$ rpki-client -vvf rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft File: MOfescUi55FZhZK2RTCIY8oADhg.mft (raw, json) Hash identifier: STbbuI7iZCmraBrHtPlrpMeP2c9VGHiKYd6jKbN/S2c= Subject key identifier: 9C:1B:0E:83:50:C5:DB:E5:1F:AD:D4:ED:AA:B7:AB:2F:90:F1:DA:62 Authority key identifier: 30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18 Certificate issuer: /CN=A91E76B8/serialNumber=30E7DEB1C522E791598592B645308863CA000E18 Certificate serial: 1454 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft Manifest number: 1438 Signing time: Sat 28 Jun 2025 16:46:45 +0000 Manifest this update: Sat 28 Jun 2025 16:46:45 +0000 Manifest next update: Sat 05 Jul 2025 16:46:45 +0000 Files and hashes: 1: MOfescUi55FZhZK2RTCIY8oADhg.crl (hash: XG7t9pySK4dGD+w1PylGXZcexuFF/cZIEDjKzepV1Fg=) 2: ECBAA694826F11ED963DD626C4F9AE02.roa (hash: dEUjWtTlj2rNYIxixfb1q7kgTimYlRGEihBrx/cv4cU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 16:46:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5204 (0x1454) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E76B8, serialNumber=30E7DEB1C522E791598592B645308863CA000E18 Validity Not Before: Jun 28 16:46:45 2025 GMT Not After : Jul 5 16:46:45 2025 GMT Subject: CN=68601c75-4cc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:91:2d:54:07:33:6a:ea:16:9b:aa:43:6f:6e: 50:08:b8:2c:2a:a8:78:78:5a:84:8a:6f:d0:60:ab: e4:cf:6e:13:19:83:96:87:64:77:39:92:b4:bc:95: ee:53:5a:3f:fd:f5:3e:6a:2d:1a:c3:96:a7:2c:f5: de:b7:73:9b:88:c0:dc:7b:5b:6e:a5:d5:2e:02:af: 38:ef:bc:e7:38:d5:60:9b:3d:ad:95:03:20:11:e5: b1:31:68:47:37:3b:f9:1b:bb:86:c9:c0:dc:a5:f7: be:eb:5b:da:b5:10:12:95:e3:82:d8:cb:41:10:86: 64:1f:1a:43:7e:dc:fc:78:e1:c6:5e:5b:84:59:4f: 2c:22:fb:48:cd:c5:e3:e6:77:17:ff:f4:8e:68:f3: 92:27:34:2e:57:71:7f:97:2c:eb:00:bf:05:dd:31: 8c:2c:39:c6:d4:de:a6:7e:84:0d:bd:09:fc:d9:6f: ad:74:e7:ba:39:8f:46:41:d0:f1:4d:43:13:6c:7a: aa:39:ef:6d:09:0f:f1:4e:60:f4:85:d2:c4:80:e7: 70:cb:ad:47:5b:b8:f2:2e:96:d2:28:ca:60:77:47: de:e2:ab:7c:8a:60:47:7f:a0:f2:83:a6:2a:c4:c6: fd:ad:c3:ee:7a:76:0d:7a:11:2f:b7:ba:9d:33:70: 32:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:1B:0E:83:50:C5:DB:E5:1F:AD:D4:ED:AA:B7:AB:2F:90:F1:DA:62 X509v3 Authority Key Identifier: keyid:30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:74:67:d7:a1:0f:49:00:16:0a:da:c2:6e:ad:0a:f5:15:ed: