$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: sg51jTvfSjme63c3lWNiv6p/kJzXQzd2wuDxgszrlgA= Subject key identifier: 39:B5:F7:FC:30:F0:2A:9A:28:B1:83:2F:3F:85:F8:3F:10:A1:A7:1A Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 064C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 0647 Signing time: Mon 08 Sep 2025 22:44:48 +0000 Manifest this update: Mon 08 Sep 2025 22:44:48 +0000 Manifest next update: Mon 15 Sep 2025 22:44:48 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: bx0e/W9gMcA3pSojMezLLG8ltH5j3cXBS7+e2WwCzfg=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: A81REE+McXIeM/wALpzv2Qsq9bY8357xYUyeneNAnBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 22:44:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1612 (0x64c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Sep 8 22:44:48 2025 GMT Not After : Sep 15 22:44:48 2025 GMT Subject: CN=68bf5c60-c255 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cc:e6:da:7a:ce:5f:f8:01:4c:da:ec:26:2d: 44:21:c2:c9:74:e5:f8:fd:bf:be:df:21:65:3e:50: 70:56:7e:52:5a:94:6a:76:97:3b:8a:f5:00:30:b8: 1d:f8:7b:4a:a1:09:32:0f:0e:3c:f6:60:d1:04:5a: 9f:f3:e6:d4:ba:d7:6d:39:46:59:a4:22:c4:e4:e5: 32:82:58:17:10:eb:dd:b4:2f:46:24:be:86:fe:3c: 70:5a:33:69:c0:90:67:df:64:62:6f:a0:71:c6:bc: d5:5f:21:8b:56:ca:c1:93:2f:58:a2:90:65:1b:cb: 4f:d5:66:f5:ef:50:c1:2d:f7:c4:14:0e:df:62:25: d3:d5:b3:b8:67:6a:16:13:3c:7a:7f:36:98:1f:ec: 06:8e:e6:18:fb:49:1a:f4:11:99:6c:ff:ec:a2:77: 2d:21:30:f7:d9:d0:c0:4b:b2:e4:f2:87:c6:cf:79: cd:f0:b7:ca:a4:61:2a:a9:35:27:06:9d:1c:9e:7e: 17:a5:90:29:0d:16:31:33:69:c7:ef:23:b0:e1:c2: 0e:3a:a3:38:87:b8:c2:99:ca:80:81:39:c7:f3:d8: 3b:b2:c7:85:6f:f1:a8:da:7b:a5:2c:72:05:d3:3c: f5:53:93:89:0d:df:ea:75:e1:b8:62:bd:c8:aa:1f: 81:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B5:F7:FC:30:F0:2A:9A:28:B1:83:2F:3F:85:F8:3F:10:A1:A7:1A X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:39:fb:54:b0:5a:6f:eb:d2:6d:89:86:58:6f:98:c4:4a:dc: 97:dc:89:9a:bb:d4:a5:22:66:d2:06:b5:48:5e:ec:75:80:1d: f8:8f:6e:58:65:93:3d:da:de:12:8b:ad:ad:69:c4:18:d6:9e: be:09:2a:93:2f:c2:6a:b0:69:d9:72:1a:f7:72:d6:39:61:80: d0:94:47:3b:ec:ff:4c:8d:5a:f8:34:77:07:79:d7:22:6f:2e: a4:58:cd:50:7c:5c:f4:74:2b:ac:ff:15:27:41:da:7a:31:33: 0d:3c:46:2b:96:c5:4c:ed:35:b9:15:aa:86:ef:18:54:50:59: 5c:be:8c:32:70:68:5e:66:85:ec:99:93:0f:47:6a:30:45:3e: 5a:f0:8b:eb:d1:62:03:46:6f:be:a9:54:0a:bb:90:98:8e:e8: 90:61:fa:d7:67:07:da:bf:0a:5a:84:84:2b:42:1b:0e:e2:49: 7c:4a:be:67:8d:8b:7b:a6:02:72:fb:c6:91:ef:2a:3e:31:66: 33:b1:2a:5f:13:6f:7f:ec:f9:9a:64:dd:2e:1d:f9:45:d0:28: 3f:cd:a3:60:c8:b3:79:91:52:14:00:f8:b9:ee:11:a3:c9:1a: f9:48:54:03:18:d7:46:c6:f3:fa:61:46:99:f0:e5:b0:9b:3b: 8e:7a:9c:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjUwOTA4MjI0NDQ4WhcNMjUwOTE1MjI0NDQ4WjAYMRYwFAYD VQQDEw02OGJmNWM2MC1jMjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsszm2nrOX/gBTNrsJi1EIcLJdOX4/b++3yFlPlBwVn5SWpRqdpc7ivUAMLgd +HtKoQkyDw489mDRBFqf8+bUutdtOUZZpCLE5OUyglgXEOvdtC9GJL6G/jxwWjNp wJBn32Rib6BxxrzVXyGLVsrBky9YopBlG8tP1Wb171DBLffEFA7fYiXT1bO4Z2oW Ezx6fzaYH+wGjuYY+0ka9BGZbP/sonctITD32dDAS7Lk8ofGz3nN8LfKpGEqqTUn Bp0cnn4XpZApDRYxM2nH7yOw4cIOOqM4h7jCmcqAgTnH89g7sseFb/Go2nulLHIF 0zz1U5OJDd/qdeG4Yr3Iqh+BaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDm19/ww 8CqaKLGDLz+F+D8QoacaMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcOftUsFpv69JtiYZYb5jEStyX3Imau9SlImbSBrVIXux1gB34j25Y ZZM92t4Si62tacQY1p6+CSqTL8JqsGnZchr3ctY5YYDQlEc77P9MjVr4NHcHedci by6kWM1QfFz0dCus/xUnQdp6MTMNPEYrlsVM7TW5FaqG7xhUUFlcvowycGheZoXs mZMPR2owRT5a8Ivr0WIDRm++qVQKu5CYjuiQYfrXZwfavwpahIQrQhsO4kl8Sr5n jYt7pgJy+8aR7yo+MWYzsSpfE29/7PmaZN0uHflF0Cg/zaNgyLN5kVIUAPi57hGj yRr5SFQDGNdGxvP6YUaZ8OWwmzuOepyT -----END CERTIFICATE-----Generated at Tue Sep 9 13:20:53 2025 by rpki-client