$ rpki-client -vvf rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft File: MOfescUi55FZhZK2RTCIY8oADhg.mft (raw, json) Hash identifier: Ala1v8qZbkQqe34SRuhHmZBMYluhP7B+87U7q7hZtG4= Subject key identifier: 80:E5:BF:0F:E8:FB:0E:38:70:BE:C3:79:06:80:64:3A:5B:F1:B9:7A Authority key identifier: 30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18 Certificate issuer: /CN=A91E76B8/serialNumber=30E7DEB1C522E791598592B645308863CA000E18 Certificate serial: 1433 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft Manifest number: 1417 Signing time: Thu 24 Apr 2025 16:56:55 +0000 Manifest this update: Thu 24 Apr 2025 16:56:54 +0000 Manifest next update: Thu 01 May 2025 16:56:54 +0000 Files and hashes: 1: MOfescUi55FZhZK2RTCIY8oADhg.crl (hash: Ico3YVHxvZ/T55f13TWDYiMIHJA6ag8lF2n8EAPNH4w=) 2: ECBAA694826F11ED963DD626C4F9AE02.roa (hash: dEUjWtTlj2rNYIxixfb1q7kgTimYlRGEihBrx/cv4cU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5171 (0x1433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E76B8, serialNumber=30E7DEB1C522E791598592B645308863CA000E18 Validity Not Before: Apr 24 16:56:54 2025 GMT Not After : May 1 16:56:54 2025 GMT Subject: CN=680a6d57-aa96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9e:81:30:1b:02:1b:f9:fc:d3:08:ce:7a:d6: 34:35:25:a7:dc:40:28:4d:80:ef:4f:dd:90:f1:6e: da:c4:c4:7f:9e:b9:c7:88:75:11:d8:a5:af:06:ee: 64:f2:aa:aa:f8:a9:7c:5c:84:b3:36:32:fd:72:89: 43:bb:e0:61:d4:21:3e:b6:03:c8:4c:d5:9c:8b:2a: 71:2e:9f:1f:9c:40:b4:54:1c:db:5d:b0:69:d3:b9: 1c:07:7c:c6:46:c9:fe:81:74:94:5e:a7:37:dc:9b: 95:dc:45:17:26:69:40:af:fc:00:8a:96:15:be:e2: 7f:00:15:60:1a:bb:ae:93:d1:d3:70:d6:85:e2:fc: c5:5e:c0:f0:c4:1c:92:3a:88:ce:9a:1d:ea:3f:0f: 83:b8:1f:c8:06:85:09:ad:4a:72:6e:26:ef:1c:75: a1:23:78:06:56:16:f6:21:9f:53:d2:49:3b:55:3e: 96:0b:b2:58:f1:09:cf:06:55:ae:d3:eb:97:18:5b: 43:e2:9b:c9:38:7c:25:b4:83:34:f7:f6:d5:c1:7a: 29:c3:d3:bb:4c:56:41:0b:58:e0:8e:fa:a7:01:4b: d8:57:62:fe:b4:d5:93:2c:cc:99:fa:3a:f0:b5:aa: 71:c1:0b:b8:56:55:42:0c:1d:e6:0b:77:9a:d4:9d: 1c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E5:BF:0F:E8:FB:0E:38:70:BE:C3:79:06:80:64:3A:5B:F1:B9:7A X509v3 Authority Key Identifier: keyid:30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:1b:43:e7:8f:3e:6a:64:c4:e8:1e:05:ba:e8:fa:0f:f4:ed: