$ rpki-client -vvf rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft File: MOCAPeumAKyakmRMlveKjohdfFA.mft (raw, json) Hash identifier: Yoa8rx4hzjfaliMWKLlD5JGsrjRdMaDHNh19U8Q0bjk= Subject key identifier: AC:C0:F1:6C:91:93:3C:A4:E3:9B:27:09:D8:77:8E:1A:D7:CC:36:5E Authority key identifier: 30:E0:80:3D:EB:A6:00:AC:9A:92:64:4C:96:F7:8A:8E:88:5D:7C:50 Certificate issuer: /CN=A917CEE3/serialNumber=30E0803DEBA600AC9A92644C96F78A8E885D7C50 Certificate serial: 0531 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft Manifest number: 0517 Signing time: Sat 26 Apr 2025 23:19:10 +0000 Manifest this update: Sat 26 Apr 2025 23:19:10 +0000 Manifest next update: Sat 03 May 2025 23:19:09 +0000 Files and hashes: 1: MOCAPeumAKyakmRMlveKjohdfFA.crl (hash: F0O76uFf40C3EbFb3vLWXg6TUZKqh074ji4pyCG84VU=) 2: 7A532A308E1D11EE9CC5535CC4F9AE02.roa (hash: /+OweeXh479/cD9G0b5e+2Jv53y0ihaHpeHFAQKxiuY=) 3: 04A930F6629211EE90D5AD6CC4F9AE02.roa (hash: MzCxa5//voyTa1PWfOUraFYhl6MRI6DeuUFpM68sXZU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.crl rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1329 (0x531) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CEE3, serialNumber=30E0803DEBA600AC9A92644C96F78A8E885D7C50 Validity Not Before: Apr 26 23:19:10 2025 GMT Not After : May 3 23:19:09 2025 GMT Subject: CN=680d69ee-e3f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f5:f3:f8:2b:f1:4c:f2:0f:69:eb:62:93:29: cc:78:85:0b:b0:00:35:0e:7f:a5:8b:4f:42:61:2b: 49:ce:d4:11:22:d1:64:70:ba:fc:50:cc:62:42:56: 36:3e:bd:c4:fb:b0:17:f9:fc:05:1e:68:f7:55:a6: 97:f6:21:e7:d5:aa:8a:4f:e5:74:64:a3:5b:5e:e6: 36:24:66:1e:ea:b0:d1:38:ec:b9:60:02:52:49:48: cd:43:61:e1:15:76:bc:01:2f:6d:52:c1:9e:4a:d7: 70:d9:b9:a0:df:46:26:e6:1b:b2:29:ef:f8:c7:3d: d8:75:a5:63:59:d8:76:fa:db:dd:c9:56:b1:0a:d2: de:c7:79:59:b5:ac:31:1b:18:1b:45:ba:81:dc:1c: 9f:3c:84:e5:62:ce:90:c1:10:df:e0:75:39:9e:5a: 56:d3:f8:5b:28:8b:e8:b6:fb:86:44:4c:6c:7b:68: ea:cb:f9:b3:fb:b8:cf:91:be:2c:9b:64:50:b0:a4: 5f:8b:b0:22:12:8e:48:29:3b:cf:63:f3:ab:5c:83: ad:11:1b:77:91:0a:3e:8f:51:65:cb:00:64:01:8c: b8:8d:16:66:55:d1:43:3e:0c:a7:7b:fa:63:43:66: 47:5b:e7:cc:f9:40:a3:9f:dd:83:44:1c:bb:cb:ca: b3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:C0:F1:6C:91:93:3C:A4:E3:9B:27:09:D8:77:8E:1A:D7:CC:36:5E X509v3 Authority Key Identifier: keyid:30:E0:80:3D:EB:A6:00:AC:9A:92:64:4C:96:F7:8A:8E:88:5D:7C:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:81:c6:a1:e2:4a:79:ee:77:9a:d8:0d:cd:1e:e4:8e:0b:4f: