$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft File: MoQzhPrmr2wxduHfdOkIgdbZdZI.mft (raw, json) Hash identifier: 5MFtL7VFN58n1Vn5vNrPVR/+VO9Bnd4gTNrtGSmF0pk= Subject key identifier: 3D:AD:70:FE:97:5F:0B:5C:37:A8:BB:DC:53:8D:B9:57:69:98:FF:C6 Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 09ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft Manifest number: 09D9 Signing time: Mon 04 Aug 2025 20:14:27 +0000 Manifest this update: Mon 04 Aug 2025 20:14:26 +0000 Manifest next update: Mon 11 Aug 2025 20:14:26 +0000 Files and hashes: 1: MoQzhPrmr2wxduHfdOkIgdbZdZI.crl (hash: 0xzQn6zbKtLWydb4bGIblCWyNw3JMyzX6WxbA/9VuC8=) 2: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (hash: j8fhU7exqqelZLDvGV+LiToUg9srXBfjEzKSUgs/K/M=) 3: D02785608C0911EAAFF6CD27C4F9AE02.roa (hash: y933EdSERbir5H8pp6t0OPtCTXKlITWSG5EEQGLxz3I=) 4: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (hash: KwPAtZLZz35CSLoojxJ4PYLGzFjTReF4Z7d7ulqd9hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 20:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2541 (0x9ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666, serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Aug 4 20:14:26 2025 GMT Not After : Aug 11 20:14:26 2025 GMT Subject: CN=689114a2-2c4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:81:d2:9d:cf:72:9e:6d:81:ba:29:cf:de:bf: ee:4e:23:bc:dd:44:4e:8b:af:5e:c0:1b:7b:f1:66: a8:94:65:67:3f:d2:e0:f9:fd:d9:50:3d:41:d1:0c: 96:4b:db:e7:07:31:7b:ec:70:89:09:36:92:6c:b5: ab:69:0d:de:9f:cc:e8:dd:32:0f:f7:28:20:9a:52: 31:a3:57:90:17:9e:ad:50:b0:50:c4:01:cb:21:cc: 87:43:9a:37:07:f4:aa:b6:70:95:34:74:ff:c9:1c: 93:5f:ba:5c:18:c2:48:9a:02:7c:1b:60:23:da:d8: 31:d3:fb:48:10:e0:c9:d3:78:eb:f4:5e:28:ec:a5: 92:64:70:d7:f3:91:0e:3c:2b:c3:29:2b:a1:47:f0: 5a:7a:dc:89:ef:5f:0a:af:5f:83:ea:17:f6:f8:17: 5c:36:7d:f5:2f:b3:dc:4f:f9:e0:d6:fb:f2:16:52: a9:fa:a1:eb:78:b0:e9:8b:5d:e0:01:29:66:c9:d5: b0:49:69:b8:0d:61:1b:4c:d0:1e:b5:b9:fb:fc:f2: e8:17:aa:06:fe:ae:f0:73:6c:62:42:4c:c9:60:a9: 38:b6:4e:f8:5b:9a:7e:46:9d:72:7d:fb:2e:8e:69: 18:d0:b5:b7:a4:23:b9:ea:18:99:a3:e3:2c:46:02: 67:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:AD:70:FE:97:5F:0B:5C:37:A8:BB:DC:53:8D:B9:57:69:98:FF:C6 X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:a2:40:1b:92:12:ea:c5:2d:6f:48:89:37:6c:fa:a7:32:54: ff:89:f2:1b:50:16:b6:1b:04:79:d4:08:f2:f0:e5:bd:e3:f8: e7:2d:34:c7:53:54:64:39:22:bb:9e:cb:8f:72:3c:7f:63:07: 1d:6f:fd:f8:17:36:f0:8d:fc:82:34:b9:e5:9b:c1:ea:26:5c: bd:53:2a:a9:9c:0d:fe:de:9e:63:57:fb:5a:3c:77:d7:44:6e: 00:20:7e:ba:7f:e3:13:00:9b:e4:81:8b:4d:1e:e7:d4:44:2e: e4:a4:fd:de:75:aa:10:6d:36:f7:fd:17:b0:11:0b:ad:b4:93: a7:2c:94:d8:cc:36:5a:3c:6a:01:35:00:f0:bd:15:66:df:0d: fe:f4:03:4a:e2:d9:9e:97:74:52:ce:8d:36:49:15:09:55:4d: 9c:3b:48:47:34:91:b2:c6:61:82:e5:e5:20:46:27:62:84:81: b8:9b:88:7e:a6:f1:f7:0d:17:9d:4a:1c:d3:60:6b:1b:ec:25: 2a:5a:a0:76:8b:1f:b9:b6:a6:01:ba:38:d9:74:4c:fe:dc:65: 38:5d:82:1b:46:a0:84:16:0f:de:ef:ea:0f:0b:3d:b5:9f:32: d6:e5:64:54:b5:4a:f1:4e:9e:32:97:6a:38:4a:d1:69:57:26: 4e:85:6c:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjUwODA0MjAxNDI2WhcNMjUwODExMjAxNDI2WjAYMRYwFAYD VQQDEw02ODkxMTRhMi0yYzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4HSnc9ynm2BuinP3r/uTiO83UROi69ewBt78WaolGVnP9Lg+f3ZUD1B0QyW S9vnBzF77HCJCTaSbLWraQ3en8zo3TIP9yggmlIxo1eQF56tULBQxAHLIcyHQ5o3 B/SqtnCVNHT/yRyTX7pcGMJImgJ8G2Aj2tgx0/tIEODJ03jr9F4o7KWSZHDX85EO PCvDKSuhR/BaetyJ718Kr1+D6hf2+BdcNn31L7PcT/ng1vvyFlKp+qHreLDpi13g ASlmydWwSWm4DWEbTNAetbn7/PLoF6oG/q7wc2xiQkzJYKk4tk74W5p+Rp1yffsu jmkY0LW3pCO56hiZo+MsRgJn8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2tcP6X XwtcN6i73FONuVdpmP/GMB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY2Ni82MjNDRDZFNDg0RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIy d3hkdUhmZE9rSWdkYlpkWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvokAbkhLqxS1vSIk3bPqnMlT/ifIbUBa2GwR51Ajy8OW94/jnLTTH U1RkOSK7nsuPcjx/Ywcdb/34FzbwjfyCNLnlm8HqJly9UyqpnA3+3p5jV/taPHfX RG4AIH66f+MTAJvkgYtNHufURC7kpP3edaoQbTb3/RewEQuttJOnLJTYzDZaPGoB NQDwvRVm3w3+9ANK4tmel3RSzo02SRUJVU2cO0hHNJGyxmGC5eUgRidihIG4m4h+ pvH3DRedShzTYGsb7CUqWqB2ix+5tqYBujjZdEz+3GU4XYIbRqCEFg/e7+oPCz21 nzLW5WRUtUrxTp4yl2o4StFpVyZOhWxK -----END CERTIFICATE-----Generated at Wed Aug 6 11:09:46 2025 by rpki-client