$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft File: esDADw_KR57kZeT39UXoyUmT1hw.mft (raw, json) Hash identifier: Dkzml7zKG01+GsTpSXtOmcZIk1yXDWrqdotqZc3mT0A= Subject key identifier: CB:49:16:25:0F:D6:5E:88:D9:80:9D:70:F7:18:44:9E:42:50:2E:BA Authority key identifier: 7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C Certificate issuer: /CN=A91D1691/serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Certificate serial: 2436 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft Manifest number: 240B Signing time: Thu 24 Apr 2025 15:50:21 +0000 Manifest this update: Thu 24 Apr 2025 15:50:21 +0000 Manifest next update: Thu 01 May 2025 15:50:21 +0000 Files and hashes: 1: esDADw_KR57kZeT39UXoyUmT1hw.crl (hash: +xB4Zqy1BKWuxTfmdHXDo0bhvotccw7CtCRoGTV/he0=) 2: E8976FF0928211EF8D2A551EC4F9AE02.roa (hash: ZQDzR5Xdny7JF3r/Zb16j0lL2mL345yAUojH7vcVjic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9270 (0x2436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691, serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Validity Not Before: Apr 24 15:50:21 2025 GMT Not After : May 1 15:50:21 2025 GMT Subject: CN=680a5dbd-8a7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:8b:c0:e8:48:23:81:c3:be:2b:b9:10:a5:d8: fc:42:c3:4f:b3:84:4a:81:23:a2:90:7f:1e:32:ec: 46:7e:10:63:f2:85:4b:cd:6c:8f:b9:da:de:31:25: 59:69:ee:d0:17:48:ba:4f:d8:f5:5a:20:47:fe:bc: 3f:32:ca:44:f9:f0:fc:7f:cb:32:ac:9a:7d:b4:33: 26:c7:5d:6f:d1:ef:75:2c:c9:62:ea:00:23:1b:c6: bb:2f:4b:3c:64:1a:a1:8c:eb:e4:0b:d2:1d:5c:e3: 2f:7c:ce:be:7e:57:5f:fe:d0:ee:63:a9:7d:59:de: a6:c8:57:0d:f3:70:97:7d:81:2c:5e:c8:f6:3d:c4: 16:6d:d0:2f:2e:cd:c6:f7:5d:29:ef:2a:b9:bf:76: c1:c6:6e:fd:a5:ff:3f:ee:e8:8a:eb:dd:a1:62:00: de:e9:45:7d:6d:f1:84:11:36:c8:41:e8:61:ad:b4: b8:bc:aa:ef:9e:6d:02:51:8f:ed:44:1e:c4:b2:42: 8e:2b:3c:45:bf:ad:7d:09:ce:79:7f:e0:b8:7f:c8: 6b:ca:32:46:e3:36:6f:2c:f6:54:37:41:41:d9:e5: c2:32:67:f3:38:7c:4f:40:73:b7:8e:eb:54:ff:d9: 56:0a:de:f1:76:36:7d:a6:59:c2:36:7b:0a:90:dc: 26:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:49:16:25:0F:D6:5E:88:D9:80:9D:70:F7:18:44:9E:42:50:2E:BA X509v3 Authority Key Identifier: keyid:7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:26:8f:0a:4b:26:15:56:24:9c:0a:25:ab:c8:42:53:ad:64: fe:69:89:ec:68:07:9f:ac:e7:16:62:7b:12:54:34:bd:4a:d9: f3:3c:7d:20:99:b3:2f:64:72:5c:87:4d:1d:b5:32:f1:6b:e7: 68:63:03:b5:24:a0:31:68:d3:40:a9:a4:01:c8:d2:38:fe:4d: 3c:3d:d3:41:72:e0:32:89:70:3e:a5:9f:5a:b7:36:03:0b:37: 57:11:5d:05:07:68:f7:47:30:5d:28:75:a2:19:e5:2f:ab:41: 05:f1:ca:f6:bd:fc:53:8a:50:38:16:bf:c2:3a:d6:fb:61:ad: 35:c6:48:84:69:7e:53:cc:45:0d:d9:bc:3c:a6:b6:37:25:39: b2:8e:e0:17:a7:31:29:50:64:c7:88:ee:07:32:5e:c0:1f:99: fd:11:b0:19:c0:5f:59:aa:9e:75:8b:1b:e3:28:11:f1:cb:d8: bc:33:4d:81:33:cc:55:d2:99:1c:9a:94:d0:8a:d7:a8:02:a9: 86:a7:20:23:a6:aa:3f:5b:ba:7f:7a:54:e8:f2:e5:60:e3:36: a3:d9:f9:b5:14:85:3c:f4:af:f7:2f:73:17:92:86:ae:cb:c9: 05:e2:33:71:9e:a0:86:69:74:89:74:67:52:18:ca:c4:7f:b7: 17:0e:21:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKDdBQzBDMDBGMEZDQTQ3OUVFNDY1RTRGN0Y1NDVFOEM5 NDk5M0Q2MUMwHhcNMjUwNDI0MTU1MDIxWhcNMjUwNTAxMTU1MDIxWjAYMRYwFAYD VQQDEw02ODBhNWRiZC04YTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IvA6EgjgcO+K7kQpdj8QsNPs4RKgSOikH8eMuxGfhBj8oVLzWyPudreMSVZ ae7QF0i6T9j1WiBH/rw/MspE+fD8f8syrJp9tDMmx11v0e91LMli6gAjG8a7L0s8 ZBqhjOvkC9IdXOMvfM6+fldf/tDuY6l9Wd6myFcN83CXfYEsXsj2PcQWbdAvLs3G 910p7yq5v3bBxm79pf8/7uiK692hYgDe6UV9bfGEETbIQehhrbS4vKrvnm0CUY/t RB7EskKOKzxFv619Cc55f+C4f8hryjJG4zZvLPZUN0FB2eXCMmfzOHxPQHO3jutU /9lWCt7xdjZ9plnCNnsKkNwmswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtJFiUP 1l6I2YCdcPcYRJ5CUC66MB8GA1UdIwQYMBaAFHrAwA8Pykee5GXk9/VF6MlJk9Yc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81QUZDMjY5MjY1 MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1N2taZVQzOVVYb3lVbVQx aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzREFEd19LUjU3a1plVDM5VVhveVVtVDFody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTY5MS81QUZDMjY5MjY1MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1 N2taZVQzOVVYb3lVbVQxaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpJo8KSyYVViScCiWryEJTrWT+aYnsaAefrOcWYnsSVDS9StnzPH0g mbMvZHJch00dtTLxa+doYwO1JKAxaNNAqaQByNI4/k08PdNBcuAyiXA+pZ9atzYD CzdXEV0FB2j3RzBdKHWiGeUvq0EF8cr2vfxTilA4Fr/COtb7Ya01xkiEaX5TzEUN 2bw8prY3JTmyjuAXpzEpUGTHiO4HMl7AH5n9EbAZwF9Zqp51ixvjKBHxy9i8M02B M8xV0pkcmpTQiteoAqmGpyAjpqo/W7p/elTo8uVg4zaj2fm1FIU89K/3L3MXkoau y8kF4jNxnqCGaXSJdGdSGMrEf7cXDiGT -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:21 2025 by rpki-client