$ rpki-client -vvf rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft File: MOfescUi55FZhZK2RTCIY8oADhg.mft (raw, json) Hash identifier: IAw6bhk5OU0/HvIgN+bPC3gzDKbOIb6ou+x82bCLZZ8= Subject key identifier: 84:E0:7D:07:8B:EE:84:09:E5:AF:82:08:C5:DB:82:C1:0C:F5:48:2A Authority key identifier: 30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18 Certificate issuer: /CN=A91E76B8/serialNumber=30E7DEB1C522E791598592B645308863CA000E18 Certificate serial: 1470 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft Manifest number: 1454 Signing time: Fri 22 Aug 2025 17:02:24 +0000 Manifest this update: Fri 22 Aug 2025 17:02:23 +0000 Manifest next update: Fri 29 Aug 2025 17:02:23 +0000 Files and hashes: 1: MOfescUi55FZhZK2RTCIY8oADhg.crl (hash: 68qMs3YR9MM77cwnSpxEIXVrt/zHYYwbuSzGXP+Ahsk=) 2: ECBAA694826F11ED963DD626C4F9AE02.roa (hash: dEUjWtTlj2rNYIxixfb1q7kgTimYlRGEihBrx/cv4cU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:02:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5232 (0x1470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E76B8, serialNumber=30E7DEB1C522E791598592B645308863CA000E18 Validity Not Before: Aug 22 17:02:23 2025 GMT Not After : Aug 29 17:02:23 2025 GMT Subject: CN=68a8a29f-1a70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:de:6c:b0:6e:cb:78:c7:50:1d:55:12:ac:22: bf:16:f0:2e:4e:a2:37:23:f9:69:a0:aa:0b:c4:32: 24:f8:b1:01:0b:e8:80:49:68:8d:7d:32:5f:15:e8: c8:cc:b9:91:68:a4:c3:d9:ea:0a:ce:5f:33:c0:4d: 3e:d2:d1:e8:72:29:a0:e1:68:f4:c6:49:29:29:54: 8b:45:ba:0f:32:60:bd:84:34:d4:8e:9c:41:6d:0a: b7:52:dd:aa:8f:d9:0c:1b:e3:11:f4:05:0c:9d:73: 3a:44:d7:37:75:b4:ec:a1:67:5b:37:a7:91:c1:ad: c7:18:5f:b7:ca:b4:1f:48:83:f8:9a:bc:42:aa:1a: 6b:42:04:39:89:73:4e:8c:fd:50:ad:d1:70:90:6b: 05:ee:b8:5d:f5:7c:26:61:d9:53:ba:e8:fb:6d:72: 5f:1e:b2:fb:10:51:9c:f8:48:7d:ab:b7:37:04:1d: 8b:b5:e2:7b:46:41:44:c5:f8:96:f3:03:b4:38:3d: d3:c8:65:a4:34:85:6c:87:61:3f:66:a9:55:d6:5d: 8a:bb:41:c2:21:40:ff:53:e2:12:dd:d7:04:b5:94: 1c:5f:17:a7:63:20:f4:f8:9c:a1:a2:70:bc:43:c5: 00:20:7f:8e:0f:71:40:22:2e:75:67:47:94:7f:11: f2:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:E0:7D:07:8B:EE:84:09:E5:AF:82:08:C5:DB:82:C1:0C:F5:48:2A X509v3 Authority Key Identifier: keyid:30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:f5:3e:b6:b5:1c:e1:db:94:ab:67:75:c8:a9:25:37:52:f3: