$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.mft File: MO7z6BnpmwANZl9r1ZSvpMYiai4.mft (raw, json) Hash identifier: MtOxefaX/IwgxD2+1LjbdnnzlmHjESmTY1Nhm6orf/Q= Subject key identifier: B8:8E:E1:90:12:2B:8A:68:A3:F9:B3:88:7D:16:A0:DF:54:70:84:3C Authority key identifier: 30:EE:F3:E8:19:E9:9B:00:0D:66:5F:6B:D5:94:AF:A4:C6:22:6A:2E Certificate issuer: /CN=A91D5D9F/serialNumber=30EEF3E819E99B000D665F6BD594AFA4C6226A2E Certificate serial: 0200 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MO7z6BnpmwANZl9r1ZSvpMYiai4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.mft Manifest number: 01FB Signing time: Mon 05 May 2025 01:37:15 +0000 Manifest this update: Mon 05 May 2025 01:37:15 +0000 Manifest next update: Mon 12 May 2025 01:37:15 +0000 Files and hashes: 1: MO7z6BnpmwANZl9r1ZSvpMYiai4.crl (hash: 963AChoU32QfTdYO70ZddrQK5biefofuVD8aiQ8X7+A=) 2: D7803F3A3A5511EDB9410C50C4F9AE02.roa (hash: 5RvSp27bzJLpaJnE9Vp9OHr3zH1Dq7i1O2ke5dqvusQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.crl rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MO7z6BnpmwANZl9r1ZSvpMYiai4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 01:37:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5D9F, serialNumber=30EEF3E819E99B000D665F6BD594AFA4C6226A2E Validity Not Before: May 5 01:37:15 2025 GMT Not After : May 12 01:37:15 2025 GMT Subject: CN=6818164b-f078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b7:15:dd:fb:b7:68:9c:c6:b3:aa:21:e8:7b: d1:2c:70:67:52:e5:db:59:4a:7c:18:64:e8:d5:f9: a6:71:3d:1e:ae:62:cc:ea:b5:5d:f8:fe:7a:76:c3: 30:a7:2e:7d:64:2b:77:5c:eb:43:f4:c2:cc:76:13: 50:29:b5:85:80:61:f7:c9:68:15:87:e4:a6:7d:c6: bd:73:4c:27:3f:09:f1:2a:12:f4:26:d1:12:0c:85: 08:79:98:50:38:79:5e:23:1d:fa:80:f8:e2:a5:44: 6b:4a:89:e3:d8:da:2c:31:81:65:1a:20:1e:8c:39: 78:e0:40:2f:f4:de:19:8a:26:ea:31:ee:6c:89:96: d2:c7:10:dc:4a:b0:34:4b:e5:07:b9:56:55:68:ba: 32:9a:99:5b:b8:d7:21:30:7b:55:97:bc:c8:8a:df: bc:1a:0e:17:23:5f:2c:d4:d9:95:d4:f6:52:e1:b3: 15:bf:b8:bf:d7:76:bf:24:e0:4e:93:69:72:0f:d3: 97:dd:a1:45:94:66:16:f4:4e:a9:d9:c9:ce:cc:68: 6e:32:c6:10:37:ea:4a:72:43:cb:89:31:55:e8:84: f4:99:cf:87:f0:1f:0c:b6:84:f7:c9:66:05:2c:1c: 6f:6e:8f:0f:f4:fe:52:ca:ad:95:37:f4:13:7f:79: 20:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:8E:E1:90:12:2B:8A:68:A3:F9:B3:88:7D:16:A0:DF:54:70:84:3C X509v3 Authority Key Identifier: keyid:30:EE:F3:E8:19:E9:9B:00:0D:66:5F:6B:D5:94:AF:A4:C6:22:6A:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MO7z6BnpmwANZl9r1ZSvpMYiai4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:14:a5:76:69:9d:8a:48:0f:09:69:dc:d2:0d:a9:53:2d:d5: 64:54:a0:7f:bc:a1:5a:2e:74:13:84:34:0f:5f:18:ca:f5:d9: b3:ce:66:0f:6f:a6:a9:6b:a2:e7:e8:ec:a4:a9:cc:fc:b0:99: ee:03:24:5a:7c:c6:dd:d1:27:3d:44:29:94:f7:7a:8b:6c:a0: 87:44:eb:6e:07:ce:af:6e:ca:34:dd:ed:93:f5:d8:65:bf:3b: 6a:ab:e8:72:da:38:ae:c6:30:f7:89:0c:2a:be:1a:13:89:e5: 7c:40:cd:d5:c4:18:bc:9c:f5:25:f9:f6:89:95:a8:b4:ec:fd: 51:da:64:23:9c:6d:0b:7e:58:7e:1c:19:2e:3f:25:de:ce:c3: 16:e0:0b:f7:ee:3a:d6:b4:38:86:5e:73:de:db:26:0e:4a:d6: 9e:2f:82:e0:3f:d6:c4:68:5a:7d:dc:db:28:3a:3e:c6:bc:f8: 83:75:e4:bc:72:3c:c5:3f:8c:d7:b5:97:6b:77:e9:46:70:63: d2:e7:05:80:f8:bd:ed:84:22:02:b0:7b:2f:03:56:ec:ea:8d: 28:86:65:fc:21:30:06:d4:c6:73:b3:44:95:18:99:92:57:22: 09:f9:be:1f:41:da:72:17:50:92:f8:49:58:99:57:09:99:d9: 49:4e:21:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVEOUYxMTAvBgNVBAUTKDMwRUVGM0U4MTlFOTlCMDAwRDY2NUY2QkQ1OTRBRkE0 QzYyMjZBMkUwHhcNMjUwNTA1MDEzNzE1WhcNMjUwNTEyMDEzNzE1WjAYMRYwFAYD VQQDEw02ODE4MTY0Yi1mMDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2rcV3fu3aJzGs6oh6HvRLHBnUuXbWUp8GGTo1fmmcT0ermLM6rVd+P56dsMw py59ZCt3XOtD9MLMdhNQKbWFgGH3yWgVh+Smfca9c0wnPwnxKhL0JtESDIUIeZhQ OHleIx36gPjipURrSonj2NosMYFlGiAejDl44EAv9N4ZiibqMe5siZbSxxDcSrA0 S+UHuVZVaLoymplbuNchMHtVl7zIit+8Gg4XI18s1NmV1PZS4bMVv7i/13a/JOBO k2lyD9OX3aFFlGYW9E6p2cnOzGhuMsYQN+pKckPLiTFV6IT0mc+H8B8MtoT3yWYF LBxvbo8P9P5Syq2VN/QTf3kgiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiO4ZAS K4poo/mziH0WoN9UcIQ8MB8GA1UdIwQYMBaAFDDu8+gZ6ZsADWZfa9WUr6TGImou MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUQ5Ri85MjZGMzMzRTNB NEYxMUVEQjdCNkFFMjBDNEY5QUUwMi9NTzd6NkJucG13QU5abDlyMVpTdnBNWWlh aTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PN3o2Qm5wbXdBTlpsOXIxWlN2cE1ZaWFpNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUQ5Ri85MjZGMzMzRTNBNEYxMUVEQjdCNkFFMjBDNEY5QUUwMi9NTzd6NkJucG13 QU5abDlyMVpTdnBNWWlhaTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkFKV2aZ2KSA8JadzSDalTLdVkVKB/vKFaLnQThDQPXxjK9dmzzmYP b6apa6Ln6Oykqcz8sJnuAyRafMbd0Sc9RCmU93qLbKCHROtuB86vbso03e2T9dhl vztqq+hy2jiuxjD3iQwqvhoTieV8QM3VxBi8nPUl+faJlai07P1R2mQjnG0Lflh+ HBkuPyXezsMW4Av37jrWtDiGXnPe2yYOStaeL4LgP9bEaFp93NsoOj7GvPiDdeS8 cjzFP4zXtZdrd+lGcGPS5wWA+L3thCICsHsvA1bs6o0ohmX8ITAG1MZzs0SVGJmS VyIJ+b4fQdpyF1CS+ElYmVcJmdlJTiF2 -----END CERTIFICATE-----Generated at Tue May 6 13:19:37 2025 by rpki-client