$ rpki-client -vvf rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft File: MOI2HN2l66cF86ay--vl232vEPE.mft (raw, json) Hash identifier: AQ6AW9oFB7GfjaIQWc50ElqcuJq+rrA6Wc/OKUpIHf0= Subject key identifier: 3C:C4:87:83:2C:3D:65:E1:31:70:5C:F8:1C:20:9F:9A:E2:34:F0:19 Authority key identifier: 30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 Certificate issuer: /CN=A91386E8/serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Certificate serial: 0643 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft Manifest number: 0639 Signing time: Fri 22 Aug 2025 22:55:27 +0000 Manifest this update: Fri 22 Aug 2025 22:55:26 +0000 Manifest next update: Fri 29 Aug 2025 22:55:26 +0000 Files and hashes: 1: MOI2HN2l66cF86ay--vl232vEPE.crl (hash: g+TFUzWgvCYk6H7adyLgQQ1TxAcH1Fb1H0NSZ/GipP4=) 2: 65C6DD42E15211EC8EEE9668C4F9AE02.roa (hash: BLYldDR5zxqTMcX8NQEJYFIKVTzk5VrQGbTFGjfROjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1603 (0x643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91386E8, serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Validity Not Before: Aug 22 22:55:26 2025 GMT Not After : Aug 29 22:55:26 2025 GMT Subject: CN=68a8f55e-a491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ad:f1:b3:61:51:b9:7d:bd:00:d2:de:5d:2a: 4b:a7:fa:88:53:bf:d8:ed:89:30:cd:1f:52:ba:d5: ff:41:7e:08:4f:5f:a7:6a:86:9a:8b:8a:cb:1e:55: f6:57:28:34:e3:4e:8a:b7:86:8c:f9:8c:55:2f:26: f9:11:ca:c7:66:b6:b7:e5:2a:bd:a3:1b:4a:3b:4a: a8:20:c4:56:e9:e4:75:1b:33:4b:d3:e1:0d:45:04: 34:12:66:10:8e:71:6c:aa:67:3d:3c:bc:94:da:bd: 23:c0:95:af:6b:12:c1:f4:42:ee:a5:49:76:f4:fa: 73:51:f8:b9:72:b4:a4:7b:39:c5:d2:10:d1:4e:75: d4:0b:6c:aa:ec:24:c3:ee:d1:2f:dc:62:38:45:98: b6:79:19:ef:7b:55:84:9f:ee:46:68:f5:33:d0:55: 9d:bf:ce:46:ac:c2:0b:d4:21:8e:8f:e4:a1:11:51: a3:43:3b:a8:0f:30:a1:0c:11:cf:c7:55:71:15:03: 61:8f:2c:14:9a:21:85:c7:52:8c:7b:2a:1a:3c:6e: 7c:03:ce:ce:f4:76:38:9a:42:ce:85:96:5d:16:4d: 58:50:2f:e8:ed:03:e5:5d:16:a5:75:a6:b8:5e:3f: e6:38:70:d9:f0:9b:21:de:65:eb:c1:c9:06:da:ac: 59:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:C4:87:83:2C:3D:65:E1:31:70:5C:F8:1C:20:9F:9A:E2:34:F0:19 X509v3 Authority Key Identifier: keyid:30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:8f:c8:ed:c9:0d:c3:8e:91:b2:a3:ff:a9:05:e5:d3:3b:04: eb:74:8e:4e:cb:58:c5:d3:3f:49:3f:6b:8b:00:9a:f6:de:8c: ae:8b:e8:a4:3b:d8:08:19:be:ac:33:d4:26:f9:e5:4a:ed:29: 30:3a:a9:a2:25:3c:81:f2:e8:ec:a3:2a:c9:d2:fd:34:b0:c9: d6:2a:d6:3a:01:06:59:fb:25:51:c8:05:a7:03:26:88:60:58: ec:c7:56:ef:af:73:12:a1:8a:1c:c1:af:bd:b1:ed:82:7d:18: 94:15:2c:3c:db:fd:3b:e1:1d:a0:03:86:66:41:f2:3a:07:5e: bd:81:52:9e:ef:3d:56:53:7e:4e:c8:06:d9:17:e2:5a:1b:7f: dd:72:86:a1:09:01:28:89:b2:7e:ad:c6:ee:48:be:cf:05:af: f2:83:f0:a6:39:a4:6b:c2:aa:48:da:99:3b:f2:81:8d:de:1c: 12:01:9a:da:cd:c2:d8:9c:7e:f5:34:21:53:38:de:6f:7c:1c: ce:1b:3e:47:a3:22:5d:ed:23:0f:1c:60:81:f3:9c:29:a9:ec: 74:10:5a:2f:d5:5d:0e:7f:fa:76:61:e1:2f:d3:da:12:8b:cd: a9:72:32:e8:b4:f2:f6:e8:26:c4:d4:4d:e3:ff:58:9a:58:62: 04:03:ef:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2RTgxMTAvBgNVBAUTKDMwRTIzNjFDRERBNUVCQTcwNUYzQTZCMkZCRUJFNURC N0RBRjEwRjEwHhcNMjUwODIyMjI1NTI2WhcNMjUwODI5MjI1NTI2WjAYMRYwFAYD VQQDEw02OGE4ZjU1ZS1hNDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA163xs2FRuX29ANLeXSpLp/qIU7/Y7YkwzR9SutX/QX4IT1+naoaai4rLHlX2 Vyg0406Kt4aM+YxVLyb5EcrHZra35Sq9oxtKO0qoIMRW6eR1GzNL0+ENRQQ0EmYQ jnFsqmc9PLyU2r0jwJWvaxLB9ELupUl29PpzUfi5crSkeznF0hDRTnXUC2yq7CTD 7tEv3GI4RZi2eRnve1WEn+5GaPUz0FWdv85GrMIL1CGOj+ShEVGjQzuoDzChDBHP x1VxFQNhjywUmiGFx1KMeyoaPG58A87O9HY4mkLOhZZdFk1YUC/o7QPlXRaldaa4 Xj/mOHDZ8Jsh3mXrwckG2qxZAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzEh4Ms PWXhMXBc+Bwgn5riNPAZMB8GA1UdIwQYMBaAFDDiNhzdpeunBfOmsvvr5dt9rxDx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODZFOC80ODg5NTk0RUE4 MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2Y0Y4NmF5LS12bDIzMnZF UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PSTJITjJsNjZjRjg2YXktLXZsMjMydkVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODZFOC80ODg5NTk0RUE4MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2 Y0Y4NmF5LS12bDIzMnZFUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQj8jtyQ3DjpGyo/+pBeXTOwTrdI5Oy1jF0z9JP2uLAJr23oyui+ik O9gIGb6sM9Qm+eVK7SkwOqmiJTyB8ujsoyrJ0v00sMnWKtY6AQZZ+yVRyAWnAyaI YFjsx1bvr3MSoYocwa+9se2CfRiUFSw82/074R2gA4ZmQfI6B169gVKe7z1WU35O yAbZF+JaG3/dcoahCQEoibJ+rcbuSL7PBa/yg/CmOaRrwqpI2pk78oGN3hwSAZra zcLYnH71NCFTON5vfBzOGz5HoyJd7SMPHGCB85wpqex0EFov1V0Of/p2YeEv09oS i82pcjLotPL26CbE1E3j/1iaWGIEA+9e -----END CERTIFICATE-----Generated at Sun Aug 24 22:23:17 2025 by rpki-client