ed:5b:48:d0:99:60:03:9d:35:86:db:f0:c8:33:10:3b:af:c7: 67:99:64:a4:ff:a9:da:eb:b3:08:67:22:cf:fb:ce:53:c6:4c: 2a:12:c9:96:86:a6:f3:2a:c9:e6:dd:44:72:be:5f:98:fa:a1: 48:40:74:00:ef:6e:3a:e7:9a:e6:7d:e0:ef:c1:27:a4:f3:f5: a0:13:21:c5:b7:22:41:4b:3a:5d:16:fb:c2:a2:a7:3a:8d:ea: 27:6f:bf:53:3a:aa:2b:58:01:27:0c:99:5a:d9:84:dd:aa:1d: bb:6c:64:c8:fa:5a:e2:9e:a2:e3:67:80:a7:4b:4e:f8:1b:10: 14:16:40:24:c1:46:a5:3e:38:a9:2f:56:ef:eb:2c:f8:a6:9f: c3:7e:5b:0d:85:f1:da:ee:91:ae:41:bb:17:43:b5:7d:c9:e5: 41:bd:d2:b7:58:57:7d:5e:42:6f:0a:48:81:66:ba:3f:9a:fa: e9:8a:3e:e6:1d:b5:ee:22:bc:7d:15:d2:f0:8a:6b:78:c3:54: 61:d9:99:84:28:38:42:5d:89:72:6f:f0:5d:00:fc:11:0c:41: e9:5b:f4:2c:9d:e5:a9:ef:b3:c8:e0:ec:d5:2c:49:ab:5f:78: 52:fd:f4:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc2QjgxMTAvBgNVBAUTKDMwRTdERUIxQzUyMkU3OTE1OTg1OTJCNjQ1MzA4ODYz Q0EwMDBFMTgwHhcNMjUwNjI4MTY0NjQ1WhcNMjUwNzA1MTY0NjQ1WjAYMRYwFAYD VQQDEw02ODYwMWM3NS00Y2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJEtVAczauoWm6pDb25QCLgsKqh4eFqEim/QYKvkz24TGYOWh2R3OZK0vJXu U1o//fU+ai0aw5anLPXet3ObiMDce1tupdUuAq8477znONVgmz2tlQMgEeWxMWhH Nzv5G7uGycDcpfe+61vatRASleOC2MtBEIZkHxpDftz8eOHGXluEWU8sIvtIzcXj 5ncX//SOaPOSJzQuV3F/lyzrAL8F3TGMLDnG1N6mfoQNvQn82W+tdOe6OY9GQdDx TUMTbHqqOe9tCQ/xTmD0hdLEgOdwy61HW7jyLpbSKMpgd0fe4qt8imBHf6Dyg6Yq xMb9rcPuenYNehEvt7qdM3Ay9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJwbDoNQ xdvlH63U7aq3qy+Q8dpiMB8GA1UdIwQYMBaAFDDn3rHFIueRWYWStkUwiGPKAA4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzZCOC9GRjE1MDhFRTdF OUExMUU4QjY5RkMwMkRDNEY5QUUwMi9NT2Zlc2NVaTU1RlpoWksyUlRDSVk4b0FE aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PZmVzY1VpNTVGWmhaSzJSVENJWThvQURoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzZCOC9GRjE1MDhFRTdFOUExMUU4QjY5RkMwMkRDNEY5QUUwMi9NT2Zlc2NVaTU1 RlpoWksyUlRDSVk4b0FEaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPdGfXoQ9JABYK2sJurQr1Fe3tW0jQmWADnTWG2/DIMxA7r8dnmWSk /6na67MIZyLP+85TxkwqEsmWhqbzKsnm3URyvl+Y+qFIQHQA724655rmfeDvwSek 8/WgEyHFtyJBSzpdFvvCoqc6jeonb79TOqorWAEnDJla2YTdqh27bGTI+lrinqLj Z4CnS074GxAUFkAkwUalPjipL1bv6yz4pp/DflsNhfHa7pGuQbsXQ7V9yeVBvdK3 WFd9XkJvCkiBZro/mvrpij7mHbXuIrx9FdLwimt4w1Rh2ZmEKDhCXYlyb/BdAPwR DEHpW/QsneWp77PI4OzVLEmrX3hS/fS4 -----END CERTIFICATE-----Generated at Sun Jun 29 18:35:02 2025 by rpki-client