$ rpki-client -vvf rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft File: MOfescUi55FZhZK2RTCIY8oADhg.mft (raw, json) Hash identifier: 6LS1PuaKDp6i0aez5/t+oCFlUJue/yVYlGp7xtAVYLg= Subject key identifier: 46:62:86:4D:6D:50:B8:A8:46:C3:00:9F:D5:87:5C:E0:05:B1:DA:81 Authority key identifier: 30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18 Certificate issuer: /CN=A91E76B8/serialNumber=30E7DEB1C522E791598592B645308863CA000E18 Certificate serial: 1466 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft Manifest number: 144A Signing time: Sat 02 Aug 2025 17:04:08 +0000 Manifest this update: Sat 02 Aug 2025 17:04:08 +0000 Manifest next update: Sat 09 Aug 2025 17:04:08 +0000 Files and hashes: 1: MOfescUi55FZhZK2RTCIY8oADhg.crl (hash: SiKFTKSLTBYhDImOoJ0C6sgdyDgWlZXpgtxC5I0vHYI=) 2: ECBAA694826F11ED963DD626C4F9AE02.roa (hash: dEUjWtTlj2rNYIxixfb1q7kgTimYlRGEihBrx/cv4cU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 17:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5222 (0x1466) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E76B8, serialNumber=30E7DEB1C522E791598592B645308863CA000E18 Validity Not Before: Aug 2 17:04:08 2025 GMT Not After : Aug 9 17:04:08 2025 GMT Subject: CN=688e4508-c3d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:67:57:3d:cf:8f:9a:fe:0c:03:4e:5a:76:d8: f5:a2:c6:17:32:99:24:16:e9:d5:91:d2:9e:56:e5: 7d:0c:ca:c0:7f:a8:3a:c9:2c:84:39:bc:ba:d9:91: 9b:08:0b:9b:ba:cd:63:64:2f:e7:93:c5:82:02:77: 9f:33:c0:1d:2a:6a:b7:42:39:ca:40:20:c3:a9:94: 0a:58:e0:6d:e2:0b:88:04:bb:b0:f9:7e:ad:e9:f9: be:a8:d4:ba:33:9e:6f:50:26:ec:e5:06:68:20:1f: 43:80:d8:dd:06:70:f9:7a:d0:cd:8b:f6:0f:f0:b6: 46:8f:90:35:88:51:b2:99:bf:c4:51:06:53:e2:61: ce:38:71:dc:7e:46:ac:4a:6e:6c:29:92:b8:c0:ef: e8:b5:91:ee:2c:9d:26:e2:61:23:96:c4:c6:26:18: 67:82:02:8d:af:65:97:f9:e7:6d:02:1c:33:50:58: bc:f6:4a:dc:76:63:60:6d:20:78:de:c6:97:0f:4a: 94:15:e7:f6:1f:d1:0a:d8:63:6a:f5:a8:b9:95:10: b0:75:8e:3e:12:19:6a:4e:02:2c:88:6b:4d:96:44: 73:d7:0e:32:9e:00:25:4b:c4:95:72:e8:fc:49:1a: 1c:18:a1:49:c1:3b:e0:a0:17:5e:31:05:f9:53:5a: 08:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:62:86:4D:6D:50:B8:A8:46:C3:00:9F:D5:87:5C:E0:05:B1:DA:81 X509v3 Authority Key Identifier: keyid:30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:41:71:29:39:77:81:bc:fe:69:31:aa:69:fd:77:fb:b3:57: 