$ rpki-client -vvf rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft File: MOCAPeumAKyakmRMlveKjohdfFA.mft (raw, json) Hash identifier: 25TOi8YUVFsAFRPnAn7g8V+73F9En8UlAp29AUB/Ay8= Subject key identifier: 37:18:4A:54:EA:B2:27:81:66:6E:5E:55:B8:FF:17:44:02:4A:22:FD Authority key identifier: 30:E0:80:3D:EB:A6:00:AC:9A:92:64:4C:96:F7:8A:8E:88:5D:7C:50 Certificate issuer: /CN=A917CEE3/serialNumber=30E0803DEBA600AC9A92644C96F78A8E885D7C50 Certificate serial: 0594 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft Manifest number: 0578 Signing time: Sun 02 Nov 2025 23:43:23 +0000 Manifest this update: Sun 02 Nov 2025 23:43:22 +0000 Manifest next update: Sun 09 Nov 2025 23:43:22 +0000 Files and hashes: 1: MOCAPeumAKyakmRMlveKjohdfFA.crl (hash: pTOnzJsBq4paCwqMmzT66+YO8/4BTu957XmteRJbu/U=) 2: 7A532A308E1D11EE9CC5535CC4F9AE02.roa (hash: op1f0dmOmYKN53NdiioOTuPiw+z0pYxBQfbuO2UDbqE=) 3: 04A930F6629211EE90D5AD6CC4F9AE02.roa (hash: Lq0Pjcb0X2iFoTuh1SlciaEnxeaDU7HVk0tgiyAZd5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.crl rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1428 (0x594) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CEE3, serialNumber=30E0803DEBA600AC9A92644C96F78A8E885D7C50 Validity Not Before: Nov 2 23:43:22 2025 GMT Not After : Nov 9 23:43:22 2025 GMT Subject: CN=6907ec9b-202d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c5:81:0e:b7:8f:50:59:55:c2:3a:c5:fc:94: e5:af:db:73:a2:af:05:1e:ae:34:1c:05:9b:10:ae: f3:b2:a2:77:51:1b:78:e9:64:09:35:06:7d:60:64: 97:2d:0f:de:11:6f:b1:79:e1:a0:41:03:d5:6d:64: e6:1c:26:32:02:42:7b:e9:43:ac:3f:db:05:eb:72: b3:68:6f:fc:10:38:0d:90:f8:d5:25:71:75:63:b9: 55:00:f3:8e:62:21:24:92:b0:36:34:00:78:64:94: fc:3e:8e:0a:6d:83:5b:c5:8f:65:af:18:9a:8e:db: 5b:e3:0f:3c:ca:7e:6e:7c:bd:8a:88:2b:20:bd:9b: d2:2e:31:8d:0f:18:52:21:a4:a8:90:66:81:bd:8c: 33:05:09:c8:a3:56:de:b5:32:f7:e6:b9:cd:12:d4: 6d:48:18:40:07:24:b8:3f:d0:d4:f9:09:7c:09:87: 9d:52:fc:3e:ab:be:e9:40:e6:32:c8:b8:9b:f7:7b: 10:d6:4d:a8:72:cb:39:e9:b9:8b:fd:6f:31:7d:ba: a3:fd:d5:34:bf:b8:a4:27:25:ff:77:29:96:b0:e4: 1a:37:16:1d:b5:4e:b2:a3:59:6e:57:e8:d3:62:61: f6:f1:de:b5:aa:80:ee:38:8f:4b:4e:4c:eb:d4:c9: 9d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:18:4A:54:EA:B2:27:81:66:6E:5E:55:B8:FF:17:44:02:4A:22:FD X509v3 Authority Key Identifier: keyid:30:E0:80:3D:EB:A6:00:AC:9A:92:64:4C:96:F7:8A:8E:88:5D:7C:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:7a:fd:f0:6f:a3:16:ba:5f:f5:d3:89:9c:b9:c3:13:61:d0: 80:99:96:bd:f7:67:3e:16:14:42:d2:b0:84:b3:0d:b8:9b:54: 2d:b8:02:f7:ca:ce:9d:86:2d:88:ba:2e:96:1f:e2:a3:b7:ff: f7:5e:61:03:46:7a:81:eb:71:da:a1:66:5d:aa:c4:7f:5f:68: 50:a1:74:3a:6c:67:b7:3a:37:ee:67:fb:0d:84:b2:48:c5:bb: ae:77:d2:53:a1:4d:4c:da:e6:62:48:d7:15:a6:3a:b6:28:04: b4:f9:76:7f:94:86:18:13:15:c0:ac:82:15:f7:2c:b3:c2:5a: 2e:e1:46:12:f6:16:77:4b:35:f0:73:76:6d:7b:ba:f8:b2:f7: 01:5b:c3:33:0c:9e:8a:60:1e:51:f9:69:47:5d:83:2e:32:84: 3b:04:41:64:bc:ea:d2:16:88:66:63:ae:ef:ff:6e:05:08:83: 40:1e:e6:ae:45:4f:a4:03:53:e3:c3:bc:9b:50:5c:7b:8e:bf: 2a:0a:33:59:19:af:63:ef:87:11:9b:0e:3b:62:b2:6b:da:bd: 4e:71:79:75:35:af:31:2d:ae:47:fb:3e:15:4f:66:cf:6e:84: 83:3a:5d:55:84:ce:e3:73:1d:7c:d0:b1:db:15:5d:36:12:c5: bb:a0:e3:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFRTMxMTAvBgNVBAUTKDMwRTA4MDNERUJBNjAwQUM5QTkyNjQ0Qzk2Rjc4QThF ODg1RDdDNTAwHhcNMjUxMTAyMjM0MzIyWhcNMjUxMTA5MjM0MzIyWjAYMRYwFAYD VQQDEw02OTA3ZWM5Yi0yMDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcWBDrePUFlVwjrF/JTlr9tzoq8FHq40HAWbEK7zsqJ3URt46WQJNQZ9YGSX LQ/eEW+xeeGgQQPVbWTmHCYyAkJ76UOsP9sF63KzaG/8EDgNkPjVJXF1Y7lVAPOO YiEkkrA2NAB4ZJT8Po4KbYNbxY9lrxiajttb4w88yn5ufL2KiCsgvZvSLjGNDxhS IaSokGaBvYwzBQnIo1betTL35rnNEtRtSBhAByS4P9DU+Ql8CYedUvw+q77pQOYy yLib93sQ1k2ocss56bmL/W8xfbqj/dU0v7ikJyX/dymWsOQaNxYdtU6yo1luV+jT YmH28d61qoDuOI9LTkzr1MmdnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcYSlTq sieBZm5eVbj/F0QCSiL9MB8GA1UdIwQYMBaAFDDggD3rpgCsmpJkTJb3io6IXXxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0VFMy85QTc3QUEyQTA1 OTQxMUVDOUY2NDY4NTRDNEY5QUUwMi9NT0NBUGV1bUFLeWFrbVJNbHZlS2pvaGRm RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PQ0FQZXVtQUt5YWttUk1sdmVLam9oZGZGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0VFMy85QTc3QUEyQTA1OTQxMUVDOUY2NDY4NTRDNEY5QUUwMi9NT0NBUGV1bUFL eWFrbVJNbHZlS2pvaGRmRkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhev3wb6MWul/104mcucMTYdCAmZa992c+FhRC0rCEsw24m1QtuAL3 ys6dhi2Iui6WH+Kjt//3XmEDRnqB63HaoWZdqsR/X2hQoXQ6bGe3OjfuZ/sNhLJI xbuud9JToU1M2uZiSNcVpjq2KAS0+XZ/lIYYExXArIIV9yyzwlou4UYS9hZ3SzXw c3Zte7r4svcBW8MzDJ6KYB5R+WlHXYMuMoQ7BEFkvOrSFohmY67v/24FCINAHuau RU+kA1Pjw7ybUFx7jr8qCjNZGa9j74cRmw47YrJr2r1OcXl1Na8xLa5H+z4VT2bP boSDOl1VhM7jcx180LHbFV02EsW7oOP6 -----END CERTIFICATE-----Generated at Tue Nov 4 16:06:53 2025 by rpki-client