$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft File: es5to1-2pKn2-ZcMGLyvWydIEZ8.mft (raw, json) Hash identifier: mAtmsogbyAP+gv9RuexoIcV0DB4VVkvZCiFlq7RYQBo= Subject key identifier: 24:BF:D2:C3:DE:22:67:DF:85:F4:E9:14:F9:7D:47:BA:7C:E7:3C:97 Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0AC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft Manifest number: 0A97 Signing time: Fri 18 Jul 2025 19:50:24 +0000 Manifest this update: Fri 18 Jul 2025 19:50:24 +0000 Manifest next update: Fri 25 Jul 2025 19:50:24 +0000 Files and hashes: 1: es5to1-2pKn2-ZcMGLyvWydIEZ8.crl (hash: dJe8cJhTkKKwNCj6VvLAwT/e7OJUV8rSOpBI6hLcy6U=) 2: 495324CA39CB11EBB2F08020C4F9AE02.roa (hash: HTyyzc4XtgSz/IIMfSzZJ+tCNDi1E/skEpatmhSWJ4M=) 3: D4EFA44673CD11EA8BE69127C4F9AE02.roa (hash: pnzNagfBV7JflMfDBvAJDWyy7ts19fn5YwbkxkgayA8=) 4: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (hash: hhE8XmYwxey9Fv68RhRQXSH/5MjemozAt+vDJtNoqQU=) 5: C782AE14615911F08635B771C4F9AE02.roa (hash: MaO7vUeiFdOZPyehARwka9eV8U3aNvjxrHmSWVwidY8=) 6: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (hash: uKI22TwxIQY9iFbcuULN7d8S3JosFyv3WIhvtX7yzyk=) 7: B24920940C6911EC90B57338C4F9AE02.roa (hash: 46zzXAJsoYLrd8w4NMQBrt4B+bpK+w9wRKgXWSkwTsI=) 8: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (hash: 6TG7RmsvnGNbTnnGm7wGd69mXpkPkix9Q5ZbBmiNmUE=) 9: D94C07CAF5B211EFBD3CA23FC4F9AE02.roa (hash: nQp6CVVIzkkqk2XECRH9BEijjawtFfwARhBhch9mLWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:50:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2752 (0xac0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Jul 18 19:50:24 2025 GMT Not After : Jul 25 19:50:24 2025 GMT Subject: CN=687aa580-170d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:2e:aa:f2:3c:1f:99:65:8a:04:7a:38:78:fd: 2a:4e:29:34:26:d4:f4:f5:fe:a0:84:e6:8e:89:7e: e2:29:b6:5c:9f:87:ef:41:1d:92:cf:79:da:98:4e: 16:fd:97:d3:7d:95:57:24:44:c9:2d:64:59:8b:95: 18:d2:f8:9a:6c:44:c8:1b:27:f9:94:b6:53:21:03: fc:8f:fb:da:5b:4f:08:8d:05:a7:8a:00:b9:be:d5: f5:5e:71:a9:95:c7:5f:30:4d:a9:5d:f1:0b:d7:5d: 86:cf:e7:f2:98:6c:76:38:99:54:eb:1a:6e:78:d4: ca:9d:f2:e0:7a:45:3d:6f:0e:0d:ec:69:6c:ba:ee: bc:5b:51:3c:8a:2b:e3:51:3f:ad:9a:85:a8:c2:b8: bc:38:48:a6:27:06:16:e5:19:68:60:9f:06:b2:db: 08:58:7d:b9:17:f6:93:45:08:ad:ae:ff:e5:dd:4f: 70:ba:66:05:82:da:b7:ac:2a:fa:5d:df:40:f4:2a: 