$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft File: mom7N8VDhtqah6ZP8AlEKKMXGkc.mft (raw, json) Hash identifier: AOaFab5oqRcBFOzy96DVWyeMMG8lGwK7kHq+Tfkj/nA= Subject key identifier: 68:A9:6D:DA:E0:E2:70:84:B7:2D:FF:C3:7B:54:6C:3B:27:A8:94:06 Authority key identifier: 9A:89:BB:37:C5:43:86:DA:9A:87:A6:4F:F0:09:44:28:A3:17:1A:47 Certificate issuer: /CN=A91EF73D/serialNumber=9A89BB37C54386DA9A87A64FF0094428A3171A47 Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft Manifest number: 012D Signing time: Sat 23 Aug 2025 04:56:46 +0000 Manifest this update: Sat 23 Aug 2025 04:56:46 +0000 Manifest next update: Sat 30 Aug 2025 04:56:46 +0000 Files and hashes: 1: mom7N8VDhtqah6ZP8AlEKKMXGkc.crl (hash: E+O8YTg7zhBlxfLm3OI8IeyBVswjwx2aS2imW1kRWVs=) 2: 00E1AC30FBAA11EE9C7F3921C4F9AE02.roa (hash: 29v8ayhOME61rr4geagSM3a8sHvyVhtwUdXNMoV9ZDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.crl rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:56:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF73D, serialNumber=9A89BB37C54386DA9A87A64FF0094428A3171A47 Validity Not Before: Aug 23 04:56:46 2025 GMT Not After : Aug 30 04:56:46 2025 GMT Subject: CN=68a94a0e-3768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ab:d2:eb:c1:f4:b4:94:bf:b7:e7:f2:29:0b: b1:06:12:b4:75:51:38:44:41:c5:0c:14:67:3b:1f: ff:96:d3:4d:35:e0:0c:db:2e:90:45:b7:a8:1e:36: 53:a9:a5:00:e3:6e:3c:83:1c:de:7d:ec:f1:ba:09: af:ff:88:db:8c:92:64:80:8b:00:f5:a5:19:d6:15: 3d:50:ef:11:95:af:63:25:7d:9f:74:a3:f2:6a:e1: 39:ea:c0:0e:a4:21:0f:5f:bd:bb:39:ea:5c:52:3c: eb:4b:54:41:93:41:fa:e2:8f:c4:c4:27:85:8d:cd: 14:38:b5:81:2d:fa:e8:29:20:39:57:d1:ff:9d:7a: 66:5d:33:bb:c0:92:10:32:b4:9e:5d:06:91:4c:33: 85:04:de:66:81:9c:d7:b6:e4:7e:97:89:b4:20:c5: a5:35:ab:1e:3c:22:dc:e0:e2:ec:58:dc:88:50:d7: 10:9c:1b:17:43:8a:89:d1:eb:1b:fc:49:4f:9a:87: e7:ee:6e:9b:5e:09:31:e5:df:39:fc:78:ef:06:72: 10:64:08:cd:74:89:31:51:10:f6:22:ae:c8:56:7d: 23:97:9c:ae:d5:55:c6:6b:f6:52:14:b7:f7:51:22: 1d:36:ea:bc:76:5c:f9:e5:01:07:64:62:d6:70:6d: db:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:A9:6D:DA:E0:E2:70:84:B7:2D:FF:C3:7B:54:6C:3B:27:A8:94:06 X509v3 Authority Key Identifier: keyid:9A:89:BB:37:C5:43:86:DA:9A:87:A6:4F:F0:09:44:28:A3:17:1A:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:44:7a:af:02:8d:da:0e:0f:85:82:cd:f5:01:53:a1:17:f7: eb:e3:78:10:96:91:f4:b1:a3:61:54:cb:7e:46:e1:37:6b:58: 74:f9:34:53:80:85:73:bf:b7:96:d3:8a:63:64:01:0a:5a:19: 08:06:6b:0a:8a:10:f5:52:8a:d7:21:62:30:ae:ba:6e:0a:d2: 5a:59:fe:01:62:25:6d:aa:95:63:4f:10:ba:b2:77:09:7d:00: f6:e9:99:63:3e:cc:29:be:15:d4:53:4b:b3:ff:24:ef:2c:40: 9a:6b:d1:14:52:ee:43:98:18:64:bc:d9:97:a9:43:61:e0:d7: 8c:8f:f2:f9:65:c7:ee:31:4a:bd:9d:16:e3:5a:39:b6:9c:57: ed:6b:6f:de:c3:6e:26:26:16:3a:23:62:51:db:2f:0c:01:0a: 56:51:81:0f:f2:65:33:03:44:c6:97:5b:f9:50:98:fe:16:e3: ec:1f:b3:d2:96:3f:dc:98:19:9f:76:21:ee:7d:46:eb:68:2f: 3b:84:df:01:fe:ed:55:3d:f0:94:a1:1d:ca:34:20:93:4b:b8: 7a:3d:07:ff:50:90:50:7c:6d:a8:c1:8f:d5:b4:4b:c7:42:bd: 79:cb:63:b0:cb:2b:7f:bb:88:1f:65:2b:9f:a8:0d:77:fa:c1: 1c:d7:32:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY3M0QxMTAvBgNVBAUTKDlBODlCQjM3QzU0Mzg2REE5QTg3QTY0RkYwMDk0NDI4 QTMxNzFBNDcwHhcNMjUwODIzMDQ1NjQ2WhcNMjUwODMwMDQ1NjQ2WjAYMRYwFAYD VQQDEw02OGE5NGEwZS0zNzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKvS68H0tJS/t+fyKQuxBhK0dVE4REHFDBRnOx//ltNNNeAM2y6QRbeoHjZT qaUA4248gxzefezxugmv/4jbjJJkgIsA9aUZ1hU9UO8Rla9jJX2fdKPyauE56sAO pCEPX727OepcUjzrS1RBk0H64o/ExCeFjc0UOLWBLfroKSA5V9H/nXpmXTO7wJIQ MrSeXQaRTDOFBN5mgZzXtuR+l4m0IMWlNasePCLc4OLsWNyIUNcQnBsXQ4qJ0esb /ElPmofn7m6bXgkx5d85/HjvBnIQZAjNdIkxURD2Iq7IVn0jl5yu1VXGa/ZSFLf3 USIdNuq8dlz55QEHZGLWcG3bTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGipbdrg 4nCEty3/w3tUbDsnqJQGMB8GA1UdIwQYMBaAFJqJuzfFQ4bamoemT/AJRCijFxpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjczRC9DOTJCMzIzMkNF MUYxMUVFQUM2MjYxN0NDNEY5QUUwMi9tb203TjhWRGh0cWFoNlpQOEFsRUtLTVhH a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21vbTdOOFZEaHRxYWg2WlA4QWxFS0tNWEdrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjczRC9DOTJCMzIzMkNFMUYxMUVFQUM2MjYxN0NDNEY5QUUwMi9tb203TjhWRGh0 cWFoNlpQOEFsRUtLTVhHa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgRHqvAo3aDg+Fgs31AVOhF/fr43gQlpH0saNhVMt+RuE3a1h0+TRT gIVzv7eW04pjZAEKWhkIBmsKihD1UorXIWIwrrpuCtJaWf4BYiVtqpVjTxC6sncJ fQD26ZljPswpvhXUU0uz/yTvLECaa9EUUu5DmBhkvNmXqUNh4NeMj/L5ZcfuMUq9 nRbjWjm2nFfta2/ew24mJhY6I2JR2y8MAQpWUYEP8mUzA0TGl1v5UJj+FuPsH7PS lj/cmBmfdiHufUbraC87hN8B/u1VPfCUoR3KNCCTS7h6PQf/UJBQfG2owY/VtEvH Qr15y2Owyyt/u4gfZSufqA13+sEc1zJt -----END CERTIFICATE-----Generated at Sat Aug 23 21:44:13 2025 by rpki-client