$ rpki-client -vvf rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft File: MOfescUi55FZhZK2RTCIY8oADhg.mft (raw, json) Hash identifier: i616NyxEo1IMsuDzewmdt6Dv0+vLbZwlxt4mbm++bMo= Subject key identifier: 58:B5:4E:B8:75:52:C4:F1:91:6A:AE:AB:AF:FA:65:0F:A7:9A:9C:1F Authority key identifier: 30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18 Certificate issuer: /CN=A91E76B8/serialNumber=30E7DEB1C522E791598592B645308863CA000E18 Certificate serial: 144C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft Manifest number: 1430 Signing time: Thu 12 Jun 2025 16:52:20 +0000 Manifest this update: Thu 12 Jun 2025 16:52:20 +0000 Manifest next update: Thu 19 Jun 2025 16:52:20 +0000 Files and hashes: 1: MOfescUi55FZhZK2RTCIY8oADhg.crl (hash: wwes36Y2QXdtPfZEyTpmMnCaPnZKG9t14xFbDp/c4mo=) 2: ECBAA694826F11ED963DD626C4F9AE02.roa (hash: dEUjWtTlj2rNYIxixfb1q7kgTimYlRGEihBrx/cv4cU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 16:52:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5196 (0x144c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E76B8, serialNumber=30E7DEB1C522E791598592B645308863CA000E18 Validity Not Before: Jun 12 16:52:20 2025 GMT Not After : Jun 19 16:52:20 2025 GMT Subject: CN=684b05c4-dc5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:05:1b:a5:b2:b2:17:eb:11:88:b8:51:3f:6a: 23:73:c1:6f:c6:03:56:8a:96:49:fd:74:9e:e3:bc: 55:81:34:6d:c1:21:0e:aa:46:49:a4:09:85:d4:63: 04:bc:01:59:b9:08:9f:9c:db:19:88:99:aa:21:c1: 59:76:3e:c9:31:f1:78:e6:0a:c6:99:bc:78:6c:92: 75:00:d7:27:e6:0e:44:60:f6:87:ca:2e:88:34:99: 7e:2d:7d:a9:9a:06:e9:3d:f2:33:e3:16:c2:16:0b: af:07:11:73:2b:eb:6e:64:7e:f3:b2:69:ee:7d:84: 98:7a:8b:b3:44:e5:a8:b6:68:b4:2d:d3:c7:4c:80: b9:44:58:4d:2b:53:7a:a9:18:41:3e:2c:3b:69:3c: 99:4f:40:78:c1:f9:d8:a3:ab:49:cf:3c:2d:86:11: 3d:0b:81:52:c0:0c:f3:1b:fa:60:53:20:ee:b0:44: 62:d7:bb:e9:a5:fb:ca:b3:d6:43:65:c0:ee:7e:3b: 66:15:de:5b:82:c2:87:81:f9:3d:df:64:ae:f6:d1: 09:bd:ef:57:cf:50:fd:8a:cb:2c:c8:98:a4:75:7d: 02:0c:e9:c5:1f:f5:b1:a9:dd:50:2d:89:f5:33:a1: da:75:6a:9d:6e:a9:f9:33:39:43:6f:ce:2f:a3:f2: ef:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:B5:4E:B8:75:52:C4:F1:91:6A:AE:AB:AF:FA:65:0F:A7:9A:9C:1F X509v3 Authority Key Identifier: keyid:30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:44:20:85:ff:a1:bf:f9:4e:6f:b2:04:63:d4:a9:e6:89:d1: 