$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft File: bMOGDamHeDpQBVpRk5gw980cgms.mft (raw, json) Hash identifier: IbAuy7MDl1N9wKHZSZDQ8Hd+fKbjPvlu4x9Wjghairc= Subject key identifier: A7:06:D7:93:86:96:C5:F9:22:99:09:37:D8:4D:CC:88:0A:A5:D3:80 Authority key identifier: 6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B Certificate issuer: /CN=A91EA623/serialNumber=6CC3860DA987783A50055A51939830F7CD1C826B Certificate serial: 0568 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft Manifest number: 0562 Signing time: Sun 19 Oct 2025 01:06:52 +0000 Manifest this update: Sun 19 Oct 2025 01:06:52 +0000 Manifest next update: Sun 26 Oct 2025 01:06:52 +0000 Files and hashes: 1: bMOGDamHeDpQBVpRk5gw980cgms.crl (hash: uMo97lnWJJplBseuWUka5Az+sR/3YtT2GS2BallTvZ4=) 2: A6C3D8721A9711EC88A50A2CC4F9AE02.roa (hash: V99zGIESWxaCWwIsK3BcjNwowjB6iy3p26jrLpwkePQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:06:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1384 (0x568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=6CC3860DA987783A50055A51939830F7CD1C826B Validity Not Before: Oct 19 01:06:52 2025 GMT Not After : Oct 26 01:06:52 2025 GMT Subject: CN=68f439ac-0784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:68:82:61:e4:ed:3d:d1:1e:b9:2f:9f:35:6c: 96:7e:90:2a:2f:4d:28:c4:42:b5:1c:14:1c:ad:25: 7a:b4:b2:4d:65:00:3f:f7:6f:fb:17:8c:58:57:70: a9:f7:af:f1:0e:a5:e1:11:10:3a:6f:56:df:3e:bc: 17:69:66:ca:a9:f4:c5:cc:31:93:1c:4c:da:b5:ce: c2:0c:26:61:89:85:a2:63:c9:03:5f:af:0c:b1:25: fc:17:95:24:ab:67:78:7b:a7:56:8a:31:97:74:1d: ce:fc:fb:19:29:74:8d:1e:88:a8:b1:1c:f7:f0:bb: 08:83:40:16:41:14:29:c4:62:5e:2f:5d:55:64:45: ad:35:ff:03:45:d8:c7:7b:b9:0e:01:7d:08:dc:f9: e0:8e:f0:d7:45:0d:79:65:5e:59:a8:ea:5b:86:b0: 6a:92:db:b6:3b:25:c8:af:da:20:e2:a3:ac:93:67: 2f:56:f0:0e:ea:1f:3c:2c:27:da:b7:4f:09:43:19: 22:af:52:26:94:13:9e:4b:db:79:0d:82:f4:5f:65: 68:e4:2f:73:8e:9f:1d:a5:fd:5a:74:4c:b6:15:d3: 98:c6:e2:5e:91:b4:ba:2d:69:19:bf:8b:42:a8:af: 3e:03:f6:3b:cd:a0:95:b6:77:4b:e1:fa:f8:36:ed: 2a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:06:D7:93:86:96:C5:F9:22:99:09:37:D8:4D:CC:88:0A:A5:D3:80 X509v3 Authority Key Identifier: keyid:6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:dd:cc:43:41:c6:f1:7a:32:5d:d8:1b:6d:8c:76:3a:92:07: 9f:6d:28:3e:6f:70:6c:ee:26:50:f9:54:26:c7:ef:f5:e2:8f: aa:ef:95:64:d9:36:e3:64:a1:8c:83:79:6a:0e:72:64:fd:f5: a7:04:1d:cb:17:1d:bf:41:b9:8b:19:52:c4:e9:43:21:00:33: a1:a9:8e:c3:1e:91:01:a6:94:8a:f3:e0:31:04:63:ec:86:20: 7e:35:29:bf:21:e5:89:26:33:c4:fe:69:8c:b3:a1:02:b0:7a: 42:77:61:2c:f2:66:89:91:98:3f:4a:dc:dd:4f:1c:61:3b:2d: 42:fb:8d:2f:f6:83:2a:29:47:8c:49:ad:73:1d:09:77:6e:79: 90:d4:94:44:2f:d8:78:92:93:00:d8:36:82:4d:f5:00:25:a3: 30:b7:ff:25:f0:59:fe:04:10:aa:8f:bd:b7:19:b8:6c:5c:a7: 3a:4a:58:23:31:28:14:fb:8b:6b:a9:04:d9:69:a0:87:3d:54: ee:ba:71:75:35:57:ad:8b:a0:04:cd:1b:3f:83:ba:fb:ed:fb: 96:05:5b:39:ae:74:d4:a3:de:e3:cc:57:12:7f:d8:51:6a:c1: f6:1f:ce:70:fb:2f:03:e4:bd:53:bd:48:77:d4:2b:c9:a3:a2: 27:68:aa:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKDZDQzM4NjBEQTk4Nzc4M0E1MDA1NUE1MTkzOTgzMEY3 Q0QxQzgyNkIwHhcNMjUxMDE5MDEwNjUyWhcNMjUxMDI2MDEwNjUyWjAYMRYwFAYD VQQDEw02OGY0MzlhYy0wNzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlmiCYeTtPdEeuS+fNWyWfpAqL00oxEK1HBQcrSV6tLJNZQA/92/7F4xYV3Cp 96/xDqXhERA6b1bfPrwXaWbKqfTFzDGTHEzatc7CDCZhiYWiY8kDX68MsSX8F5Uk q2d4e6dWijGXdB3O/PsZKXSNHoiosRz38LsIg0AWQRQpxGJeL11VZEWtNf8DRdjH e7kOAX0I3PngjvDXRQ15ZV5ZqOpbhrBqktu2OyXIr9og4qOsk2cvVvAO6h88LCfa t08JQxkir1ImlBOeS9t5DYL0X2Vo5C9zjp8dpf1adEy2FdOYxuJekbS6LWkZv4tC qK8+A/Y7zaCVtndL4fr4Nu0qiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcG15OG lsX5IpkJN9hNzIgKpdOAMB8GA1UdIwQYMBaAFGzDhg2ph3g6UAVaUZOYMPfNHIJr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9ERDZCNzUyODA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi9iTU9HRGFtSGVEcFFCVnBSazVndzk4MGNn bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JNT0dEYW1IZURwUUJWcFJrNWd3OTgwY2dtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9ERDZCNzUyODA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi9iTU9HRGFtSGVE cFFCVnBSazVndzk4MGNnbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF3cxDQcbxejJd2BttjHY6kgefbSg+b3Bs7iZQ+VQmx+/14o+q75Vk 2TbjZKGMg3lqDnJk/fWnBB3LFx2/QbmLGVLE6UMhADOhqY7DHpEBppSK8+AxBGPs hiB+NSm/IeWJJjPE/mmMs6ECsHpCd2Es8maJkZg/StzdTxxhOy1C+40v9oMqKUeM Sa1zHQl3bnmQ1JREL9h4kpMA2DaCTfUAJaMwt/8l8Fn+BBCqj723GbhsXKc6Slgj MSgU+4trqQTZaaCHPVTuunF1NVeti6AEzRs/g7r77fuWBVs5rnTUo97jzFcSf9hR asH2H85w+y8D5L1TvUh31CvJo6InaKpy -----END CERTIFICATE-----Generated at Mon Oct 20 10:43:27 2025 by rpki-client