$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft File: MoQzhPrmr2wxduHfdOkIgdbZdZI.mft (raw, json) Hash identifier: Rv+uSVtksdqOk2fEepXsOjrSiymJoZKBZq2jriIpo9g= Subject key identifier: B2:0A:FC:12:0E:B0:84:59:B0:0D:90:C4:55:ED:46:4B:31:4F:84:9B Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 09D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft Manifest number: 09BE Signing time: Thu 12 Jun 2025 19:47:57 +0000 Manifest this update: Thu 12 Jun 2025 19:47:56 +0000 Manifest next update: Thu 19 Jun 2025 19:47:56 +0000 Files and hashes: 1: MoQzhPrmr2wxduHfdOkIgdbZdZI.crl (hash: 6gJZ3ne9lGentkcsy2D/6LdhFdXdEIJQ7omr5iKihO4=) 2: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (hash: j8fhU7exqqelZLDvGV+LiToUg9srXBfjEzKSUgs/K/M=) 3: D02785608C0911EAAFF6CD27C4F9AE02.roa (hash: y933EdSERbir5H8pp6t0OPtCTXKlITWSG5EEQGLxz3I=) 4: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (hash: KwPAtZLZz35CSLoojxJ4PYLGzFjTReF4Z7d7ulqd9hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2514 (0x9d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666, serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Jun 12 19:47:56 2025 GMT Not After : Jun 19 19:47:56 2025 GMT Subject: CN=684b2eec-e9a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:43:d3:f5:b4:45:5c:41:e0:a6:b7:3f:2c:a1: f9:76:5f:6f:78:9f:de:6f:8d:b5:7c:9a:46:00:e3: ad:71:cd:14:93:11:5f:1a:82:fd:16:2b:61:69:b1: e7:48:5b:b4:91:81:5f:52:dc:d1:4f:58:48:59:a5: c4:81:57:70:dd:da:b0:f5:b6:12:a0:d4:a7:ec:48: 73:22:53:8f:1d:f3:12:3c:87:0b:0a:1d:3d:da:09: 3a:e6:4b:c1:3c:8c:f3:a2:84:4d:a7:ed:a9:ac:97: 7e:b0:9e:83:97:61:a3:e9:eb:dd:76:34:1a:4d:81: e2:f5:56:93:ab:af:9b:b2:32:43:e6:65:6b:9a:91: 1a:c2:0c:c0:73:cb:2e:ea:14:ed:e7:2b:3a:33:f0: 39:56:e3:1a:cc:a9:34:38:81:3c:78:86:e4:9f:5a: d7:4e:45:c8:2d:e4:d6:b0:85:c6:69:20:41:07:f3: 36:b5:f5:87:ee:4c:e6:d9:fb:4f:3f:4a:49:1b:b0: 23:41:f4:b4:92:fa:b2:98:54:f6:bd:c3:44:3d:0c: 8f:1c:61:df:bd:04:e9:3d:54:b4:b6:56:a7:a4:fa: 84:a1:81:01:29:81:12:74:52:1f:b0:1e:31:51:9f: d7:5d:33:05:fd:2a:d9:db:d3:6c:10:58:40:47:18: b4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:0A:FC:12:0E:B0:84:59:B0:0D:90:C4:55:ED:46:4B:31:4F:84:9B X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:ea:a4:59:aa:9b:43:e6:e8:58:9e:da:1a:5c:bd:61:f9:3e: 33:f8:f3:9c:14:4b:26:fd:33:76:f9:05:04:5c:58:fd:6a:8f: aa:00:e2:dd:9c:f1:de:2a:93:b1:f2:80:2b:63:0c:7b:03:6b: 0a:dd:ed:37:3d:2d:2c:12:b5:5d:48:60:a2:d9:5c:d6:18:0c: 85:01:57:8a:e2:36:30:25:66:30:c1:ea:c1:83:32:5d:9f:51: 73:43:30:e8:c4:8f:3d:79:4f:9a:c4:84:d1:3f:d6:f7:1f:3d: 7b:43:4a:98:0d:b1:a4:dc:29:00:a7:0d:41:82:70:6c:7e:12: 6e:33:1e:a9:10:66:a4:dd:08:9e:95:11:56:fd:5e:42:8c:03: 68:05:0d:70:06:ad:2a:9d:00:02:d6:06:bd:e2:df:cd:3f:92: 34:4e:8e:01:8e:75:ea:9b:02:ac:c7:a0:d9:d4:98:3a:b1:3d: 33:e2:24:c0:fb:c3:6c:e5:c0:3e:a6:66:0a:8a:ab:44:fb:5d: d3:3c:03:92:de:93:48:02:fe:8a:ee:1a:72:3b:22:b9:a2:ff: ca:52:53:17:34:d1:9c:8d:30:7d:db:2e:79:73:12:68:45:5a: 34:71:50:f4:7e:17:ea:3c:d7:77:7e:b2:a0:d1:49:fe:a3:4b: 01:c6:68:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjUwNjEyMTk0NzU2WhcNMjUwNjE5MTk0NzU2WjAYMRYwFAYD VQQDEw02ODRiMmVlYy1lOWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0PT9bRFXEHgprc/LKH5dl9veJ/eb421fJpGAOOtcc0UkxFfGoL9FithabHn SFu0kYFfUtzRT1hIWaXEgVdw3dqw9bYSoNSn7EhzIlOPHfMSPIcLCh092gk65kvB PIzzooRNp+2prJd+sJ6Dl2Gj6evddjQaTYHi9VaTq6+bsjJD5mVrmpEawgzAc8su 6hTt5ys6M/A5VuMazKk0OIE8eIbkn1rXTkXILeTWsIXGaSBBB/M2tfWH7kzm2ftP P0pJG7AjQfS0kvqymFT2vcNEPQyPHGHfvQTpPVS0tlanpPqEoYEBKYESdFIfsB4x UZ/XXTMF/SrZ29NsEFhARxi0ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIK/BIO sIRZsA2QxFXtRksxT4SbMB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY2Ni82MjNDRDZFNDg0RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIy d3hkdUhmZE9rSWdkYlpkWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa6qRZqptD5uhYntoaXL1h+T4z+POcFEsm/TN2+QUEXFj9ao+qAOLd nPHeKpOx8oArYwx7A2sK3e03PS0sErVdSGCi2VzWGAyFAVeK4jYwJWYwwerBgzJd n1FzQzDoxI89eU+axITRP9b3Hz17Q0qYDbGk3CkApw1BgnBsfhJuMx6pEGak3Qie lRFW/V5CjANoBQ1wBq0qnQAC1ga94t/NP5I0To4BjnXqmwKsx6DZ1Jg6sT0z4iTA +8Ns5cA+pmYKiqtE+13TPAOS3pNIAv6K7hpyOyK5ov/KUlMXNNGcjTB92y55cxJo RVo0cVD0fhfqPNd3frKg0Un+o0sBxmii -----END CERTIFICATE-----Generated at Sat Jun 14 20:40:06 2025 by rpki-client