$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft File: bMOGDamHeDpQBVpRk5gw980cgms.mft (raw, json) Hash identifier: 8keC42MERtRDWTk6WOxcT/WZhFIcZmSQSNxO3Pedgvg= Subject key identifier: 05:9C:55:6C:02:0B:86:E9:C3:E8:9A:A5:9F:78:B5:C1:FB:FA:42:94 Authority key identifier: 6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B Certificate issuer: /CN=A91EA623/serialNumber=6CC3860DA987783A50055A51939830F7CD1C826B Certificate serial: 0530 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft Manifest number: 052A Signing time: Mon 30 Jun 2025 23:59:53 +0000 Manifest this update: Mon 30 Jun 2025 23:59:53 +0000 Manifest next update: Mon 07 Jul 2025 23:59:53 +0000 Files and hashes: 1: bMOGDamHeDpQBVpRk5gw980cgms.crl (hash: lkjmQ2w0Nr0ZxVEQhcEUbepy2qG2NuLQdNL907s/lI0=) 2: A6C3D8721A9711EC88A50A2CC4F9AE02.roa (hash: V99zGIESWxaCWwIsK3BcjNwowjB6iy3p26jrLpwkePQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=6CC3860DA987783A50055A51939830F7CD1C826B Validity Not Before: Jun 30 23:59:53 2025 GMT Not After : Jul 7 23:59:53 2025 GMT Subject: CN=686324f9-1c36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ec:99:a8:c5:1e:ae:02:83:db:09:a2:d3:2f: 7f:9a:bc:ab:0a:f3:d9:21:55:6d:c5:e9:e3:e0:1f: b1:2d:c8:41:25:18:99:59:f6:77:0e:1d:b3:d7:db: 31:22:af:b5:76:e7:10:94:ba:78:96:d3:38:ba:3d: ce:26:89:83:e0:f2:be:90:b3:f1:26:a8:1a:69:08: e9:10:a4:7c:d5:71:25:67:26:da:e2:88:08:bc:cb: 4e:3d:52:62:d3:5d:0b:d1:a4:e0:34:77:17:39:5e: 6c:e4:5b:6b:37:b7:96:20:1f:95:ec:80:1c:11:6a: 45:fe:91:d5:8d:8c:1e:03:2d:b5:c2:32:ac:9e:8d: 15:b0:e0:37:c7:c9:75:d1:03:24:cf:9a:30:e3:99: 60:50:44:14:24:60:fc:46:95:37:a9:58:35:08:8c: 7d:0e:99:4f:f7:e6:23:6d:99:96:09:d9:74:8b:a1: 1f:0f:f5:dd:db:95:0e:e8:25:90:61:0e:1a:c7:23: 47:64:63:ee:6d:9d:fb:f1:79:4d:79:ea:c4:61:a3: 1d:d8:60:79:92:66:78:a0:29:a5:f1:51:cf:d1:a6: f1:f6:06:e5:d5:23:4d:66:99:8e:2a:c3:b7:f7:a0: fb:50:b6:ef:ce:ef:87:2d:50:15:1c:b4:28:df:e2: ff:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:9C:55:6C:02:0B:86:E9:C3:E8:9A:A5:9F:78:B5:C1:FB:FA:42:94 X509v3 Authority Key Identifier: keyid:6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:e3:43:29:26:26:9f:26:4b:64:14:2f:86:ac:ff:d0:9d:26: 22:23:bd:08:95:8e:18:ab:2b:34:ce:ee:2e:38:b5:a8:ef:b4: c4:16:3c:20:03:30:d9:15:08:ab:90:29:85:70:ff:0b:3a:1b: 51:e9:22:fe:07:2a:06:4d:c3:34:f2:08:4d:24:5f:53:85:12: a0:39:6c:60:61:e8:f8:fd:3d:35:98:81:0a:53:7d:56:f0:d1: 49:6e:90:65:a2:e4:01:f2:d7:83:00:d0:3b:1f:57:f1:5b:6b: 59:0d:44:f8:31:16:da:2f:c6:7a:d1:7f:39:65:fd:da:2c:97: 86:d0:b7:b5:06:e4:b5:42:22:f2:47:04:26:ac:9e:cc:e5:2d: f1:a1:0d:fb:42:62:49:43:85:8e:5a:4d:13:74:5d:53:51:77: 01:b8:89:be:0d:16:c7:30:16:34:32:c1:f2:dc:96:ca:b9:05: 54:5d:21:3d:e1:17:fe:b3:6a:54:d6:36:99:6f:57:f6:9a:91: 4a:d3:e9:98:9b:10:de:2f:4e:46:70:50:0b:98:c1:16:5a:10: 17:0b:56:65:74:0f:6b:70:30:94:de:48:35:ab:c9:77:d8:2a: 3f:6d:ad:ad:f8:50:dd:14:5d:66:5b:fb:1b:9b:7a:4d:72:dd: 4e:2b:77:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKDZDQzM4NjBEQTk4Nzc4M0E1MDA1NUE1MTkzOTgzMEY3 Q0QxQzgyNkIwHhcNMjUwNjMwMjM1OTUzWhcNMjUwNzA3MjM1OTUzWjAYMRYwFAYD VQQDEw02ODYzMjRmOS0xYzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+yZqMUergKD2wmi0y9/mryrCvPZIVVtxenj4B+xLchBJRiZWfZ3Dh2z19sx Iq+1ducQlLp4ltM4uj3OJomD4PK+kLPxJqgaaQjpEKR81XElZyba4ogIvMtOPVJi 010L0aTgNHcXOV5s5FtrN7eWIB+V7IAcEWpF/pHVjYweAy21wjKsno0VsOA3x8l1 0QMkz5ow45lgUEQUJGD8RpU3qVg1CIx9DplP9+YjbZmWCdl0i6EfD/Xd25UO6CWQ YQ4axyNHZGPubZ378XlNeerEYaMd2GB5kmZ4oCml8VHP0abx9gbl1SNNZpmOKsO3 96D7ULbvzu+HLVAVHLQo3+L/iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWcVWwC C4bpw+iapZ94tcH7+kKUMB8GA1UdIwQYMBaAFGzDhg2ph3g6UAVaUZOYMPfNHIJr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9ERDZCNzUyODA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi9iTU9HRGFtSGVEcFFCVnBSazVndzk4MGNn bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JNT0dEYW1IZURwUUJWcFJrNWd3OTgwY2dtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9ERDZCNzUyODA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi9iTU9HRGFtSGVE cFFCVnBSazVndzk4MGNnbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv40MpJiafJktkFC+GrP/QnSYiI70IlY4Yqys0zu4uOLWo77TEFjwg AzDZFQirkCmFcP8LOhtR6SL+ByoGTcM08ghNJF9ThRKgOWxgYej4/T01mIEKU31W 8NFJbpBlouQB8teDANA7H1fxW2tZDUT4MRbaL8Z60X85Zf3aLJeG0Le1BuS1QiLy RwQmrJ7M5S3xoQ37QmJJQ4WOWk0TdF1TUXcBuIm+DRbHMBY0MsHy3JbKuQVUXSE9 4Rf+s2pU1jaZb1f2mpFK0+mYmxDeL05GcFALmMEWWhAXC1ZldA9rcDCU3kg1q8l3 2Co/ba2t+FDdFF1mW/sbm3pNct1OK3cU -----END CERTIFICATE-----Generated at Wed Jul 2 05:01:17 2025 by rpki-client