$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft File: MoI4D1fWFw9Fz1IOeywaPNovyq0.mft (raw, json) Hash identifier: m6l7y2QGVqrL2tXEzjqMeXNWbh/KPz7R896Yq91pz/c= Subject key identifier: EB:9E:AC:88:E0:4F:9A:9E:95:F4:DB:4A:0A:FD:4F:B5:34:B1:1D:B0 Authority key identifier: 32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD Certificate issuer: /CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Certificate serial: 02C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft Manifest number: 02BF Signing time: Sat 31 May 2025 01:36:39 +0000 Manifest this update: Sat 31 May 2025 01:36:39 +0000 Manifest next update: Sat 07 Jun 2025 01:36:39 +0000 Files and hashes: 1: MoI4D1fWFw9Fz1IOeywaPNovyq0.crl (hash: ntZHugEG8NNLBZM/NbjGMdQtxEYGWumpRV7x2K8yAE0=) 2: 7D857A30F11811EC86D3AD4BC4F9AE02.roa (hash: RY7IQ05ThI/6GtkKfLwI0St2mmRdLcPJ0ecThYjAydU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:36:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 708 (0x2c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1DD, serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Validity Not Before: May 31 01:36:39 2025 GMT Not After : Jun 7 01:36:39 2025 GMT Subject: CN=683a5d27-6bd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:42:1b:70:e4:11:dc:a2:40:80:fc:50:84:b2: 7a:3b:de:80:a9:23:a7:c0:9a:80:56:3f:3e:ad:3b: d1:67:d0:c5:77:6f:1d:fb:4e:a1:23:b6:b3:ed:28: b0:02:85:01:c7:09:61:87:e8:a0:e0:ab:52:a9:2a: 3d:3b:80:96:83:0f:cc:63:2f:45:c0:61:dc:05:a4: 79:57:16:92:0d:70:9d:28:30:5c:b3:df:3c:7c:0b: 81:42:df:07:f6:c3:0e:35:53:68:d4:f1:8c:37:44: b8:f4:5a:d1:a9:cb:32:2e:cd:26:f5:67:87:df:a2: 67:e0:9f:96:b1:58:de:e1:6f:0e:26:f3:c7:e1:e1: 48:13:1f:07:bd:96:68:1c:bb:c1:ac:d4:42:50:73: d1:28:68:b8:62:25:8e:57:35:2d:7d:80:77:e4:67: 3a:84:25:1c:21:0b:b0:4f:47:93:06:1a:75:3d:8c: 3e:c2:f2:4d:9b:22:c4:6c:68:23:06:85:43:54:8a: 4f:b6:02:94:9d:fb:65:fa:22:7a:a3:72:a5:3b:7a: 67:71:63:4c:6e:95:63:c0:b2:10:fb:c4:d2:55:8f: 21:a3:6b:61:32:9f:4c:3b:05:f4:e0:2c:bb:3f:7d: 40:1e:59:89:46:76:0a:18:20:f3:5f:87:2b:6b:b8: b0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:9E:AC:88:E0:4F:9A:9E:95:F4:DB:4A:0A:FD:4F:B5:34:B1:1D:B0 X509v3 Authority Key Identifier: keyid:32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:c2:0f:15:96:00:ac:9b:dd:b9:dd:bd:c7:ac:bb:da:f1:5f: ac:96:6a:53:7a:77:6f:78:d9:9b:c4:f7:ce:95:14:5c:e9:38: 39:3a:e3:f6:0e:e9:36:cc:3d:36:a3:6e:dc:15:1c:c0:f2:ac: c1:f8:4f:08:54:ad:c2:92:e8:a4:52:5b:54:84:b2:2e:4e:0b: d1:42:1b:75:b4:cf:49:f4:2d:9e:f0:41:ae:0b:1d:af:c5:0c: df:bc:26:26:5d:18:ea:82:d7:bd:9d:e7:c5:0b:b6:74:a9:cd: 97:3f:0f:cd:fe:1b:ac:8f:bf:c8:b6:f0:4e:4b:83:c5:37:8b: 45:cb:67:8b:a4:1e:b3:dc:ef:4a:cd:49:fd:4b:a4:33:b4:52: 01:05:f8:48:4b:3b:92:8c:d1:d1:af:69:00:63:b5:78:77:c0: 89:e2:18:4e:58:87:79:3a:47:c5:e0:65:30:5a:6e:88:7f:e2: 76:54:87:51:32:e7:30:c9:e4:e6:87:f6:7e:98:4f:05:e3:f7: 45:5a:43:01:c2:49:c5:b3:2e:f9:68:74:53:99:cd:78:60:8a: 5e:7b:15:c5:21:0f:64:88:57:f3:37:fe:e5:41:79:8c:65:31: 45:bf:8c:d5:75:f1:93:40:7d:61:bb:9b:16:b8:49:eb:56:0a: 99:96:1a:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxREQxMTAvBgNVBAUTKDMyODIzODBGNTdENjE3MEY0NUNGNTIwRTdCMkMxQTND REEyRkNBQUQwHhcNMjUwNTMxMDEzNjM5WhcNMjUwNjA3MDEzNjM5WjAYMRYwFAYD VQQDEw02ODNhNWQyNy02YmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkIbcOQR3KJAgPxQhLJ6O96AqSOnwJqAVj8+rTvRZ9DFd28d+06hI7az7Siw AoUBxwlhh+ig4KtSqSo9O4CWgw/MYy9FwGHcBaR5VxaSDXCdKDBcs988fAuBQt8H 9sMONVNo1PGMN0S49FrRqcsyLs0m9WeH36Jn4J+WsVje4W8OJvPH4eFIEx8HvZZo HLvBrNRCUHPRKGi4YiWOVzUtfYB35Gc6hCUcIQuwT0eTBhp1PYw+wvJNmyLEbGgj BoVDVIpPtgKUnftl+iJ6o3KlO3pncWNMbpVjwLIQ+8TSVY8ho2thMp9MOwX04Cy7 P31AHlmJRnYKGCDzX4cra7iwSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuerIjg T5qelfTbSgr9T7U0sR2wMB8GA1UdIwQYMBaAFDKCOA9X1hcPRc9SDnssGjzaL8qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFERC9GMTUwMDNDOEYx MTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3OUZ6MUlPZXl3YVBOb3Z5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vSTREMWZXRnc5RnoxSU9leXdhUE5vdnlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTFERC9GMTUwMDNDOEYxMTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3 OUZ6MUlPZXl3YVBOb3Z5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXwg8VlgCsm9253b3HrLva8V+slmpTendveNmbxPfOlRRc6Tg5OuP2 Duk2zD02o27cFRzA8qzB+E8IVK3CkuikUltUhLIuTgvRQht1tM9J9C2e8EGuCx2v xQzfvCYmXRjqgte9nefFC7Z0qc2XPw/N/husj7/ItvBOS4PFN4tFy2eLpB6z3O9K zUn9S6QztFIBBfhISzuSjNHRr2kAY7V4d8CJ4hhOWId5OkfF4GUwWm6If+J2VIdR MucwyeTmh/Z+mE8F4/dFWkMBwknFsy75aHRTmc14YIpeexXFIQ9kiFfzN/7lQXmM ZTFFv4zVdfGTQH1hu5sWuEnrVgqZlhon -----END CERTIFICATE-----Generated at Sat May 31 16:28:40 2025 by rpki-client