3a:99:f9:0b:f2:ec:b9:98:21:aa:60:da:88:3f:5d:5d:3c:21: a0:8b:c7:d2:85:bc:1e:08:8f:a8:64:3d:e0:0b:9b:d9:2a:66: 4c:a5:99:17:5d:29:5b:c4:06:7b:30:47:61:db:5d:d9:5a:38: 77:61:00:5b:93:c8:98:4e:e4:a5:43:a9:f8:1b:48:89:33:2a: 8f:e7:84:1e:d8:e5:ae:78:11:0e:3b:7a:23:19:53:0a:6e:84: 4d:d5:51:1a:6b:9b:7f:a5:82:67:64:81:bb:96:50:51:82:76: 8f:89:07:3a:61:dc:f1:85:3b:93:bb:35:2e:55:22:e0:68:e3: 29:8f:9e:12:0c:bb:11:79:04:22:59:5d:d2:04:c0:e0:a8:4b: a6:5e:08:f9:71:51:31:14:40:6f:26:c3:0d:90:e7:91:f4:c5: 09:22:5b:d4:9d:65:e2:d7:f8:6c:d2:a4:12:09:27:83:18:3c: 52:b2:03:fa:d1:89:ab:74:4a:c1:20:6b:98:4b:9e:8f:e8:97: 2e:df:5d:7f:0e:4c:96:96:2d:ee:44:92:b8:54:c4:cf:fc:c0: 4c:bb:ca:de:5b:8d:39:ee:c3:ec:61:bd:b0:91:a0:85:d8:43: fe:88:e2:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc2QjgxMTAvBgNVBAUTKDMwRTdERUIxQzUyMkU3OTE1OTg1OTJCNjQ1MzA4ODYz Q0EwMDBFMTgwHhcNMjUwNjEyMTY1MjIwWhcNMjUwNjE5MTY1MjIwWjAYMRYwFAYD VQQDEw02ODRiMDVjNC1kYzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wUbpbKyF+sRiLhRP2ojc8FvxgNWipZJ/XSe47xVgTRtwSEOqkZJpAmF1GME vAFZuQifnNsZiJmqIcFZdj7JMfF45grGmbx4bJJ1ANcn5g5EYPaHyi6INJl+LX2p mgbpPfIz4xbCFguvBxFzK+tuZH7zsmnufYSYeouzROWotmi0LdPHTIC5RFhNK1N6 qRhBPiw7aTyZT0B4wfnYo6tJzzwthhE9C4FSwAzzG/pgUyDusERi17vppfvKs9ZD ZcDufjtmFd5bgsKHgfk932Su9tEJve9Xz1D9isssyJikdX0CDOnFH/Wxqd1QLYn1 M6HadWqdbqn5MzlDb84vo/LvEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFi1Trh1 UsTxkWquq6/6ZQ+nmpwfMB8GA1UdIwQYMBaAFDDn3rHFIueRWYWStkUwiGPKAA4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzZCOC9GRjE1MDhFRTdF OUExMUU4QjY5RkMwMkRDNEY5QUUwMi9NT2Zlc2NVaTU1RlpoWksyUlRDSVk4b0FE aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PZmVzY1VpNTVGWmhaSzJSVENJWThvQURoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzZCOC9GRjE1MDhFRTdFOUExMUU4QjY5RkMwMkRDNEY5QUUwMi9NT2Zlc2NVaTU1 RlpoWksyUlRDSVk4b0FEaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANRCCF/6G/+U5vsgRj1KnmidE6mfkL8uy5mCGqYNqIP11dPCGgi8fS hbweCI+oZD3gC5vZKmZMpZkXXSlbxAZ7MEdh213ZWjh3YQBbk8iYTuSlQ6n4G0iJ MyqP54Qe2OWueBEOO3ojGVMKboRN1VEaa5t/pYJnZIG7llBRgnaPiQc6YdzxhTuT uzUuVSLgaOMpj54SDLsReQQiWV3SBMDgqEumXgj5cVExFEBvJsMNkOeR9MUJIlvU nWXi1/hs0qQSCSeDGDxSsgP60YmrdErBIGuYS56P6Jcu311/DkyWli3uRJK4VMTP /MBMu8reW4057sPsYb2wkaCF2EP+iOKL -----END CERTIFICATE-----Generated at Sat Jun 14 18:35:15 2025 by rpki-client