$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: /5FemqmNTGb1iOzfO55DLT40wScDtqgPnRCeyVZhqH8= Subject key identifier: 8D:4D:23:CA:05:57:68:B0:BB:64:A0:E7:64:2D:EB:A5:44:2F:3D:B2 Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 0668 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 0663 Signing time: Tue 04 Nov 2025 22:41:48 +0000 Manifest this update: Tue 04 Nov 2025 22:41:48 +0000 Manifest next update: Tue 11 Nov 2025 22:41:48 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: KNVX0zKmKEQUIqlvzPF7V3rG0IuVZmkUM3a9ftbBLyY=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: A81REE+McXIeM/wALpzv2Qsq9bY8357xYUyeneNAnBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:41:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Nov 4 22:41:48 2025 GMT Not After : Nov 11 22:41:48 2025 GMT Subject: CN=690a812c-bd08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7e:53:f5:0d:a9:85:4f:97:a4:34:7d:25:d4: c9:ee:b8:56:f2:22:6a:40:ba:6b:8a:44:e3:14:3a: 26:75:c4:72:a9:4d:78:72:5d:86:99:ee:eb:fc:dd: 5c:8e:13:bc:1d:36:e2:d4:08:26:60:1a:c4:cb:bd: a2:13:4d:2c:74:a0:75:cf:41:d9:19:f6:de:6f:48: c9:cd:49:2f:29:63:58:c0:85:0c:06:56:0a:42:2e: c3:a7:40:4d:0e:33:a4:a0:90:53:40:1c:38:e5:cb: ad:83:b7:92:e4:cd:68:b9:df:09:b0:be:01:ef:06: c9:c7:b5:d3:f9:ea:6d:bc:63:44:50:f4:25:48:22: 30:f9:28:8d:6c:c5:56:e1:5a:2f:af:30:32:b5:c7: 2d:a9:9e:16:99:4c:63:d9:c0:28:3f:af:e2:16:81: df:10:7c:12:b0:9c:47:8c:27:d1:70:7d:23:db:57: b5:4b:76:d3:9e:6a:af:fe:73:e3:c7:53:99:2d:c7: 6e:ec:da:e9:1c:18:7b:7f:f8:d8:b1:09:dc:bb:d5: 7d:b7:d7:9a:ad:60:f6:30:60:cd:98:b3:b1:dc:d6: 51:70:82:5e:72:02:43:00:1e:eb:c5:8c:55:e4:05: cc:42:89:4e:ca:f1:a2:1d:b3:fc:b5:d3:9f:82:1a: 49:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:4D:23:CA:05:57:68:B0:BB:64:A0:E7:64:2D:EB:A5:44:2F:3D:B2 X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:82:c0:bb:3f:52:b0:f6:ab:7a:63:4c:68:b4:f6:bd:fa:57: 36:71:0a:0d:8f:8e:b2:6a:ef:6d:fc:75:58:b1:57:3b:43:c7: 01:42:79:a5:ca:96:d0:32:29:e6:29:26:ed:60:04:8e:62:6e: aa:82:55:a8:c5:7d:5a:3b:a7:ed:70:ad:9b:fb:a1:76:ce:30: 3e:6a:12:ad:1f:b1:77:01:6d:e6:cf:ca:2f:9e:1a:ce:9f:b6: d9:ad:19:6e:a8:35:aa:5b:c5:f1:13:4f:6e:13:47:5e:bc:69: ae:fa:ab:98:6d:ff:f0:cc:66:ca:7d:54:e4:c3:6a:d5:aa:ff: 7e:64:34:db:a5:c9:af:1f:89:6b:28:48:92:be:e5:79:60:20: 5a:ad:89:6e:f5:82:28:9d:20:b2:e2:19:3e:7d:da:46:5f:f5: 42:3f:2d:a8:e1:79:9f:7b:25:0e:1f:be:ed:cd:e0:8f:62:ec: 10:1d:d3:69:71:02:4f:37:4a:2e:90:f9:f5:a4:3f:d7:34:5a: 2d:b2:81:c2:5d:c5:ce:f1:24:45:d4:bd:d7:0b:28:79:87:7d: 2f:22:8d:23:55:ab:c1:b3:a6:63:67:da:23:ce:72:fe:4f:9b: 51:52:8e:17:be:a9:fd:ab:8a:d4:d6:4e:78:33:ef:45:d2:34: 92:1e:f4:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjUxMTA0MjI0MTQ4WhcNMjUxMTExMjI0MTQ4WjAYMRYwFAYD VQQDEw02OTBhODEyYy1iZDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA235T9Q2phU+XpDR9JdTJ7rhW8iJqQLprikTjFDomdcRyqU14cl2Gme7r/N1c jhO8HTbi1AgmYBrEy72iE00sdKB1z0HZGfbeb0jJzUkvKWNYwIUMBlYKQi7Dp0BN DjOkoJBTQBw45cutg7eS5M1oud8JsL4B7wbJx7XT+eptvGNEUPQlSCIw+SiNbMVW 4VovrzAytcctqZ4WmUxj2cAoP6/iFoHfEHwSsJxHjCfRcH0j21e1S3bTnmqv/nPj x1OZLcdu7NrpHBh7f/jYsQncu9V9t9earWD2MGDNmLOx3NZRcIJecgJDAB7rxYxV 5AXMQolOyvGiHbP8tdOfghpJ6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1NI8oF V2iwu2Sg52Qt66VELz2yMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMgsC7P1Kw9qt6Y0xotPa9+lc2cQoNj46yau9t/HVYsVc7Q8cBQnml ypbQMinmKSbtYASOYm6qglWoxX1aO6ftcK2b+6F2zjA+ahKtH7F3AW3mz8ovnhrO n7bZrRluqDWqW8XxE09uE0devGmu+quYbf/wzGbKfVTkw2rVqv9+ZDTbpcmvH4lr KEiSvuV5YCBarYlu9YIonSCy4hk+fdpGX/VCPy2o4XmfeyUOH77tzeCPYuwQHdNp cQJPN0oukPn1pD/XNFotsoHCXcXO8SRF1L3XCyh5h30vIo0jVavBs6ZjZ9ojznL+ T5tRUo4Xvqn9q4rU1k54M+9F0jSSHvQ4 -----END CERTIFICATE-----Generated at Wed Nov 5 15:32:58 2025 by rpki-client