$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: 8GTkULp8t4yy6i0DocXRM3VfkEW09dOvJug9l7h/sNA= Subject key identifier: 95:9A:1D:7C:38:8B:A3:9C:FD:37:A3:FE:94:6B:A2:46:EF:7D:95:09 Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 0643 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 063E Signing time: Fri 22 Aug 2025 22:53:41 +0000 Manifest this update: Fri 22 Aug 2025 22:53:40 +0000 Manifest next update: Fri 29 Aug 2025 22:53:40 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: XNx+wzFYmmfLuOm+EMwSFNQbdDrjaiGCXcQ1NrqccZg=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: A81REE+McXIeM/wALpzv2Qsq9bY8357xYUyeneNAnBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1603 (0x643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Aug 22 22:53:40 2025 GMT Not After : Aug 29 22:53:40 2025 GMT Subject: CN=68a8f4f4-a73a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:73:23:9e:5c:be:91:66:c7:5d:6c:7c:57:3d: 79:f7:d3:e0:4c:25:b5:6f:5f:04:a8:44:01:a1:2c: bd:87:44:7e:d0:16:34:90:e3:d0:6e:89:9f:7c:a1: 27:a3:f5:dd:a8:9c:34:ea:1f:7b:c8:26:f1:2f:1b: de:ef:c0:62:1f:ce:fc:d8:f4:3f:4d:18:5c:96:3b: a1:ef:8b:0b:c4:06:21:de:0e:94:71:f3:74:fb:2d: ec:77:fe:8d:8d:5e:20:be:1b:5f:b1:fa:fd:41:35: 61:c4:b9:7a:25:3b:0d:30:3f:4e:e0:19:a5:06:c0: a7:af:29:2f:1a:5b:f0:23:f8:3c:c3:37:e8:e3:d7: 5f:9f:68:0e:67:ab:31:84:a1:17:45:80:53:cc:72: 6d:95:31:7c:a2:cf:c0:c9:56:ec:ab:71:57:35:31: 2c:1b:e0:dc:e6:d9:57:6b:78:44:27:bf:d0:06:ad: 99:5d:b9:d0:3b:a0:87:dc:a9:66:de:b8:fd:0f:aa: 32:db:04:fb:c5:08:32:d1:34:83:b5:eb:a4:15:a7: 30:32:94:76:2c:c0:1a:80:25:82:dc:cb:be:69:d6: f7:89:85:56:bb:f2:94:35:8f:ff:fe:53:13:37:ee: dd:91:5f:27:53:8b:1c:51:b8:ba:75:1a:17:bd:61: f1:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:9A:1D:7C:38:8B:A3:9C:FD:37:A3:FE:94:6B:A2:46:EF:7D:95:09 X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:a4:23:14:aa:57:52:a3:84:5b:8e:68:05:fa:b3:23:ed:bc: 86:49:18:b4:de:28:1f:e7:e2:93:f4:62:55:e1:5f:03:ac:c6: d0:a5:53:f9:f3:6f:94:8d:aa:e6:02:7e:fb:b7:3c:de:03:43: 75:19:63:96:99:2e:5d:ed:f1:9b:ef:8a:d7:71:a8:aa:89:69: 89:7e:01:a6:87:b0:fd:b3:71:6b:5e:10:ae:23:fb:f8:01:9a: d7:b8:4d:90:84:7f:f7:82:b8:ac:57:83:1d:0c:5b:08:85:ab: 8d:55:71:71:85:6c:ef:78:46:02:7d:30:04:05:68:4e:e5:b6: bf:a7:4a:1d:14:47:70:31:88:23:3e:2a:60:3c:6b:18:a8:3a: 3d:35:e5:e8:ea:c5:7e:90:1f:24:b1:20:12:39:d8:8c:2f:7c: 5e:d1:e1:65:a8:4f:8b:f4:3a:d5:a4:32:99:c0:2d:0c:86:9f: 9e:d1:96:0b:cb:1e:df:7f:1d:07:77:a3:1e:29:70:e4:b7:67: fc:8a:45:5c:45:96:1e:8b:c5:96:f8:a9:53:61:fb:ff:bc:46: d0:3a:1d:74:ce:9f:ff:6e:66:f3:57:50:f4:27:a4:85:32:a9: 56:62:ef:ee:47:58:06:20:06:39:0d:27:8e:61:67:23:d2:51: 89:41:f7:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjUwODIyMjI1MzQwWhcNMjUwODI5MjI1MzQwWjAYMRYwFAYD VQQDEw02OGE4ZjRmNC1hNzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmnMjnly+kWbHXWx8Vz1599PgTCW1b18EqEQBoSy9h0R+0BY0kOPQbomffKEn o/XdqJw06h97yCbxLxve78BiH8782PQ/TRhcljuh74sLxAYh3g6UcfN0+y3sd/6N jV4gvhtfsfr9QTVhxLl6JTsNMD9O4BmlBsCnrykvGlvwI/g8wzfo49dfn2gOZ6sx hKEXRYBTzHJtlTF8os/AyVbsq3FXNTEsG+Dc5tlXa3hEJ7/QBq2ZXbnQO6CH3Klm 3rj9D6oy2wT7xQgy0TSDteukFacwMpR2LMAagCWC3Mu+adb3iYVWu/KUNY///lMT N+7dkV8nU4scUbi6dRoXvWHxpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWaHXw4 i6Oc/Tej/pRrokbvfZUJMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7pCMUqldSo4RbjmgF+rMj7byGSRi03igf5+KT9GJV4V8DrMbQpVP5 82+UjarmAn77tzzeA0N1GWOWmS5d7fGb74rXcaiqiWmJfgGmh7D9s3FrXhCuI/v4 AZrXuE2QhH/3grisV4MdDFsIhauNVXFxhWzveEYCfTAEBWhO5ba/p0odFEdwMYgj PipgPGsYqDo9NeXo6sV+kB8ksSASOdiML3xe0eFlqE+L9DrVpDKZwC0Mhp+e0ZYL yx7ffx0Hd6MeKXDkt2f8ikVcRZYei8WW+KlTYfv/vEbQOh10zp//bmbzV1D0J6SF MqlWYu/uR1gGIAY5DSeOYWcj0lGJQfeV -----END CERTIFICATE-----Generated at Sun Aug 24 02:37:00 2025 by rpki-client