$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft File: bMOGDamHeDpQBVpRk5gw980cgms.mft (raw, json) Hash identifier: PJRxe8V9S47RWDloXWxrr4xoz581wMdHN7zSzxL/+0o= Subject key identifier: 15:1E:73:1C:26:C8:DB:76:8B:58:B2:A2:28:93:22:E4:E7:B4:F6:89 Authority key identifier: 6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B Certificate issuer: /CN=A91EA623/serialNumber=6CC3860DA987783A50055A51939830F7CD1C826B Certificate serial: 054B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft Manifest number: 0545 Signing time: Fri 22 Aug 2025 23:40:51 +0000 Manifest this update: Fri 22 Aug 2025 23:40:51 +0000 Manifest next update: Fri 29 Aug 2025 23:40:51 +0000 Files and hashes: 1: bMOGDamHeDpQBVpRk5gw980cgms.crl (hash: /QFZgJdJVVim41ETd4sU8m+tXO5L3GHXFkOcsM1EAGA=) 2: A6C3D8721A9711EC88A50A2CC4F9AE02.roa (hash: V99zGIESWxaCWwIsK3BcjNwowjB6iy3p26jrLpwkePQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:40:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1355 (0x54b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=6CC3860DA987783A50055A51939830F7CD1C826B Validity Not Before: Aug 22 23:40:51 2025 GMT Not After : Aug 29 23:40:51 2025 GMT Subject: CN=68a90003-c894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9d:94:cb:7d:81:6d:16:45:30:4f:11:cf:18: a4:04:ab:73:00:36:1f:19:79:f1:93:e3:72:86:15: 32:b4:31:28:dd:0f:bf:75:4a:c4:88:b4:86:f0:87: 32:36:44:0d:e8:fb:d1:1e:cd:15:50:b8:e6:18:15: 25:34:af:03:39:a6:22:de:12:17:9a:94:e5:d0:0e: a4:a2:f9:17:82:60:25:55:cb:85:fd:36:0d:4c:2b: d7:44:fc:78:b6:2b:36:b2:29:a2:ba:55:e0:60:48: 32:96:e5:df:53:93:ed:67:fa:ce:d7:48:23:51:df: d8:ea:bf:fc:95:e9:ca:d8:3f:b9:91:8e:57:dd:6a: c0:94:b2:98:08:21:20:0d:e7:a4:bc:f7:7e:f2:73: 37:9d:e0:8a:ef:47:4d:ba:17:19:58:41:e6:1b:ac: 45:55:d2:22:33:84:b6:3e:e1:84:d4:4c:0d:77:7c: 63:ab:73:13:3c:f1:45:62:9e:01:4b:0e:88:06:ce: 46:57:28:3e:27:8d:34:a3:ad:42:88:7d:04:ea:d3: d4:7f:24:17:e9:38:fa:5a:1b:84:f6:0c:cd:10:f4: 14:f0:1e:d8:58:aa:b1:00:f6:55:1b:7c:2e:4d:fe: a5:34:fa:85:62:57:96:fa:ec:8b:cc:ff:fe:8f:2a: 26:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:1E:73:1C:26:C8:DB:76:8B:58:B2:A2:28:93:22:E4:E7:B4:F6:89 X509v3 Authority Key Identifier: keyid:6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:60:28:cc:46:80:12:a1:e6:58:6d:3d:73:a2:88:ba:2e:6f: ef:88:f8:35:38:fb:4f:9c:cd:1d:80:95:c7:33:bd:2a:44:8d: e3:bf:9a:5c:c4:c7:ad:b6:7c:cf:63:b4:4b:83:97:76:8c:f9: 22:02:f5:38:7c:d1:38:d6:6c:af:5b:e5:06:bd:ca:d4:4e:98: c0:39:4c:da:c8:f1:51:7c:83:3b:60:74:19:7c:e8:a1:11:91: c4:1c:17:62:a8:01:2a:2b:7b:0a:81:db:a6:ca:2d:e5:88:a2: 0a:c4:95:1b:ac:b3:70:c0:a3:c5:94:65:1f:d2:47:20:9b:f5: e2:47:f4:d3:bf:b7:3d:fa:13:65:c5:34:21:6d:f9:e7:0b:a1: 88:95:e4:1c:5c:4d:0d:6d:52:6d:bb:7f:05:ed:37:57:48:0b: 07:98:d8:69:4b:8d:35:30:0f:7c:6b:02:7f:50:17:f0:1f:51: d9:34:10:d0:46:d5:2e:f6:98:25:e9:a0:e9:b4:8d:7d:10:c1: 87:8c:b0:fc:fd:f6:51:3d:e2:31:f7:66:14:f2:c7:fb:56:76: 38:0a:d7:15:58:c9:25:3f:95:ce:c1:cf:53:57:eb:7e:33:73: 7f:d0:4d:22:c9:7f:dd:aa:86:7e:4c:ba:13:42:7a:24:9b:ff: cc:fc:04:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKDZDQzM4NjBEQTk4Nzc4M0E1MDA1NUE1MTkzOTgzMEY3 Q0QxQzgyNkIwHhcNMjUwODIyMjM0MDUxWhcNMjUwODI5MjM0MDUxWjAYMRYwFAYD VQQDEw02OGE5MDAwMy1jODk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZ2Uy32BbRZFME8RzxikBKtzADYfGXnxk+NyhhUytDEo3Q+/dUrEiLSG8Icy NkQN6PvRHs0VULjmGBUlNK8DOaYi3hIXmpTl0A6kovkXgmAlVcuF/TYNTCvXRPx4 tis2simiulXgYEgyluXfU5PtZ/rO10gjUd/Y6r/8lenK2D+5kY5X3WrAlLKYCCEg DeekvPd+8nM3neCK70dNuhcZWEHmG6xFVdIiM4S2PuGE1EwNd3xjq3MTPPFFYp4B Sw6IBs5GVyg+J400o61CiH0E6tPUfyQX6Tj6WhuE9gzNEPQU8B7YWKqxAPZVG3wu Tf6lNPqFYleW+uyLzP/+jyom9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUecxwm yNt2i1iyoiiTIuTntPaJMB8GA1UdIwQYMBaAFGzDhg2ph3g6UAVaUZOYMPfNHIJr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9ERDZCNzUyODA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi9iTU9HRGFtSGVEcFFCVnBSazVndzk4MGNn bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JNT0dEYW1IZURwUUJWcFJrNWd3OTgwY2dtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9ERDZCNzUyODA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi9iTU9HRGFtSGVE cFFCVnBSazVndzk4MGNnbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoYCjMRoASoeZYbT1zooi6Lm/viPg1OPtPnM0dgJXHM70qRI3jv5pc xMettnzPY7RLg5d2jPkiAvU4fNE41myvW+UGvcrUTpjAOUzayPFRfIM7YHQZfOih EZHEHBdiqAEqK3sKgdumyi3liKIKxJUbrLNwwKPFlGUf0kcgm/XiR/TTv7c9+hNl xTQhbfnnC6GIleQcXE0NbVJtu38F7TdXSAsHmNhpS401MA98awJ/UBfwH1HZNBDQ RtUu9pgl6aDptI19EMGHjLD8/fZRPeIx92YU8sf7VnY4CtcVWMklP5XOwc9TV+t+ M3N/0E0iyX/dqoZ+TLoTQnokm//M/ARI -----END CERTIFICATE-----Generated at Sat Aug 23 14:28:16 2025 by rpki-client