$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft File: 83-esXYeax0_fqbWxvyluZc5FKs.mft (raw, json) Hash identifier: jrno4NwoU8LljgM5aFX3lQIFyP6Jgx4GA++EB9/3m6c= Subject key identifier: 42:13:4A:74:A8:C6:76:BD:0D:6B:BB:20:23:B1:CB:E6:7E:0F:AE:FF Authority key identifier: F3:7F:9E:B1:76:1E:6B:1D:3F:7E:A6:D6:C6:FC:A5:B9:97:39:14:AB Certificate issuer: /CN=A91B8FA2/serialNumber=F37F9EB1761E6B1D3F7EA6D6C6FCA5B9973914AB Certificate serial: 042D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83-esXYeax0_fqbWxvyluZc5FKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft Manifest number: 0428 Signing time: Sun 15 Jun 2025 00:05:32 +0000 Manifest this update: Sun 15 Jun 2025 00:05:32 +0000 Manifest next update: Sun 22 Jun 2025 00:05:32 +0000 Files and hashes: 1: 83-esXYeax0_fqbWxvyluZc5FKs.crl (hash: 4NVOkBVLbaO/NjcQ8/4PChgTjk62/7LDlWI0CJFDC9I=) 2: FEDE0F2066C611EC93A73A3DC4F9AE02.roa (hash: OrbaAoDN+OT8Q5oOwIoJmcxxZsgOvnH47cr4vwyZT3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.crl rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83-esXYeax0_fqbWxvyluZc5FKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:05:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1069 (0x42d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8FA2, serialNumber=F37F9EB1761E6B1D3F7EA6D6C6FCA5B9973914AB Validity Not Before: Jun 15 00:05:32 2025 GMT Not After : Jun 22 00:05:32 2025 GMT Subject: CN=684e0e4c-ec5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:a0:03:51:60:0d:50:17:f4:bd:d2:5a:e7:d7: ad:d9:e6:d2:b9:65:d6:d4:fa:e4:a5:fc:5a:37:21: 36:cd:ea:a7:13:1c:7b:d2:a1:9d:b6:b7:7b:89:04: 8d:47:51:61:f1:6d:f6:58:e3:9f:7f:49:2f:e6:17: a9:ad:dc:af:49:db:f8:d0:2d:e1:59:1b:fc:a8:64: 77:01:80:16:9c:01:c3:e2:c1:98:3e:eb:48:78:2b: ab:2d:69:96:c7:6a:92:4d:de:50:02:e0:34:b1:f5: 08:4e:9e:8f:25:ff:4e:e1:24:fb:b4:4e:7b:93:97: 87:c5:6a:6f:b5:9c:97:f8:1f:29:ce:2f:05:22:60: d3:76:29:19:50:b6:30:36:c8:04:ec:a5:8b:5f:73: 3a:18:bd:d2:1e:cc:a9:d2:29:5b:cc:e1:87:49:82: 98:6d:fb:1d:a7:25:97:fe:25:c1:8b:e4:46:86:07: 8c:de:76:31:fb:1b:e9:a5:82:dd:89:01:9f:b8:93: 09:32:a1:d4:f8:41:62:2d:44:c3:a5:7f:1c:38:82: 32:b0:ac:89:70:35:7d:66:3e:91:4b:72:09:33:36: 3a:1c:2e:62:f9:5c:7d:c6:3f:d8:f5:41:d7:49:22: b2:ba:6c:7f:e2:3e:d0:49:75:0c:5f:f8:9a:10:8c: e2:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:13:4A:74:A8:C6:76:BD:0D:6B:BB:20:23:B1:CB:E6:7E:0F:AE:FF X509v3 Authority Key Identifier: