$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft File: es5to1-2pKn2-ZcMGLyvWydIEZ8.mft (raw, json) Hash identifier: EGYbDnbU0rmSHdhybl9P4/IHPNgPMFzfT7ocq0fraOQ= Subject key identifier: 31:80:4D:A9:82:CB:E8:E7:6C:09:84:9D:1A:C6:55:A5:16:17:99:6F Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0ACC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft Manifest number: 0AA3 Signing time: Sun 10 Aug 2025 19:36:40 +0000 Manifest this update: Sun 10 Aug 2025 19:36:40 +0000 Manifest next update: Sun 17 Aug 2025 19:36:40 +0000 Files and hashes: 1: es5to1-2pKn2-ZcMGLyvWydIEZ8.crl (hash: 8YGtOagsHxT6SaHlmUm+VUM73IFGImdTkyt6aqyJbPk=) 2: 495324CA39CB11EBB2F08020C4F9AE02.roa (hash: HTyyzc4XtgSz/IIMfSzZJ+tCNDi1E/skEpatmhSWJ4M=) 3: D4EFA44673CD11EA8BE69127C4F9AE02.roa (hash: pnzNagfBV7JflMfDBvAJDWyy7ts19fn5YwbkxkgayA8=) 4: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (hash: hhE8XmYwxey9Fv68RhRQXSH/5MjemozAt+vDJtNoqQU=) 5: C782AE14615911F08635B771C4F9AE02.roa (hash: MaO7vUeiFdOZPyehARwka9eV8U3aNvjxrHmSWVwidY8=) 6: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (hash: uKI22TwxIQY9iFbcuULN7d8S3JosFyv3WIhvtX7yzyk=) 7: B24920940C6911EC90B57338C4F9AE02.roa (hash: 46zzXAJsoYLrd8w4NMQBrt4B+bpK+w9wRKgXWSkwTsI=) 8: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (hash: 6TG7RmsvnGNbTnnGm7wGd69mXpkPkix9Q5ZbBmiNmUE=) 9: D94C07CAF5B211EFBD3CA23FC4F9AE02.roa (hash: nQp6CVVIzkkqk2XECRH9BEijjawtFfwARhBhch9mLWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2764 (0xacc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Aug 10 19:36:40 2025 GMT Not After : Aug 17 19:36:40 2025 GMT Subject: CN=6898f4c8-6eac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a0:1c:1f:c7:10:cc:32:35:e0:4d:71:f1:1a: 05:dd:70:70:b9:d7:88:53:99:60:d5:3c:5b:51:4b: 48:84:2e:36:e8:cd:72:52:56:67:28:ad:fe:2c:35: fd:2d:88:97:f3:5d:67:86:ff:cf:3c:f1:78:3c:41: ee:7f:94:15:fb:d6:e0:18:0e:62:2a:11:ad:e2:3f: 4b:24:58:14:52:15:ae:48:53:f4:60:47:a7:ed:23: 48:ec:6c:da:c5:cb:47:da:f2:85:95:94:e7:91:3b: 8d:e3:8b:aa:a6:8e:6a:d3:e0:f2:c9:01:2b:02:70: a7:82:1b:25:8c:ac:d1:fc:42:dc:0b:e8:24:18:0f: 7c:87:e5:26:ce:f1:0d:57:f1:09:11:76:5c:3c:ea: f4:fe:89:9c:68:b2:aa:35:65:66:d0:ac:94:c9:b3: c4:ff:50:02:d4:33:f8:19:0a:d5:74:8b:a4:36:5a: e5:39:3f:7a:41:5d:63:8e:d0:69:15:ef:c8:3a:8c: e4:37:e1:e2:02:13:11:0d:b2:39:61:06:98:14:62: 