$ rpki-client -vvf rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft File: 8Esk0kgu8B-It9DWKlOSJzm3iA0.mft (raw, json) Hash identifier: jc7ykQdowWrAUYAGOICIZdWcleilHOZO4HFMzJ0FK94= Subject key identifier: EA:FD:BB:96:EF:42:ED:AB:1F:5E:5B:A0:21:81:59:F9:86:3A:5F:7A Authority key identifier: F0:4B:24:D2:48:2E:F0:1F:88:B7:D0:D6:2A:53:92:27:39:B7:88:0D Certificate issuer: /CN=A91D112B/serialNumber=F04B24D2482EF01F88B7D0D62A53922739B7880D Certificate serial: 074A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft Manifest number: 0741 Signing time: Thu 12 Jun 2025 21:24:58 +0000 Manifest this update: Thu 12 Jun 2025 21:24:57 +0000 Manifest next update: Thu 19 Jun 2025 21:24:57 +0000 Files and hashes: 1: 8Esk0kgu8B-It9DWKlOSJzm3iA0.crl (hash: bBqAL92ElODGy4giJn4YmGQxutedipx38RQJOGIcduE=) 2: D00FC228F46111ECA631AC55C4F9AE02.roa (hash: SdQIXAZgLAYC0wC8aVzYt0Gf/I3END/T1//qc7xaDnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.crl rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1866 (0x74a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D112B, serialNumber=F04B24D2482EF01F88B7D0D62A53922739B7880D Validity Not Before: Jun 12 21:24:57 2025 GMT Not After : Jun 19 21:24:57 2025 GMT Subject: CN=684b45a9-abd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2d:a5:6d:db:e9:f3:ef:27:57:95:56:dd:05: 64:7f:d8:85:1f:13:7d:03:df:c1:38:fc:a6:15:84: 86:e7:bf:73:17:44:bc:39:b8:0c:c2:46:f0:1e:5d: 4a:cf:0a:f4:5d:c0:1b:df:e0:68:54:3a:2b:6b:8f: ee:c2:78:ce:14:df:ce:88:44:ba:e7:a5:ad:93:29: 4b:60:03:46:7a:87:ca:3f:c7:a2:d6:27:d5:2d:52: 89:01:18:db:b6:96:24:5c:b1:26:b9:01:12:e3:27: ef:0d:79:f9:69:ea:b2:22:e5:be:ed:f9:7a:d6:b5: f7:d9:8a:71:67:cd:40:74:47:94:e8:3a:bc:8f:83: 23:28:ab:4e:5a:6a:65:0e:03:32:02:ad:c7:e7:02: 6c:78:5f:74:c4:4e:34:1d:f0:81:d9:93:c4:6c:0d: 19:d9:f4:54:87:bb:24:85:be:61:60:50:b7:e8:f4: ca:1c:1a:bc:65:e3:89:f0:3c:c7:d5:45:e0:24:e7: f6:4c:be:c3:42:b7:ed:86:9c:81:68:32:53:41:f5: fc:62:61:2a:94:97:13:a4:d7:e3:b8:20:a5:b6:c7: 80:49:89:5b:07:b8:e9:ac:e1:0a:f1:31:bf:01:24: 2a:56:f4:8e:f7:c2:19:30:71:a6:5f:fd:d4:27:3a: ff:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:FD:BB:96:EF:42:ED:AB:1F:5E:5B:A0:21:81:59:F9:86:3A:5F:7A X509v3 Authority Key Identifier: keyid:F0:4B:24:D2:48:2E:F0:1F:88:B7:D0:D6:2A:53:92:27:39:B7:88:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:ff:15:a0:ee:e6:5f:6b:86:0c:51:15:e1:2f:a6:d9:3e:33: 