b8:25:1f:45:a2:b1:e6:76:fa:a0:dc:cd:3a:97:ae:0a:14:7c: 58:20:d3:77:b1:07:0f:1e:7b:ce:25:44:31:6c:86:9a:02:dd: 35:6d:35:22:d9:c8:fd:1c:42:68:fc:1b:a9:0f:b3:c1:dd:43: 49:38:f6:75:5a:20:d1:e4:89:bf:3d:04:17:c0:e9:57:44:2f: 6f:03:bd:62:a5:a9:4b:4f:71:6e:93:38:c4:8c:87:d1:b5:96: b4:bc:1a:25:25:fa:2e:3e:59:73:9b:af:43:91:c1:21:71:51: f5:84:64:1a:f8:56:3a:d6:ce:bd:86:52:16:12:a5:04:92:78: dc:83:e3:8d:5e:95:1e:70:83:5f:cf:e0:73:c3:ea:1a:c1:62: 8e:eb:41:49:1d:90:fe:7d:3e:74:eb:13:e9:59:ba:f4:c1:4a: 6e:8b:72:5f:4d:e9:9c:14:f7:80:b1:55:3c:31:81:5e:4d:99: 5f:08:96:3f:6c:7c:f8:9f:a9:c9:5b:0d:00:63:e5:e6:91:38: af:88:a5:70:e9:2c:88:ca:54:5c:77:c4:33:5d:41:78:06:85: d2:b0:2e:d8:05:e6:df:39:06:5e:64:4e:a8:1c:fe:c7:3b:79: 7b:c5:5f:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc2QjgxMTAvBgNVBAUTKDMwRTdERUIxQzUyMkU3OTE1OTg1OTJCNjQ1MzA4ODYz Q0EwMDBFMTgwHhcNMjUwNDI0MTY1NjU0WhcNMjUwNTAxMTY1NjU0WjAYMRYwFAYD VQQDEw02ODBhNmQ1Ny1hYTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1p6BMBsCG/n80wjOetY0NSWn3EAoTYDvT92Q8W7axMR/nrnHiHUR2KWvBu5k 8qqq+Kl8XISzNjL9colDu+Bh1CE+tgPITNWciypxLp8fnEC0VBzbXbBp07kcB3zG Rsn+gXSUXqc33JuV3EUXJmlAr/wAipYVvuJ/ABVgGruuk9HTcNaF4vzFXsDwxByS OojOmh3qPw+DuB/IBoUJrUpybibvHHWhI3gGVhb2IZ9T0kk7VT6WC7JY8QnPBlWu 0+uXGFtD4pvJOHwltIM09/bVwXopw9O7TFZBC1jgjvqnAUvYV2L+tNWTLMyZ+jrw tapxwQu4VlVCDB3mC3ea1J0cKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDlvw/o +w44cL7DeQaAZDpb8bl6MB8GA1UdIwQYMBaAFDDn3rHFIueRWYWStkUwiGPKAA4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzZCOC9GRjE1MDhFRTdF OUExMUU4QjY5RkMwMkRDNEY5QUUwMi9NT2Zlc2NVaTU1RlpoWksyUlRDSVk4b0FE aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PZmVzY1VpNTVGWmhaSzJSVENJWThvQURoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzZCOC9GRjE1MDhFRTdFOUExMUU4QjY5RkMwMkRDNEY5QUUwMi9NT2Zlc2NVaTU1 RlpoWksyUlRDSVk4b0FEaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+G0Pnjz5qZMToHgW66PoP9O24JR9ForHmdvqg3M06l64KFHxYINN3 sQcPHnvOJUQxbIaaAt01bTUi2cj9HEJo/BupD7PB3UNJOPZ1WiDR5Im/PQQXwOlX RC9vA71ipalLT3FukzjEjIfRtZa0vBolJfouPllzm69DkcEhcVH1hGQa+FY61s69 hlIWEqUEknjcg+ONXpUecINfz+Bzw+oawWKO60FJHZD+fT506xPpWbr0wUpui3Jf TemcFPeAsVU8MYFeTZlfCJY/bHz4n6nJWw0AY+XmkTiviKVw6SyIylRcd8QzXUF4 BoXSsC7YBebfOQZeZE6oHP7HO3l7xV9G -----END CERTIFICATE-----Generated at Sat Apr 26 15:52:28 2025 by rpki-client