$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: 55D4BDhM2FENTuP4Fc5jWOnDZLrfh8wYZdaAjCXq/oU= Subject key identifier: 3F:0B:BF:32:EA:90:00:2F:8A:C2:B5:61:3A:7B:B5:D9:61:7F:C1:EE Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 0628 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 0623 Signing time: Mon 30 Jun 2025 23:09:25 +0000 Manifest this update: Mon 30 Jun 2025 23:09:24 +0000 Manifest next update: Mon 07 Jul 2025 23:09:24 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: WZrc9kU+jjmxxG+F/7yKLYUjOkmiqZv0jHPxpaXH+TA=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: A81REE+McXIeM/wALpzv2Qsq9bY8357xYUyeneNAnBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1576 (0x628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Jun 30 23:09:24 2025 GMT Not After : Jul 7 23:09:24 2025 GMT Subject: CN=68631925-506c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e7:26:0a:78:f7:c0:1a:fd:7d:e7:72:35:aa: f8:bb:22:59:ac:d5:1f:fa:60:f4:af:d2:8e:25:56: 5c:5a:4a:0f:66:58:d2:ad:ed:40:04:87:41:1e:32: d2:18:88:dc:e0:b1:8a:f5:10:4f:07:6a:28:e5:c1: 9e:fb:b2:f5:7b:b8:a4:77:2d:3c:7f:95:e9:d5:35: 85:7c:8d:fb:54:30:6e:7b:32:ec:15:19:93:01:b1: 15:a6:88:a8:2f:13:e1:c9:23:0b:a1:f1:6a:cf:97: 44:6e:4f:7a:65:08:db:60:12:cd:ff:59:58:2e:1c: cd:52:ce:a1:1c:10:c7:09:ae:ff:4a:42:1f:78:6b: 2f:2c:dc:ca:ed:06:c6:13:87:52:37:bd:14:8b:61: d7:f7:8d:56:77:43:9d:c6:43:79:7d:19:79:da:59: 8e:12:1d:d0:07:7e:6c:ba:fb:b5:66:9a:e4:d0:e5: ee:47:ce:8d:53:39:99:64:cb:ff:ac:77:fa:82:10: e5:7a:2c:37:76:24:3a:d7:3c:a0:83:9a:f9:5b:1d: e9:fd:9e:78:54:07:ed:b9:75:88:00:3f:ae:44:4b: 99:f1:99:5e:a7:d9:53:9e:48:cc:d9:32:2f:f6:96: 7d:c4:c1:ad:b9:f1:9d:b5:c3:fb:ca:8f:b6:81:5c: fa:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:0B:BF:32:EA:90:00:2F:8A:C2:B5:61:3A:7B:B5:D9:61:7F:C1:EE X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:6b:b8:3a:75:6e:50:c3:ff:b7:74:a1:e2:05:9f:73:a7:78: 8b:a9:f0:7d:a2:bf:0d:aa:87:32:93:a5:3d:66:ee:8c:09:54: d3:be:9d:c5:ce:be:f7:b5:03:2e:48:71:2a:c9:2a:44:f2:d9: 11:38:46:30:03:e5:f6:3b:0b:ba:fa:b9:fb:17:6e:c6:74:ee: 11:e4:24:0b:93:23:df:bf:4b:25:ba:3a:d6:a4:d3:a6:17:a3: 1f:de:32:16:f8:37:68:8d:95:6f:b7:9c:03:c3:e0:b9:41:be: 27:86:e1:04:4e:34:f4:f7:3f:7a:fe:d7:8a:a1:f3:51:0d:f8: ea:e7:a9:86:3e:ff:c5:26:64:77:d3:6d:03:37:0a:fd:37:f3: 5c:2b:01:45:1e:16:aa:84:f8:a7:2d:e4:0b:f4:39:3e:cb:08: 2d:f9:9f:34:54:df:8e:c3:41:be:37:27:bb:4b:01:6a:d1:50: 5c:4c:21:3f:67:d0:59:72:26:5b:09:67:e4:80:79:c8:44:9f: 9d:a2:0d:51:39:3a:ec:68:b9:57:16:dd:b9:92:57:c8:5d:5f: f1:e5:25:89:1f:47:18:c9:79:ab:80:90:1a:41:0d:39:63:97: 2d:bf:87:e1:a7:7d:62:f9:ef:65:95:21:c8:a1:be:a1:52:de: c0:87:0d:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjUwNjMwMjMwOTI0WhcNMjUwNzA3MjMwOTI0WjAYMRYwFAYD VQQDEw02ODYzMTkyNS01MDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+cmCnj3wBr9fedyNar4uyJZrNUf+mD0r9KOJVZcWkoPZljSre1ABIdBHjLS GIjc4LGK9RBPB2oo5cGe+7L1e7ikdy08f5Xp1TWFfI37VDBuezLsFRmTAbEVpoio LxPhySMLofFqz5dEbk96ZQjbYBLN/1lYLhzNUs6hHBDHCa7/SkIfeGsvLNzK7QbG E4dSN70Ui2HX941Wd0OdxkN5fRl52lmOEh3QB35suvu1Zprk0OXuR86NUzmZZMv/ rHf6ghDleiw3diQ61zygg5r5Wx3p/Z54VAftuXWIAD+uREuZ8Zlep9lTnkjM2TIv 9pZ9xMGtufGdtcP7yo+2gVz6RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8LvzLq kAAvisK1YTp7tdlhf8HuMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3a7g6dW5Qw/+3dKHiBZ9zp3iLqfB9or8Nqocyk6U9Zu6MCVTTvp3F zr73tQMuSHEqySpE8tkROEYwA+X2Owu6+rn7F27GdO4R5CQLkyPfv0slujrWpNOm F6Mf3jIW+DdojZVvt5wDw+C5Qb4nhuEETjT09z96/teKofNRDfjq56mGPv/FJmR3 020DNwr9N/NcKwFFHhaqhPinLeQL9Dk+ywgt+Z80VN+Ow0G+Nye7SwFq0VBcTCE/ Z9BZciZbCWfkgHnIRJ+dog1ROTrsaLlXFt25klfIXV/x5SWJH0cYyXmrgJAaQQ05 Y5ctv4fhp31i+e9llSHIob6hUt7Ahw0H -----END CERTIFICATE-----Generated at Wed Jul 2 22:36:57 2025 by rpki-client