keyid:F3:7F:9E:B1:76:1E:6B:1D:3F:7E:A6:D6:C6:FC:A5:B9:97:39:14:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83-esXYeax0_fqbWxvyluZc5FKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:c7:74:2d:a7:51:6c:a9:c9:cb:07:42:4d:6e:7e:3d:85:de: d0:91:90:9c:bb:a1:82:c3:c5:8c:04:6c:40:3f:03:32:b5:fd: 30:bb:47:0e:68:a6:fc:9b:4a:09:f4:dc:c4:3a:60:67:3b:8e: e3:7f:f3:2e:8f:c7:4e:9b:1a:cf:7d:21:fd:79:01:80:86:3a: e6:c9:d1:8a:99:36:d4:6d:1c:8e:e0:ef:85:67:5d:96:92:1e: 80:ed:a5:80:c5:ca:18:ac:7e:ec:31:bb:48:1d:c4:67:e7:ba: 55:88:2d:1e:c0:7f:2f:3b:0d:92:a0:10:58:27:0b:6e:46:58: 2e:2e:fe:88:8a:73:de:e1:b7:59:e0:e6:03:49:e9:b0:cf:4f: 1a:45:36:3f:6d:44:ae:d1:c0:80:1c:c5:90:21:84:0a:57:60: f8:23:73:cb:d4:c3:ee:97:68:01:1d:7b:db:17:9a:d8:e4:87: 40:b2:99:3f:99:3b:60:33:1e:69:a4:54:b9:4c:a0:62:7c:2a: 2a:55:f0:15:e5:78:32:55:a0:d6:b8:89:d0:63:14:8f:b7:84: e8:b3:ce:99:37:15:81:48:6b:05:08:0e:5d:39:e2:d8:d9:c6: 04:8c:55:e3:00:78:55:6a:57:91:a5:e8:a7:50:7d:e6:6c:e9: f5:9d:a5:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhGQTIxMTAvBgNVBAUTKEYzN0Y5RUIxNzYxRTZCMUQzRjdFQTZENkM2RkNBNUI5 OTczOTE0QUIwHhcNMjUwNjE1MDAwNTMyWhcNMjUwNjIyMDAwNTMyWjAYMRYwFAYD VQQDEw02ODRlMGU0Yy1lYzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA86ADUWANUBf0vdJa59et2ebSuWXW1PrkpfxaNyE2zeqnExx70qGdtrd7iQSN R1Fh8W32WOOff0kv5heprdyvSdv40C3hWRv8qGR3AYAWnAHD4sGYPutIeCurLWmW x2qSTd5QAuA0sfUITp6PJf9O4ST7tE57k5eHxWpvtZyX+B8pzi8FImDTdikZULYw NsgE7KWLX3M6GL3SHsyp0ilbzOGHSYKYbfsdpyWX/iXBi+RGhgeM3nYx+xvppYLd iQGfuJMJMqHU+EFiLUTDpX8cOIIysKyJcDV9Zj6RS3IJMzY6HC5i+Vx9xj/Y9UHX SSKyumx/4j7QSXUMX/iaEIzivwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEITSnSo xna9DWu7ICOxy+Z+D67/MB8GA1UdIwQYMBaAFPN/nrF2HmsdP36m1sb8pbmXORSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEZBMi85MUI3REY0QzY2 QzIxMUVDQjU1QTlGMzFDNEY5QUUwMi84My1lc1hZZWF4MF9mcWJXeHZ5bHVaYzVG S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgzLWVzWFllYXgwX2ZxYld4dnlsdVpjNUZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEZBMi85MUI3REY0QzY2QzIxMUVDQjU1QTlGMzFDNEY5QUUwMi84My1lc1hZZWF4 MF9mcWJXeHZ5bHVaYzVGS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCux3Qtp1FsqcnLB0JNbn49hd7QkZCcu6GCw8WMBGxAPwMytf0wu0cO aKb8m0oJ9NzEOmBnO47jf/Muj8dOmxrPfSH9eQGAhjrmydGKmTbUbRyO4O+FZ12W kh6A7aWAxcoYrH7sMbtIHcRn57pViC0ewH8vOw2SoBBYJwtuRlguLv6IinPe4bdZ 4OYDSemwz08aRTY/bUSu0cCAHMWQIYQKV2D4I3PL1MPul2gBHXvbF5rY5IdAspk/ mTtgMx5ppFS5TKBifCoqVfAV5XgyVaDWuInQYxSPt4Tos86ZNxWBSGsFCA5dOeLY 2cYEjFXjAHhValeRpeinUH3mbOn1naX5 -----END CERTIFICATE-----Generated at Sun Jun 15 04:58:02 2025 by rpki-client