$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft File: 83-esXYeax0_fqbWxvyluZc5FKs.mft (raw, json) Hash identifier: 2GPKu3K65CYcHTmfQ77IqO8ZCtEPJOMnHeUVygTKOYA= Subject key identifier: 4A:A9:F2:F3:62:6C:14:33:FE:D0:4B:20:57:8F:03:99:76:FC:50:55 Authority key identifier: F3:7F:9E:B1:76:1E:6B:1D:3F:7E:A6:D6:C6:FC:A5:B9:97:39:14:AB Certificate issuer: /CN=A91B8FA2/serialNumber=F37F9EB1761E6B1D3F7EA6D6C6FCA5B9973914AB Certificate serial: 0447 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83-esXYeax0_fqbWxvyluZc5FKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft Manifest number: 0442 Signing time: Tue 05 Aug 2025 00:46:45 +0000 Manifest this update: Tue 05 Aug 2025 00:46:45 +0000 Manifest next update: Tue 12 Aug 2025 00:46:45 +0000 Files and hashes: 1: 83-esXYeax0_fqbWxvyluZc5FKs.crl (hash: VK5JndFVRcgoSFlKmG1douZi1deusCAQZKyO1tLcZBM=) 2: FEDE0F2066C611EC93A73A3DC4F9AE02.roa (hash: OrbaAoDN+OT8Q5oOwIoJmcxxZsgOvnH47cr4vwyZT3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.crl rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83-esXYeax0_fqbWxvyluZc5FKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 00:46:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1095 (0x447) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8FA2, serialNumber=F37F9EB1761E6B1D3F7EA6D6C6FCA5B9973914AB Validity Not Before: Aug 5 00:46:45 2025 GMT Not After : Aug 12 00:46:45 2025 GMT Subject: CN=68915475-e9c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:03:bf:2b:95:b9:d3:c7:9d:70:8f:63:f5:dc: 69:51:e1:4d:e3:0c:9d:6e:1e:4a:fc:83:8e:49:3d: 79:74:8c:e2:12:f4:de:24:90:fc:a8:e6:56:a7:25: 6d:4a:7b:53:3c:f4:59:9d:b3:95:17:22:cc:38:04: 6b:ac:82:fb:11:91:15:c7:1c:b4:eb:8b:6d:78:50: c7:3a:32:55:cd:d8:7a:a7:a1:17:a9:7c:1e:69:e8: 51:97:78:49:5c:31:6e:c3:b5:d7:d1:e5:5f:3e:cd: bc:bc:6b:ce:9e:4f:96:35:ed:a0:b1:38:0d:13:12: 6e:75:3b:ac:a4:b7:ee:22:a1:7d:2c:33:e1:b2:64: d1:75:c5:4f:5f:ca:ab:37:2b:27:63:23:d4:7c:ce: 3a:c3:e3:67:21:55:42:2e:74:3e:56:14:1d:5b:06: fd:de:20:07:3e:e8:46:4d:94:7d:1c:14:c0:40:f4: 7f:99:0c:8f:16:21:3a:f4:b5:41:3d:02:d4:e2:79: d5:b4:36:02:59:d0:af:77:83:b7:6e:6d:35:60:cc: 35:c0:68:a2:71:19:b0:a1:78:5a:c8:12:61:14:d0: c7:f4:58:b0:ec:8d:4e:7d:1c:95:f5:db:40:e0:60: 1d:1c:fc:dd:1b:7c:b9:b6:14:42:b3:b0:35:26:50: 54:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:A9:F2:F3:62:6C:14:33:FE:D0:4B:20:57:8F:03:99:76:FC:50:55 X509v3 Authority Key Identifier: