$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.mft File: -xEsrVYxm_qsoasoznvX9MsmjOk.mft (raw, json) Hash identifier: ZB/B41dT6UXuRYULUmRUaYYY9g7dXQJhC/VAKDyT0hU= Subject key identifier: E4:94:A8:0B:C6:41:79:A3:70:BC:6F:84:F1:94:32:26:20:8F:6F:41 Authority key identifier: FB:11:2C:AD:56:31:9B:FA:AC:A1:AB:28:CE:7B:D7:F4:CB:26:8C:E9 Certificate issuer: /CN=A91ADDD5/serialNumber=FB112CAD56319BFAACA1AB28CE7BD7F4CB268CE9 Certificate serial: 059C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.mft Manifest number: 058E Signing time: Tue 22 Jul 2025 23:38:22 +0000 Manifest this update: Tue 22 Jul 2025 23:38:22 +0000 Manifest next update: Tue 29 Jul 2025 23:38:22 +0000 Files and hashes: 1: -xEsrVYxm_qsoasoznvX9MsmjOk.crl (hash: 09EwGzu15X/cfmHIl5TtB52Og6KHO19uqIWvSGhZZgY=) 2: ABCDCC4EE16711EEA88FAE64C4F9AE02.roa (hash: +uMy6pf4Gt8KymBYpp9dNbF+7Zqp/sfAyxYpWwI1HYE=) 3: 128DFF02E14611EE80D6C425C4F9AE02.roa (hash: gD7R9l3u/rGhrD05ZuMK8R9HTGQM3qYyh4Dz8BqVAmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.crl rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 23:38:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1436 (0x59c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADDD5, serialNumber=FB112CAD56319BFAACA1AB28CE7BD7F4CB268CE9 Validity Not Before: Jul 22 23:38:22 2025 GMT Not After : Jul 29 23:38:22 2025 GMT Subject: CN=688020ee-b732 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f8:2c:b9:2c:64:69:70:3c:02:26:93:71:fb: 5c:24:6d:d3:4b:4f:83:88:67:3b:d5:80:5e:4a:90: a8:7a:20:5e:99:3d:b4:59:27:2b:11:10:7e:99:fe: 6c:d3:ea:05:b3:bb:c0:3c:31:d8:ad:1a:fa:3e:1d: 0d:72:22:0f:8d:fd:13:89:bd:80:13:64:06:d8:9d: a4:cf:2a:55:44:50:e1:02:9f:47:48:e4:4e:b3:52: 04:47:0e:bd:da:2e:70:da:86:4d:a6:4d:87:c4:b5: fd:94:dd:53:94:85:03:de:3e:e7:10:8a:e9:82:35: 97:b8:52:62:6f:c6:92:8c:ee:1b:ce:fb:f3:e6:49: 2d:53:5c:3e:82:72:f6:14:54:7f:6b:91:6c:2e:d6: 97:a5:89:2a:37:3d:b0:06:77:70:fb:dd:1f:50:e8: db:59:5b:26:f2:34:d2:a4:d4:02:46:d6:19:48:36: 0f:9c:11:81:2b:b8:78:d6:5c:9c:7f:30:fa:44:f3: 0a:c2:41:a5:36:ef:c0:6a:30:15:38:d6:1e:0e:f9: ee:bb:0f:d7:a2:4f:b8:db:97:5b:c5:f5:1e:4f:48: 27:5e:bf:f6:4c:60:20:e9:5a:69:e5:38:13:12:97: 87:8d:a0:f0:87:00:48:9c:e9:be:7d:bb:2a:8f:9b: 19:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:94:A8:0B:C6:41:79:A3:70:BC:6F:84:F1:94:32:26:20:8F:6F:41 X509v3 Authority Key Identifier: keyid:FB:11:2C:AD:56:31:9B:FA:AC:A1:AB:28:CE:7B:D7:F4:CB:26:8C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:14:1c:eb:59:7b:d5:35:48:c5:1e:5a:3b:ed:5a:51:8b:84: cf:9a:0a:52:0a:0f:9e:ea:32:21:1c:9f:8d:55:10:c8:a5:9c: b8:ae:1e:db:37:37:70:fb:34:2c:8a:eb:23:6a:85:dc:0f:f2: 27:0d:48:f0:37:42:15:4b:01:d1:0e:93:35:85:e2:2e:d3:cd: c3:5d:d2:47:a4:18:fc:10:6a:32:18:8c:cd:0f:8e:c6:fd:56: 89:f0:1d:93:16:03:53:9d:94:b4:9e:95:6d:01:d0:17:fb:68: 67:3f:c0:37:8b:42:1c:b5:1c:cc:e2:ea:3e:a1:7b:18:1b:46: 55:67:c7:cd:a1:da:29:f8:3f:97:97:d9:a6:93:0e:88:90:c2: bc:bc:24:88:7d:38:ce:43:61:49:bb:7d:a0:49:93:6b:8c:e9: fb:8a:b2:b9:be:3d:fb:17:3e:92:41:1f:6d:4d:ad:cd:10:f9: c2:ad:c7:71:97:89:c2:da:46:54:58:31:d9:8c:3d:6e:3a:a8: 5d:ae:1f:be:cf:d2:46:56:11:3f:36:60:03:d2:08:15:97:25: 61:2c:76:48:0d:8b:7f:9a:ba:aa:fc:28:ee:4e:3c:74:9a:1a: 98:3c:a3:5c:c4:f7:d6:8d:66:8b:0f:9f:54:6a:2e:b7:30:d5: 37:48:a5:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURERDUxMTAvBgNVBAUTKEZCMTEyQ0FENTYzMTlCRkFBQ0ExQUIyOENFN0JEN0Y0 Q0IyNjhDRTkwHhcNMjUwNzIyMjMzODIyWhcNMjUwNzI5MjMzODIyWjAYMRYwFAYD VQQDEw02ODgwMjBlZS1iNzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5PgsuSxkaXA8AiaTcftcJG3TS0+DiGc71YBeSpCoeiBemT20WScrERB+mf5s 0+oFs7vAPDHYrRr6Ph0NciIPjf0Tib2AE2QG2J2kzypVRFDhAp9HSOROs1IERw69 2i5w2oZNpk2HxLX9lN1TlIUD3j7nEIrpgjWXuFJib8aSjO4bzvvz5kktU1w+gnL2 FFR/a5FsLtaXpYkqNz2wBndw+90fUOjbWVsm8jTSpNQCRtYZSDYPnBGBK7h41lyc fzD6RPMKwkGlNu/AajAVONYeDvnuuw/Xok+425dbxfUeT0gnXr/2TGAg6Vpp5TgT EpeHjaDwhwBInOm+fbsqj5sZlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSUqAvG QXmjcLxvhPGUMiYgj29BMB8GA1UdIwQYMBaAFPsRLK1WMZv6rKGrKM571/TLJozp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRERENS84QjBEMEZGMkUz RjgxMUVCOUUwOERCMTRDNEY5QUUwMi8teEVzclZZeG1fcXNvYXNvem52WDlNc21q T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14RXNyVll4bV9xc29hc296bnZYOU1zbWpPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RERENS84QjBEMEZGMkUzRjgxMUVCOUUwOERCMTRDNEY5QUUwMi8teEVzclZZeG1f cXNvYXNvem52WDlNc21qT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOFBzrWXvVNUjFHlo77VpRi4TPmgpSCg+e6jIhHJ+NVRDIpZy4rh7b Nzdw+zQsiusjaoXcD/InDUjwN0IVSwHRDpM1heIu083DXdJHpBj8EGoyGIzND47G /VaJ8B2TFgNTnZS0npVtAdAX+2hnP8A3i0IctRzM4uo+oXsYG0ZVZ8fNodop+D+X l9mmkw6IkMK8vCSIfTjOQ2FJu32gSZNrjOn7irK5vj37Fz6SQR9tTa3NEPnCrcdx l4nC2kZUWDHZjD1uOqhdrh++z9JGVhE/NmAD0ggVlyVhLHZIDYt/mrqq/CjuTjx0 mhqYPKNcxPfWjWaLD59Uai63MNU3SKVR -----END CERTIFICATE-----Generated at Wed Jul 23 12:18:19 2025 by rpki-client