$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft File: esDADw_KR57kZeT39UXoyUmT1hw.mft (raw, json) Hash identifier: HKk/8IgensRNUdVl8uCOmevOhvPGk6QbfGVgIhqYTl0= Subject key identifier: D2:88:D3:F3:69:60:08:F0:F8:A4:75:21:12:EE:08:73:6A:91:D0:33 Authority key identifier: 7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C Certificate issuer: /CN=A91D1691/serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Certificate serial: 2450 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft Manifest number: 2425 Signing time: Sat 14 Jun 2025 15:47:07 +0000 Manifest this update: Sat 14 Jun 2025 15:47:06 +0000 Manifest next update: Sat 21 Jun 2025 15:47:06 +0000 Files and hashes: 1: esDADw_KR57kZeT39UXoyUmT1hw.crl (hash: 1v5uUdTOCNNqPauifpYLPntykWYQ5NlNaJNBPGcZN9o=) 2: E8976FF0928211EF8D2A551EC4F9AE02.roa (hash: ZQDzR5Xdny7JF3r/Zb16j0lL2mL345yAUojH7vcVjic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:47:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9296 (0x2450) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691, serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Validity Not Before: Jun 14 15:47:06 2025 GMT Not After : Jun 21 15:47:06 2025 GMT Subject: CN=684d997a-e1ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ac:64:9b:83:ab:f1:7c:1a:97:d5:59:07:af: c8:3f:e6:f0:70:77:48:90:2e:4f:6f:16:0d:92:7c: 32:b4:23:a4:fa:c1:ed:8d:fb:50:9a:8d:25:e9:98: c5:24:df:64:6d:e9:3e:e2:55:73:dc:4f:7d:dd:33: 4f:51:cc:d8:1a:3a:05:6d:a4:5d:e6:e8:69:4f:04: 63:f9:c9:55:f6:97:85:57:8c:84:aa:eb:29:40:70: 74:8d:ac:b0:af:f3:f1:2b:e5:3f:d4:45:70:1f:76: f1:d4:f3:cb:61:12:28:d8:71:11:5b:db:ba:69:72: 84:de:07:6a:d2:80:09:5e:49:2f:da:e7:1a:65:7e: a5:b5:80:8c:98:91:6c:27:9a:5a:9c:49:88:88:b9: 07:9b:3d:43:6f:8d:48:56:2f:f4:f1:dd:5a:c8:b7: 7f:f6:91:db:7a:61:c8:e9:76:dd:65:80:f4:d0:32: f6:15:8b:b2:f3:59:ef:10:73:7f:0f:81:a3:85:af: b9:27:1e:3e:ce:d3:7f:cc:0d:a6:4b:86:a0:a8:de: 9f:ff:a5:be:e3:19:3d:42:f1:94:ae:b6:82:7b:02: 6b:59:75:09:eb:50:fb:87:28:bb:e9:61:d9:96:1e: 32:30:5a:ce:e6:b7:4e:f6:21:4e:cd:05:ea:d2:22: 3e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:88:D3:F3:69:60:08:F0:F8:A4:75:21:12:EE:08:73:6A:91:D0:33 X509v3 Authority Key Identifier: keyid:7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:77:46:89:a3:cd:1b:07:93:2b:ad:f2:b6:cd:8d:29:32:f0: 3c:65:77:f0:c7:8f:9c:fc:c3:b7:be:86:86:b9:f4:67:f0:3b: a0:06:1e:8f:fd:d3:74:90:a2:6e:bc:42:c7:3d:18:10:84:f8: 47:1b:80:53:b2:82:09:5b:98:7a:a4:df:4c:9a:c4:5f:dc:3a: 6f:63:27:f5:c9:9e:ee:ad:b2:2f:90:0a:1c:86:32:52:7a:00: f0:cd:9c:ba:2c:8f:1c:a9:11:82:cf:7c:43:4e:1e:0f:e3:0b: ba:af:7c:9a:8d:d6:10:03:8c:c8:2e:59:46:1c:d5:05:be:54: cf:e8:38:2e:77:9d:96:b8:c3:8e:ca:ba:1d:59:64:c1:52:ed: af:59:f1:75:83:a3:69:be:d3:06:08:23:de:26:ff:f2:80:90: 38:e5:11:06:37:3e:59:00:4f:8a:35:73:46:71:56:80:f3:ef: 5b:d9:d5:43:59:3d:d0:2a:22:9d:4e:3a:71:16:ea:da:a0:1e: 4b:36:1f:b0:f3:e1:3f:69:3b:5c:99:a8:43:29:63:4b:c0:50: 56:68:1c:b5:0b:9d:3a:3e:0b:43:d7:2c:44:9d:ab:33:be:c4: 91:60:05:d2:f4:fd:18:64:9b:44:80:37:d0:7e:f1:11:26:23: 93:9c:e3:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKDdBQzBDMDBGMEZDQTQ3OUVFNDY1RTRGN0Y1NDVFOEM5 NDk5M0Q2MUMwHhcNMjUwNjE0MTU0NzA2WhcNMjUwNjIxMTU0NzA2WjAYMRYwFAYD VQQDEw02ODRkOTk3YS1lMWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6xkm4Or8Xwal9VZB6/IP+bwcHdIkC5PbxYNknwytCOk+sHtjftQmo0l6ZjF JN9kbek+4lVz3E993TNPUczYGjoFbaRd5uhpTwRj+clV9peFV4yEquspQHB0jayw r/PxK+U/1EVwH3bx1PPLYRIo2HERW9u6aXKE3gdq0oAJXkkv2ucaZX6ltYCMmJFs J5panEmIiLkHmz1Db41IVi/08d1ayLd/9pHbemHI6XbdZYD00DL2FYuy81nvEHN/ D4Gjha+5Jx4+ztN/zA2mS4agqN6f/6W+4xk9QvGUrraCewJrWXUJ61D7hyi76WHZ lh4yMFrO5rdO9iFOzQXq0iI+TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKI0/Np YAjw+KR1IRLuCHNqkdAzMB8GA1UdIwQYMBaAFHrAwA8Pykee5GXk9/VF6MlJk9Yc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81QUZDMjY5MjY1 MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1N2taZVQzOVVYb3lVbVQx aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzREFEd19LUjU3a1plVDM5VVhveVVtVDFody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTY5MS81QUZDMjY5MjY1MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1 N2taZVQzOVVYb3lVbVQxaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+d0aJo80bB5MrrfK2zY0pMvA8ZXfwx4+c/MO3voaGufRn8DugBh6P /dN0kKJuvELHPRgQhPhHG4BTsoIJW5h6pN9MmsRf3DpvYyf1yZ7urbIvkAochjJS egDwzZy6LI8cqRGCz3xDTh4P4wu6r3yajdYQA4zILllGHNUFvlTP6Dgud52WuMOO yrodWWTBUu2vWfF1g6NpvtMGCCPeJv/ygJA45REGNz5ZAE+KNXNGcVaA8+9b2dVD WT3QKiKdTjpxFuraoB5LNh+w8+E/aTtcmahDKWNLwFBWaBy1C506PgtD1yxEnasz vsSRYAXS9P0YZJtEgDfQfvERJiOTnOOD -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:26 2025 by rpki-client