$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: UNTuluSfIbldCJFDQK2+cRpYJjxiGgZ5sN3qpm7WRPE= Subject key identifier: 4E:4C:D3:E0:4E:94:4F:CC:77:1F:DA:72:7D:44:3F:65:8F:EA:E2:60 Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 0618 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 0613 Signing time: Fri 30 May 2025 23:03:33 +0000 Manifest this update: Fri 30 May 2025 23:03:33 +0000 Manifest next update: Fri 06 Jun 2025 23:03:33 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: wLiQEeykZ5+tjNVIdmRRLtO/z0hUCXdUKnXzLKherhg=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: A81REE+McXIeM/wALpzv2Qsq9bY8357xYUyeneNAnBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:03:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1560 (0x618) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: May 30 23:03:33 2025 GMT Not After : Jun 6 23:03:33 2025 GMT Subject: CN=683a3945-7a24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cd:e7:c5:d4:6c:3f:5a:c7:3d:2f:3f:29:5f: 02:44:a6:9c:ab:b8:71:b7:4d:4a:95:6f:5c:06:42: 34:4b:9f:af:d7:79:42:f7:14:0a:e2:2d:0b:16:27: f7:92:51:55:5f:cf:45:e0:27:1d:70:62:5f:89:63: 69:fe:59:10:bb:e0:15:41:52:59:71:c6:71:37:c3: f0:c9:9a:13:b6:e2:20:ef:e9:fb:76:0b:d7:da:34: 76:87:5a:58:1e:2a:16:43:45:e9:a1:67:7d:90:c5: 0f:e5:0e:66:15:c8:8c:6c:da:92:b4:3a:5e:1b:01: b4:07:8b:a8:45:de:d1:00:f7:1d:b1:17:ab:5e:03: c7:e1:79:51:ec:12:9e:4e:dc:a1:ab:4e:3f:80:70: 50:e5:82:c4:49:84:94:b3:b9:06:08:08:b9:53:38: fa:c6:3f:6f:b4:95:13:14:a6:2b:e7:ab:68:96:5c: 8f:83:89:61:be:0e:5c:0d:d4:66:2e:2b:6b:94:e0: 60:c2:c0:b0:63:f2:79:f3:12:f5:d2:f2:af:36:64: 04:ef:c7:fd:ce:ae:27:b5:48:e6:62:c0:9c:76:7d: a9:59:75:76:6e:5a:4b:66:6e:4d:8d:ea:97:10:18: ea:e5:0c:8c:12:3c:5c:c4:61:bf:12:46:76:ed:e1: 07:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:4C:D3:E0:4E:94:4F:CC:77:1F:DA:72:7D:44:3F:65:8F:EA:E2:60 X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:a6:72:cf:9d:d7:7b:42:7e:b4:89:13:ae:4f:41:e6:a4:12: be:e7:db:4c:4b:e2:fc:52:6d:6e:26:6e:4f:68:b2:55:84:62: 04:71:01:d0:f2:d7:6d:5c:be:0e:7f:73:49:1d:05:e5:42:1f: 04:1a:20:e6:17:82:39:e6:a9:45:61:56:cc:8d:99:5e:7b:ee: 77:37:12:28:94:d6:96:ad:61:a6:ed:a3:21:b2:12:d6:f8:19: da:bf:e6:65:d1:f8:94:52:8c:6e:f8:51:36:96:4c:ec:1d:d7: 2d:64:88:e7:e6:ba:84:c2:e4:d8:97:d2:97:fe:c7:3f:55:2f: af:61:34:bb:33:58:08:a1:20:14:bb:9d:87:f7:90:3e:a5:65: 85:7d:fe:60:ee:11:72:d0:19:97:26:85:bd:04:9e:20:ed:28: a9:96:ac:ed:79:3c:16:50:de:cd:51:ad:e8:16:00:26:52:4c: d5:22:6c:98:e0:8a:d0:22:73:29:a9:c5:ea:9c:cd:24:4a:23: 48:90:e9:31:29:c4:87:7d:93:7d:e3:81:48:ee:32:14:94:6d: ed:c9:9f:13:00:bf:d7:f1:5c:73:34:96:49:33:d3:f3:58:b0: aa:c8:4f:10:eb:de:ef:60:6f:1a:17:cf:2f:64:0c:23:25:a5: 1c:a3:f9:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjUwNTMwMjMwMzMzWhcNMjUwNjA2MjMwMzMzWjAYMRYwFAYD VQQDEw02ODNhMzk0NS03YTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0M3nxdRsP1rHPS8/KV8CRKacq7hxt01KlW9cBkI0S5+v13lC9xQK4i0LFif3 klFVX89F4CcdcGJfiWNp/lkQu+AVQVJZccZxN8PwyZoTtuIg7+n7dgvX2jR2h1pY HioWQ0XpoWd9kMUP5Q5mFciMbNqStDpeGwG0B4uoRd7RAPcdsRerXgPH4XlR7BKe Ttyhq04/gHBQ5YLESYSUs7kGCAi5Uzj6xj9vtJUTFKYr56tollyPg4lhvg5cDdRm LitrlOBgwsCwY/J58xL10vKvNmQE78f9zq4ntUjmYsCcdn2pWXV2blpLZm5NjeqX EBjq5QyMEjxcxGG/EkZ27eEHTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5M0+BO lE/Mdx/acn1EP2WP6uJgMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6pnLPndd7Qn60iROuT0HmpBK+59tMS+L8Um1uJm5PaLJVhGIEcQHQ 8tdtXL4Of3NJHQXlQh8EGiDmF4I55qlFYVbMjZlee+53NxIolNaWrWGm7aMhshLW +Bnav+Zl0fiUUoxu+FE2lkzsHdctZIjn5rqEwuTYl9KX/sc/VS+vYTS7M1gIoSAU u52H95A+pWWFff5g7hFy0BmXJoW9BJ4g7SiplqzteTwWUN7NUa3oFgAmUkzVImyY 4IrQInMpqcXqnM0kSiNIkOkxKcSHfZN944FI7jIUlG3tyZ8TAL/X8VxzNJZJM9Pz WLCqyE8Q697vYG8aF88vZAwjJaUco/lA -----END CERTIFICATE-----Generated at Sat May 31 17:07:45 2025 by rpki-client