94:e5:16:5b:d6:b7:1e:00:71:f0:d7:f3:90:0e:25: f8:5a:39:90:6c:af:12:4a:c7:6b:78:20:91:8d:d0: b8:e1:d2:af:91:86:eb:7e:88:46:3f:e8:a7:fe:e2: cc:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:80:4D:A9:82:CB:E8:E7:6C:09:84:9D:1A:C6:55:A5:16:17:99:6F X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:be:75:13:65:62:ea:8f:fe:f3:84:b8:1b:c2:d8:a9:8a:1c: 97:db:e2:02:be:d1:8a:a2:5b:f4:46:f7:22:c8:4d:8c:a7:79: 41:33:e1:45:c2:5d:0a:73:6f:73:87:f4:11:7c:74:f0:01:bc: 43:2c:13:3b:14:63:98:1c:b9:e8:4d:6f:08:ac:53:4f:33:5f: 5e:56:23:7e:93:74:d0:27:10:91:64:9a:eb:f9:75:ba:cf:ba: 8e:44:65:eb:f6:35:8e:4c:bf:d9:15:ee:d1:00:ef:86:83:12: 41:85:42:d9:aa:c3:a1:f2:98:d7:9a:e8:64:af:bb:e0:d5:85: 72:9e:52:3e:1e:b2:c4:94:af:47:54:4e:bc:69:da:5b:0c:dd: 5d:35:d4:26:ef:d6:40:33:9e:a8:54:ef:1b:11:0d:54:d2:89: fd:c8:6a:6d:b4:61:be:e5:09:77:9d:67:81:70:83:78:64:7e: b5:58:4b:e7:f3:2c:a8:2b:d3:1f:a7:33:1a:af:ce:56:9e:fb: 8c:28:1d:dd:21:f7:c7:9a:0d:20:11:07:ac:cf:b6:90:de:0e: d4:aa:a9:3b:6b:20:1a:43:22:2c:50:b6:cc:dc:b8:f8:44:c8: f9:ed:34:3a:cf:74:3e:dc:bc:88:82:38:c1:04:dd:45:66:1b: 11:5e:96:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjUwODEwMTkzNjQwWhcNMjUwODE3MTkzNjQwWjAYMRYwFAYD VQQDEw02ODk4ZjRjOC02ZWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqAcH8cQzDI14E1x8RoF3XBwudeIU5lg1TxbUUtIhC426M1yUlZnKK3+LDX9 LYiX811nhv/PPPF4PEHuf5QV+9bgGA5iKhGt4j9LJFgUUhWuSFP0YEen7SNI7Gza xctH2vKFlZTnkTuN44uqpo5q0+DyyQErAnCnghsljKzR/ELcC+gkGA98h+UmzvEN V/EJEXZcPOr0/omcaLKqNWVm0KyUybPE/1AC1DP4GQrVdIukNlrlOT96QV1jjtBp Fe/IOozkN+HiAhMRDbI5YQaYFGKU5RZb1rceAHHw1/OQDiX4WjmQbK8SSsdreCCR jdC44dKvkYbrfohGP+in/uLMtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGATamC y+jnbAmEnRrGVaUWF5lvMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC9BMDU5QUY4QTY0MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBL bjItWmNNR0x5dld5ZElFWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAovnUTZWLqj/7zhLgbwtipihyX2+ICvtGKolv0RvciyE2Mp3lBM+FF wl0Kc29zh/QRfHTwAbxDLBM7FGOYHLnoTW8IrFNPM19eViN+k3TQJxCRZJrr+XW6 z7qORGXr9jWOTL/ZFe7RAO+GgxJBhULZqsOh8pjXmuhkr7vg1YVynlI+HrLElK9H VE68adpbDN1dNdQm79ZAM56oVO8bEQ1U0on9yGpttGG+5Ql3nWeBcIN4ZH61WEvn 8yyoK9MfpzMar85WnvuMKB3dIffHmg0gEQesz7aQ3g7Uqqk7ayAaQyIsULbM3Lj4 RMj57TQ6z3Q+3LyIgjjBBN1FZhsRXpYT -----END CERTIFICATE-----Generated at Sun Aug 10 21:11:41 2025 by rpki-client