$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft File: bMOGDamHeDpQBVpRk5gw980cgms.mft (raw, json) Hash identifier: XvUiZ1Ah8OK/l5NyJUpVRCulxjJ1DJ7RPB8YQYXEdHU= Subject key identifier: 93:92:2A:36:A3:E7:0C:99:3A:55:23:BC:91:D9:A7:85:9C:15:94:C4 Authority key identifier: 6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B Certificate issuer: /CN=A91EA623/serialNumber=6CC3860DA987783A50055A51939830F7CD1C826B Certificate serial: 0517 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft Manifest number: 0511 Signing time: Sat 10 May 2025 23:14:33 +0000 Manifest this update: Sat 10 May 2025 23:14:32 +0000 Manifest next update: Sat 17 May 2025 23:14:32 +0000 Files and hashes: 1: bMOGDamHeDpQBVpRk5gw980cgms.crl (hash: jp80ayfl+PelOZWLsEfaasH3BGg60/ObtqodLCw+lcs=) 2: A6C3D8721A9711EC88A50A2CC4F9AE02.roa (hash: V99zGIESWxaCWwIsK3BcjNwowjB6iy3p26jrLpwkePQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1303 (0x517) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=6CC3860DA987783A50055A51939830F7CD1C826B Validity Not Before: May 10 23:14:32 2025 GMT Not After : May 17 23:14:32 2025 GMT Subject: CN=681fddd8-8e7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:49:37:dd:5e:bf:7a:3f:43:d1:ba:a4:84:99: e3:68:c1:20:0f:5b:95:b9:0f:20:12:4d:c7:08:ec: d8:22:bb:7a:f5:d1:76:f7:7e:1d:0d:3c:b4:b4:30: ab:de:7f:28:81:55:36:9d:69:1f:ec:a2:cb:8d:31: f1:d0:38:97:aa:44:8e:5b:6e:78:0b:95:08:3f:93: 63:a9:99:1c:a1:18:cd:c8:13:77:cd:35:a7:cc:64: a6:ba:69:c3:82:e4:2e:c5:22:d7:32:7f:5f:49:67: bb:68:fb:fd:af:dc:c5:c0:71:cb:61:38:62:fa:e4: a2:01:ce:8d:51:15:2f:17:6c:50:77:cd:93:44:39: aa:51:51:43:ee:76:c9:4a:2a:f2:a7:65:72:62:ff: 6f:7b:d9:70:bf:36:8e:ae:eb:e0:03:66:5c:d2:4d: 6f:c9:1e:43:b5:ab:0b:52:85:d2:22:bb:76:b2:b4: 59:a9:f8:8f:59:3b:b8:31:95:07:0f:24:14:79:6b: ce:46:c9:ca:18:d8:12:32:f0:64:a3:5f:b7:75:23: 7a:93:7a:09:5d:04:36:9b:5f:15:15:d5:45:aa:0b: b5:61:a2:74:70:86:f3:47:3c:42:7f:15:b6:f5:b8: 33:09:d7:1a:7d:bd:f9:6d:09:ab:b6:69:f8:1d:0c: 5d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:92:2A:36:A3:E7:0C:99:3A:55:23:BC:91:D9:A7:85:9C:15:94:C4 X509v3 Authority Key Identifier: keyid:6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:82:f9:02:d2:ca:20:b7:a1:57:2c:ab:67:bb:80:38:c2:17: 76:9f:20:fb:10:99:3a:de:11:9f:cf:79:5d:b0:6d:db:dd:b0: 47:bc:83:54:0e:92:fe:4b:4e:a0:61:b1:54:6b:56:b6:bb:d9: 17:06:7a:f7:f1:b9:ca:f8:3e:08:1e:48:cc:8e:bb:4f:38:61: bc:5a:54:09:3b:f9:36:22:0b:31:0e:de:c9:0d:13:77:64:51: 75:51:50:62:2c:8c:77:5c:8b:58:23:b2:37:ae:f4:8d:52:a6: 16:6d:cc:99:de:2d:d0:44:ea:98:bd:46:67:30:6a:e6:8f:aa: dc:ce:0b:c2:be:49:63:06:df:c5:11:ec:f8:96:2d:c2:ea:9d: 9b:93:e0:9c:2f:24:0c:fd:27:e0:04:cd:88:c4:75:62:44:b7: 5a:da:2d:6c:32:72:5b:fe:3b:f3:87:f6:12:39:32:f8:19:5a: 28:99:93:94:34:ea:93:bf:b3:c1:fb:be:2c:86:bd:a4:63:48: 63:93:66:b9:1d:44:a8:9f:aa:3a:34:6e:95:da:b3:e8:7f:4f: 4e:ba:7a:1c:6e:17:97:95:c3:c9:58:33:72:3f:2c:1c:d4:54: 57:1a:60:d2:10:9d:9a:cb:77:cb:db:96:6d:3e:ef:00:7e:71: 62:b4:25:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKDZDQzM4NjBEQTk4Nzc4M0E1MDA1NUE1MTkzOTgzMEY3 Q0QxQzgyNkIwHhcNMjUwNTEwMjMxNDMyWhcNMjUwNTE3MjMxNDMyWjAYMRYwFAYD VQQDEw02ODFmZGRkOC04ZTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEk33V6/ej9D0bqkhJnjaMEgD1uVuQ8gEk3HCOzYIrt69dF2934dDTy0tDCr 3n8ogVU2nWkf7KLLjTHx0DiXqkSOW254C5UIP5NjqZkcoRjNyBN3zTWnzGSmumnD guQuxSLXMn9fSWe7aPv9r9zFwHHLYThi+uSiAc6NURUvF2xQd82TRDmqUVFD7nbJ Siryp2VyYv9ve9lwvzaOruvgA2Zc0k1vyR5DtasLUoXSIrt2srRZqfiPWTu4MZUH DyQUeWvORsnKGNgSMvBko1+3dSN6k3oJXQQ2m18VFdVFqgu1YaJ0cIbzRzxCfxW2 9bgzCdcafb35bQmrtmn4HQxdbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOSKjaj 5wyZOlUjvJHZp4WcFZTEMB8GA1UdIwQYMBaAFGzDhg2ph3g6UAVaUZOYMPfNHIJr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9ERDZCNzUyODA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi9iTU9HRGFtSGVEcFFCVnBSazVndzk4MGNn bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JNT0dEYW1IZURwUUJWcFJrNWd3OTgwY2dtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9ERDZCNzUyODA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi9iTU9HRGFtSGVE cFFCVnBSazVndzk4MGNnbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBgvkC0sogt6FXLKtnu4A4whd2nyD7EJk63hGfz3ldsG3b3bBHvINU DpL+S06gYbFUa1a2u9kXBnr38bnK+D4IHkjMjrtPOGG8WlQJO/k2IgsxDt7JDRN3 ZFF1UVBiLIx3XItYI7I3rvSNUqYWbcyZ3i3QROqYvUZnMGrmj6rczgvCvkljBt/F Eez4li3C6p2bk+CcLyQM/SfgBM2IxHViRLda2i1sMnJb/jvzh/YSOTL4GVoomZOU NOqTv7PB+74shr2kY0hjk2a5HUSon6o6NG6V2rPof09OunocbheXlcPJWDNyPywc 1FRXGmDSEJ2ay3fL25ZtPu8AfnFitCVG -----END CERTIFICATE-----Generated at Sun May 11 15:02:32 2025 by rpki-client