36:03:c2:28:d0:0e:d8:ee:b7:8c:63:1f:d7:fe:6e:bf:d2:f6: 3f:9c:e6:53:1a:3e:a4:43:07:de:09:b6:37:7c:d1:82:64:78: 82:3f:a4:8f:1d:4d:7c:9a:ef:9f:73:4c:82:cd:4e:1d:0d:7a: c6:45:ac:45:1b:9d:02:62:c5:e6:47:f7:67:5d:66:91:f5:35: a8:ce:3d:d9:f1:61:30:1e:5b:d6:29:60:27:e1:33:24:a6:af: e5:79:7d:49:27:e6:4e:8e:d6:8b:35:53:ae:c5:1c:9f:c1:52: 3d:b4:9a:31:a7:cf:89:21:c5:5e:01:35:1c:eb:f3:91:09:39: 9a:ce:20:dc:5c:f4:a2:fd:db:d2:21:b4:1b:58:88:f4:3c:70: 2e:30:7f:00:5a:ff:98:39:4f:7c:a3:89:bd:fa:8b:aa:57:f4: 7d:3e:b5:68:0e:42:bb:5f:7e:2d:ce:f1:1b:ce:2d:51:c5:69: fe:ac:c3:c1:bd:3f:c8:8e:e8:29:a8:8b:92:51:ba:54:f5:58: 32:c4:53:68:0c:85:4c:27:47:94:13:48:06:f0:3a:52:35:72: 1d:df:e5:18:11:36:17:71:d9:c9:1d:86:51:8e:ea:28:03:8e: 47:4b:f8:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc2QjgxMTAvBgNVBAUTKDMwRTdERUIxQzUyMkU3OTE1OTg1OTJCNjQ1MzA4ODYz Q0EwMDBFMTgwHhcNMjUwODAyMTcwNDA4WhcNMjUwODA5MTcwNDA4WjAYMRYwFAYD VQQDEw02ODhlNDUwOC1jM2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmdXPc+Pmv4MA05adtj1osYXMpkkFunVkdKeVuV9DMrAf6g6ySyEOby62ZGb CAubus1jZC/nk8WCAnefM8AdKmq3QjnKQCDDqZQKWOBt4guIBLuw+X6t6fm+qNS6 M55vUCbs5QZoIB9DgNjdBnD5etDNi/YP8LZGj5A1iFGymb/EUQZT4mHOOHHcfkas Sm5sKZK4wO/otZHuLJ0m4mEjlsTGJhhnggKNr2WX+edtAhwzUFi89krcdmNgbSB4 3saXD0qUFef2H9EK2GNq9ai5lRCwdY4+EhlqTgIsiGtNlkRz1w4yngAlS8SVcuj8 SRocGKFJwTvgoBdeMQX5U1oI1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZihk1t ULioRsMAn9WHXOAFsdqBMB8GA1UdIwQYMBaAFDDn3rHFIueRWYWStkUwiGPKAA4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzZCOC9GRjE1MDhFRTdF OUExMUU4QjY5RkMwMkRDNEY5QUUwMi9NT2Zlc2NVaTU1RlpoWksyUlRDSVk4b0FE aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PZmVzY1VpNTVGWmhaSzJSVENJWThvQURoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzZCOC9GRjE1MDhFRTdFOUExMUU4QjY5RkMwMkRDNEY5QUUwMi9NT2Zlc2NVaTU1 RlpoWksyUlRDSVk4b0FEaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKQXEpOXeBvP5pMapp/Xf7s1c2A8Io0A7Y7reMYx/X/m6/0vY/nOZT Gj6kQwfeCbY3fNGCZHiCP6SPHU18mu+fc0yCzU4dDXrGRaxFG50CYsXmR/dnXWaR 9TWozj3Z8WEwHlvWKWAn4TMkpq/leX1JJ+ZOjtaLNVOuxRyfwVI9tJoxp8+JIcVe ATUc6/ORCTmaziDcXPSi/dvSIbQbWIj0PHAuMH8AWv+YOU98o4m9+ouqV/R9PrVo DkK7X34tzvEbzi1RxWn+rMPBvT/IjugpqIuSUbpU9VgyxFNoDIVMJ0eUE0gG8DpS NXId3+UYETYXcdnJHYZRjuooA45HS/h+ -----END CERTIFICATE-----Generated at Mon Aug 4 11:05:38 2025 by rpki-client