$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: j3c5PRWPhlhcT30sh0XJPQgF3FgeFferYPWHsl+IE4E= Subject key identifier: DE:AA:B0:F7:9D:D2:7D:E1:BB:DF:5C:11:59:68:86:56:3E:83:F0:54 Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 0660 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 065B Signing time: Sun 19 Oct 2025 00:11:58 +0000 Manifest this update: Sun 19 Oct 2025 00:11:57 +0000 Manifest next update: Sun 26 Oct 2025 00:11:57 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: wouuGrYC5q1rNxq4lQfyjJ5Ad9cZStprQL6pZkPgLWc=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: A81REE+McXIeM/wALpzv2Qsq9bY8357xYUyeneNAnBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1632 (0x660) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Oct 19 00:11:57 2025 GMT Not After : Oct 26 00:11:57 2025 GMT Subject: CN=68f42ccd-7049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9b:82:25:f8:96:c5:24:d9:d3:23:13:eb:fc: 4f:ed:82:02:5a:89:66:92:d9:35:9e:3d:7d:24:02: 96:02:06:26:cf:23:9f:67:96:f5:62:af:6f:2d:61: 6b:87:fa:ba:a1:39:74:47:65:9f:92:0c:5e:e1:e0: f7:b6:9b:05:3e:04:93:15:9a:cd:e7:d4:ad:76:00: cc:03:c3:dc:a2:41:57:28:2d:a6:72:b6:cd:56:21: d0:8b:e6:0e:9d:6b:45:3b:2d:9d:22:21:81:f4:d7: e1:98:4d:de:77:13:c3:34:45:f8:14:f4:2f:1e:28: f2:db:c4:27:57:d5:5d:86:ad:8c:55:63:55:a0:c9: 5f:93:90:79:aa:0c:be:7a:b1:b1:40:cb:f2:e0:d0: 2f:be:b1:ab:07:bb:76:b7:69:d1:28:de:ab:1b:c0: 49:79:e2:64:7d:2b:2c:6f:d5:db:e3:45:1c:01:3f: 3d:4b:0e:3a:f6:7a:af:42:40:2a:0f:a1:1d:3f:02: db:41:61:17:7c:1a:e9:c9:38:d5:ef:93:dd:19:29: ec:27:f1:f6:0d:57:50:bf:a9:cf:ad:e4:27:89:77: 63:d5:13:9e:39:38:ee:16:8b:fb:fa:3f:6f:05:d8: f3:de:ee:e1:e4:dd:0b:bf:60:16:98:ea:b0:0a:7d: ac:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:AA:B0:F7:9D:D2:7D:E1:BB:DF:5C:11:59:68:86:56:3E:83:F0:54 X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:89:40:c7:3b:2a:3a:34:9e:f7:8a:57:32:25:7f:74:3d:87: 35:d7:dc:a4:e4:e0:ed:a4:e2:3b:94:de:54:1b:01:a4:be:33: 6f:58:7d:e7:84:66:a7:48:f6:a2:2c:60:81:21:7b:d0:01:90: 1b:19:a2:51:ee:d0:97:ba:27:a2:e4:d6:e9:8d:07:af:93:8f: de:34:ea:52:4c:51:e4:77:c7:b8:8d:47:eb:49:73:b7:58:d5: c4:d1:75:15:6d:b6:1e:68:ff:0e:7f:ed:c5:98:17:1c:7a:81: 69:3d:b8:d0:6d:13:16:b8:29:55:29:f2:61:a5:86:b1:c1:ae: 0f:61:0b:bf:17:bf:e5:af:a2:64:46:87:ae:a2:e3:b4:75:4a: c7:e5:75:75:59:17:74:a0:b5:c4:28:e2:dc:33:12:28:fe:58: c7:0c:3d:d0:2d:48:a1:14:03:49:a9:d5:1a:8f:14:d1:53:3a: a8:2b:80:c2:17:0a:70:b2:5c:be:10:8a:62:05:8a:c9:89:7d: e5:92:6d:e5:35:b7:dc:a7:38:8c:1e:b3:c2:38:fd:71:4a:2a: 24:15:cd:ff:09:df:fb:63:0e:0b:c3:ce:2e:1d:bc:2c:a0:e3: c8:33:27:6a:32:05:42:47:38:27:3a:52:40:78:37:b7:0d:7b: 92:3d:a0:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjUxMDE5MDAxMTU3WhcNMjUxMDI2MDAxMTU3WjAYMRYwFAYD VQQDEw02OGY0MmNjZC03MDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJuCJfiWxSTZ0yMT6/xP7YICWolmktk1nj19JAKWAgYmzyOfZ5b1Yq9vLWFr h/q6oTl0R2Wfkgxe4eD3tpsFPgSTFZrN59StdgDMA8PcokFXKC2mcrbNViHQi+YO nWtFOy2dIiGB9NfhmE3edxPDNEX4FPQvHijy28QnV9Vdhq2MVWNVoMlfk5B5qgy+ erGxQMvy4NAvvrGrB7t2t2nRKN6rG8BJeeJkfSssb9Xb40UcAT89Sw469nqvQkAq D6EdPwLbQWEXfBrpyTjV75PdGSnsJ/H2DVdQv6nPreQniXdj1ROeOTjuFov7+j9v Bdjz3u7h5N0Lv2AWmOqwCn2sfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6qsPed 0n3hu99cEVlohlY+g/BUMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAliUDHOyo6NJ73ilcyJX90PYc119yk5ODtpOI7lN5UGwGkvjNvWH3n hGanSPaiLGCBIXvQAZAbGaJR7tCXuiei5NbpjQevk4/eNOpSTFHkd8e4jUfrSXO3 WNXE0XUVbbYeaP8Of+3FmBcceoFpPbjQbRMWuClVKfJhpYaxwa4PYQu/F7/lr6Jk RoeuouO0dUrH5XV1WRd0oLXEKOLcMxIo/ljHDD3QLUihFANJqdUajxTRUzqoK4DC Fwpwsly+EIpiBYrJiX3lkm3lNbfcpziMHrPCOP1xSiokFc3/Cd/7Yw4Lw84uHbws oOPIMydqMgVCRzgnOlJAeDe3DXuSPaAN -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:16 2025 by rpki-client