$ rpki-client -vvf rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft File: 8Esk0kgu8B-It9DWKlOSJzm3iA0.mft (raw, json) Hash identifier: KzKnvQQg/fATfDL7Om6tQK4pig+k0xLLBqjjwGdV2AE= Subject key identifier: 2B:AC:60:43:32:8A:FC:FE:F2:76:1E:07:87:64:81:6F:2E:92:0B:D3 Authority key identifier: F0:4B:24:D2:48:2E:F0:1F:88:B7:D0:D6:2A:53:92:27:39:B7:88:0D Certificate issuer: /CN=A91D112B/serialNumber=F04B24D2482EF01F88B7D0D62A53922739B7880D Certificate serial: 076A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft Manifest number: 0760 Signing time: Fri 08 Aug 2025 22:02:38 +0000 Manifest this update: Fri 08 Aug 2025 22:02:38 +0000 Manifest next update: Fri 15 Aug 2025 22:02:38 +0000 Files and hashes: 1: 8Esk0kgu8B-It9DWKlOSJzm3iA0.crl (hash: U0L2ONwSdGcjpEqWBg7Q2mluzwSzubdZruiyFGCBa38=) 2: D00FC228F46111ECA631AC55C4F9AE02.roa (hash: LAD7dRCik0KzxFNr8quzKbBZIsig686rpItw8aFMMeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.crl rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1898 (0x76a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D112B, serialNumber=F04B24D2482EF01F88B7D0D62A53922739B7880D Validity Not Before: Aug 8 22:02:38 2025 GMT Not After : Aug 15 22:02:38 2025 GMT Subject: CN=689673fe-20d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:0b:cb:a4:fd:db:b9:c8:d4:a6:5f:ab:52:64: b0:7b:4d:a3:4d:23:ba:18:a4:29:4b:79:5b:bd:a9: f8:4f:49:03:37:5d:b1:2f:0e:50:20:e1:cc:57:76: b6:3e:1d:1d:9a:32:2a:ba:76:8e:42:43:ed:10:71: 4a:f3:68:54:5d:27:3d:13:9a:aa:38:18:15:5c:b7: 88:f3:15:76:ce:5a:b5:d3:fd:bd:c6:a9:a6:c8:db: 45:ea:a3:39:cf:c6:6c:6e:63:73:83:87:cc:37:d0: 2b:d7:03:1a:54:20:58:97:a4:58:3a:54:ea:47:2a: 66:bb:0b:43:a6:df:d4:c9:06:f5:f9:72:bb:6a:a0: ce:41:71:90:64:c0:37:1a:a2:b4:05:d4:cd:8a:06: 62:a1:df:fb:ea:8d:f1:c0:be:cf:ca:27:9c:2c:d3: 67:7f:12:6b:65:af:41:01:17:5c:67:22:59:bb:df: c4:17:e6:7e:d9:dc:ee:7d:eb:92:cd:bb:bf:e0:af: ce:ba:2f:34:ff:6f:1c:bc:cb:6a:dd:7a:bb:68:4f: b0:43:81:cb:e5:40:6c:d1:06:f2:57:b5:c0:76:63: 7e:0d:56:28:b3:b5:83:72:bc:6f:30:73:c8:9e:11: a4:23:a4:ed:9f:ac:ba:0d:4e:64:be:ac:4c:96:40: 4e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:AC:60:43:32:8A:FC:FE:F2:76:1E:07:87:64:81:6F:2E:92:0B:D3 X509v3 Authority Key Identifier: keyid:F0:4B:24:D2:48:2E:F0:1F:88:B7:D0:D6:2A:53:92:27:39:B7:88:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:a1:6c:24:c2:75:db:cd:6d:da:38:db:36:16:6b:2d:83:0e: 