$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: EqJ9uMDkJGHiLRvJTlJ4yZJ6GLpCKhLL/yXbKfdATTE= Subject key identifier: 44:DF:08:84:10:67:EE:50:4E:FF:7D:88:E3:B3:B3:73:61:1C:8D:23 Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 0604 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 0600 Signing time: Thu 24 Apr 2025 22:41:51 +0000 Manifest this update: Thu 24 Apr 2025 22:41:50 +0000 Manifest next update: Thu 01 May 2025 22:41:50 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: WocF5tn46wfnhSpIiIVCC5NDlCwlh3Y6eqdNVlxRYys=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: 29wrV3aOIMAFp0GF5fJZDO6ldPmXnBQp+J/+s7gWVoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1540 (0x604) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Apr 24 22:41:50 2025 GMT Not After : May 1 22:41:50 2025 GMT Subject: CN=680abe2f-f320 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f7:1f:ee:fe:b2:3f:7c:fd:aa:51:2e:63:a3: 54:27:95:71:3b:8c:8e:f6:dc:c4:b0:f6:21:30:5c: 7c:89:0f:c5:b1:ab:c5:4c:fd:4a:bc:89:05:0c:cb: b6:51:f3:56:3e:3e:0a:14:ea:67:44:90:cc:d2:b7: 0b:86:72:82:b7:63:bc:c2:0d:e2:87:12:60:15:9e: 4f:8b:02:21:3a:e9:86:da:4e:4c:67:01:d0:ce:52: cb:a6:9e:9a:d9:58:b6:db:b3:1a:fc:23:4d:aa:d7: a9:3e:de:9c:da:61:f8:67:1e:d1:4d:2b:3a:92:d6: f8:84:04:71:53:4e:54:31:34:10:f1:2a:cd:5d:6a: ad:bc:00:49:1c:c4:6d:df:e1:d4:fd:2b:3f:30:db: ab:a9:94:4c:cf:56:b9:79:d0:06:e6:e1:c8:9b:de: 3a:7b:be:e4:d0:86:a6:71:48:02:94:61:c5:fc:4d: 12:b0:28:e0:34:7c:a2:0f:47:7f:57:92:57:9a:ce: d6:d3:5f:06:3a:24:ba:11:f8:c3:5b:e4:47:6f:94: 63:20:62:fb:9a:d7:5b:35:6f:2c:49:ee:eb:1c:bc: a6:97:5f:d4:3b:94:59:25:b1:02:49:13:5b:91:95: 7b:f4:95:2e:1f:66:f8:fc:e2:92:c7:53:f2:85:59: 86:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:DF:08:84:10:67:EE:50:4E:FF:7D:88:E3:B3:B3:73:61:1C:8D:23 X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:d3:f0:39:87:c2:d4:ae:0b:bd:3f:68:79:2f:00:9c:70:d9: 05:ae:2c:9c:6d:4d:d2:56:06:4d:3d:1f:13:ca:ae:8d:90:d0: f9:05:47:50:22:b4:23:ad:c2:04:eb:a6:4f:15:21:00:7d:df: 34:4d:8f:ae:a2:82:5b:e5:39:f5:ab:40:6c:9a:6d:00:03:e4: 71:23:6e:fa:9c:72:53:a4:2a:6c:b6:ea:83:44:6b:81:7c:1a: 17:cc:fb:a5:f3:d7:08:dd:e4:5f:ab:5d:60:a0:d9:fa:3d:86: 35:1e:4f:1a:b6:8e:e0:c2:f8:b0:df:e6:0d:23:0d:8a:f4:dd: 6b:f1:62:8f:23:37:21:ee:be:41:3a:2a:0b:5c:88:e0:b6:ef: 64:ee:bb:a8:b1:dd:05:43:f0:48:61:64:3c:19:33:9c:03:9e: 31:7d:f2:1b:01:eb:9d:7b:35:81:56:10:21:b5:85:8f:49:52: 50:43:59:58:42:8f:c9:de:88:b8:cd:7e:69:fb:a7:4a:91:6e: 48:26:fb:51:98:76:c6:ee:20:cf:39:8c:78:6b:f6:d6:a0:bd: 59:5e:9f:95:56:54:52:4b:c7:cb:6c:2f:be:30:3d:39:7d:70: 2e:72:a8:4a:cc:14:51:18:fd:7a:09:43:f1:13:51:ba:42:3c: 55:ce:a9:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjUwNDI0MjI0MTUwWhcNMjUwNTAxMjI0MTUwWjAYMRYwFAYD VQQDEw02ODBhYmUyZi1mMzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPcf7v6yP3z9qlEuY6NUJ5VxO4yO9tzEsPYhMFx8iQ/FsavFTP1KvIkFDMu2 UfNWPj4KFOpnRJDM0rcLhnKCt2O8wg3ihxJgFZ5PiwIhOumG2k5MZwHQzlLLpp6a 2Vi227Ma/CNNqtepPt6c2mH4Zx7RTSs6ktb4hARxU05UMTQQ8SrNXWqtvABJHMRt 3+HU/Ss/MNurqZRMz1a5edAG5uHIm946e77k0IamcUgClGHF/E0SsCjgNHyiD0d/ V5JXms7W018GOiS6EfjDW+RHb5RjIGL7mtdbNW8sSe7rHLyml1/UO5RZJbECSRNb kZV79JUuH2b4/OKSx1PyhVmGYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETfCIQQ Z+5QTv99iOOzs3NhHI0jMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq0/A5h8LUrgu9P2h5LwCccNkFriycbU3SVgZNPR8Tyq6NkND5BUdQ IrQjrcIE66ZPFSEAfd80TY+uooJb5Tn1q0Bsmm0AA+RxI276nHJTpCpstuqDRGuB fBoXzPul89cI3eRfq11goNn6PYY1Hk8ato7gwviw3+YNIw2K9N1r8WKPIzch7r5B OioLXIjgtu9k7ruosd0FQ/BIYWQ8GTOcA54xffIbAeudezWBVhAhtYWPSVJQQ1lY Qo/J3oi4zX5p+6dKkW5IJvtRmHbG7iDPOYx4a/bWoL1ZXp+VVlRSS8fLbC++MD05 fXAucqhKzBRRGP16CUPxE1G6QjxVzqlN -----END CERTIFICATE-----Generated at Sat Apr 26 05:54:58 2025 by rpki-client