47:d6:e9:5c: 69:76:57:12:65:8f:21:dc:88:03:3e:a7:71:2c:9a:1e:0e:27: ea:aa:17:70:c8:b5:e4:c7:d9:f8:47:0a:ad:a6:e9:0c:db:86: b5:33:dd:e6:2b:50:1f:05:d3:d9:7b:2d:11:6e:1c:22:be:24: f5:06:cc:ad:ff:64:8b:c0:27:a1:81:b0:27:5d:f0:c2:66:f2: 58:e4:96:a0:01:69:76:e9:4c:c5:6a:77:82:bd:1c:4a:e7:64: 82:3a:ae:44:61:1c:ed:78:c0:dc:f5:3e:4a:e0:ac:9e:4c:6c: fe:6f:e7:ce:11:8a:21:63:f8:c8:25:eb:36:29:84:00:8c:55: 41:2e:f5:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2RTgxMTAvBgNVBAUTKDMwRTIzNjFDRERBNUVCQTcwNUYzQTZCMkZCRUJFNURC N0RBRjEwRjEwHhcNMjUwODEwMjI1MDI5WhcNMjUwODE3MjI1MDI5WjAYMRYwFAYD VQQDEw02ODk5MjIzNi00ZmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Qq0yubPA51I1wyFBMaEn5yc115KfiwUnq/pDoQ/tYKL2qAnjEZCKgGZm3hI F+a/iG29mI9MJjh583H7tc8/k5IRLIZ0mIJpSn11snLwP1WTySj4LEtDd0lqENKP jACSTtC+0piDZBBJOAINKTJH17HnPxS86u2Y21ppnGhIGPVMQYkr7gmFiNMSw2Zv HyOetzQrRHKukg3KTVMEq+oAtdK3iGi+wLwvkuYhMNYy5A4sHKtRYhGYlmACeYGe ri+SgO9OkBVNr5EDJkuAP9BGYhtV+mOqUlN4RZjpC7nq2lxW3JgDuFQ/mda+22TY VbLw+FusvRM7wCIb/W8BeblevwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOH+OGP2 qYJroKdnZFuTYMELFB6HMB8GA1UdIwQYMBaAFDDiNhzdpeunBfOmsvvr5dt9rxDx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODZFOC80ODg5NTk0RUE4 MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2Y0Y4NmF5LS12bDIzMnZF UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PSTJITjJsNjZjRjg2YXktLXZsMjMydkVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODZFOC80ODg5NTk0RUE4MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2 Y0Y4NmF5LS12bDIzMnZFUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBif4qEm9Tw7KA8eGyPQ6fZCIxaPIsAiaIsOPUtMR0cYWiR8leJ9ZP5 n2nrWEtBE8tDufxjPBhSsDxZcF+5+Xui2QDrRxOf8rdP7aAg70xsBaXczYpHe0I5 Nt6nR3p+xP716ObTfOTB0ObT5lVy7kDdRw269Z4C6IAITkfW6VxpdlcSZY8h3IgD PqdxLJoeDifqqhdwyLXkx9n4RwqtpukM24a1M93mK1AfBdPZey0RbhwiviT1Bsyt /2SLwCehgbAnXfDCZvJY5JagAWl26UzFaneCvRxK52SCOq5EYRzteMDc9T5K4Kye TGz+b+fOEYohY/jIJes2KYQAjFVBLvW3 -----END CERTIFICATE-----Generated at Tue Aug 12 18:59:43 2025 by rpki-client