$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: VW86Zy3HD3XarL9JIMo/DiwULYiHT4iwUuZIfAfjEEI= Subject key identifier: 86:12:71:B5:E5:54:0C:5C:E5:DC:97:FE:C4:C7:B4:8E:C4:51:C0:7F Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 063C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 0637 Signing time: Fri 08 Aug 2025 23:09:42 +0000 Manifest this update: Fri 08 Aug 2025 23:09:42 +0000 Manifest next update: Fri 15 Aug 2025 23:09:42 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: gcNEthnT4txEKAu5OdAXcwonl7j5Uegb6IP3V+CpTrk=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: A81REE+McXIeM/wALpzv2Qsq9bY8357xYUyeneNAnBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1596 (0x63c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Aug 8 23:09:42 2025 GMT Not After : Aug 15 23:09:42 2025 GMT Subject: CN=689683b6-b304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1f:1b:8c:17:8d:d7:c6:62:98:60:d5:68:bb: 31:97:40:ed:98:c3:50:41:21:2e:bc:e4:53:83:c6: a8:46:58:51:fd:a7:cd:c3:85:e2:a7:dd:bc:f3:82: ca:b3:ac:88:7a:a1:59:71:b1:3c:7b:ba:6e:19:24: bc:2c:d5:a8:2b:a5:91:45:41:6d:73:44:5f:38:9b: 09:c4:59:6f:dc:00:5c:fc:ac:24:58:94:56:a0:65: 51:8d:52:fd:8d:f3:26:48:d5:20:b7:8e:5a:7c:5e: db:ec:85:52:dc:56:e9:d5:71:6a:9e:d6:75:63:0f: 69:df:49:b7:5c:f3:67:f0:78:80:a1:dd:a2:66:ca: 8d:df:3c:cb:ea:0a:e6:87:fd:25:f5:54:e9:e2:cd: d4:7f:1b:32:c0:50:10:16:85:08:c3:13:b6:92:12: f7:de:c0:72:68:0a:92:b3:21:c4:76:9a:a0:f5:42: 31:81:11:f2:4e:0d:db:e8:1a:1a:1b:3a:6a:6b:7f: d2:0b:4e:97:09:38:53:4e:62:4d:bf:b0:8a:79:d4: 38:90:9c:9d:7d:f7:f8:a8:26:5f:c6:93:9c:c3:23: 1b:f1:33:64:cd:18:2a:93:cc:46:75:60:6a:37:1f: bc:1b:95:42:a9:13:ec:c9:47:6b:db:82:fd:f9:d3: ec:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:12:71:B5:E5:54:0C:5C:E5:DC:97:FE:C4:C7:B4:8E:C4:51:C0:7F X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:0b:87:bc:d4:c3:5e:36:09:82:2b:59:2b:6e:22:68:83:2f: bd:70:38:11:ef:8d:92:c2:2e:e0:0b:9d:61:b8:90:58:ac:e9: 60:5e:37:72:6a:92:4b:98:e0:44:4c:64:e1:ca:d1:48:34:68: 4f:1d:60:47:b4:b8:de:b7:2a:b0:fc:e4:94:6a:74:df:d5:c0: c6:8a:84:d6:c0:c8:21:35:a8:d5:1f:7b:b3:f0:a1:63:31:b1: 90:4e:2a:9d:07:2a:c7:9a:ae:ff:f0:ab:0a:42:45:0e:0b:92: cf:3a:fe:de:b5:88:af:fc:84:a6:55:09:5b:78:13:90:e6:fb: 1e:ed:84:22:3a:bd:1b:30:9a:72:99:36:71:b0:e3:bd:ba:06: 27:29:11:60:43:7a:ff:16:d3:f9:03:49:70:22:dd:27:3a:51: e9:51:d9:94:1a:e6:d9:0b:a4:5a:91:87:b2:e1:50:6a:91:96: c1:28:a1:e8:b4:c2:0f:7f:27:66:cb:d7:1e:93:cb:85:d1:34: b0:5b:9d:cd:24:5f:98:53:e1:53:0a:7f:d8:ca:0f:e9:b9:35: b7:d1:50:60:7a:25:6c:5c:3d:5e:a9:e5:89:eb:15:aa:c9:bf: 49:86:46:13:40:d5:89:60:c5:07:12:30:b6:cc:81:2f:12:13: 93:99:e4:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjUwODA4MjMwOTQyWhcNMjUwODE1MjMwOTQyWjAYMRYwFAYD VQQDEw02ODk2ODNiNi1iMzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0R8bjBeN18ZimGDVaLsxl0DtmMNQQSEuvORTg8aoRlhR/afNw4Xip92884LK s6yIeqFZcbE8e7puGSS8LNWoK6WRRUFtc0RfOJsJxFlv3ABc/KwkWJRWoGVRjVL9 jfMmSNUgt45afF7b7IVS3Fbp1XFqntZ1Yw9p30m3XPNn8HiAod2iZsqN3zzL6grm h/0l9VTp4s3UfxsywFAQFoUIwxO2khL33sByaAqSsyHEdpqg9UIxgRHyTg3b6Boa Gzpqa3/SC06XCThTTmJNv7CKedQ4kJydfff4qCZfxpOcwyMb8TNkzRgqk8xGdWBq Nx+8G5VCqRPsyUdr24L9+dPscQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYScbXl VAxc5dyX/sTHtI7EUcB/MB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQC4e81MNeNgmCK1krbiJogy+9cDgR742Swi7gC51huJBYrOlgXjdy apJLmOBETGThytFINGhPHWBHtLjetyqw/OSUanTf1cDGioTWwMghNajVH3uz8KFj MbGQTiqdByrHmq7/8KsKQkUOC5LPOv7etYiv/ISmVQlbeBOQ5vse7YQiOr0bMJpy mTZxsOO9ugYnKRFgQ3r/FtP5A0lwIt0nOlHpUdmUGubZC6RakYey4VBqkZbBKKHo tMIPfydmy9cek8uF0TSwW53NJF+YU+FTCn/Yyg/puTW30VBgeiVsXD1eqeWJ6xWq yb9JhkYTQNWJYMUHEjC2zIEvEhOTmeQm -----END CERTIFICATE-----Generated at Sat Aug 9 15:17:32 2025 by rpki-client