$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft File: bMOGDamHeDpQBVpRk5gw980cgms.mft (raw, json) Hash identifier: DNSTb58oRl3ZZ/x6W6Rq6BWMbNUCLcPC0g4tkTKtYtk= Subject key identifier: 91:12:37:C1:65:2B:83:0A:A9:BA:03:96:10:7F:4E:1E:07:5A:DA:04 Authority key identifier: 6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B Certificate issuer: /CN=A91EA623/serialNumber=6CC3860DA987783A50055A51939830F7CD1C826B Certificate serial: 0505 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft Manifest number: 04FF Signing time: Fri 04 Apr 2025 23:48:09 +0000 Manifest this update: Fri 04 Apr 2025 23:48:09 +0000 Manifest next update: Fri 11 Apr 2025 23:48:09 +0000 Files and hashes: 1: bMOGDamHeDpQBVpRk5gw980cgms.crl (hash: EQZyVn4VLXcs9iCdjZepfLxNv0y9qj0jSqqHOFOHBkw=) 2: A6C3D8721A9711EC88A50A2CC4F9AE02.roa (hash: V99zGIESWxaCWwIsK3BcjNwowjB6iy3p26jrLpwkePQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:48:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1285 (0x505) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623 Validity Not Before: Apr 4 23:48:09 2025 GMT Not After : Apr 11 23:48:09 2025 GMT Subject: CN=67f06fb9-40f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d7:37:72:9a:56:e8:8f:b5:c8:8d:7c:f8:16: 82:d1:98:b6:5b:d1:77:d2:2f:e9:32:86:3f:5e:2c: f8:a2:77:ed:2f:07:43:46:b8:d7:82:b6:5b:49:6f: 8b:a9:c2:b1:d3:65:84:60:a9:08:58:60:84:b9:d1: cc:e6:97:4c:76:05:ce:16:bf:f5:99:4c:e4:c6:87: a3:b8:23:e3:71:36:7a:db:56:9b:38:e1:69:2b:2e: 82:02:3b:85:e3:4d:76:6a:8d:cc:54:2b:bb:fc:a7: c5:9b:d8:5d:f8:a8:01:5a:8b:26:91:1e:ca:3c:b1: eb:d9:4c:d0:fd:72:a6:ee:9f:ad:61:df:95:e5:49: 2a:84:4d:90:92:97:7b:88:c1:17:41:00:db:7f:07: 04:bd:4f:72:87:4c:9e:95:22:ec:81:b7:e5:d9:46: e4:a5:2f:56:7b:9f:b3:4d:2f:f3:dc:42:fe:cd:e4: 14:04:5c:af:a7:2e:80:e3:f0:9f:41:4f:13:f4:9a: b2:d6:5f:7a:f4:52:e5:25:b8:b5:2d:6a:a4:ec:03: 53:50:00:49:2e:dd:98:10:49:7a:96:47:95:d2:44: 00:11:ef:e4:9e:e7:00:a6:fa:66:1e:51:83:e1:20: e6:ec:55:e0:8d:56:5e:8b:d8:8c:08:f5:0a:cb:d2: 53:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:12:37:C1:65:2B:83:0A:A9:BA:03:96:10:7F:4E:1E:07:5A:DA:04 X509v3 Authority Key Identifier: keyid:6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:6e:a2:5c:f1:4a:24:5a:39:57:fe:2c:bb:32:94:f9:e3:6d: 9f:6a:bb:5a:35:4f:29:81:a9:65:97:b7:5c:af:52:84:2c:d9: 33:bb:b5:f2:0a:ce:dd:4e:3e:06:b5:fa:97:1e:32:d9:45:f5: a9:e1:c9:d7:e7:9b:3f:e7:57:ff:73:8a:a9:5c:87:9f:9a:79: d4:9b:13:d8:f5:4e:30:47:9b:2c:7a:65:0f:b3:a3:e8:9b:95: 19:1d:80:5b:22:d4:36:aa:8f:12:fb:73:0b:08:bc:36:b6:d5: 8d:a8:37:48:42:bf:00:f0:fc:6d:11:d0:38:48:3f:3e:d1:a9: 94:c2:eb:a6:8c:f0:50:5f:1d:e1:e2:36:c6:88:43:47:5d:6e: c9:b7:50:8c:71:1d:98:09:b2:a4:fc:98:3c:cd:cd:56:91:e6: d8:5e:5a:f6:87:9e:2b:b7:8a:68:81:86:85:21:6e:ad:6e:c1: 2c:4c:93:32:f9:e0:57:5e:04:59:cc:88:7e:f7:a5:c7:cc:76: 60:be:56:37:db:1a:de:14:a3:7e:57:30:69:a5:b8:6c:c1:7f: 0b:e6:18:87:88:61:a7:5d:94:38:53:7d:4c:86:7f:03:0f:2e: e6:ba:73:f8:d7:45:a0:4c:6c:10:62:c8:99:eb:77:66:1d:93: 97:b6:d0:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKDZDQzM4NjBEQTk4Nzc4M0E1MDA1NUE1MTkzOTgzMEY3 Q0QxQzgyNkIwHhcNMjUwNDA0MjM0ODA5WhcNMjUwNDExMjM0ODA5WjAYMRYwFAYD VQQDEw02N2YwNmZiOS00MGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdc3cppW6I+1yI18+BaC0Zi2W9F30i/pMoY/Xiz4onftLwdDRrjXgrZbSW+L qcKx02WEYKkIWGCEudHM5pdMdgXOFr/1mUzkxoejuCPjcTZ621abOOFpKy6CAjuF 4012ao3MVCu7/KfFm9hd+KgBWosmkR7KPLHr2UzQ/XKm7p+tYd+V5UkqhE2Qkpd7 iMEXQQDbfwcEvU9yh0yelSLsgbfl2UbkpS9We5+zTS/z3EL+zeQUBFyvpy6A4/Cf QU8T9Jqy1l969FLlJbi1LWqk7ANTUABJLt2YEEl6lkeV0kQAEe/knucApvpmHlGD 4SDm7FXgjVZei9iMCPUKy9JTBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJESN8Fl K4MKqboDlhB/Th4HWtoEMB8GA1UdIwQYMBaAFGzDhg2ph3g6UAVaUZOYMPfNHIJr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9ERDZCNzUyODA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi9iTU9HRGFtSGVEcFFCVnBSazVndzk4MGNn bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JNT0dEYW1IZURwUUJWcFJrNWd3OTgwY2dtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9ERDZCNzUyODA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi9iTU9HRGFtSGVE cFFCVnBSazVndzk4MGNnbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCObqJc8UokWjlX/iy7MpT5422fartaNU8pgalll7dcr1KELNkzu7Xy Cs7dTj4GtfqXHjLZRfWp4cnX55s/51f/c4qpXIefmnnUmxPY9U4wR5ssemUPs6Po m5UZHYBbItQ2qo8S+3MLCLw2ttWNqDdIQr8A8PxtEdA4SD8+0amUwuumjPBQXx3h 4jbGiENHXW7Jt1CMcR2YCbKk/Jg8zc1WkebYXlr2h54rt4pogYaFIW6tbsEsTJMy +eBXXgRZzIh+96XHzHZgvlY32xreFKN+VzBppbhswX8L5hiHiGGnXZQ4U31Mhn8D Dy7munP410WgTGwQYsiZ63dmHZOXttAS -----END CERTIFICATE-----Generated at Sat Apr 5 18:48:38 2025 by rpki-client