$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft File: mom7N8VDhtqah6ZP8AlEKKMXGkc.mft (raw, json) Hash identifier: sCvaBc542ak3U+f+CwfCBJyHCbqZ6QtNX8L/gGFgRLw= Subject key identifier: 41:96:9D:BB:07:60:F4:3A:2E:F4:03:6D:37:E2:F7:E2:56:E1:98:93 Authority key identifier: 9A:89:BB:37:C5:43:86:DA:9A:87:A6:4F:F0:09:44:28:A3:17:1A:47 Certificate issuer: /CN=A91EF73D/serialNumber=9A89BB37C54386DA9A87A64FF0094428A3171A47 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft Manifest number: 0123 Signing time: Sun 03 Aug 2025 05:15:18 +0000 Manifest this update: Sun 03 Aug 2025 05:15:17 +0000 Manifest next update: Sun 10 Aug 2025 05:15:17 +0000 Files and hashes: 1: mom7N8VDhtqah6ZP8AlEKKMXGkc.crl (hash: b9k9ja3hmcfmWzWV3FghSOcxI5y1IGa5TKLuAV+uG2o=) 2: 00E1AC30FBAA11EE9C7F3921C4F9AE02.roa (hash: 29v8ayhOME61rr4geagSM3a8sHvyVhtwUdXNMoV9ZDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.crl rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 05:15:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF73D, serialNumber=9A89BB37C54386DA9A87A64FF0094428A3171A47 Validity Not Before: Aug 3 05:15:17 2025 GMT Not After : Aug 10 05:15:17 2025 GMT Subject: CN=688ef065-ed5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:63:fe:8c:19:30:35:ab:73:05:ec:fa:87:f5: 95:a6:40:3e:14:e9:09:30:6c:02:72:09:ac:07:87: ae:95:97:e7:3f:ff:92:18:f2:f5:f2:0d:78:a8:fa: 85:d5:a3:7b:83:ca:58:c8:d6:de:59:66:9e:25:4f: 99:9e:87:83:09:2d:ae:e9:4a:04:fa:5d:66:04:f7: 9a:43:c9:3a:58:c2:20:13:d9:73:b8:a9:99:78:55: 94:c7:78:41:32:b8:6f:11:97:5e:77:b7:a9:37:8c: 52:b9:06:e2:50:26:b3:1c:e0:fe:88:22:a0:9f:e7: 0d:50:7e:83:c1:73:5e:8c:24:fe:49:b8:cc:c8:14: 3e:10:d2:e7:4f:47:c6:00:90:40:63:1a:d5:91:20: 23:27:ac:81:1a:ff:91:0c:5c:fa:1f:43:a0:0f:eb: fb:4e:86:92:f4:e7:14:1a:f5:67:b1:b7:c5:81:15: 21:bd:8a:94:82:2b:47:11:83:dd:d1:8e:c8:7f:db: ab:66:4d:2a:0a:86:04:fe:5e:2f:41:d2:57:6d:8f: 87:93:26:05:04:0d:b8:46:5b:a0:ec:06:7c:b4:9a: a1:21:83:59:9d:c1:6f:43:50:a5:5c:c6:f8:2e:7f: 62:d5:60:b9:9c:c1:5b:b7:4c:84:5c:63:de:ee:af: c3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:96:9D:BB:07:60:F4:3A:2E:F4:03:6D:37:E2:F7:E2:56:E1:98:93 X509v3 Authority Key Identifier: keyid:9A:89:BB:37:C5:43:86:DA:9A:87:A6:4F:F0:09:44:28:A3:17:1A:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:e4:26:71:eb:e2:1b:f5:dd:23:9b:15:4f:3b:30:49:88:38: