$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft File: mom7N8VDhtqah6ZP8AlEKKMXGkc.mft (raw, json) Hash identifier: +fHUnKjEc4hkGeY/j8QlEwu9F1KXb0y74f6sLOKPZPc= Subject key identifier: 4F:03:56:D5:C9:25:B9:35:90:5D:B9:9B:68:42:0B:54:DE:45:3D:A1 Authority key identifier: 9A:89:BB:37:C5:43:86:DA:9A:87:A6:4F:F0:09:44:28:A3:17:1A:47 Certificate issuer: /CN=A91EF73D/serialNumber=9A89BB37C54386DA9A87A64FF0094428A3171A47 Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft Manifest number: F1 Signing time: Fri 25 Apr 2025 04:33:23 +0000 Manifest this update: Fri 25 Apr 2025 04:33:22 +0000 Manifest next update: Fri 02 May 2025 04:33:22 +0000 Files and hashes: 1: mom7N8VDhtqah6ZP8AlEKKMXGkc.crl (hash: 2Jx6XTCD4piWT+1oDeO74GOSsM435Ea8dOnjxxsl6gs=) 2: 00E1AC30FBAA11EE9C7F3921C4F9AE02.roa (hash: 29v8ayhOME61rr4geagSM3a8sHvyVhtwUdXNMoV9ZDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.crl rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF73D, serialNumber=9A89BB37C54386DA9A87A64FF0094428A3171A47 Validity Not Before: Apr 25 04:33:22 2025 GMT Not After : May 2 04:33:22 2025 GMT Subject: CN=680b1093-9e97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0f:39:21:b2:ec:9d:1e:f4:e9:c0:ce:f1:1c: 06:03:73:af:53:a2:a6:76:fd:9c:a5:24:01:16:64: 9b:ff:6e:53:96:62:f8:bc:62:ee:ae:91:f4:4e:22: 37:70:94:ab:19:97:a3:d9:9c:b6:8c:84:67:3a:36: 34:ac:25:0a:07:1b:46:10:fe:bf:0b:28:04:f9:45: 80:fc:0a:91:97:5d:8f:73:b6:ac:87:d7:1a:2e:3b: 9b:49:e6:9d:87:9f:d7:a4:d4:f5:a5:d0:56:99:e4: f4:1a:93:e8:2b:5c:88:f6:5f:a2:af:37:fe:2d:d8: be:f5:ac:aa:5c:4a:69:98:09:32:ec:7e:eb:79:38: 89:f6:d5:74:23:27:17:29:50:67:f0:ec:bf:38:e6: 96:8a:4b:a5:b4:3f:3c:74:bd:63:5e:c8:e3:82:c7: 20:a7:6b:2d:37:df:9e:79:ea:02:0f:63:98:f9:45: a0:3b:c9:9c:6e:49:bd:e2:c0:86:a6:a7:08:3e:f7: 84:5c:c8:19:7a:c2:3e:76:e7:97:6d:3a:23:89:a3: a8:6e:4a:1b:93:3b:54:bc:29:22:70:63:29:65:ac: b2:9e:fd:fb:12:8e:2d:7b:04:85:09:19:fb:0f:22: 3e:d4:6d:ad:e5:9a:dd:cd:8d:1d:b0:12:82:f6:ef: 05:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:03:56:D5:C9:25:B9:35:90:5D:B9:9B:68:42:0B:54:DE:45:3D:A1 X509v3 Authority Key Identifier: keyid:9A:89:BB:37:C5:43:86:DA:9A:87:A6:4F:F0:09:44:28:A3:17:1A:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:b6:ea:1b:db:4c:a5:c5:f8:65:f8:1d:52:77:c2:5a:79:88: c5:9f:18:92:92:a8:a9:24:49:e1:7c:7f:6b:06:2c:4a:8e:c6: c9:ca:98:bf:1b:63:79:09:27:98:25:92:58:18:f3:4e:c3:33: e0:35:00:dd:35:b2:08:c5:76:fd:ee:2e:d5:f8:8d:c5:26:4b: a7:c8:0c:e6:78:6b:6b:ed:e6:75:a5:eb:7d:6b:8b:98:bd:c8: e3:98:50:9e:e2:3f:e5:cd:10:78:3c:9d:6a:0c:2f:bf:7e:54: ea:b7:2e:b7:1f:d6:ad:2f:47:3a:f9:23:1d:c3:29:c9:c3:65: ad:49:c9:12:b6:a6:6b:fa:dd:22:c9:fb:ed:30:38:84:f9:39: 8f:bd:9b:32:3b:fc:ea:d5:c3:6b:12:c3:f5:7a:96:9f:9f:ca: ec:b2:52:66:11:92:d7:63:5e:c2:f5:ed:dc:5c:96:41:f6:c5: 03:8c:a1:47:0e:3b:26:36:ba:09:e6:e9:77:63:14:f5:6f:19: 3d:9f:ee:1e:22:f4:6e:9b:9e:dc:8e:84:82:b5:c9:cb:47:bf: 81:96:e9:a9:18:03:b2:70:4f:36:bc:b2:d0:50:b5:72:3d:02: d4:c9:03:63:b8:3a:4e:74:81:1f:37:39:7d:97:82:11:eb:3b: d7:0e:a5:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY3M0QxMTAvBgNVBAUTKDlBODlCQjM3QzU0Mzg2REE5QTg3QTY0RkYwMDk0NDI4 QTMxNzFBNDcwHhcNMjUwNDI1MDQzMzIyWhcNMjUwNTAyMDQzMzIyWjAYMRYwFAYD VQQDEw02ODBiMTA5My05ZTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvw85IbLsnR706cDO8RwGA3OvU6Kmdv2cpSQBFmSb/25TlmL4vGLurpH0TiI3 cJSrGZej2Zy2jIRnOjY0rCUKBxtGEP6/CygE+UWA/AqRl12Pc7ash9caLjubSead h5/XpNT1pdBWmeT0GpPoK1yI9l+irzf+Ldi+9ayqXEppmAky7H7reTiJ9tV0IycX KVBn8Oy/OOaWikultD88dL1jXsjjgscgp2stN9+eeeoCD2OY+UWgO8mcbkm94sCG pqcIPveEXMgZesI+dueXbTojiaOobkobkztUvCkicGMpZayynv37Eo4tewSFCRn7 DyI+1G2t5ZrdzY0dsBKC9u8FaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE8DVtXJ Jbk1kF25m2hCC1TeRT2hMB8GA1UdIwQYMBaAFJqJuzfFQ4bamoemT/AJRCijFxpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjczRC9DOTJCMzIzMkNF MUYxMUVFQUM2MjYxN0NDNEY5QUUwMi9tb203TjhWRGh0cWFoNlpQOEFsRUtLTVhH a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21vbTdOOFZEaHRxYWg2WlA4QWxFS0tNWEdrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjczRC9DOTJCMzIzMkNFMUYxMUVFQUM2MjYxN0NDNEY5QUUwMi9tb203TjhWRGh0 cWFoNlpQOEFsRUtLTVhHa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAztuob20ylxfhl+B1Sd8JaeYjFnxiSkqipJEnhfH9rBixKjsbJypi/ G2N5CSeYJZJYGPNOwzPgNQDdNbIIxXb97i7V+I3FJkunyAzmeGtr7eZ1pet9a4uY vcjjmFCe4j/lzRB4PJ1qDC+/flTqty63H9atL0c6+SMdwynJw2WtSckStqZr+t0i yfvtMDiE+TmPvZsyO/zq1cNrEsP1epafn8rsslJmEZLXY17C9e3cXJZB9sUDjKFH DjsmNroJ5ul3YxT1bxk9n+4eIvRum57cjoSCtcnLR7+BlumpGAOycE82vLLQULVy PQLUyQNjuDpOdIEfNzl9l4IR6zvXDqXm -----END CERTIFICATE-----Generated at Sat Apr 26 17:36:12 2025 by rpki-client