$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft File: esDADw_KR57kZeT39UXoyUmT1hw.mft (raw, json) Hash identifier: i9xcL585qdwnd0/Z9s6vBLN9pjXrUVxEhTlhi3NKEOQ= Subject key identifier: 3C:D3:33:3C:60:34:4D:7B:0E:E7:B9:42:50:49:A3:82:0B:C8:29:BB Authority key identifier: 7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C Certificate issuer: /CN=A91D1691/serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Certificate serial: 249C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft Manifest number: 2470 Signing time: Tue 04 Nov 2025 15:52:35 +0000 Manifest this update: Tue 04 Nov 2025 15:52:35 +0000 Manifest next update: Tue 11 Nov 2025 15:52:35 +0000 Files and hashes: 1: esDADw_KR57kZeT39UXoyUmT1hw.crl (hash: a8oTDm4oPGmVtQdcKNu6EkwULa6QnwCpLDfQEMMPt3w=) 2: E8976FF0928211EF8D2A551EC4F9AE02.roa (hash: KaXP6yLqLy6u16YQgUTkal+kksEzHmImjnWX4XyyF9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9372 (0x249c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691, serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Validity Not Before: Nov 4 15:52:35 2025 GMT Not After : Nov 11 15:52:35 2025 GMT Subject: CN=690a2143-0470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:13:7a:a1:83:0b:77:e6:d5:60:89:31:9e:ab: f9:29:5c:48:15:80:2b:4e:fb:29:56:34:83:8f:25: 49:c1:02:ee:ce:d6:f1:c8:3e:62:4a:c6:e2:7b:7c: 08:e0:e8:0e:6e:44:8b:c3:ff:99:25:5e:d5:5f:01: 89:26:6c:82:de:a0:dc:57:fa:2e:e2:61:12:14:5c: da:d3:55:50:b3:ac:fd:c7:91:e1:01:a4:4e:b5:14: b8:d2:b6:57:c3:25:57:9c:e5:ec:86:51:dd:f5:0f: 2d:a4:5b:48:1a:9b:19:6f:58:b1:ea:3a:dd:0d:f4: de:62:fe:25:d4:82:0b:ed:9d:18:a2:17:6e:37:4b: c0:26:86:80:61:98:b3:3d:15:a4:43:70:de:01:dd: 08:90:89:4a:fd:a2:7c:98:af:43:e5:fd:f5:ad:14: 9a:0a:e7:d0:c9:95:c3:fb:94:c3:0f:27:67:f0:e0: 2f:73:40:7d:cb:22:87:44:3a:6d:26:cb:b9:5b:2f: 98:20:66:3f:8b:3a:0f:f4:19:31:e2:71:4c:73:66: 37:a2:7a:81:ab:b6:a8:08:55:55:2a:d6:5b:b6:ad: e1:4d:51:49:a8:3a:b6:3d:d2:97:fc:a1:d3:f5:8f: 4c:6d:07:b0:3b:ca:df:82:db:a1:9e:30:b0:a0:a1: 11:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:D3:33:3C:60:34:4D:7B:0E:E7:B9:42:50:49:A3:82:0B:C8:29:BB X509v3 Authority Key Identifier: keyid:7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:ee:35:5a:7d:fb:7a:56:03:6e:de:4b:a7:21:6b:d5:9a:7b: c2:b0:f2:96:6f:d1:f8:5f:04:36:a2:af:cf:61:ec:da:68:5b: 07:a3:e5:c6:5f:fd:10:55:23:d2:df:d3:62:3a:7e:a6:01:c0: 5e:8d:a2:d3:b9:9d:c5:67:6a:0c:36:f4:62:95:78:65:29:bb: 13:c9:f1:46:63:43:34:88:1e:97:fc:23:24:8b:fd:3b:c7:65: 84:26:8c:0b:af:13:7d:c8:14:8f:f7:7e:fb:0c:69:17:9f:d6: c7:db:ab:13:93:3a:bb:c1:9e:68:d1:b5:4d:9a:b0:92:cd:a5: 49:19:62:aa:58:cb:e6:ac:59:1f:0e:07:d2:ed:cb:77:ac:aa: b0:94:44:0b:c1:81:75:66:81:28:ad:ca:d8:29:8c:25:80:74: dc:76:51:b0:a0:79:06:56:e9:14:91:e0:16:43:cc:7a:fb:40: 2c:e0:3f:4a:fc:c8:69:30:c1:96:b4:0a:05:e7:2c:d1:04:dd: dc:1f:79:76:bf:92:41:ba:41:bf:5d:1d:f7:76:d3:d2:2e:68: 7d:25:01:ee:0d:46:c6:30:f5:43:c5:41:c9:27:a6:d6:77:e8: 18:2d:5d:b6:16:64:c7:ad:85:5b:bb:49:58:94:45:e8:66:42: d5:60:b6:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKDdBQzBDMDBGMEZDQTQ3OUVFNDY1RTRGN0Y1NDVFOEM5 NDk5M0Q2MUMwHhcNMjUxMTA0MTU1MjM1WhcNMjUxMTExMTU1MjM1WjAYMRYwFAYD VQQDEw02OTBhMjE0My0wNDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRN6oYMLd+bVYIkxnqv5KVxIFYArTvspVjSDjyVJwQLuztbxyD5iSsbie3wI 4OgObkSLw/+ZJV7VXwGJJmyC3qDcV/ou4mESFFza01VQs6z9x5HhAaROtRS40rZX wyVXnOXshlHd9Q8tpFtIGpsZb1ix6jrdDfTeYv4l1IIL7Z0YohduN0vAJoaAYZiz PRWkQ3DeAd0IkIlK/aJ8mK9D5f31rRSaCufQyZXD+5TDDydn8OAvc0B9yyKHRDpt Jsu5Wy+YIGY/izoP9Bkx4nFMc2Y3onqBq7aoCFVVKtZbtq3hTVFJqDq2PdKX/KHT 9Y9MbQewO8rfgtuhnjCwoKERqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzTMzxg NE17Due5QlBJo4ILyCm7MB8GA1UdIwQYMBaAFHrAwA8Pykee5GXk9/VF6MlJk9Yc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81QUZDMjY5MjY1 MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1N2taZVQzOVVYb3lVbVQx aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzREFEd19LUjU3a1plVDM5VVhveVVtVDFody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTY5MS81QUZDMjY5MjY1MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1 N2taZVQzOVVYb3lVbVQxaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC7jVafft6VgNu3kunIWvVmnvCsPKWb9H4XwQ2oq/PYezaaFsHo+XG X/0QVSPS39NiOn6mAcBejaLTuZ3FZ2oMNvRilXhlKbsTyfFGY0M0iB6X/CMki/07 x2WEJowLrxN9yBSP9377DGkXn9bH26sTkzq7wZ5o0bVNmrCSzaVJGWKqWMvmrFkf DgfS7ct3rKqwlEQLwYF1ZoEorcrYKYwlgHTcdlGwoHkGVukUkeAWQ8x6+0As4D9K /MhpMMGWtAoF5yzRBN3cH3l2v5JBukG/XR33dtPSLmh9JQHuDUbGMPVDxUHJJ6bW d+gYLV22FmTHrYVbu0lYlEXoZkLVYLa5 -----END CERTIFICATE-----Generated at Wed Nov 5 15:16:49 2025 by rpki-client