$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: cbd4Ue/8F4ycQKAtaaZwm10A8vA9CX377jt4n1Vshvo= Subject key identifier: 85:8F:74:6B:90:AE:FD:66:42:30:BB:6F:52:2B:5B:5B:D9:28:03:BA Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 0620 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 061B Signing time: Sat 14 Jun 2025 22:33:17 +0000 Manifest this update: Sat 14 Jun 2025 22:33:16 +0000 Manifest next update: Sat 21 Jun 2025 22:33:16 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: Tq5a9GroJ6UfUmdEW2INxbRgIBAzLQNPqSay4+T56lA=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: A81REE+McXIeM/wALpzv2Qsq9bY8357xYUyeneNAnBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:33:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1568 (0x620) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Jun 14 22:33:16 2025 GMT Not After : Jun 21 22:33:16 2025 GMT Subject: CN=684df8ad-44d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:68:a0:85:69:9e:27:c5:0d:e9:c3:71:34:66: 97:73:fb:14:2b:25:43:05:87:3c:f7:30:14:ea:74: 5f:76:34:62:09:f7:66:b8:99:74:9d:e8:da:5b:eb: 38:e8:d4:49:78:90:f6:b0:c4:38:cf:58:74:58:9e: a1:43:72:32:a4:a8:56:9c:41:07:5b:1c:bc:61:d2: 2a:53:28:93:28:c0:11:c8:03:43:24:f5:48:58:b0: 6b:00:4b:85:ad:24:0a:55:bc:18:e2:0d:5d:9a:18: fa:68:fb:5a:c4:41:32:5d:6f:e3:ce:f7:7c:a5:22: 67:de:72:e0:b0:cd:74:df:55:30:80:84:89:84:9c: b6:1f:d2:a8:af:f5:48:f7:1f:d6:5b:70:ea:60:5a: 0f:9f:58:8b:36:23:2a:f3:ee:bf:80:ba:59:2f:f0: 78:6a:6d:0d:b2:17:dc:d6:38:fa:2e:87:b6:cc:d4: 12:c8:66:08:84:d3:4d:25:fa:9a:54:56:b4:d0:6c: 34:94:0b:8c:6c:67:52:8c:18:c0:54:6f:be:e2:9c: 18:65:96:54:f8:e5:7c:bf:e3:3d:87:0e:18:b6:50: 04:9d:b0:a1:a8:d2:58:cb:f5:ef:96:48:b2:fc:0f: 1f:c6:22:b6:2f:2c:00:f9:4e:85:3f:a4:a6:98:f4: fc:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:8F:74:6B:90:AE:FD:66:42:30:BB:6F:52:2B:5B:5B:D9:28:03:BA X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:75:c2:13:96:df:9c:c7:3d:09:8c:9d:5b:a7:5d:42:fa:d0: 84:26:59:e2:53:1a:a8:61:31:c5:05:11:e5:2e:8e:b2:15:a3: ce:26:70:a7:d1:88:5c:02:9a:18:f1:af:06:64:07:bf:58:6d: 88:cc:df:f2:09:38:c0:0a:fc:79:4c:a6:eb:05:7a:e2:94:c1: 3d:d0:2f:44:c2:e6:72:5e:72:4e:3d:9a:81:bf:ac:77:85:3a: ac:8d:dd:e2:29:c5:3e:0d:60:01:43:dc:ac:e8:77:27:72:94: e8:ba:fe:21:54:1a:ca:ca:17:bb:dd:73:d7:a1:f4:59:d8:f2: 3f:e0:a8:02:f5:56:f1:87:51:a0:a8:85:c1:f1:aa:6c:79:91: 09:3a:3e:4e:5b:ef:c0:f9:c1:be:0d:a4:98:6f:7b:bf:68:c4: 38:fc:0d:aa:25:17:37:bb:8c:79:24:73:76:30:25:a3:53:61: 01:9b:ae:69:38:1b:fe:e2:2e:cf:23:a5:12:f8:16:24:62:85: f8:15:dd:84:00:78:38:63:cf:cf:9b:88:b7:85:e1:f3:52:cf: 06:74:33:65:d1:45:a8:ff:ef:a8:a2:18:c9:b7:c6:50:c4:68: 61:fa:5c:f4:a0:c4:75:9c:cb:c7:66:a1:ab:89:ea:cc:91:6e: 02:54:6a:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjUwNjE0MjIzMzE2WhcNMjUwNjIxMjIzMzE2WjAYMRYwFAYD VQQDEw02ODRkZjhhZC00NGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22ighWmeJ8UN6cNxNGaXc/sUKyVDBYc89zAU6nRfdjRiCfdmuJl0nejaW+s4 6NRJeJD2sMQ4z1h0WJ6hQ3IypKhWnEEHWxy8YdIqUyiTKMARyANDJPVIWLBrAEuF rSQKVbwY4g1dmhj6aPtaxEEyXW/jzvd8pSJn3nLgsM1031UwgISJhJy2H9Kor/VI 9x/WW3DqYFoPn1iLNiMq8+6/gLpZL/B4am0Nshfc1jj6Loe2zNQSyGYIhNNNJfqa VFa00Gw0lAuMbGdSjBjAVG++4pwYZZZU+OV8v+M9hw4YtlAEnbChqNJYy/Xvlkiy /A8fxiK2LywA+U6FP6SmmPT80QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWPdGuQ rv1mQjC7b1IrW1vZKAO6MB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJdcITlt+cxz0JjJ1bp11C+tCEJlniUxqoYTHFBRHlLo6yFaPOJnCn 0YhcApoY8a8GZAe/WG2IzN/yCTjACvx5TKbrBXrilME90C9EwuZyXnJOPZqBv6x3 hTqsjd3iKcU+DWABQ9ys6HcncpTouv4hVBrKyhe73XPXofRZ2PI/4KgC9Vbxh1Gg qIXB8apseZEJOj5OW+/A+cG+DaSYb3u/aMQ4/A2qJRc3u4x5JHN2MCWjU2EBm65p OBv+4i7PI6US+BYkYoX4Fd2EAHg4Y8/Pm4i3heHzUs8GdDNl0UWo/++oohjJt8ZQ xGhh+lz0oMR1nMvHZqGrierMkW4CVGqJ -----END CERTIFICATE-----Generated at Sun Jun 15 08:41:52 2025 by rpki-client