$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft File: MoI4D1fWFw9Fz1IOeywaPNovyq0.mft (raw, json) Hash identifier: d0NUgro26CHmTwe2WttC2qvCQAxd9gzzOeOYC+4XjuI= Subject key identifier: 25:F9:D1:CA:58:9B:6F:4C:50:53:41:B0:B3:A2:78:73:7B:BE:7B:45 Authority key identifier: 32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD Certificate issuer: /CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Certificate serial: 02EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft Manifest number: 02EA Signing time: Sat 23 Aug 2025 01:32:08 +0000 Manifest this update: Sat 23 Aug 2025 01:32:08 +0000 Manifest next update: Sat 30 Aug 2025 01:32:08 +0000 Files and hashes: 1: MoI4D1fWFw9Fz1IOeywaPNovyq0.crl (hash: GNJDo6ZrU5nZ2TDOVnn9VkZhnrZgsX3rnVaqJtf4lyo=) 2: 7D857A30F11811EC86D3AD4BC4F9AE02.roa (hash: RY7IQ05ThI/6GtkKfLwI0St2mmRdLcPJ0ecThYjAydU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 751 (0x2ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1DD, serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Validity Not Before: Aug 23 01:32:08 2025 GMT Not After : Aug 30 01:32:08 2025 GMT Subject: CN=68a91a18-c91f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:74:5a:66:99:66:1b:d8:eb:b6:84:16:9b:10: e6:ee:e8:26:9d:8c:a1:90:b6:6d:ed:8a:10:9f:e1: 91:5b:eb:9a:a5:81:17:d6:08:ae:40:39:74:2f:69: cd:68:0b:5e:ee:f4:af:13:76:d2:62:f0:9f:5f:26: 62:c8:4d:2b:3d:2d:34:ab:9b:ea:7c:64:46:ac:2e: 7b:9b:3d:ca:4d:c0:74:96:02:53:5c:6b:92:78:98: b6:a1:5b:e5:b5:bc:ed:f1:c4:c9:fc:eb:6d:eb:15: 7d:da:99:35:6e:1d:6f:a8:14:26:d3:7d:dd:53:02: 07:92:3c:0c:52:29:1e:bf:f9:cb:1f:7e:88:d9:39: 05:1e:ad:63:dd:74:1f:9f:43:58:aa:c8:3d:47:1d: 50:0f:b6:51:ce:f6:78:7b:cd:22:32:96:e3:a1:1c: db:48:a1:bf:58:01:96:10:f3:1d:7f:71:fe:89:ba: 6b:a2:cf:64:54:02:31:f9:cd:d7:0e:56:f3:8d:80: 35:f4:e8:ab:c2:21:ed:2a:ec:19:5b:fa:29:fd:74: e0:9b:ea:28:3f:6e:64:66:74:04:c6:e4:23:d5:9d: c1:1c:9a:5d:20:c5:83:a0:94:4a:f0:c9:45:30:b3: 3a:63:00:63:96:4b:e4:28:8d:28:ee:30:75:0f:1f: cc:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F9:D1:CA:58:9B:6F:4C:50:53:41:B0:B3:A2:78:73:7B:BE:7B:45 X509v3 Authority Key Identifier: keyid:32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:e2:6e:2a:41:46:40:c8:f3:72:ac:54:24:ce:98:e7:d8:3d: bd:d8:00:85:34:13:ab:6d:51:56:c1:2c:8d:09:a3:79:dd:c5: 0d:9c:36:5c:f6:a6:1c:29:95:85:59:54:cd:1b:e2:2d:eb:09: 04:b9:47:b1:bf:1b:57:9e:fc:43:aa:0e:c0:99:ae:10:48:03: 45:64:62:23:93:f7:0f:98:72:c3:67:94:d7:2b:b8:21:09:65: eb:6d:8a:4e:70:d7:f3:c3:a1:be:52:68:9d:ae:be:42:f0:27: 04:52:a7:89:0a:52:15:72:73:3e:88:f0:3b:ca:fb:df:6e:1b: 22:17:a3:24:77:de:3e:1e:6a:2c:8e:4b:26:13:84:4e:ff:f2: 47:43:18:4c:91:de:d7:2f:6b:20:2b:ca:30:66:1a:a5:28:14: d9:0d:ca:d1:7f:b0:5c:11:ca:cb:bb:6b:57:0a:8e:07:21:d6: ad:5c:c9:f6:39:f3:7d:9b:60:36:8c:ab:c4:99:37:43:f9:fd: 85:c3:3e:07:db:62:b3:f5:f4:63:e9:fd:6c:8a:b1:e8:2e:04: b0:fd:ec:7e:72:03:3f:3f:d0:e8:92:e3:e4:66:5f:9c:b8:12: f8:94:1d:b3:28:04:1c:c8:37:a8:c0:c1:37:3d:ae:d7:de:7d: cb:7c:14:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxREQxMTAvBgNVBAUTKDMyODIzODBGNTdENjE3MEY0NUNGNTIwRTdCMkMxQTND REEyRkNBQUQwHhcNMjUwODIzMDEzMjA4WhcNMjUwODMwMDEzMjA4WjAYMRYwFAYD VQQDEw02OGE5MWExOC1jOTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHRaZplmG9jrtoQWmxDm7ugmnYyhkLZt7YoQn+GRW+uapYEX1giuQDl0L2nN aAte7vSvE3bSYvCfXyZiyE0rPS00q5vqfGRGrC57mz3KTcB0lgJTXGuSeJi2oVvl tbzt8cTJ/Ott6xV92pk1bh1vqBQm033dUwIHkjwMUikev/nLH36I2TkFHq1j3XQf n0NYqsg9Rx1QD7ZRzvZ4e80iMpbjoRzbSKG/WAGWEPMdf3H+ibpros9kVAIx+c3X DlbzjYA19OirwiHtKuwZW/op/XTgm+ooP25kZnQExuQj1Z3BHJpdIMWDoJRK8MlF MLM6YwBjlkvkKI0o7jB1Dx/McQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCX50cpY m29MUFNBsLOieHN7vntFMB8GA1UdIwQYMBaAFDKCOA9X1hcPRc9SDnssGjzaL8qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFERC9GMTUwMDNDOEYx MTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3OUZ6MUlPZXl3YVBOb3Z5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vSTREMWZXRnc5RnoxSU9leXdhUE5vdnlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTFERC9GMTUwMDNDOEYxMTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3 OUZ6MUlPZXl3YVBOb3Z5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCs4m4qQUZAyPNyrFQkzpjn2D292ACFNBOrbVFWwSyNCaN53cUNnDZc 9qYcKZWFWVTNG+It6wkEuUexvxtXnvxDqg7Ama4QSANFZGIjk/cPmHLDZ5TXK7gh CWXrbYpOcNfzw6G+Umidrr5C8CcEUqeJClIVcnM+iPA7yvvfbhsiF6Mkd94+Hmos jksmE4RO//JHQxhMkd7XL2sgK8owZhqlKBTZDcrRf7BcEcrLu2tXCo4HIdatXMn2 OfN9m2A2jKvEmTdD+f2Fwz4H22Kz9fRj6f1sirHoLgSw/ex+cgM/P9DokuPkZl+c uBL4lB2zKAQcyDeowME3Pa7X3n3LfBTX -----END CERTIFICATE-----Generated at Sat Aug 23 13:38:15 2025 by rpki-client