$ rpki-client -vvf rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft File: MOCAPeumAKyakmRMlveKjohdfFA.mft (raw, json) Hash identifier: pkiO5PjCFUk3axFNK1qyna5RNcGQDB4hj1ZO5xNF328= Subject key identifier: C1:EC:2E:52:17:D6:E6:6A:54:CE:64:A0:70:8F:B9:53:F2:CD:AC:A1 Authority key identifier: 30:E0:80:3D:EB:A6:00:AC:9A:92:64:4C:96:F7:8A:8E:88:5D:7C:50 Certificate issuer: /CN=A917CEE3/serialNumber=30E0803DEBA600AC9A92644C96F78A8E885D7C50 Certificate serial: 0530 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft Manifest number: 0516 Signing time: Thu 24 Apr 2025 23:26:40 +0000 Manifest this update: Thu 24 Apr 2025 23:26:40 +0000 Manifest next update: Thu 01 May 2025 23:26:40 +0000 Files and hashes: 1: MOCAPeumAKyakmRMlveKjohdfFA.crl (hash: G9l670B4XM2J2cs5tRDI5O6wsdg9AkUTwYRQx3tsxtU=) 2: 7A532A308E1D11EE9CC5535CC4F9AE02.roa (hash: /+OweeXh479/cD9G0b5e+2Jv53y0ihaHpeHFAQKxiuY=) 3: 04A930F6629211EE90D5AD6CC4F9AE02.roa (hash: MzCxa5//voyTa1PWfOUraFYhl6MRI6DeuUFpM68sXZU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.crl rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:26:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CEE3, serialNumber=30E0803DEBA600AC9A92644C96F78A8E885D7C50 Validity Not Before: Apr 24 23:26:40 2025 GMT Not After : May 1 23:26:40 2025 GMT Subject: CN=680ac8b0-3dd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b5:e2:b4:1b:d4:44:c1:e6:78:28:9f:38:fc: 85:49:03:65:05:90:e8:66:3d:fe:d9:1e:d0:5a:18: a3:b6:fe:e6:88:b7:d2:f7:18:a9:4d:6a:ec:7b:36: 7e:86:b1:36:58:40:68:61:42:03:d6:c9:66:21:30: 45:df:44:f9:eb:fb:cf:e5:b8:09:40:b3:f9:00:ad: da:42:a6:d0:36:4a:d5:5d:e9:29:eb:05:36:76:a8: ec:2b:7a:bb:bf:99:f5:d1:b3:b7:e8:bd:30:1c:4b: 63:d4:b3:ae:ed:a2:c3:6f:fb:f5:3b:5e:14:7d:a9: e4:fd:69:c1:c8:b3:01:82:83:b0:16:f7:58:d8:a5: d3:7f:1d:a9:a8:47:ac:e5:38:88:ce:28:63:fd:2b: a8:eb:45:4b:65:91:99:a1:3d:66:9b:37:e8:7c:f0: 64:06:97:f3:1a:9b:90:73:25:a2:7d:45:6f:d9:f2: 68:5b:65:6d:be:09:25:5a:0e:4b:11:18:b7:ea:d6: 2f:04:6b:75:77:db:f7:3f:5c:68:77:1a:3b:bc:97: a6:c3:be:cb:4e:53:f8:43:02:a5:29:c7:24:8d:2e: 5b:2a:51:be:88:3d:ad:51:73:f7:97:6a:4e:88:fb: 60:ed:aa:27:f7:a5:29:38:83:87:d4:1d:5d:9c:9a: aa:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:EC:2E:52:17:D6:E6:6A:54:CE:64:A0:70:8F:B9:53:F2:CD:AC:A1 X509v3 Authority Key Identifier: keyid:30:E0:80:3D:EB:A6:00:AC:9A:92:64:4C:96:F7:8A:8E:88:5D:7C:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:f5:a3:8a:b3:58:22:64:02:7e:aa:b7:1b:bc:a2:0f:6d:63: 49:09:bc:a1:81:1d:36:ac:d9:08:e8:db:01:cc:77:ff:88:34: ac:bb:e1:a3:74:a8:51:f5:bc:d4:46:f9:ed:c7:85:ec:4f:cc: 6a:1a:18:e3:5d:45:75:4d:39:51:87:32:f0:1c:67:40:30:98: d1:12:4b:f9:13:b9:45:a3:19:17:27:89:0f:ed:8c:48:fd:97: 8d:52:82:65:d0:76:d0:4c:5f:42:aa:64:35:8c:b0:ec:1b:49: 96:7f:40:5b:1b:75:ae:ac:4e:92:92:ed:57:d1:d9:19:e6:c2: 19:cb:dc:7a:3d:97:28:ee:22:6c:39:b5:45:c4:32:b6:bf:0a: 6e:a2:a9:6e:a2:1b:2a:8c:0c:ae:b4:6d:33:f3:5d:ce:01:5d: 2d:c0:6c:ee:e2:af:85:68:9d:06:e3:8c:e4:05:01:a4:65:73: a0:d4:27:c1:40:26:4c:ae:ec:1a:11:2b:05:4d:6c:be:35:c9: 69:5d:32:d1:e4:c3:2f:0c:84:22:5e:bb:73:9b:09:96:30:23: f1:56:74:a2:95:60:40:c8:ef:16:10:df:89:95:6c:66:17:be: 49:0b:17:0a:ce:dd:cd:9f:0f:81:c3:06:96:be:be:02:e5:86: 30:08:dd:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFRTMxMTAvBgNVBAUTKDMwRTA4MDNERUJBNjAwQUM5QTkyNjQ0Qzk2Rjc4QThF ODg1RDdDNTAwHhcNMjUwNDI0MjMyNjQwWhcNMjUwNTAxMjMyNjQwWjAYMRYwFAYD VQQDEw02ODBhYzhiMC0zZGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnbXitBvURMHmeCifOPyFSQNlBZDoZj3+2R7QWhijtv7miLfS9xipTWrsezZ+ hrE2WEBoYUID1slmITBF30T56/vP5bgJQLP5AK3aQqbQNkrVXekp6wU2dqjsK3q7 v5n10bO36L0wHEtj1LOu7aLDb/v1O14Ufank/WnByLMBgoOwFvdY2KXTfx2pqEes 5TiIzihj/Suo60VLZZGZoT1mmzfofPBkBpfzGpuQcyWifUVv2fJoW2VtvgklWg5L ERi36tYvBGt1d9v3P1xodxo7vJemw77LTlP4QwKlKcckjS5bKlG+iD2tUXP3l2pO iPtg7aon96UpOIOH1B1dnJqq3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHsLlIX 1uZqVM5koHCPuVPyzayhMB8GA1UdIwQYMBaAFDDggD3rpgCsmpJkTJb3io6IXXxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0VFMy85QTc3QUEyQTA1 OTQxMUVDOUY2NDY4NTRDNEY5QUUwMi9NT0NBUGV1bUFLeWFrbVJNbHZlS2pvaGRm RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PQ0FQZXVtQUt5YWttUk1sdmVLam9oZGZGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0VFMy85QTc3QUEyQTA1OTQxMUVDOUY2NDY4NTRDNEY5QUUwMi9NT0NBUGV1bUFL eWFrbVJNbHZlS2pvaGRmRkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs9aOKs1giZAJ+qrcbvKIPbWNJCbyhgR02rNkI6NsBzHf/iDSsu+Gj dKhR9bzURvntx4XsT8xqGhjjXUV1TTlRhzLwHGdAMJjREkv5E7lFoxkXJ4kP7YxI /ZeNUoJl0HbQTF9CqmQ1jLDsG0mWf0BbG3WurE6Sku1X0dkZ5sIZy9x6PZco7iJs ObVFxDK2vwpuoqluohsqjAyutG0z813OAV0twGzu4q+FaJ0G44zkBQGkZXOg1CfB QCZMruwaESsFTWy+NclpXTLR5MMvDIQiXrtzmwmWMCPxVnSilWBAyO8WEN+JlWxm F75JCxcKzt3Nnw+BwwaWvr4C5YYwCN20 -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:03 2025 by rpki-client