4e:10:a3:c9:e6:7d:5c:47:39:29:25:fb:79:b9:30:ee:5b:73: 88:07:ba:c9:fe:7b:5c:c9:3c:f9:26:94:9b:f6:77:40:39:2e: 7d:d3:0b:1a:2b:7c:70:f9:ec:97:22:d8:93:03:bd:02:62:1b: dc:9e:d2:71:64:31:91:74:d1:c8:86:2c:85:29:71:65:32:77: 73:9b:91:3d:27:ea:93:02:59:2d:15:53:67:f2:34:ea:da:b7: e4:72:8a:3f:3f:14:4b:95:7e:66:5b:ec:f9:e7:10:50:cc:a5: 4c:68:99:cb:37:ac:33:1d:5e:98:54:f5:6e:2c:77:4a:58:cf: 7c:26:8f:15:ca:2f:a9:aa:81:33:f4:09:a2:ea:39:7c:d0:3d: 65:13:91:7d:76:8f:d1:b9:8b:f3:de:a5:ea:c4:67:a7:34:b2: 65:3b:0d:88:b5:93:b8:15:87:84:55:7a:40:de:a5:22:a6:0c: cb:13:a0:fa:56:df:42:e3:ed:4d:96:12:31:07:bc:53:3d:e2: be:27:ab:1c:d8:30:cb:04:fe:84:ed:c1:3c:bc:f1:a6:26:4c: 94:05:d0:f1:e8:a7:e5:fa:0c:f8:4f:da:ed:39:8a:ed:7b:63: 94:e3:14:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExMkIxMTAvBgNVBAUTKEYwNEIyNEQyNDgyRUYwMUY4OEI3RDBENjJBNTM5MjI3 MzlCNzg4MEQwHhcNMjUwODA4MjIwMjM4WhcNMjUwODE1MjIwMjM4WjAYMRYwFAYD VQQDEw02ODk2NzNmZS0yMGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlwvLpP3bucjUpl+rUmSwe02jTSO6GKQpS3lbvan4T0kDN12xLw5QIOHMV3a2 Ph0dmjIqunaOQkPtEHFK82hUXSc9E5qqOBgVXLeI8xV2zlq10/29xqmmyNtF6qM5 z8ZsbmNzg4fMN9Ar1wMaVCBYl6RYOlTqRypmuwtDpt/UyQb1+XK7aqDOQXGQZMA3 GqK0BdTNigZiod/76o3xwL7PyiecLNNnfxJrZa9BARdcZyJZu9/EF+Z+2dzufeuS zbu/4K/Oui80/28cvMtq3Xq7aE+wQ4HL5UBs0QbyV7XAdmN+DVYos7WDcrxvMHPI nhGkI6Ttn6y6DU5kvqxMlkBOgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCusYEMy ivz+8nYeB4dkgW8ukgvTMB8GA1UdIwQYMBaAFPBLJNJILvAfiLfQ1ipTkic5t4gN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTEyQi8xQ0QwRTA1MDJG MzQxMUVCOTdGRTE3ODZDNEY5QUUwMi84RXNrMGtndThCLUl0OURXS2xPU0p6bTNp QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFc2swa2d1OEItSXQ5RFdLbE9TSnptM2lBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTEyQi8xQ0QwRTA1MDJGMzQxMUVCOTdGRTE3ODZDNEY5QUUwMi84RXNrMGtndThC LUl0OURXS2xPU0p6bTNpQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUoWwkwnXbzW3aONs2Fmstgw5OEKPJ5n1cRzkpJft5uTDuW3OIB7rJ /ntcyTz5JpSb9ndAOS590wsaK3xw+eyXItiTA70CYhvcntJxZDGRdNHIhiyFKXFl Mndzm5E9J+qTAlktFVNn8jTq2rfkcoo/PxRLlX5mW+z55xBQzKVMaJnLN6wzHV6Y VPVuLHdKWM98Jo8Vyi+pqoEz9Ami6jl80D1lE5F9do/RuYvz3qXqxGenNLJlOw2I tZO4FYeEVXpA3qUipgzLE6D6Vt9C4+1NlhIxB7xTPeK+J6sc2DDLBP6E7cE8vPGm JkyUBdDx6Kfl+gz4T9rtOYrte2OU4xTB -----END CERTIFICATE-----Generated at Sat Aug 9 14:23:44 2025 by rpki-client