$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft File: mom7N8VDhtqah6ZP8AlEKKMXGkc.mft (raw, json) Hash identifier: I3oDeIWpN9tlybs2SWFtUozBJlve33ALRDbj+exstmk= Subject key identifier: 2E:11:FF:0D:42:86:FE:55:81:51:D2:C7:98:74:D9:1E:4B:1A:0C:26 Authority key identifier: 9A:89:BB:37:C5:43:86:DA:9A:87:A6:4F:F0:09:44:28:A3:17:1A:47 Certificate issuer: /CN=A91EF73D/serialNumber=9A89BB37C54386DA9A87A64FF0094428A3171A47 Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft Manifest number: 0111 Signing time: Sun 29 Jun 2025 04:12:01 +0000 Manifest this update: Sun 29 Jun 2025 04:12:00 +0000 Manifest next update: Sun 06 Jul 2025 04:12:00 +0000 Files and hashes: 1: mom7N8VDhtqah6ZP8AlEKKMXGkc.crl (hash: W+Rha1cfO8xW33sQlREFZxhIsfBf5wZyVIoLNb5DDFw=) 2: 00E1AC30FBAA11EE9C7F3921C4F9AE02.roa (hash: 29v8ayhOME61rr4geagSM3a8sHvyVhtwUdXNMoV9ZDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.crl rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF73D, serialNumber=9A89BB37C54386DA9A87A64FF0094428A3171A47 Validity Not Before: Jun 29 04:12:00 2025 GMT Not After : Jul 6 04:12:00 2025 GMT Subject: CN=6860bd10-667a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3a:df:54:c0:b8:f8:7b:f1:5f:1e:19:c3:da: 72:d0:05:3a:b8:99:b4:b9:f0:af:e4:40:c3:aa:49: b3:03:2a:1f:1e:12:ed:6b:f6:be:5a:fc:64:51:38: c1:35:ba:c9:49:82:8f:1b:de:f6:0d:aa:7c:75:79: 1a:4d:c4:97:6f:8d:6e:52:26:61:91:b5:d2:cb:38: 5d:11:68:aa:ca:2e:cf:dd:f3:1e:2a:86:35:05:28: b1:43:4a:86:24:18:c8:20:f1:e3:98:e0:dc:09:0f: cc:b3:80:ca:41:f0:b8:14:1b:a7:fc:e4:72:6d:68: b2:7c:9b:da:08:3f:4d:37:af:a4:c2:5f:33:33:6c: b7:e6:d2:1a:b9:dc:93:83:38:1a:23:f1:4c:71:42: 33:2e:c5:d1:7f:89:71:26:c0:a6:83:23:1f:42:f8: 7d:50:39:4d:ca:a7:8a:b2:92:40:28:55:a5:cc:83: e9:54:5d:a2:57:77:4d:a5:46:7a:8b:16:b3:2f:f0: d6:17:4e:c5:11:aa:80:3a:17:08:9f:94:db:1f:59: 5b:2f:fd:8a:77:c2:b6:98:62:7c:38:94:99:eb:45: 8a:57:89:94:13:5d:f0:7a:cb:dd:13:03:48:c8:e8: 88:36:00:8b:16:1a:ab:f8:21:51:56:56:2e:96:97: a7:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:11:FF:0D:42:86:FE:55:81:51:D2:C7:98:74:D9:1E:4B:1A:0C:26 X509v3 Authority Key Identifier: keyid:9A:89:BB:37:C5:43:86:DA:9A:87:A6:4F:F0:09:44:28:A3:17:1A:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:4f:90:f9:4c:90:19:8c:59:2a:c5:4d:64:18:29:61:1f:1e: e9:d2:ee:26:45:a8:87:0e:8e:6a:d3:cf:4e:7e:88:c1:c8:64: eb:c8:d6:4b:67:de:08:ff:0d:c9:3d:c1:b2:13:e0:18:3a:13: 39:22:be:b0:f0:89:2f:8a:e0:17:71:bc:39:a8:c7:eb:29:3b: 14:b7:e4:7f:de:48:13:6d:a0:9c:22:56:3a:ac:c1:02:10:f0: e4:7b:8a:d6:87:89:4a:c8:55:80:be:8b:d1:92:14:50:94:86: 27:c4:df:cd:0d:55:2c:20:af:00:9f:c8:d0:dc:83:bf:4a:18: 29:25:37:f8:b6:24:74:96:01:9b:f5:9f:7a:d4:d3:9a:82:dc: 99:1f:01:1a:c5:c3:f9:5f:53:d6:fe:8f:c3:1f:7b:33:30:61: a8:0b:70:aa:eb:d1:fa:40:c3:03:c6:8a:69:cb:15:0f:4f:9b: 25:97:25:01:02:c9:e6:1b:75:fe:62:60:b0:87:30:a2:5a:f3: 2b:68:7f:a6:b2:5b:37:17:d3:b1:cc:d8:78:08:83:0e:da:3b: af:d2:47:a4:7e:ae:ba:93:52:ff:b2:21:27:11:2c:ac:88:15: d8:86:09:1c:60:72:2d:3d:e3:04:85:64:5d:68:bf:9b:3b:e5: 8f:e0:f6:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY3M0QxMTAvBgNVBAUTKDlBODlCQjM3QzU0Mzg2REE5QTg3QTY0RkYwMDk0NDI4 QTMxNzFBNDcwHhcNMjUwNjI5MDQxMjAwWhcNMjUwNzA2MDQxMjAwWjAYMRYwFAYD VQQDEw02ODYwYmQxMC02NjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDrfVMC4+HvxXx4Zw9py0AU6uJm0ufCv5EDDqkmzAyofHhLta/a+WvxkUTjB NbrJSYKPG972Dap8dXkaTcSXb41uUiZhkbXSyzhdEWiqyi7P3fMeKoY1BSixQ0qG JBjIIPHjmODcCQ/Ms4DKQfC4FBun/ORybWiyfJvaCD9NN6+kwl8zM2y35tIaudyT gzgaI/FMcUIzLsXRf4lxJsCmgyMfQvh9UDlNyqeKspJAKFWlzIPpVF2iV3dNpUZ6 ixazL/DWF07FEaqAOhcIn5TbH1lbL/2Kd8K2mGJ8OJSZ60WKV4mUE13wesvdEwNI yOiINgCLFhqr+CFRVlYulpenswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4R/w1C hv5VgVHSx5h02R5LGgwmMB8GA1UdIwQYMBaAFJqJuzfFQ4bamoemT/AJRCijFxpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjczRC9DOTJCMzIzMkNF MUYxMUVFQUM2MjYxN0NDNEY5QUUwMi9tb203TjhWRGh0cWFoNlpQOEFsRUtLTVhH a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21vbTdOOFZEaHRxYWg2WlA4QWxFS0tNWEdrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjczRC9DOTJCMzIzMkNFMUYxMUVFQUM2MjYxN0NDNEY5QUUwMi9tb203TjhWRGh0 cWFoNlpQOEFsRUtLTVhHa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXT5D5TJAZjFkqxU1kGClhHx7p0u4mRaiHDo5q089OfojByGTryNZL Z94I/w3JPcGyE+AYOhM5Ir6w8IkviuAXcbw5qMfrKTsUt+R/3kgTbaCcIlY6rMEC EPDke4rWh4lKyFWAvovRkhRQlIYnxN/NDVUsIK8An8jQ3IO/ShgpJTf4tiR0lgGb 9Z961NOagtyZHwEaxcP5X1PW/o/DH3szMGGoC3Cq69H6QMMDxoppyxUPT5sllyUB AsnmG3X+YmCwhzCiWvMraH+msls3F9OxzNh4CIMO2juv0kekfq66k1L/siEnESys iBXYhgkcYHItPeMEhWRdaL+bO+WP4PZb -----END CERTIFICATE-----Generated at Sun Jun 29 14:59:05 2025 by rpki-client