$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft File: MoQzhPrmr2wxduHfdOkIgdbZdZI.mft (raw, json) Hash identifier: OklSNI5qlJh1zr8MtWNK+2El+qwsvLzRaCND9m4h3N8= Subject key identifier: A1:EC:DD:8A:6B:15:FA:5E:B8:8D:91:91:0C:C2:15:B0:10:2F:EF:D0 Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 09F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft Manifest number: 09E2 Signing time: Fri 22 Aug 2025 20:04:32 +0000 Manifest this update: Fri 22 Aug 2025 20:04:32 +0000 Manifest next update: Fri 29 Aug 2025 20:04:32 +0000 Files and hashes: 1: MoQzhPrmr2wxduHfdOkIgdbZdZI.crl (hash: gdSWQ1dp3KQXO+UBpi/Bo+rFlGTixCqdYAKr0XU/tt4=) 2: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (hash: j8fhU7exqqelZLDvGV+LiToUg9srXBfjEzKSUgs/K/M=) 3: D02785608C0911EAAFF6CD27C4F9AE02.roa (hash: y933EdSERbir5H8pp6t0OPtCTXKlITWSG5EEQGLxz3I=) 4: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (hash: KwPAtZLZz35CSLoojxJ4PYLGzFjTReF4Z7d7ulqd9hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:04:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2550 (0x9f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666, serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Aug 22 20:04:32 2025 GMT Not After : Aug 29 20:04:32 2025 GMT Subject: CN=68a8cd50-f122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:48:b9:69:9b:fc:3a:60:2d:8f:63:72:a3:66: 01:d7:ea:63:6c:1a:e5:50:06:80:cb:d8:07:5d:e5: b8:fb:d0:d6:17:64:91:1d:7f:a5:0d:3d:72:00:94: a2:72:f3:46:b6:01:81:aa:e0:1f:a8:25:d5:c5:c8: b0:ef:2d:ea:6d:46:95:8c:91:44:9f:b2:da:af:2c: 7b:cc:ad:fb:9f:91:13:e5:66:64:fc:69:60:f5:d1: ee:25:05:13:39:f1:74:f5:d4:5a:c9:01:fa:27:c4: 2b:28:45:03:83:d7:6e:48:71:fb:17:9c:ba:9e:f1: 87:b6:3a:ad:d7:b2:1c:5e:91:8b:b6:b2:cd:30:bd: 3e:16:e0:c9:73:db:99:1c:a5:b1:0f:63:21:a7:d9: af:83:01:f4:76:55:af:3b:ef:4f:b2:6f:8b:85:bb: 85:b0:b9:84:2b:83:6b:2d:00:4d:89:1b:ea:2d:92: 5b:25:4c:1a:f6:a4:2e:71:eb:a0:94:4b:e4:29:6c: 63:f8:f2:d0:27:5a:a0:89:0f:61:03:fb:32:18:07: 0a:fc:c7:e6:fb:47:e9:24:46:98:6e:87:fa:d3:6a: 28:71:69:ab:6a:23:99:8d:29:5a:54:97:70:8f:49: db:36:c3:8d:59:b4:30:df:e4:5d:35:7d:71:13:0d: d7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:EC:DD:8A:6B:15:FA:5E:B8:8D:91:91:0C:C2:15:B0:10:2F:EF:D0 X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:d4:a9:60:28:e6:2d:cb:d5:5e:3c:46:73:a5:2a:47:09:c0: a0:d4:9b:34:5a:b6:7e:69:96:a2:5a:5c:39:43:84:1b:22:cf: 54:06:43:6a:f6:16:a7:de:e7:53:44:eb:f1:f1:93:39:3d:ec: dd:7b:e0:14:14:b4:6b:d0:a8:c2:96:52:e4:40:7e:9a:82:52: aa:d1:8c:6d:34:b3:b7:55:95:4a:f6:d1:3e:70:16:b9:3e:cf: e5:e0:75:eb:5b:4d:39:65:b8:d5:17:61:ca:eb:9f:86:33:73: 9b:7b:31:ad:24:1f:ef:69:cc:63:ee:6f:bb:ed:af:b7:f7:a6: 4d:5d:37:d5:1a:c8:8a:ca:04:b3:0b:07:81:78:f3:2f:10:a1: bd:69:16:0a:38:4a:44:74:bb:5f:7f:d5:01:c7:ff:b2:13:72: 14:ee:f8:04:fe:85:90:b5:e4:bf:bf:a0:81:ab:b8:de:9e:27: 67:55:e3:e7:4d:08:45:88:d2:b2:0d:01:c3:8d:75:12:77:b3: 64:2e:eb:cf:19:71:b3:9a:98:b0:ff:7a:ef:07:2d:7a:f5:4c: 3d:27:4d:a7:fe:d6:82:a0:da:38:7f:82:85:9d:dc:58:b5:37: e2:d3:ed:32:75:fe:f2:06:83:ad:5e:8d:4c:69:1f:d3:70:8b: 75:c3:20:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjUwODIyMjAwNDMyWhcNMjUwODI5MjAwNDMyWjAYMRYwFAYD VQQDEw02OGE4Y2Q1MC1mMTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0i5aZv8OmAtj2Nyo2YB1+pjbBrlUAaAy9gHXeW4+9DWF2SRHX+lDT1yAJSi cvNGtgGBquAfqCXVxciw7y3qbUaVjJFEn7Laryx7zK37n5ET5WZk/Glg9dHuJQUT OfF09dRayQH6J8QrKEUDg9duSHH7F5y6nvGHtjqt17IcXpGLtrLNML0+FuDJc9uZ HKWxD2Mhp9mvgwH0dlWvO+9Psm+LhbuFsLmEK4NrLQBNiRvqLZJbJUwa9qQuceug lEvkKWxj+PLQJ1qgiQ9hA/syGAcK/Mfm+0fpJEaYbof602oocWmraiOZjSlaVJdw j0nbNsONWbQw3+RdNX1xEw3XdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKHs3Ypr FfpeuI2RkQzCFbAQL+/QMB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY2Ni82MjNDRDZFNDg0RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIy d3hkdUhmZE9rSWdkYlpkWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL1KlgKOYty9VePEZzpSpHCcCg1Js0WrZ+aZaiWlw5Q4QbIs9UBkNq 9han3udTROvx8ZM5Pezde+AUFLRr0KjCllLkQH6aglKq0YxtNLO3VZVK9tE+cBa5 Ps/l4HXrW005ZbjVF2HK65+GM3ObezGtJB/vacxj7m+77a+396ZNXTfVGsiKygSz CweBePMvEKG9aRYKOEpEdLtff9UBx/+yE3IU7vgE/oWQteS/v6CBq7jenidnVePn TQhFiNKyDQHDjXUSd7NkLuvPGXGzmpiw/3rvBy169Uw9J02n/taCoNo4f4KFndxY tTfi0+0ydf7yBoOtXo1MaR/TcIt1wyDa -----END CERTIFICATE-----Generated at Sat Aug 23 16:03:36 2025 by rpki-client