keyid:F3:7F:9E:B1:76:1E:6B:1D:3F:7E:A6:D6:C6:FC:A5:B9:97:39:14:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83-esXYeax0_fqbWxvyluZc5FKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:03:41:e8:b2:7c:e8:b2:5c:89:e4:e0:e5:8d:2c:a5:9d:91: 76:ef:ef:7c:40:e5:7f:b8:54:1d:68:fd:3a:94:89:e3:c5:05: b0:5a:e9:8a:ae:ac:79:59:e2:6e:5a:5d:0c:75:e9:2c:59:d8: fe:2e:65:88:72:da:48:72:7c:ad:bc:95:da:e4:27:9e:21:d4: 23:52:54:4b:bb:c8:99:93:83:a6:4c:f8:5f:07:31:a4:d6:bd: 70:75:0c:72:6a:cf:98:fe:d2:84:ef:82:3c:95:8f:4b:56:43: b7:57:e3:7f:40:04:76:13:5c:4e:44:b1:07:ee:82:fa:28:80: 59:07:0a:b7:63:ca:dc:b4:d7:76:d9:ca:e5:38:7b:80:96:b3: 4d:f7:b4:33:25:13:34:38:d5:e4:29:03:70:0a:e5:73:2c:35: 85:a9:d9:ef:82:68:25:41:3e:c2:83:1d:50:08:dc:52:51:77: d1:4f:5b:6b:28:b8:07:e9:aa:cf:52:28:f4:56:9e:3a:62:0d: 14:7e:73:55:1a:4d:02:e3:a2:b8:41:cb:fa:15:0a:c9:59:49: 82:c4:f5:90:f0:a1:f7:be:5e:9d:fc:c8:a7:6e:41:fb:6f:09: 43:37:66:0d:a3:b6:77:a6:3f:71:dd:0a:fe:63:02:1b:70:42: c4:8a:b2:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhGQTIxMTAvBgNVBAUTKEYzN0Y5RUIxNzYxRTZCMUQzRjdFQTZENkM2RkNBNUI5 OTczOTE0QUIwHhcNMjUwODA1MDA0NjQ1WhcNMjUwODEyMDA0NjQ1WjAYMRYwFAYD VQQDEw02ODkxNTQ3NS1lOWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+gO/K5W508edcI9j9dxpUeFN4wydbh5K/IOOST15dIziEvTeJJD8qOZWpyVt SntTPPRZnbOVFyLMOARrrIL7EZEVxxy064tteFDHOjJVzdh6p6EXqXweaehRl3hJ XDFuw7XX0eVfPs28vGvOnk+WNe2gsTgNExJudTuspLfuIqF9LDPhsmTRdcVPX8qr NysnYyPUfM46w+NnIVVCLnQ+VhQdWwb93iAHPuhGTZR9HBTAQPR/mQyPFiE69LVB PQLU4nnVtDYCWdCvd4O3bm01YMw1wGiicRmwoXhayBJhFNDH9Fiw7I1OfRyV9dtA 4GAdHPzdG3y5thRCs7A1JlBULQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEqp8vNi bBQz/tBLIFePA5l2/FBVMB8GA1UdIwQYMBaAFPN/nrF2HmsdP36m1sb8pbmXORSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEZBMi85MUI3REY0QzY2 QzIxMUVDQjU1QTlGMzFDNEY5QUUwMi84My1lc1hZZWF4MF9mcWJXeHZ5bHVaYzVG S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgzLWVzWFllYXgwX2ZxYld4dnlsdVpjNUZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEZBMi85MUI3REY0QzY2QzIxMUVDQjU1QTlGMzFDNEY5QUUwMi84My1lc1hZZWF4 MF9mcWJXeHZ5bHVaYzVGS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDA0HosnzoslyJ5ODljSylnZF27+98QOV/uFQdaP06lInjxQWwWumK rqx5WeJuWl0MdeksWdj+LmWIctpIcnytvJXa5CeeIdQjUlRLu8iZk4OmTPhfBzGk 1r1wdQxyas+Y/tKE74I8lY9LVkO3V+N/QAR2E1xORLEH7oL6KIBZBwq3Y8rctNd2 2crlOHuAlrNN97QzJRM0ONXkKQNwCuVzLDWFqdnvgmglQT7Cgx1QCNxSUXfRT1tr KLgH6arPUij0Vp46Yg0UfnNVGk0C46K4Qcv6FQrJWUmCxPWQ8KH3vl6d/MinbkH7 bwlDN2YNo7Z3pj9x3Qr+YwIbcELEirJC -----END CERTIFICATE-----Generated at Wed Aug 6 18:29:55 2025 by rpki-client