$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft File: mom7N8VDhtqah6ZP8AlEKKMXGkc.mft (raw, json) Hash identifier: B7MabcAUPgQYwlOpE1ZjoCTu0gHOkO6Z9oldiAx68ug= Subject key identifier: 17:99:A4:D4:6B:1E:99:61:CA:5B:35:74:6B:0D:09:E8:FB:51:E7:C5 Authority key identifier: 9A:89:BB:37:C5:43:86:DA:9A:87:A6:4F:F0:09:44:28:A3:17:1A:47 Certificate issuer: /CN=A91EF73D/serialNumber=9A89BB37C54386DA9A87A64FF0094428A3171A47 Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft Manifest number: F6 Signing time: Mon 05 May 2025 04:18:33 +0000 Manifest this update: Mon 05 May 2025 04:18:33 +0000 Manifest next update: Mon 12 May 2025 04:18:33 +0000 Files and hashes: 1: mom7N8VDhtqah6ZP8AlEKKMXGkc.crl (hash: m8nKzImFQP+6/qucBvVqflVt+YJA/wXPx81imsx8haE=) 2: 00E1AC30FBAA11EE9C7F3921C4F9AE02.roa (hash: 29v8ayhOME61rr4geagSM3a8sHvyVhtwUdXNMoV9ZDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.crl rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 04:18:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF73D, serialNumber=9A89BB37C54386DA9A87A64FF0094428A3171A47 Validity Not Before: May 5 04:18:33 2025 GMT Not After : May 12 04:18:33 2025 GMT Subject: CN=68183c19-8df7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6b:fa:a3:95:0e:37:fc:d1:2c:b6:61:d4:6c: 06:52:24:50:8d:38:09:db:6a:d4:a0:32:ed:18:c9: 61:f3:ae:15:b7:70:2d:94:a7:c0:59:f3:57:f5:aa: ac:35:ca:e5:fc:d0:5f:c8:f0:de:fa:f2:02:0d:15: d3:47:7f:b8:e6:7f:f7:d4:18:bb:1a:b7:41:25:e8: f6:48:ca:c4:ea:b1:a4:b8:2d:d7:ea:e2:1c:4f:77: d8:7e:75:69:50:a3:5f:4e:06:16:d3:7e:d4:2e:c3: 68:b1:37:21:33:8b:07:b5:cd:dc:15:bc:9c:34:40: 7b:7a:b1:43:74:67:c1:6f:29:f2:24:eb:ce:e1:dd: b4:40:f0:8a:f8:98:5b:b7:3f:04:ec:12:a9:e1:fa: 2f:05:d3:d9:e8:fb:be:a2:9e:00:a1:70:8e:0e:3c: 88:81:74:71:bc:6c:18:31:4d:fd:b5:d2:21:8a:0c: 6b:9f:4a:0e:ff:2a:a2:b5:4a:2c:c6:8f:5e:55:95: df:a5:34:52:52:10:c6:eb:02:16:c0:42:8b:42:14: 2c:5a:23:04:a0:10:c8:b0:89:db:10:70:ae:42:62: 00:f5:09:72:d4:82:fe:64:a1:cc:8d:81:00:43:1e: 4d:b4:8d:50:67:42:63:25:16:df:df:4b:1c:ee:ae: 4a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:99:A4:D4:6B:1E:99:61:CA:5B:35:74:6B:0D:09:E8:FB:51:E7:C5 X509v3 Authority Key Identifier: keyid:9A:89:BB:37:C5:43:86:DA:9A:87:A6:4F:F0:09:44:28:A3:17:1A:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:ef:5c:58:a7:d5:d7:44:d2:0e:68:88:6d:94:1b:01:59:98: f4:5e:21:dd:50:f3:ad:2a:21:82:6a:0d:72:eb:3d:01:33:a5: 2f:31:8d:6b:7c:ff:82:ca:de:2a:63:75:0a:dd:e5:00:30:26: 23:d3:6f:21:d3:9e:4c:5f:3e:e4:b0:30:97:e4:70:c5:f3:8e: 7c:8f:dd:a8:24:7c:fd:d9:d9:e5:97:92:75:67:22:fc:40:6e: e0:d4:42:a5:a9:78:68:a9:0f:e3:b9:ec:bd:cb:4c:ff:6e:61: 34:2e:ab:2e:ab:d4:66:cb:1a:dd:7a:04:38:7f:3e:70:8d:a1: 97:41:f8:b7:b8:af:8f:b2:03:a9:1e:26:2d:11:21:d9:15:ca: e3:31:49:a5:07:95:06:09:b8:56:74:3c:45:bc:e2:ad:6e:35: 97:a0:4a:68:e2:32:6d:06:78:27:3e:76:2b:be:d2:7f:98:3d: 68:5e:c1:ff:8d:7c:44:dd:4b:be:8f:27:f7:7c:89:fa:ca:18: a8:33:86:7a:1c:ec:32:e7:a7:f0:c3:94:62:ab:7c:03:5c:cf: 06:75:5e:b3:1b:cc:4b:0c:e4:a3:0f:31:34:27:5e:6f:f9:06: e8:fc:c8:1a:0c:e2:1e:ac:1d:c2:6b:c6:9e:73:b5:a5:20:9e: 95:67:e8:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY3M0QxMTAvBgNVBAUTKDlBODlCQjM3QzU0Mzg2REE5QTg3QTY0RkYwMDk0NDI4 QTMxNzFBNDcwHhcNMjUwNTA1MDQxODMzWhcNMjUwNTEyMDQxODMzWjAYMRYwFAYD VQQDEw02ODE4M2MxOS04ZGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Wv6o5UON/zRLLZh1GwGUiRQjTgJ22rUoDLtGMlh864Vt3AtlKfAWfNX9aqs Ncrl/NBfyPDe+vICDRXTR3+45n/31Bi7GrdBJej2SMrE6rGkuC3X6uIcT3fYfnVp UKNfTgYW037ULsNosTchM4sHtc3cFbycNEB7erFDdGfBbynyJOvO4d20QPCK+Jhb tz8E7BKp4fovBdPZ6Pu+op4AoXCODjyIgXRxvGwYMU39tdIhigxrn0oO/yqitUos xo9eVZXfpTRSUhDG6wIWwEKLQhQsWiMEoBDIsInbEHCuQmIA9Qly1IL+ZKHMjYEA Qx5NtI1QZ0JjJRbf30sc7q5KJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBeZpNRr Hplhyls1dGsNCej7UefFMB8GA1UdIwQYMBaAFJqJuzfFQ4bamoemT/AJRCijFxpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjczRC9DOTJCMzIzMkNF MUYxMUVFQUM2MjYxN0NDNEY5QUUwMi9tb203TjhWRGh0cWFoNlpQOEFsRUtLTVhH a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21vbTdOOFZEaHRxYWg2WlA4QWxFS0tNWEdrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjczRC9DOTJCMzIzMkNFMUYxMUVFQUM2MjYxN0NDNEY5QUUwMi9tb203TjhWRGh0 cWFoNlpQOEFsRUtLTVhHa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD71xYp9XXRNIOaIhtlBsBWZj0XiHdUPOtKiGCag1y6z0BM6UvMY1r fP+Cyt4qY3UK3eUAMCYj028h055MXz7ksDCX5HDF8458j92oJHz92dnll5J1ZyL8 QG7g1EKlqXhoqQ/juey9y0z/bmE0Lqsuq9RmyxrdegQ4fz5wjaGXQfi3uK+PsgOp HiYtESHZFcrjMUmlB5UGCbhWdDxFvOKtbjWXoEpo4jJtBngnPnYrvtJ/mD1oXsH/ jXxE3Uu+jyf3fIn6yhioM4Z6HOwy56fww5Riq3wDXM8GdV6zG8xLDOSjDzE0J15v +Qbo/MgaDOIerB3Ca8aec7WlIJ6VZ+jN -----END CERTIFICATE-----Generated at Tue May 6 04:21:04 2025 by rpki-client