77:60:f1:ad:04:75:7e:0f:06:35:7f:39:5a:20:b5: cb:04:01:cd:5e:89:96:2e:99:ab:41:79:45:bd:ef: ec:9b:9b:1a:0c:eb:58:d6:8b:61:e7:8a:6b:8a:8e: 60:ab:d1:4f:08:2b:fd:3e:b8:f5:21:5f:34:ba:ff: 1b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:BF:D2:C3:DE:22:67:DF:85:F4:E9:14:F9:7D:47:BA:7C:E7:3C:97 X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:bb:19:00:2e:06:56:ac:01:14:52:db:3e:a9:a2:a5:b2:5e: fc:bb:8a:fb:77:7a:d2:72:4f:cd:3a:9e:de:88:96:e4:c2:f7: ae:af:92:6c:ba:d9:6f:80:95:9c:d2:d2:4f:d4:20:8b:77:24: 55:b0:9e:0e:c8:62:54:29:a3:0d:d7:1c:47:a9:e4:30:a1:e5: 89:3e:83:2b:bd:4e:a1:66:3f:b3:94:f4:e6:c5:c2:d1:f9:6a: c9:82:3c:43:5d:04:ab:74:7c:a7:77:2b:7a:46:54:0e:68:c6: d7:23:61:4b:7f:0d:75:d9:33:84:e4:7b:e8:80:0f:dd:9e:db: 3f:a6:66:e9:d1:66:d8:0e:b5:0a:61:bc:87:19:21:d2:f7:e5: bb:28:28:e6:04:a7:9f:c6:75:22:1d:5a:94:1d:55:3d:e3:64: c6:3a:d1:ab:94:f7:16:81:1b:f9:e5:c1:e5:7c:de:e4:25:99: e4:7b:1f:8d:23:d2:86:22:8f:af:09:f9:aa:b6:43:a2:12:10: cd:bf:9d:75:50:4f:83:c2:f6:3b:2f:b8:17:d3:4b:d3:73:8c: cf:15:b1:5b:01:c5:7b:da:d7:31:2c:be:a1:87:c1:c4:f2:3a: 90:07:b9:98:b9:90:c7:ff:08:8e:d2:6d:1b:9f:56:3d:8d:8f: 6f:f4:97:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjUwNzE4MTk1MDI0WhcNMjUwNzI1MTk1MDI0WjAYMRYwFAYD VQQDEw02ODdhYTU4MC0xNzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4C6q8jwfmWWKBHo4eP0qTik0JtT09f6ghOaOiX7iKbZcn4fvQR2Sz3namE4W /ZfTfZVXJETJLWRZi5UY0viabETIGyf5lLZTIQP8j/vaW08IjQWnigC5vtX1XnGp lcdfME2pXfEL112Gz+fymGx2OJlU6xpueNTKnfLgekU9bw4N7Glsuu68W1E8iivj UT+tmoWowri8OEimJwYW5RloYJ8GstsIWH25F/aTRQitrv/l3U9wumYFgtq3rCr6 Xd9A9Cp3YPGtBHV+DwY1fzlaILXLBAHNXomWLpmrQXlFve/sm5saDOtY1oth54pr io5gq9FPCCv9Prj1IV80uv8bkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCS/0sPe ImffhfTpFPl9R7p85zyXMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC9BMDU5QUY4QTY0MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBL bjItWmNNR0x5dld5ZElFWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTuxkALgZWrAEUUts+qaKlsl78u4r7d3rSck/NOp7eiJbkwveur5Js utlvgJWc0tJP1CCLdyRVsJ4OyGJUKaMN1xxHqeQwoeWJPoMrvU6hZj+zlPTmxcLR +WrJgjxDXQSrdHyndyt6RlQOaMbXI2FLfw112TOE5HvogA/dnts/pmbp0WbYDrUK YbyHGSHS9+W7KCjmBKefxnUiHVqUHVU942TGOtGrlPcWgRv55cHlfN7kJZnkex+N I9KGIo+vCfmqtkOiEhDNv511UE+DwvY7L7gX00vTc4zPFbFbAcV72tcxLL6hh8HE 8jqQB7mYuZDH/wiO0m0bn1Y9jY9v9JeP -----END CERTIFICATE-----Generated at Sun Jul 20 14:02:30 2025 by rpki-client