$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft File: MoQzhPrmr2wxduHfdOkIgdbZdZI.mft (raw, json) Hash identifier: /ioDyClvkVXR4WKIP/DuZWAafnxa/ZM27IAth2jjh/Y= Subject key identifier: 37:33:BB:B7:11:80:EF:46:33:27:D9:0B:46:D6:1F:0C:19:7F:D9:D1 Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 09CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft Manifest number: 09B7 Signing time: Fri 30 May 2025 20:13:35 +0000 Manifest this update: Fri 30 May 2025 20:13:35 +0000 Manifest next update: Fri 06 Jun 2025 20:13:35 +0000 Files and hashes: 1: MoQzhPrmr2wxduHfdOkIgdbZdZI.crl (hash: FwZSX2nJm//0I+plxRl/KG8nmdW4NV/kbfM7UXPi/24=) 2: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (hash: j8fhU7exqqelZLDvGV+LiToUg9srXBfjEzKSUgs/K/M=) 3: D02785608C0911EAAFF6CD27C4F9AE02.roa (hash: y933EdSERbir5H8pp6t0OPtCTXKlITWSG5EEQGLxz3I=) 4: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (hash: KwPAtZLZz35CSLoojxJ4PYLGzFjTReF4Z7d7ulqd9hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2507 (0x9cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666, serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: May 30 20:13:35 2025 GMT Not After : Jun 6 20:13:35 2025 GMT Subject: CN=683a116f-f3c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:96:05:2c:8d:3e:cd:01:95:5f:11:91:47:1d: a0:f1:5e:d0:cb:d3:9d:9c:e9:2b:78:3e:bf:db:e3: d5:6c:c7:30:38:c6:16:97:ee:66:dc:a8:1d:51:23: 43:33:40:2a:a9:b3:07:3e:16:92:70:e2:2a:17:b2: 1a:41:92:6c:0b:a0:59:b3:74:7f:db:48:8e:d8:2f: 81:1a:fb:ae:2c:fc:fb:9b:5d:17:50:17:7e:a5:40: 1e:5f:43:fe:cf:82:39:f0:b9:da:59:db:95:ef:10: a8:dc:b7:03:5e:1e:cb:0b:fc:2b:9f:b0:db:4c:34: 35:3c:a3:3b:a3:e4:a7:12:86:34:46:e5:8b:c5:fe: 07:11:c9:fd:42:73:22:55:2b:13:58:d2:13:48:19: 7f:c6:b1:0e:d6:b3:c8:e4:b6:f2:e0:4c:f5:8e:d5: 8e:27:eb:25:b8:e9:c8:24:e1:35:3c:4c:44:81:15: f9:62:41:47:4a:d1:83:f9:3c:45:44:4a:23:71:7d: cd:fd:70:60:88:8a:d3:b8:8d:6a:46:47:e4:84:48: 11:f9:2c:39:80:7d:9d:53:3c:c0:78:b6:b7:a4:cd: 59:a1:84:e6:eb:fe:f3:99:76:4e:d9:83:0c:4c:f9: 26:be:66:a1:19:05:4e:62:5d:6f:a0:44:3a:7f:2e: 47:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:33:BB:B7:11:80:EF:46:33:27:D9:0B:46:D6:1F:0C:19:7F:D9:D1 X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:f1:09:80:98:70:33:bc:52:d0:89:90:aa:bc:8e:b2:e2:c6: d8:18:b7:e9:fa:29:19:02:9b:ff:51:a1:83:42:cc:a5:c1:7d: 59:2c:d9:9b:99:1a:fb:48:f9:de:8e:74:77:ca:33:0a:27:1e: 9d:e1:30:3a:77:a8:89:85:33:97:2d:29:ab:f6:e1:5b:90:89: 64:38:26:7e:e1:91:22:65:6c:f0:ce:50:30:89:aa:01:99:72: 67:55:05:58:c5:fb:59:d0:2d:99:30:41:83:4a:3d:7b:f7:91: 59:d9:7d:bc:5e:0e:29:06:3b:3d:b5:05:63:d7:9c:e7:dd:06: 0b:45:5a:31:30:95:23:69:97:e8:3c:2c:a4:e5:00:2b:cf:6a: 03:df:95:ba:68:3b:d1:ed:55:a6:66:b6:57:1d:82:fe:61:0b: 52:de:f3:c7:26:af:be:bf:a8:d5:c9:08:cf:cb:77:2d:f1:d1: 58:a2:50:af:1b:e1:2e:e4:bd:f6:40:ba:82:42:6b:d9:33:bc: e1:09:23:24:92:3e:93:95:bf:46:90:97:51:a5:99:45:f5:f9: 01:f8:3c:61:a0:d1:26:20:19:37:df:67:76:f2:8b:fc:f9:85: dc:07:b2:8d:aa:22:39:c9:a4:d1:cb:f0:dc:66:f5:27:d6:53: b9:d3:25:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjUwNTMwMjAxMzM1WhcNMjUwNjA2MjAxMzM1WjAYMRYwFAYD VQQDEw02ODNhMTE2Zi1mM2M4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZYFLI0+zQGVXxGRRx2g8V7Qy9OdnOkreD6/2+PVbMcwOMYWl+5m3KgdUSND M0AqqbMHPhaScOIqF7IaQZJsC6BZs3R/20iO2C+BGvuuLPz7m10XUBd+pUAeX0P+ z4I58LnaWduV7xCo3LcDXh7LC/wrn7DbTDQ1PKM7o+SnEoY0RuWLxf4HEcn9QnMi VSsTWNITSBl/xrEO1rPI5Lby4Ez1jtWOJ+sluOnIJOE1PExEgRX5YkFHStGD+TxF REojcX3N/XBgiIrTuI1qRkfkhEgR+Sw5gH2dUzzAeLa3pM1ZoYTm6/7zmXZO2YMM TPkmvmahGQVOYl1voEQ6fy5HvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDczu7cR gO9GMyfZC0bWHwwZf9nRMB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY2Ni82MjNDRDZFNDg0RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIy d3hkdUhmZE9rSWdkYlpkWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCs8QmAmHAzvFLQiZCqvI6y4sbYGLfp+ikZApv/UaGDQsylwX1ZLNmb mRr7SPnejnR3yjMKJx6d4TA6d6iJhTOXLSmr9uFbkIlkOCZ+4ZEiZWzwzlAwiaoB mXJnVQVYxftZ0C2ZMEGDSj1795FZ2X28Xg4pBjs9tQVj15zn3QYLRVoxMJUjaZfo PCyk5QArz2oD35W6aDvR7VWmZrZXHYL+YQtS3vPHJq++v6jVyQjPy3ct8dFYolCv G+Eu5L32QLqCQmvZM7zhCSMkkj6Tlb9GkJdRpZlF9fkB+DxhoNEmIBk332d28ov8 +YXcB7KNqiI5yaTRy/DcZvUn1lO50yXN -----END CERTIFICATE-----Generated at Sat May 31 16:34:04 2025 by rpki-client