$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: yGMZRBwNea+htLhhsJRbM2IR6J5D/gThCXSNvF+jBC0= Subject key identifier: 5C:6B:8C:CB:97:DF:37:ED:05:57:B4:1F:76:54:2A:EB:CF:00:07:D0 Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 05FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 05F6 Signing time: Fri 04 Apr 2025 23:03:00 +0000 Manifest this update: Fri 04 Apr 2025 23:03:00 +0000 Manifest next update: Fri 11 Apr 2025 23:03:00 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: fX7zwOkw9R/fxC2/j9AZf8Is7TQLRkzkla4HUlMATKQ=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: 29wrV3aOIMAFp0GF5fJZDO6ldPmXnBQp+J/+s7gWVoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:02:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1530 (0x5fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D Validity Not Before: Apr 4 23:03:00 2025 GMT Not After : Apr 11 23:03:00 2025 GMT Subject: CN=67f06524-10f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c3:ef:bc:1b:f0:6c:e3:e0:11:0f:d3:cd:7a: cb:bb:df:1e:62:7e:47:a5:11:c6:62:95:38:71:5b: d0:91:da:a2:8f:9e:05:95:3a:0d:16:6d:b1:3e:91: 8b:56:2d:cb:c8:e1:d1:45:16:3b:41:e5:62:d3:61: 5f:3e:5a:72:58:2c:0c:d4:5c:7d:8c:80:2a:d3:d6: c7:3c:7c:33:2f:86:51:d9:a3:d0:93:ae:57:a5:1e: 2f:89:e4:ad:5d:73:41:af:58:17:37:41:bc:90:99: e3:98:96:39:be:9e:9f:b7:bf:6c:4d:55:a6:81:05: af:e9:26:5e:fc:dd:ba:6e:ab:54:46:70:08:1e:09: f2:e2:38:00:7a:21:6c:5a:d7:82:4c:d5:0a:05:a7: bb:73:d0:66:7a:68:a0:73:69:67:37:33:61:ac:15: b5:6b:82:b2:a4:63:28:bd:0a:f3:e2:93:e1:24:35: 03:18:82:c8:77:fc:6e:9f:ed:0f:35:fb:e9:7f:1a: c6:03:bd:3e:21:98:83:79:64:fd:b2:47:a2:b9:2c: da:69:d7:5b:b6:0d:a3:85:2c:da:65:37:37:f0:53: 14:74:f0:a5:3a:ea:0a:e7:ff:7e:10:f3:c3:ae:98: 91:9b:74:9c:f3:7a:5f:9c:9f:cc:25:f0:87:de:70: df:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:6B:8C:CB:97:DF:37:ED:05:57:B4:1F:76:54:2A:EB:CF:00:07:D0 X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:71:b3:0d:fa:30:cc:ae:cf:60:07:eb:fb:8f:f2:c1:da:0e: 4a:21:04:8e:12:2d:bb:4e:da:6a:98:14:d3:01:48:2d:43:34: 2e:7b:b5:42:b2:cf:f9:54:8e:4b:3a:f3:4b:03:00:e6:ab:90: 6d:74:85:27:96:e8:3b:aa:62:56:c3:6d:0a:91:74:fb:51:0f: 4a:f4:08:e5:85:41:51:92:89:f0:db:aa:d6:a7:cf:bf:c1:ab: 29:20:51:de:41:95:a7:7b:91:20:3c:25:58:f7:96:95:19:7b: 95:82:d5:28:ed:f0:cf:75:ad:c0:e0:a0:67:75:92:4f:a5:cf: 23:43:73:95:83:97:c7:ae:28:d0:14:41:87:39:d3:3e:bd:b3: 02:f4:74:42:32:38:2c:02:5b:e9:b2:e0:3e:c8:3c:1d:67:19: ce:72:07:b2:fb:1c:58:c2:74:08:d6:44:0a:10:4f:ee:ab:92: 23:94:fc:c2:9b:6b:a3:2b:45:f8:36:17:72:40:69:23:0c:7a: cc:53:85:9c:1b:78:aa:d5:c4:7e:e9:40:5c:10:d5:f6:0a:9e: 53:80:df:e7:d3:d2:29:ed:6a:bc:55:4e:1a:ba:f5:f2:e9:16: df:ff:86:f9:a9:97:83:c8:94:81:ec:9e:10:cd:2a:48:1d:69: 2f:55:e3:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjUwNDA0MjMwMzAwWhcNMjUwNDExMjMwMzAwWjAYMRYwFAYD VQQDEw02N2YwNjUyNC0xMGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7MPvvBvwbOPgEQ/TzXrLu98eYn5HpRHGYpU4cVvQkdqij54FlToNFm2xPpGL Vi3LyOHRRRY7QeVi02FfPlpyWCwM1Fx9jIAq09bHPHwzL4ZR2aPQk65XpR4vieSt XXNBr1gXN0G8kJnjmJY5vp6ft79sTVWmgQWv6SZe/N26bqtURnAIHgny4jgAeiFs WteCTNUKBae7c9Bmemigc2lnNzNhrBW1a4KypGMovQrz4pPhJDUDGILId/xun+0P NfvpfxrGA70+IZiDeWT9skeiuSzaaddbtg2jhSzaZTc38FMUdPClOuoK5/9+EPPD rpiRm3Sc83pfnJ/MJfCH3nDfVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxrjMuX 3zftBVe0H3ZUKuvPAAfQMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAccbMN+jDMrs9gB+v7j/LB2g5KIQSOEi27TtpqmBTTAUgtQzQue7VC ss/5VI5LOvNLAwDmq5BtdIUnlug7qmJWw20KkXT7UQ9K9AjlhUFRkonw26rWp8+/ waspIFHeQZWne5EgPCVY95aVGXuVgtUo7fDPda3A4KBndZJPpc8jQ3OVg5fHrijQ FEGHOdM+vbMC9HRCMjgsAlvpsuA+yDwdZxnOcgey+xxYwnQI1kQKEE/uq5IjlPzC m2ujK0X4NhdyQGkjDHrMU4WcG3iq1cR+6UBcENX2Cp5TgN/n09Ip7Wq8VU4auvXy 6Rbf/4b5qZeDyJSB7J4QzSpIHWkvVePZ -----END CERTIFICATE-----Generated at Sat Apr 5 16:55:35 2025 by rpki-client