$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft File: MoI4D1fWFw9Fz1IOeywaPNovyq0.mft (raw, json) Hash identifier: W6Gme3BMqWOJVlvQfd46xfAMvnH4tBOFWKXzDMOTaK0= Subject key identifier: 29:8B:5B:BD:6F:EE:03:F1:FD:95:44:EB:6B:56:86:0F:F2:9D:E1:CC Authority key identifier: 32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD Certificate issuer: /CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Certificate serial: 02D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft Manifest number: 02CE Signing time: Sun 29 Jun 2025 00:55:11 +0000 Manifest this update: Sun 29 Jun 2025 00:55:10 +0000 Manifest next update: Sun 06 Jul 2025 00:55:10 +0000 Files and hashes: 1: MoI4D1fWFw9Fz1IOeywaPNovyq0.crl (hash: EDtgdhSz3D7LMc0YmxMJF+WRrAHv45HGOEUWlpVsLTY=) 2: 7D857A30F11811EC86D3AD4BC4F9AE02.roa (hash: RY7IQ05ThI/6GtkKfLwI0St2mmRdLcPJ0ecThYjAydU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 00:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 723 (0x2d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1DD, serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Validity Not Before: Jun 29 00:55:10 2025 GMT Not After : Jul 6 00:55:10 2025 GMT Subject: CN=68608eef-1113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ec:f4:c8:bf:85:a7:8d:05:99:da:c1:ce:b5: 61:13:50:8f:31:58:8a:ec:52:7e:c9:5d:d0:d9:6d: f4:32:07:0a:c7:41:ff:7d:cc:c7:cc:f6:ae:8e:8a: 37:44:90:a7:2e:02:16:59:d6:6a:f5:73:dd:b3:a4: 78:aa:91:70:bd:7e:a4:6e:6c:84:79:92:6d:88:54: 94:fd:3b:4f:c1:60:54:64:1c:2c:ee:3c:90:a9:1c: af:10:28:ef:75:cb:b0:69:13:48:0b:2d:e2:3e:36: 87:2b:9b:3b:5b:fc:bd:a5:84:06:f0:20:59:75:03: c9:2b:e0:57:29:82:c5:4f:fa:bf:2e:a7:fe:6b:5c: 11:56:46:d8:b6:1e:ba:c5:ab:3b:25:94:63:03:99: 8f:ed:9b:57:79:67:b9:d0:2c:73:7a:f8:9c:bf:76: e8:51:1a:36:02:e8:66:d8:0f:7e:48:e3:ea:6c:61: a4:35:5d:dd:54:4c:05:b7:06:e8:39:c4:94:54:e1: ba:0e:11:85:8f:0b:f4:37:a3:bd:06:da:da:85:c8: a4:2c:a6:37:16:bd:87:76:57:59:f2:51:c2:04:9f: 01:1a:6e:69:c7:46:ba:55:f3:e0:dc:b7:10:b2:99: 6c:31:26:45:23:3f:80:41:e5:f9:12:c5:ef:68:b4: bc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:8B:5B:BD:6F:EE:03:F1:FD:95:44:EB:6B:56:86:0F:F2:9D:E1:CC X509v3 Authority Key Identifier: keyid:32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:87:1f:6d:95:26:14:f4:d3:ae:c6:9b:2a:92:28:43:9b:39: e3:c1:4b:62:10:b1:7c:d0:d0:00:51:91:64:20:e0:19:8f:57: 6a:67:5b:7a:81:83:97:4a:cc:eb:f2:aa:6e:7e:27:46:a2:ea: fb:d5:dc:73:0b:af:9e:2a:68:08:a4:69:5e:9e:91:95:53:84: af:66:7a:d7:48:c7:45:0c:e8:0f:d9:34:a9:52:54:30:9a:ba: 21:c9:ba:69:91:28:f4:74:5d:69:9d:1c:29:b2:1f:22:58:4e: dc:ab:ed:7c:7c:1f:d4:68:13:49:0e:64:f4:69:57:b2:55:0e: 29:1a:ff:91:73:9b:88:80:48:01:cc:6c:63:fd:74:0d:c8:cc: 4f:6c:35:b7:9d:fe:0b:0b:18:29:7e:49:b7:8d:e7:19:77:c0: b2:fa:b4:ec:d0:7a:8d:ac:b8:a6:11:e6:65:2b:ce:2c:de:e5: 6c:af:22:5f:34:a9:2f:87:b3:ff:97:93:50:0d:cb:14:13:8a: c8:ad:e6:70:cd:5d:2c:aa:95:c7:d5:1e:7b:1c:c5:bf:e0:46: 31:e7:30:6b:75:61:b6:74:dc:8c:60:d9:35:a5:24:7c:9a:dd: 19:87:71:56:c0:ec:75:ca:3f:02:97:5e:a2:77:9d:d9:e9:14: e3:4a:79:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxREQxMTAvBgNVBAUTKDMyODIzODBGNTdENjE3MEY0NUNGNTIwRTdCMkMxQTND REEyRkNBQUQwHhcNMjUwNjI5MDA1NTEwWhcNMjUwNzA2MDA1NTEwWjAYMRYwFAYD VQQDEw02ODYwOGVlZi0xMTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuz0yL+Fp40FmdrBzrVhE1CPMViK7FJ+yV3Q2W30MgcKx0H/fczHzPaujoo3 RJCnLgIWWdZq9XPds6R4qpFwvX6kbmyEeZJtiFSU/TtPwWBUZBws7jyQqRyvECjv dcuwaRNICy3iPjaHK5s7W/y9pYQG8CBZdQPJK+BXKYLFT/q/Lqf+a1wRVkbYth66 xas7JZRjA5mP7ZtXeWe50Cxzevicv3boURo2Auhm2A9+SOPqbGGkNV3dVEwFtwbo OcSUVOG6DhGFjwv0N6O9BtrahcikLKY3Fr2HdldZ8lHCBJ8BGm5px0a6VfPg3LcQ splsMSZFIz+AQeX5EsXvaLS8NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCmLW71v 7gPx/ZVE62tWhg/yneHMMB8GA1UdIwQYMBaAFDKCOA9X1hcPRc9SDnssGjzaL8qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFERC9GMTUwMDNDOEYx MTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3OUZ6MUlPZXl3YVBOb3Z5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vSTREMWZXRnc5RnoxSU9leXdhUE5vdnlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTFERC9GMTUwMDNDOEYxMTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3 OUZ6MUlPZXl3YVBOb3Z5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfhx9tlSYU9NOuxpsqkihDmznjwUtiELF80NAAUZFkIOAZj1dqZ1t6 gYOXSszr8qpufidGour71dxzC6+eKmgIpGlenpGVU4SvZnrXSMdFDOgP2TSpUlQw mrohybppkSj0dF1pnRwpsh8iWE7cq+18fB/UaBNJDmT0aVeyVQ4pGv+Rc5uIgEgB zGxj/XQNyMxPbDW3nf4LCxgpfkm3jecZd8Cy+rTs0HqNrLimEeZlK84s3uVsryJf NKkvh7P/l5NQDcsUE4rIreZwzV0sqpXH1R57HMW/4EYx5zBrdWG2dNyMYNk1pSR8 mt0Zh3FWwOx1yj8Cl16id53Z6RTjSnkh -----END CERTIFICATE-----Generated at Sun Jun 29 19:58:17 2025 by rpki-client