$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft File: MoI4D1fWFw9Fz1IOeywaPNovyq0.mft (raw, json) Hash identifier: sm2GvjSW5sdEhZcW+F6laJXxXzaHEvrlPdgznq7SRhQ= Subject key identifier: 19:1C:AA:A8:A4:39:2C:B8:16:03:63:35:47:95:21:F7:99:12:9B:94 Authority key identifier: 32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD Certificate issuer: /CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Certificate serial: 02EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft Manifest number: 02E9 Signing time: Thu 21 Aug 2025 01:27:28 +0000 Manifest this update: Thu 21 Aug 2025 01:27:27 +0000 Manifest next update: Thu 28 Aug 2025 01:27:27 +0000 Files and hashes: 1: MoI4D1fWFw9Fz1IOeywaPNovyq0.crl (hash: OWTrhy7FXl9AbIvcTOYWGzNm2luAvvSVxV3O2L2vhrE=) 2: 7D857A30F11811EC86D3AD4BC4F9AE02.roa (hash: RY7IQ05ThI/6GtkKfLwI0St2mmRdLcPJ0ecThYjAydU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 01:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 750 (0x2ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1DD, serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Validity Not Before: Aug 21 01:27:27 2025 GMT Not After : Aug 28 01:27:27 2025 GMT Subject: CN=68a67600-64b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:34:b7:48:c4:0a:23:a1:94:0c:97:17:af:73: 2d:79:5a:d0:e7:b9:8f:23:87:8b:3b:63:00:18:a2: 5e:4b:9a:bd:95:93:c6:5a:b8:51:2b:07:79:17:db: 46:6c:6a:aa:0e:cf:b9:34:c1:38:68:f8:7b:78:ef: 1e:a3:03:5c:4f:fe:13:8d:64:f6:69:ef:ee:19:53: b4:c8:af:13:23:3e:52:ac:db:d5:d1:83:05:24:2b: 79:27:bf:be:b9:2e:13:b8:96:71:8b:ed:2f:98:be: 30:ba:5a:d4:be:53:71:16:dc:4a:4f:41:b8:9e:db: 0a:a9:27:09:8d:1b:66:9a:fe:38:b6:6d:33:49:1f: db:3b:c5:b1:ad:1e:70:37:28:85:bd:45:af:72:30: 7d:d8:b7:ac:45:da:25:23:8f:bc:9c:fc:0b:9e:2c: d9:e5:d1:cc:f0:72:b0:f8:81:af:3d:c3:5f:f5:e3: a1:e9:27:cd:eb:5f:45:f7:a0:77:c1:0d:bb:0e:fd: b9:e5:73:94:9c:32:ea:d4:a0:8d:d0:aa:b4:dc:68: 6e:82:8b:89:79:82:3a:2f:11:54:8d:d7:7d:86:4a: e0:be:5c:5d:2f:63:2d:d0:ae:54:75:d9:1d:94:0f: 29:a6:79:09:21:fd:bd:bd:fd:29:c7:4d:d3:b5:6a: 58:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:1C:AA:A8:A4:39:2C:B8:16:03:63:35:47:95:21:F7:99:12:9B:94 X509v3 Authority Key Identifier: keyid:32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:ca:5f:39:4e:b9:60:b7:6c:49:ca:2d:5f:89:a2:d8:20:9e: fc:18:aa:f3:68:fc:12:ef:fd:ca:a9:0f:27:73:f5:18:ff:32: 5a:7b:fb:03:f0:c6:ee:0d:51:f6:81:ae:67:65:5a:76:43:2f: 8b:ad:46:e1:05:b0:6b:14:44:37:ec:fd:9f:c0:ce:ed:ea:12: cf:97:27:1c:1d:2a:d3:e0:be:ad:5f:bc:52:8f:87:17:ac:38: 8a:16:d7:dc:4d:ba:39:56:f1:26:2f:5c:57:22:7d:53:0b:8b: 89:c3:a0:64:c3:b3:21:53:03:db:4e:25:33:40:2f:5e:18:1d: 5b:7d:9a:54:2c:cb:c5:ea:f3:ad:07:e4:90:8e:a9:b5:5c:6f: 9c:a0:00:55:ba:dd:fc:fc:5c:5e:85:b7:b3:ed:1e:3c:4a:8a: c0:e3:c0:c4:49:f3:fd:49:75:3a:c9:dd:31:ce:b1:3d:7d:b5: 66:2b:be:43:9d:e0:2b:65:0d:2d:9e:42:d6:29:78:db:29:8d: 75:d4:3f:3f:74:03:8a:2e:bf:8c:52:63:88:17:88:79:aa:c2: 49:2f:80:f4:b1:ff:f4:16:ae:d5:fc:a7:4c:d7:3a:4e:94:e5: 69:14:1c:d3:94:db:87:35:9f:f4:f3:9e:1b:af:2d:af:ba:29: d3:f7:6c:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxREQxMTAvBgNVBAUTKDMyODIzODBGNTdENjE3MEY0NUNGNTIwRTdCMkMxQTND REEyRkNBQUQwHhcNMjUwODIxMDEyNzI3WhcNMjUwODI4MDEyNzI3WjAYMRYwFAYD VQQDEw02OGE2NzYwMC02NGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjS3SMQKI6GUDJcXr3MteVrQ57mPI4eLO2MAGKJeS5q9lZPGWrhRKwd5F9tG bGqqDs+5NME4aPh7eO8eowNcT/4TjWT2ae/uGVO0yK8TIz5SrNvV0YMFJCt5J7++ uS4TuJZxi+0vmL4wulrUvlNxFtxKT0G4ntsKqScJjRtmmv44tm0zSR/bO8WxrR5w NyiFvUWvcjB92LesRdolI4+8nPwLnizZ5dHM8HKw+IGvPcNf9eOh6SfN619F96B3 wQ27Dv255XOUnDLq1KCN0Kq03GhugouJeYI6LxFUjdd9hkrgvlxdL2Mt0K5Uddkd lA8ppnkJIf29vf0px03TtWpYiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkcqqik OSy4FgNjNUeVIfeZEpuUMB8GA1UdIwQYMBaAFDKCOA9X1hcPRc9SDnssGjzaL8qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFERC9GMTUwMDNDOEYx MTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3OUZ6MUlPZXl3YVBOb3Z5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vSTREMWZXRnc5RnoxSU9leXdhUE5vdnlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTFERC9GMTUwMDNDOEYxMTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3 OUZ6MUlPZXl3YVBOb3Z5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjyl85Trlgt2xJyi1fiaLYIJ78GKrzaPwS7/3KqQ8nc/UY/zJae/sD 8MbuDVH2ga5nZVp2Qy+LrUbhBbBrFEQ37P2fwM7t6hLPlyccHSrT4L6tX7xSj4cX rDiKFtfcTbo5VvEmL1xXIn1TC4uJw6Bkw7MhUwPbTiUzQC9eGB1bfZpULMvF6vOt B+SQjqm1XG+coABVut38/Fxehbez7R48SorA48DESfP9SXU6yd0xzrE9fbVmK75D neArZQ0tnkLWKXjbKY111D8/dAOKLr+MUmOIF4h5qsJJL4D0sf/0Fq7V/KdM1zpO lOVpFBzTlNuHNZ/0854bry2vuinT92xB -----END CERTIFICATE-----Generated at Fri Aug 22 16:25:11 2025 by rpki-client