$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft File: esDADw_KR57kZeT39UXoyUmT1hw.mft (raw, json) Hash identifier: fHUcG82N4R1cFpZ5PAprixURnYcU9DvmxUlPf6O/yYc= Subject key identifier: 7B:E3:D9:D8:DF:B1:0D:4B:F1:53:8D:22:24:57:38:A1:6E:D4:6B:84 Authority key identifier: 7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C Certificate issuer: /CN=A91D1691/serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Certificate serial: 246E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft Manifest number: 2443 Signing time: Tue 12 Aug 2025 15:52:34 +0000 Manifest this update: Tue 12 Aug 2025 15:52:33 +0000 Manifest next update: Tue 19 Aug 2025 15:52:33 +0000 Files and hashes: 1: esDADw_KR57kZeT39UXoyUmT1hw.crl (hash: RzzKNWj/meqlMyv8FRsM+BAoAvtOzsuHqgKJHfdAb64=) 2: E8976FF0928211EF8D2A551EC4F9AE02.roa (hash: ZQDzR5Xdny7JF3r/Zb16j0lL2mL345yAUojH7vcVjic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 15:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9326 (0x246e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691, serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Validity Not Before: Aug 12 15:52:33 2025 GMT Not After : Aug 19 15:52:33 2025 GMT Subject: CN=689b6342-7b5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d3:bd:5f:1d:81:e5:e1:f7:d4:69:59:1e:be: 99:60:5e:66:03:5e:a3:69:ec:10:03:91:3b:64:4c: 74:cc:75:73:96:7f:94:80:fd:ca:c9:69:20:fa:cd: cb:ad:d7:73:67:86:a4:a5:a3:6e:e2:6a:a9:16:43: 04:2c:b2:a7:d0:75:38:41:96:6a:95:95:05:a8:b8: 99:9e:1e:79:e1:6f:c7:c7:7a:1f:32:12:5c:f7:a6: 16:d4:0a:29:ff:6d:04:b5:48:4f:bb:ad:92:fe:73: cc:4b:49:ef:1a:02:b6:9c:d3:c4:2c:10:b0:4c:be: 6b:bc:06:db:0f:b4:ee:1d:f0:b7:2e:63:42:4a:05: 79:b7:a3:e1:6f:25:66:d7:b1:d2:6c:c8:86:08:f7: 20:6c:87:73:eb:95:8d:60:07:f1:9b:24:ac:f7:44: 33:64:78:71:c0:52:19:bb:fc:b7:5d:66:46:64:30: dd:25:63:25:e4:e1:e1:cc:93:9c:5e:53:ab:ba:c9: b5:76:af:19:02:9b:72:e3:e7:ab:19:7c:0f:bc:20: a4:f5:69:64:5c:c7:06:bb:8e:17:75:22:30:f3:80: 99:e1:14:8e:78:16:35:2d:74:75:ec:78:30:8a:4d: d9:4d:fd:c5:cf:47:bd:f8:62:ae:7f:ec:6e:d8:07: bf:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:E3:D9:D8:DF:B1:0D:4B:F1:53:8D:22:24:57:38:A1:6E:D4:6B:84 X509v3 Authority Key Identifier: keyid:7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:f8:84:da:99:b9:a2:8b:72:f0:a3:6a:cd:15:52:92:54:f0: d7:fa:92:c9:71:4f:6b:32:37:76:c7:d2:a5:87:85:8b:a3:22: da:85:07:39:27:3a:7b:79:2c:98:73:d0:46:84:31:98:79:a1: 19:10:7c:18:d1:b3:b2:87:67:3e:63:54:4e:4d:d9:aa:19:01: 3e:53:57:5d:c7:6f:98:d8:68:d6:77:c5:3a:88:ef:96:5d:f6: 14:0b:f8:5d:52:ce:93:ef:f6:2f:d3:95:20:9f:e6:00:f2:85: 11:dc:c4:23:bd:d7:cb:e3:79:32:49:78:15:0e:12:02:e7:7a: 9f:cf:4c:ea:a9:ef:9f:06:b2:b7:89:c0:25:0a:6d:5b:60:66: b3:96:25:e7:42:94:42:ae:29:9d:d6:c1:b0:1d:ab:04:17:1f: bf:3f:a4:6c:f7:7a:f0:01:1d:bb:2e:c7:5c:7f:f1:c4:af:77: b2:d6:86:e0:61:ab:51:8f:23:38:09:cb:88:3c:10:f2:5f:59: 62:29:33:0f:e2:c3:f0:7e:ca:fd:55:d1:56:1a:e5:28:eb:a4: 4a:b6:54:6e:a7:29:e3:a5:91:5a:e7:f8:50:b9:3e:8a:cf:80: 5d:e3:36:4b:1d:db:66:4d:39:65:c7:25:82:49:2e:69:c0:9e: ff:16:d5:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKDdBQzBDMDBGMEZDQTQ3OUVFNDY1RTRGN0Y1NDVFOEM5 NDk5M0Q2MUMwHhcNMjUwODEyMTU1MjMzWhcNMjUwODE5MTU1MjMzWjAYMRYwFAYD VQQDEw02ODliNjM0Mi03YjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtO9Xx2B5eH31GlZHr6ZYF5mA16jaewQA5E7ZEx0zHVzln+UgP3KyWkg+s3L rddzZ4akpaNu4mqpFkMELLKn0HU4QZZqlZUFqLiZnh554W/Hx3ofMhJc96YW1Aop /20EtUhPu62S/nPMS0nvGgK2nNPELBCwTL5rvAbbD7TuHfC3LmNCSgV5t6PhbyVm 17HSbMiGCPcgbIdz65WNYAfxmySs90QzZHhxwFIZu/y3XWZGZDDdJWMl5OHhzJOc XlOrusm1dq8ZApty4+erGXwPvCCk9WlkXMcGu44XdSIw84CZ4RSOeBY1LXR17Hgw ik3ZTf3Fz0e9+GKuf+xu2Ae/0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHvj2djf sQ1L8VONIiRXOKFu1GuEMB8GA1UdIwQYMBaAFHrAwA8Pykee5GXk9/VF6MlJk9Yc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81QUZDMjY5MjY1 MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1N2taZVQzOVVYb3lVbVQx aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzREFEd19LUjU3a1plVDM5VVhveVVtVDFody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTY5MS81QUZDMjY5MjY1MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1 N2taZVQzOVVYb3lVbVQxaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg+ITambmii3Lwo2rNFVKSVPDX+pLJcU9rMjd2x9Klh4WLoyLahQc5 Jzp7eSyYc9BGhDGYeaEZEHwY0bOyh2c+Y1ROTdmqGQE+U1ddx2+Y2GjWd8U6iO+W XfYUC/hdUs6T7/Yv05Ugn+YA8oUR3MQjvdfL43kySXgVDhIC53qfz0zqqe+fBrK3 icAlCm1bYGazliXnQpRCrimd1sGwHasEFx+/P6Rs93rwAR27Lsdcf/HEr3ey1obg YatRjyM4CcuIPBDyX1liKTMP4sPwfsr9VdFWGuUo66RKtlRupynjpZFa5/hQuT6K z4Bd4zZLHdtmTTllxyWCSS5pwJ7/FtWC -----END CERTIFICATE-----Generated at Wed Aug 13 00:29:48 2025 by rpki-client