e3:7d:8e:ca:16:b4:91:83:e2:6f:6a:b3:8f:19:6a:da:50:5f: 25:d3:57:f9:77:4c:96:b5:e0:6c:01:05:aa:3d:15:46:36:c7: 5a:49:a1:a4:6d:bd:39:56:4e:9a:2a:f2:e4:ab:4d:bd:fb:c5: fb:4a:a6:cf:80:40:35:70:24:09:69:ed:43:02:42:16:ce:9f: 76:26:d7:0c:4c:e4:11:d7:c0:1d:51:89:d6:18:b9:85:9a:d4: b9:8a:bc:3e:93:8e:22:8d:30:7c:50:f2:1d:92:48:1a:b7:32: 1c:db:c4:ee:47:46:7f:d0:8d:82:ec:e3:8e:1b:8c:6c:24:7c: 27:76:48:29:3e:36:df:08:3c:05:d2:42:78:8b:f8:19:1d:50: 13:0b:f9:0a:d6:ea:43:12:70:c3:b8:f2:b1:9a:cc:cf:ec:df: a1:c5:77:29:94:6e:1c:03:93:1d:84:dd:3b:c3:be:57:47:d8: 92:49:c0:6a:57:10:4c:0c:1c:73:36:e0:8c:b0:9f:7b:5e:02: 72:79:a8:a2:47:61:55:bd:17:18:a9:cd:70:24:c5:b8:0d:71: 9c:3c:02:59:4c:6d:38:6f:ea:bc:d1:36:92:ea:c1:5d:a0:b2: 07:9c:62:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc2QjgxMTAvBgNVBAUTKDMwRTdERUIxQzUyMkU3OTE1OTg1OTJCNjQ1MzA4ODYz Q0EwMDBFMTgwHhcNMjUwODIyMTcwMjIzWhcNMjUwODI5MTcwMjIzWjAYMRYwFAYD VQQDEw02OGE4YTI5Zi0xYTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwt5ssG7LeMdQHVUSrCK/FvAuTqI3I/lpoKoLxDIk+LEBC+iASWiNfTJfFejI zLmRaKTD2eoKzl8zwE0+0tHocimg4Wj0xkkpKVSLRboPMmC9hDTUjpxBbQq3Ut2q j9kMG+MR9AUMnXM6RNc3dbTsoWdbN6eRwa3HGF+3yrQfSIP4mrxCqhprQgQ5iXNO jP1QrdFwkGsF7rhd9XwmYdlTuuj7bXJfHrL7EFGc+Eh9q7c3BB2LteJ7RkFExfiW 8wO0OD3TyGWkNIVsh2E/ZqlV1l2Ku0HCIUD/U+IS3dcEtZQcXxenYyD0+JyhonC8 Q8UAIH+OD3FAIi51Z0eUfxHyGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFITgfQeL 7oQJ5a+CCMXbgsEM9UgqMB8GA1UdIwQYMBaAFDDn3rHFIueRWYWStkUwiGPKAA4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzZCOC9GRjE1MDhFRTdF OUExMUU4QjY5RkMwMkRDNEY5QUUwMi9NT2Zlc2NVaTU1RlpoWksyUlRDSVk4b0FE aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PZmVzY1VpNTVGWmhaSzJSVENJWThvQURoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzZCOC9GRjE1MDhFRTdFOUExMUU4QjY5RkMwMkRDNEY5QUUwMi9NT2Zlc2NVaTU1 RlpoWksyUlRDSVk4b0FEaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp9T62tRzh25SrZ3XIqSU3UvPjfY7KFrSRg+JvarOPGWraUF8l01f5 d0yWteBsAQWqPRVGNsdaSaGkbb05Vk6aKvLkq029+8X7SqbPgEA1cCQJae1DAkIW zp92JtcMTOQR18AdUYnWGLmFmtS5irw+k44ijTB8UPIdkkgatzIc28TuR0Z/0I2C 7OOOG4xsJHwndkgpPjbfCDwF0kJ4i/gZHVATC/kK1upDEnDDuPKxmszP7N+hxXcp lG4cA5MdhN07w75XR9iSScBqVxBMDBxzNuCMsJ97XgJyeaiiR2FVvRcYqc1wJMW4 DXGcPAJZTG04b+q80TaS6sFdoLIHnGK+ -----END CERTIFICATE-----Generated at Sat Aug 23 18:45:41 2025 by rpki-client