$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft File: MoQzhPrmr2wxduHfdOkIgdbZdZI.mft (raw, json) Hash identifier: BHszf7ATB+ZRO97UVJ94z2KCf7CSi832vaEX4euOTs0= Subject key identifier: BD:38:30:AA:A3:49:7C:27:83:AE:E2:61:C9:C7:2E:FF:BE:8A:AD:0F Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 09DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft Manifest number: 09C6 Signing time: Sat 28 Jun 2025 19:41:42 +0000 Manifest this update: Sat 28 Jun 2025 19:41:41 +0000 Manifest next update: Sat 05 Jul 2025 19:41:41 +0000 Files and hashes: 1: MoQzhPrmr2wxduHfdOkIgdbZdZI.crl (hash: lCZApdRbmvDzz+50OipJEdNjYGg6hsRBtDG6y24f+rY=) 2: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (hash: j8fhU7exqqelZLDvGV+LiToUg9srXBfjEzKSUgs/K/M=) 3: D02785608C0911EAAFF6CD27C4F9AE02.roa (hash: y933EdSERbir5H8pp6t0OPtCTXKlITWSG5EEQGLxz3I=) 4: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (hash: KwPAtZLZz35CSLoojxJ4PYLGzFjTReF4Z7d7ulqd9hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 19:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2522 (0x9da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666, serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Jun 28 19:41:41 2025 GMT Not After : Jul 5 19:41:41 2025 GMT Subject: CN=68604575-204b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:48:64:2b:d3:40:d9:c1:e3:52:86:90:d2:56: f9:95:7e:1a:63:0d:48:c8:7b:45:4f:1c:1e:97:1e: fd:32:4a:46:d1:fa:e4:9a:e7:4b:c8:1f:82:37:bf: cb:39:11:14:ce:23:e2:d4:23:c6:2c:58:a8:ee:e0: 9c:90:5a:cc:11:62:ab:f9:14:b4:97:bc:b7:eb:f1: ca:8b:d5:33:ab:e5:56:c0:cf:9e:d3:52:50:95:4e: 99:eb:2d:30:c9:57:93:ce:98:c5:df:11:2b:cc:e1: 15:f8:70:98:11:f9:7d:71:69:b7:ed:e8:40:be:3d: 9e:f9:4e:a5:47:10:40:6d:3c:f9:bf:40:ba:69:93: e9:64:5f:0c:73:8c:1f:cd:2f:c7:3e:ef:39:44:c3: 6d:d6:97:9f:8b:15:dd:ae:e1:72:0d:72:d0:e4:13: 62:12:ed:e8:86:2f:71:84:d9:ba:e6:80:81:01:e7: a2:cc:8f:71:7c:c1:65:34:a2:93:a0:80:0d:31:14: 3e:89:96:3e:9c:bb:b5:30:33:e6:c0:7c:d0:cd:35: fa:e8:19:dc:d0:43:0f:7f:2d:a8:06:d7:16:18:53: fa:25:03:60:2b:a8:0e:eb:05:f0:54:8f:2c:be:b2: 44:8c:e6:56:59:8e:35:61:ce:ee:a2:f6:49:91:ca: 01:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:38:30:AA:A3:49:7C:27:83:AE:E2:61:C9:C7:2E:FF:BE:8A:AD:0F X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:db:c1:dd:38:72:cc:12:81:0f:a6:0c:2a:29:ee:2f:20:ac: a8:28:dc:24:39:34:90:7c:84:b3:83:4a:53:98:1c:e2:2e:7b: 48:15:44:5e:75:80:ec:c8:8b:6e:8e:7f:e2:d3:94:db:a1:da: bd:cc:7c:96:11:3e:40:48:8a:41:a2:e6:e1:24:c2:82:0c:6d: 29:6a:06:ce:79:cf:7e:62:a2:7a:3a:18:3c:aa:f6:29:b4:fd: ad:40:5d:79:99:58:90:6f:cc:d8:51:57:d6:58:d5:e7:2b:92: 7e:0f:9f:93:e4:67:d3:db:f7:0f:79:96:2e:2d:d7:c8:ac:49: b9:f5:0b:d3:10:d2:de:fb:e3:68:a6:a1:93:32:61:31:15:18: bc:bd:7c:11:cf:66:9e:47:4e:17:cd:49:d3:6e:fd:6e:12:2a: c2:8c:3f:59:51:8f:21:bd:c8:bd:90:5d:ee:8a:a6:ab:cd:20: 10:16:bb:d7:89:63:ea:ca:c7:4e:39:49:6c:9a:b4:ff:0c:63: 49:fb:e4:a7:3c:79:fe:e2:5c:0a:8a:17:b8:79:b9:19:bf:cc: 0b:ba:31:50:2c:e0:28:20:21:dc:fd:03:e2:57:3b:3a:95:f9: 8c:e7:f0:20:db:ec:c1:09:23:cf:25:8e:11:49:e7:32:76:8f: 8c:b2:26:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjUwNjI4MTk0MTQxWhcNMjUwNzA1MTk0MTQxWjAYMRYwFAYD VQQDEw02ODYwNDU3NS0yMDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApEhkK9NA2cHjUoaQ0lb5lX4aYw1IyHtFTxwelx79MkpG0frkmudLyB+CN7/L OREUziPi1CPGLFio7uCckFrMEWKr+RS0l7y36/HKi9Uzq+VWwM+e01JQlU6Z6y0w yVeTzpjF3xErzOEV+HCYEfl9cWm37ehAvj2e+U6lRxBAbTz5v0C6aZPpZF8Mc4wf zS/HPu85RMNt1pefixXdruFyDXLQ5BNiEu3ohi9xhNm65oCBAeeizI9xfMFlNKKT oIANMRQ+iZY+nLu1MDPmwHzQzTX66Bnc0EMPfy2oBtcWGFP6JQNgK6gO6wXwVI8s vrJEjOZWWY41Yc7uovZJkcoBPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL04MKqj SXwng67iYcnHLv++iq0PMB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY2Ni82MjNDRDZFNDg0RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIy d3hkdUhmZE9rSWdkYlpkWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq28HdOHLMEoEPpgwqKe4vIKyoKNwkOTSQfISzg0pTmBziLntIFURe dYDsyItujn/i05Tbodq9zHyWET5ASIpBoubhJMKCDG0pagbOec9+YqJ6Ohg8qvYp tP2tQF15mViQb8zYUVfWWNXnK5J+D5+T5GfT2/cPeZYuLdfIrEm59QvTENLe++No pqGTMmExFRi8vXwRz2aeR04XzUnTbv1uEirCjD9ZUY8hvci9kF3uiqarzSAQFrvX iWPqysdOOUlsmrT/DGNJ++SnPHn+4lwKihe4ebkZv8wLujFQLOAoICHc/QPiVzs6 lfmM5/Ag2+zBCSPPJY4RSecydo+MsiYJ -----END CERTIFICATE-----Generated at Mon Jun 30 18:14:17 2025 by rpki-client