$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: 0/H97khZi774rdl5oeKxN/AZ8LiZILLU9hdTRGsN+2o= Subject key identifier: BE:65:22:3B:DF:92:AC:A8:90:AD:FA:27:75:F9:90:B3:78:33:00:59 Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 0632 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 062D Signing time: Sun 20 Jul 2025 22:56:26 +0000 Manifest this update: Sun 20 Jul 2025 22:56:26 +0000 Manifest next update: Sun 27 Jul 2025 22:56:26 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: W9iJKOeb5bsbWMXTSNXlo5Wyo1zJk+EGdHlT2No1txY=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: A81REE+McXIeM/wALpzv2Qsq9bY8357xYUyeneNAnBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:56:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1586 (0x632) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Jul 20 22:56:26 2025 GMT Not After : Jul 27 22:56:26 2025 GMT Subject: CN=687d741a-969b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cf:fd:47:02:68:db:f3:d9:83:4e:82:ea:53: ea:13:e0:3e:4c:81:92:32:a9:42:7f:db:a8:bd:d9: 76:73:bb:0a:93:dd:67:a1:77:67:15:23:67:b6:00: 24:d1:c8:bd:43:d6:5a:c9:d8:57:93:59:56:8c:12: 98:80:6e:17:a0:88:1f:65:c2:cd:b5:19:0c:ae:22: f4:b8:22:12:69:59:46:c6:a8:cf:e0:32:14:a8:aa: f2:58:fb:28:3b:bb:93:c0:3b:f1:e7:40:db:aa:87: 4f:59:b8:12:6e:89:b4:c3:3c:72:01:02:57:ff:c3: f2:8e:f4:11:c5:f4:2e:da:15:d2:ab:d5:ee:91:3f: 1f:f8:62:f5:5d:e0:9c:da:ac:04:a0:44:c9:f2:b1: 86:d0:9e:8f:b6:43:23:8a:76:7e:09:4f:65:c4:ec: 65:72:93:dc:d5:34:10:3f:a8:89:d8:82:54:d2:b8: bf:df:51:b9:d4:78:c5:fa:1f:ce:cb:ef:1e:dd:b9: 6b:5b:e1:1f:55:89:d5:c8:fe:d4:34:4a:4b:6d:92: 6d:df:b6:7b:7d:3c:8f:89:82:71:eb:3e:fa:1d:77: 0b:7a:43:c6:7c:c7:4a:34:b8:8c:23:62:62:f2:b3: 50:17:c5:d9:d3:1a:6f:10:ea:c4:e0:f2:c1:7a:7a: 3a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:65:22:3B:DF:92:AC:A8:90:AD:FA:27:75:F9:90:B3:78:33:00:59 X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:a4:8a:19:ad:10:f2:1b:53:4b:a8:50:d8:47:79:b6:09:94: 1f:1f:96:c9:68:c9:a8:6f:10:d7:b3:70:0a:d6:65:50:67:db: b3:95:7f:e2:9b:e5:c3:ba:62:91:a5:3e:c8:53:a6:c0:a7:3f: 8b:74:b1:1f:96:f3:d1:54:77:28:f8:92:81:ef:92:15:f6:d4: d7:ac:ae:20:1f:07:7b:36:4e:8f:a4:18:ea:06:b4:ff:e2:b1: 53:b4:c0:85:46:c7:45:19:b6:78:a6:82:ed:84:ff:af:fb:1e: 32:59:3b:f8:fe:29:7f:5e:c4:98:6f:a0:8c:ad:5a:d9:d6:7f: 55:5b:c0:76:eb:dd:88:9a:d8:23:69:4c:36:70:fc:70:32:09: 61:0f:35:e9:1e:61:41:ed:bd:05:25:97:9d:e0:30:ae:2c:ac: db:ee:e1:99:82:ae:7c:ed:00:22:33:cf:a8:94:f4:f2:7e:8b: 6d:21:e0:8f:35:99:87:6a:9b:df:0a:c2:a7:8e:0a:bd:bc:c3: a9:19:e9:05:2a:aa:86:72:24:89:90:7f:e3:2d:65:c7:2f:53: 58:a2:4a:c3:cb:90:f5:e5:a7:3a:97:ed:e4:9a:88:ec:ed:8f: db:31:c3:6f:30:ac:26:0b:32:01:01:85:74:dd:96:5b:2c:c8: 05:33:54:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjUwNzIwMjI1NjI2WhcNMjUwNzI3MjI1NjI2WjAYMRYwFAYD VQQDEw02ODdkNzQxYS05NjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18/9RwJo2/PZg06C6lPqE+A+TIGSMqlCf9uovdl2c7sKk91noXdnFSNntgAk 0ci9Q9ZaydhXk1lWjBKYgG4XoIgfZcLNtRkMriL0uCISaVlGxqjP4DIUqKryWPso O7uTwDvx50DbqodPWbgSbom0wzxyAQJX/8PyjvQRxfQu2hXSq9XukT8f+GL1XeCc 2qwEoETJ8rGG0J6PtkMjinZ+CU9lxOxlcpPc1TQQP6iJ2IJU0ri/31G51HjF+h/O y+8e3blrW+EfVYnVyP7UNEpLbZJt37Z7fTyPiYJx6z76HXcLekPGfMdKNLiMI2Ji 8rNQF8XZ0xpvEOrE4PLBeno6/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5lIjvf kqyokK36J3X5kLN4MwBZMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBppIoZrRDyG1NLqFDYR3m2CZQfH5bJaMmobxDXs3AK1mVQZ9uzlX/i m+XDumKRpT7IU6bApz+LdLEflvPRVHco+JKB75IV9tTXrK4gHwd7Nk6PpBjqBrT/ 4rFTtMCFRsdFGbZ4poLthP+v+x4yWTv4/il/XsSYb6CMrVrZ1n9VW8B2692Imtgj aUw2cPxwMglhDzXpHmFB7b0FJZed4DCuLKzb7uGZgq587QAiM8+olPTyfottIeCP NZmHapvfCsKnjgq9vMOpGekFKqqGciSJkH/jLWXHL1NYokrDy5D15ac6l+3kmojs 7Y/bMcNvMKwmCzIBAYV03ZZbLMgFM1Sr -----END CERTIFICATE-----Generated at Mon Jul 21 06:59:34 2025 by rpki-client