a5:e1:c2:a6:b3:8c:b8:de:c8:16:45:3e:2d:1e:49:87:1d:26: 42:17:72:bc:f0:7f:a4:27:9b:c0:65:d1:20:c4:fb:26:18:d6: ff:ad:69:58:24:2a:48:6b:e5:7d:f1:a4:ce:4a:ab:8a:f5:aa: 09:47:03:9b:85:04:c0:01:50:86:9c:35:04:01:1d:ec:7b:89: de:c9:92:6b:93:98:fc:8a:d2:cd:0f:36:f6:83:b9:11:54:31: 4a:2c:f5:f4:6e:3b:54:8c:e2:e5:ef:85:47:34:f4:f7:41:4e: b0:58:d1:8b:8c:f8:50:18:26:d2:b1:ae:58:b9:11:40:e2:05: 40:14:08:4b:ef:13:ec:79:c8:d3:d8:a3:18:f7:f5:89:95:ef: 4d:77:b5:6f:da:25:5e:77:5c:58:be:cf:c2:7f:ba:5e:9d:75: 63:49:3c:6a:1b:ce:f7:7f:5c:2f:da:81:ea:67:04:85:63:3a: c5:83:ec:71:f6:8b:e3:fb:7e:d3:82:07:04:cc:e3:dd:08:70: 27:5e:8b:2d:a7:19:10:4a:86:e7:84:a5:35:41:df:7a:6c:ae: 2e:6f:9e:c9:11:9c:39:ee:ac:8e:88:de:a4:9b:11:e2:11:c4: df:e1:4c:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY3M0QxMTAvBgNVBAUTKDlBODlCQjM3QzU0Mzg2REE5QTg3QTY0RkYwMDk0NDI4 QTMxNzFBNDcwHhcNMjUwODAzMDUxNTE3WhcNMjUwODEwMDUxNTE3WjAYMRYwFAYD VQQDEw02ODhlZjA2NS1lZDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mP+jBkwNatzBez6h/WVpkA+FOkJMGwCcgmsB4eulZfnP/+SGPL18g14qPqF 1aN7g8pYyNbeWWaeJU+ZnoeDCS2u6UoE+l1mBPeaQ8k6WMIgE9lzuKmZeFWUx3hB MrhvEZded7epN4xSuQbiUCazHOD+iCKgn+cNUH6DwXNejCT+SbjMyBQ+ENLnT0fG AJBAYxrVkSAjJ6yBGv+RDFz6H0OgD+v7ToaS9OcUGvVnsbfFgRUhvYqUgitHEYPd 0Y7If9urZk0qCoYE/l4vQdJXbY+HkyYFBA24Rlug7AZ8tJqhIYNZncFvQ1ClXMb4 Ln9i1WC5nMFbt0yEXGPe7q/DHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEGWnbsH YPQ6LvQDbTfi9+JW4ZiTMB8GA1UdIwQYMBaAFJqJuzfFQ4bamoemT/AJRCijFxpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjczRC9DOTJCMzIzMkNF MUYxMUVFQUM2MjYxN0NDNEY5QUUwMi9tb203TjhWRGh0cWFoNlpQOEFsRUtLTVhH a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21vbTdOOFZEaHRxYWg2WlA4QWxFS0tNWEdrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjczRC9DOTJCMzIzMkNFMUYxMUVFQUM2MjYxN0NDNEY5QUUwMi9tb203TjhWRGh0 cWFoNlpQOEFsRUtLTVhHa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS5CZx6+Ib9d0jmxVPOzBJiDil4cKms4y43sgWRT4tHkmHHSZCF3K8 8H+kJ5vAZdEgxPsmGNb/rWlYJCpIa+V98aTOSquK9aoJRwObhQTAAVCGnDUEAR3s e4neyZJrk5j8itLNDzb2g7kRVDFKLPX0bjtUjOLl74VHNPT3QU6wWNGLjPhQGCbS sa5YuRFA4gVAFAhL7xPsecjT2KMY9/WJle9Nd7Vv2iVed1xYvs/Cf7penXVjSTxq G873f1wv2oHqZwSFYzrFg+xx9ovj+37TggcEzOPdCHAnXostpxkQSobnhKU1Qd96 bK4ub57JEZw57qyOiN6kmxHiEcTf4Uwz -----END CERTIFICATE-----Generated at Mon Aug 4 11:00:20 2025 by rpki-client