43:fb:e4:f7:99:b3:44:82:ce:bd:e5:b2:44:74:f3:83:02:4c: 5b:4e:7f:7c:43:d8:26:1e:91:f1:00:8f:76:7e:7a:98:2a:b8: 2f:53:97:4e:17:d7:c4:15:d9:ee:9f:47:ea:9b:11:52:ce:b7: 19:0e:24:2b:9e:58:87:5a:8e:6d:66:c3:ef:50:b6:7d:b0:6f: 6e:32:9c:b2:4a:1e:22:55:1d:98:e1:97:77:0f:fb:b7:b0:b3: 92:6d:d1:05:2a:4d:e8:1b:22:06:15:6b:93:15:58:fc:4e:f5: fd:0c:d0:98:c8:75:63:a2:9e:9e:54:9f:3f:81:1b:03:20:f6: 1f:1e:c6:e9:85:de:21:80:b1:7b:96:eb:54:fe:a5:39:4d:31: f8:d2:a6:b4:c4:08:cb:b1:b0:b7:88:eb:55:2d:e4:47:71:c5: 7e:67:0d:3d:b0:bb:41:43:66:c3:c3:61:c4:f5:13:1f:8b:5e: ee:48:99:d0:7a:bc:98:be:34:e9:15:18:48:4e:82:e9:eb:a1: 75:a3:f9:54:6e:24:32:69:47:51:86:93:9f:b2:8d:21:03:69: 36:9a:f7:0c:63:15:64:2f:ee:e0:e5:8e:a8:1d:c6:a8:77:57: e2:6c:29:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExMkIxMTAvBgNVBAUTKEYwNEIyNEQyNDgyRUYwMUY4OEI3RDBENjJBNTM5MjI3 MzlCNzg4MEQwHhcNMjUwNjEyMjEyNDU3WhcNMjUwNjE5MjEyNDU3WjAYMRYwFAYD VQQDEw02ODRiNDVhOS1hYmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzy2lbdvp8+8nV5VW3QVkf9iFHxN9A9/BOPymFYSG579zF0S8ObgMwkbwHl1K zwr0XcAb3+BoVDora4/uwnjOFN/OiES656WtkylLYANGeofKP8ei1ifVLVKJARjb tpYkXLEmuQES4yfvDXn5aeqyIuW+7fl61rX32YpxZ81AdEeU6Dq8j4MjKKtOWmpl DgMyAq3H5wJseF90xE40HfCB2ZPEbA0Z2fRUh7skhb5hYFC36PTKHBq8ZeOJ8DzH 1UXgJOf2TL7DQrfthpyBaDJTQfX8YmEqlJcTpNfjuCCltseASYlbB7jprOEK8TG/ ASQqVvSO98IZMHGmX/3UJzr/6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOr9u5bv Qu2rH15boCGBWfmGOl96MB8GA1UdIwQYMBaAFPBLJNJILvAfiLfQ1ipTkic5t4gN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTEyQi8xQ0QwRTA1MDJG MzQxMUVCOTdGRTE3ODZDNEY5QUUwMi84RXNrMGtndThCLUl0OURXS2xPU0p6bTNp QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFc2swa2d1OEItSXQ5RFdLbE9TSnptM2lBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTEyQi8xQ0QwRTA1MDJGMzQxMUVCOTdGRTE3ODZDNEY5QUUwMi84RXNrMGtndThC LUl0OURXS2xPU0p6bTNpQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC/xWg7uZfa4YMURXhL6bZPjND++T3mbNEgs695bJEdPODAkxbTn98 Q9gmHpHxAI92fnqYKrgvU5dOF9fEFdnun0fqmxFSzrcZDiQrnliHWo5tZsPvULZ9 sG9uMpyySh4iVR2Y4Zd3D/u3sLOSbdEFKk3oGyIGFWuTFVj8TvX9DNCYyHVjop6e VJ8/gRsDIPYfHsbphd4hgLF7lutU/qU5TTH40qa0xAjLsbC3iOtVLeRHccV+Zw09 sLtBQ2bDw2HE9RMfi17uSJnQeryYvjTpFRhIToLp66F1o/lUbiQyaUdRhpOfso0h A2k2mvcMYxVkL+7g5Y6oHcaod1fibCnP -----END CERTIFICATE-----Generated at Sat Jun 14 18:57:55 2025 by rpki-client