d6:c2:f0:ca:84:8e:2a:35:6a:0e:ca:73:8f:dc:81:0f:40:64: 7b:c0:81:f5:08:59:10:18:75:e4:55:91:eb:00:63:c7:30:33: a9:ea:2d:23:fa:28:ee:48:7a:0a:69:7f:df:33:f4:3a:80:19: 78:d8:50:77:8f:29:85:f8:b4:76:a4:e5:2a:31:1e:9a:c9:19: 8c:01:f9:0e:85:96:cd:41:28:5a:bd:e6:8a:e5:d1:21:4b:8f: fc:a6:5f:e7:df:ab:a9:60:ef:81:a5:13:98:c8:d0:87:bd:f3: 01:8b:ba:f2:36:9a:e2:e4:16:55:a9:af:83:10:85:46:c7:06: 1f:87:6e:0a:3e:49:1d:09:02:1e:21:4c:ee:f8:5d:4b:d1:75: 4b:5d:73:a2:1b:ac:77:f8:f4:c6:d9:44:2f:0f:3d:f4:65:f4: 4e:2d:85:77:da:47:94:21:ca:97:a8:fb:d8:53:82:c2:06:a7: 5b:30:fe:a2:f8:a8:b6:c0:66:22:4c:aa:ce:22:1e:a5:f4:4e: cc:8c:eb:9a:d3:ff:ca:f0:4c:8b:ad:9e:72:da:b4:d3:c6:ca: 3d:3c:27:2c:41:3e:81:2c:6f:c8:f9:47:c3:ef:95:69:ee:ec: ae:3d:71:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFRTMxMTAvBgNVBAUTKDMwRTA4MDNERUJBNjAwQUM5QTkyNjQ0Qzk2Rjc4QThF ODg1RDdDNTAwHhcNMjUwNDI2MjMxOTEwWhcNMjUwNTAzMjMxOTA5WjAYMRYwFAYD VQQDEw02ODBkNjllZS1lM2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7/Xz+CvxTPIPaetikynMeIULsAA1Dn+li09CYStJztQRItFkcLr8UMxiQlY2 Pr3E+7AX+fwFHmj3VaaX9iHn1aqKT+V0ZKNbXuY2JGYe6rDROOy5YAJSSUjNQ2Hh FXa8AS9tUsGeStdw2bmg30Ym5huyKe/4xz3YdaVjWdh2+tvdyVaxCtLex3lZtawx GxgbRbqB3ByfPITlYs6QwRDf4HU5nlpW0/hbKIvotvuGRExse2jqy/mz+7jPkb4s m2RQsKRfi7AiEo5IKTvPY/OrXIOtERt3kQo+j1FlywBkAYy4jRZmVdFDPgyne/pj Q2ZHW+fM+UCjn92DRBy7y8qz/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzA8WyR kzyk45snCdh3jhrXzDZeMB8GA1UdIwQYMBaAFDDggD3rpgCsmpJkTJb3io6IXXxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0VFMy85QTc3QUEyQTA1 OTQxMUVDOUY2NDY4NTRDNEY5QUUwMi9NT0NBUGV1bUFLeWFrbVJNbHZlS2pvaGRm RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PQ0FQZXVtQUt5YWttUk1sdmVLam9oZGZGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0VFMy85QTc3QUEyQTA1OTQxMUVDOUY2NDY4NTRDNEY5QUUwMi9NT0NBUGV1bUFL eWFrbVJNbHZlS2pvaGRmRkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4gcah4kp57nea2A3NHuSOC0/WwvDKhI4qNWoOynOP3IEPQGR7wIH1 CFkQGHXkVZHrAGPHMDOp6i0j+ijuSHoKaX/fM/Q6gBl42FB3jymF+LR2pOUqMR6a yRmMAfkOhZbNQShaveaK5dEhS4/8pl/n36upYO+BpROYyNCHvfMBi7ryNpri5BZV qa+DEIVGxwYfh24KPkkdCQIeIUzu+F1L0XVLXXOiG6x3+PTG2UQvDz30ZfROLYV3 2keUIcqXqPvYU4LCBqdbMP6i+Ki2wGYiTKrOIh6l9E7MjOua0//K8EyLrZ5y2rTT xso9PCcsQT6BLG/I+UfD75Vp7uyuPXET -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:10 2025 by rpki-client on console.sobornost.net