$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft File: MoI4D1fWFw9Fz1IOeywaPNovyq0.mft (raw, json) Hash identifier: 6R/9wgILstiP5tC/R1d420/ARiLSRAQbeGnHNBxRyNU= Subject key identifier: AE:33:04:2B:4D:3B:54:87:BB:FB:87:C1:EF:B7:28:C3:11:48:47:4E Authority key identifier: 32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD Certificate issuer: /CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Certificate serial: 02BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft Manifest number: 02B5 Signing time: Fri 09 May 2025 01:13:20 +0000 Manifest this update: Fri 09 May 2025 01:13:19 +0000 Manifest next update: Fri 16 May 2025 01:13:19 +0000 Files and hashes: 1: MoI4D1fWFw9Fz1IOeywaPNovyq0.crl (hash: xKzZn9EN+ntn2+VFXFSUy9QY7J1o1HOzrYfGYD79OuU=) 2: 7D857A30F11811EC86D3AD4BC4F9AE02.roa (hash: RY7IQ05ThI/6GtkKfLwI0St2mmRdLcPJ0ecThYjAydU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 01:13:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 698 (0x2ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1DD, serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Validity Not Before: May 9 01:13:19 2025 GMT Not After : May 16 01:13:19 2025 GMT Subject: CN=681d56b0-c2a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5c:b8:80:f2:34:9d:b0:98:25:66:4e:6c:46: 6a:1b:80:d8:74:db:ab:d2:9e:a9:dc:1a:fa:91:af: ef:51:65:1f:dd:2f:1d:4d:69:48:7f:47:c8:a4:15: b7:e0:e4:d2:9a:0a:33:d3:39:6d:bb:07:fd:a3:d4: 84:90:73:43:d3:e6:4f:67:12:39:2d:ef:b7:ef:a3: 01:2c:cb:db:7b:75:f2:c4:82:a1:94:15:f4:d7:f9: 8e:57:4f:4a:18:fd:7a:db:cc:91:5b:a2:38:f5:5e: 72:d5:95:c9:c8:90:b9:a0:09:44:42:c3:a5:c6:6c: c9:64:48:ad:bd:4e:00:5e:97:1a:00:71:a3:c1:ae: 71:ec:cd:69:05:4d:ee:58:e2:95:2a:7f:f4:71:09: 9e:c4:58:8b:6e:2b:25:2a:7e:f6:96:41:3e:a4:38: f4:aa:28:00:d8:56:5f:38:5d:80:c9:d5:65:84:13: a0:fb:16:11:0b:b0:1f:db:67:01:6b:96:83:87:14: 52:7a:94:fd:59:ae:51:6f:98:db:6e:8d:4a:c1:60: a7:0c:2b:89:b5:d6:78:f5:aa:8e:c6:0e:15:f4:36: 3e:12:28:35:c4:ca:7d:01:8b:6a:a0:0b:ae:25:93: 81:9f:ea:ee:57:54:33:04:b3:05:a5:c8:ce:11:d7: 04:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:33:04:2B:4D:3B:54:87:BB:FB:87:C1:EF:B7:28:C3:11:48:47:4E X509v3 Authority Key Identifier: keyid:32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:dd:a3:9b:81:03:9c:92:2c:cf:dc:73:e5:2c:c9:2c:cc:34: 80:20:b7:c2:c9:ab:f7:17:a9:c2:16:2a:8e:4a:0e:3a:e0:d1: 2e:9b:67:24:2d:90:19:90:06:81:fe:61:11:07:b6:1a:06:18: d9:2d:68:59:6e:70:11:f2:de:74:c0:66:5a:54:ca:ac:1d:86: 43:f2:05:59:a5:87:a3:95:db:53:c5:16:01:50:64:79:a6:69: 33:bc:53:73:ed:29:0e:95:aa:69:43:c5:9a:b5:64:65:00:1d: d7:cd:26:1f:c1:3b:95:b9:69:eb:3e:d7:dd:11:27:ea:23:92: a3:1d:c2:8e:4c:89:e7:28:4d:7a:85:e4:8a:f9:17:c4:69:13: bc:bc:fa:5a:01:bd:11:69:df:5b:8a:dd:01:1d:46:1c:88:46: 33:2f:ae:7a:21:c1:c5:ca:75:ce:ae:51:48:82:dc:1b:5b:c6: 74:ee:d8:2e:f3:80:e6:a0:56:8f:22:71:f5:e8:45:58:62:31: fe:cb:9e:27:e2:9a:7d:2f:f3:23:41:fd:a8:51:5a:40:d9:ed: 19:f3:19:c7:9a:e4:18:3c:6b:39:8f:35:b2:a8:a7:a4:6a:c3: 6e:4e:1c:b1:97:e8:1e:31:ec:79:e4:2e:43:36:40:86:4f:e9: 47:1d:87:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxREQxMTAvBgNVBAUTKDMyODIzODBGNTdENjE3MEY0NUNGNTIwRTdCMkMxQTND REEyRkNBQUQwHhcNMjUwNTA5MDExMzE5WhcNMjUwNTE2MDExMzE5WjAYMRYwFAYD VQQDEw02ODFkNTZiMC1jMmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVy4gPI0nbCYJWZObEZqG4DYdNur0p6p3Br6ka/vUWUf3S8dTWlIf0fIpBW3 4OTSmgoz0zltuwf9o9SEkHND0+ZPZxI5Le+376MBLMvbe3XyxIKhlBX01/mOV09K GP1628yRW6I49V5y1ZXJyJC5oAlEQsOlxmzJZEitvU4AXpcaAHGjwa5x7M1pBU3u WOKVKn/0cQmexFiLbislKn72lkE+pDj0qigA2FZfOF2AydVlhBOg+xYRC7Af22cB a5aDhxRSepT9Wa5Rb5jbbo1KwWCnDCuJtdZ49aqOxg4V9DY+Eig1xMp9AYtqoAuu JZOBn+ruV1QzBLMFpcjOEdcExQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4zBCtN O1SHu/uHwe+3KMMRSEdOMB8GA1UdIwQYMBaAFDKCOA9X1hcPRc9SDnssGjzaL8qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFERC9GMTUwMDNDOEYx MTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3OUZ6MUlPZXl3YVBOb3Z5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vSTREMWZXRnc5RnoxSU9leXdhUE5vdnlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTFERC9GMTUwMDNDOEYxMTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3 OUZ6MUlPZXl3YVBOb3Z5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj3aObgQOckizP3HPlLMkszDSAILfCyav3F6nCFiqOSg464NEum2ck LZAZkAaB/mERB7YaBhjZLWhZbnAR8t50wGZaVMqsHYZD8gVZpYejldtTxRYBUGR5 pmkzvFNz7SkOlappQ8WatWRlAB3XzSYfwTuVuWnrPtfdESfqI5KjHcKOTInnKE16 heSK+RfEaRO8vPpaAb0Rad9bit0BHUYciEYzL656IcHFynXOrlFIgtwbW8Z07tgu 84DmoFaPInH16EVYYjH+y54n4pp9L/MjQf2oUVpA2e0Z8xnHmuQYPGs5jzWyqKek asNuThyxl+geMex55C5DNkCGT+lHHYfT -----END CERTIFICATE-----Generated at Sat May 10 23:21:11 2025 by rpki-client