$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft File: esDADw_KR57kZeT39UXoyUmT1hw.mft (raw, json) Hash identifier: giBneWJnaqCqvtfV4qya2yCXjwE5rH6wXJgRnq/wASs= Subject key identifier: 29:2B:5C:C5:0B:D0:21:B6:29:B6:99:23:14:0A:31:A8:66:2D:A8:0A Authority key identifier: 7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C Certificate issuer: /CN=A91D1691/serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Certificate serial: 242D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft Manifest number: 2402 Signing time: Sun 06 Apr 2025 15:46:05 +0000 Manifest this update: Sun 06 Apr 2025 15:46:04 +0000 Manifest next update: Sun 13 Apr 2025 15:46:04 +0000 Files and hashes: 1: esDADw_KR57kZeT39UXoyUmT1hw.crl (hash: jKaQFiiEnF9SRskKqkECxQGQb5dwU2ZO54pGZptJFv4=) 2: E8976FF0928211EF8D2A551EC4F9AE02.roa (hash: ZQDzR5Xdny7JF3r/Zb16j0lL2mL345yAUojH7vcVjic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 15:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9261 (0x242d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691 Validity Not Before: Apr 6 15:46:04 2025 GMT Not After : Apr 13 15:46:04 2025 GMT Subject: CN=67f2a1bc-3dd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a3:f6:77:95:b8:cf:0e:7f:aa:22:bc:57:f2: e9:03:ed:c2:72:01:88:74:b8:c6:47:70:e5:b3:6d: 14:68:72:e1:a2:64:a8:31:a1:4e:2a:e5:fc:10:c3: 94:c9:8e:b2:c8:32:8a:2d:8e:d6:4d:49:b6:e1:d5: 31:70:60:3a:ca:2a:56:76:38:05:0c:92:77:c4:63: 62:4a:76:40:12:d2:86:f1:1b:02:d6:a8:8e:0d:03: b0:a4:a9:b5:2b:ab:59:46:32:7f:16:3d:06:2f:b2: d3:25:b9:02:e6:38:2f:eb:9e:78:6d:5e:6b:cf:7b: 67:60:09:4c:9f:be:ff:b1:a1:03:d5:f3:d2:e4:67: 0e:10:94:53:f5:c1:9f:f5:f4:7c:dc:ee:bd:df:95: 83:a8:0b:a2:78:a5:12:5f:2b:94:91:12:dd:8a:e3: ba:d2:5e:62:bf:2c:74:5a:85:15:83:99:b7:22:d5: d4:b9:77:10:6d:35:79:91:a9:59:5c:97:12:c5:51: 65:23:8d:f4:4e:2c:9a:ff:41:48:db:ed:61:6e:92: 8c:5c:77:b5:c5:77:32:be:d9:b6:e2:31:28:84:5a: 10:0e:39:45:6e:d2:e2:de:cf:11:77:5e:bf:6b:fd: 33:59:30:ca:d5:23:a2:e3:28:ca:d4:96:03:f5:de: 3c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:2B:5C:C5:0B:D0:21:B6:29:B6:99:23:14:0A:31:A8:66:2D:A8:0A X509v3 Authority Key Identifier: keyid:7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:7d:28:09:8f:35:a5:27:7f:da:6d:a0:b9:3f:b1:3d:91:95: 8e:a1:67:f8:0a:25:ca:5f:77:07:5f:61:45:52:ff:37:8b:15: d9:09:8c:63:d1:fd:c9:72:2f:34:aa:37:32:9e:2b:a8:d1:c4: 68:11:28:69:3b:02:4b:5e:f5:37:68:64:a6:d9:4e:05:d7:16: 34:92:a0:39:cd:0b:93:b1:ac:c1:ac:27:c0:8d:35:a7:e0:77: 09:73:d9:68:06:f0:a1:e6:33:2a:1d:00:5a:57:dc:f5:e3:ce: 18:d6:df:00:6b:7a:9c:7e:0a:18:56:c4:ad:a4:b1:6d:64:67: e0:60:68:76:21:ee:40:ac:57:4e:ff:03:24:28:79:67:c6:11: 38:07:08:4e:7a:85:75:32:85:be:3e:9f:5c:9a:b0:b5:6c:e6: 9e:a4:d7:f5:bc:60:00:8b:3f:47:9c:9d:76:8f:2e:be:19:82: 08:09:5e:28:2e:bd:22:ff:da:ce:79:78:0d:38:88:22:40:57: bb:55:ab:65:f6:f8:34:2b:4c:e9:b3:67:a2:de:d3:8a:47:45: 34:69:fd:3d:b5:b0:97:3e:59:40:b9:9c:69:4e:d9:f7:df:fe: 07:24:c2:a5:2b:02:1a:5f:7e:2b:fb:e3:90:73:73:43:6e:4f: 88:c9:3d:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKDdBQzBDMDBGMEZDQTQ3OUVFNDY1RTRGN0Y1NDVFOEM5 NDk5M0Q2MUMwHhcNMjUwNDA2MTU0NjA0WhcNMjUwNDEzMTU0NjA0WjAYMRYwFAYD VQQDEw02N2YyYTFiYy0zZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4aP2d5W4zw5/qiK8V/LpA+3CcgGIdLjGR3Dls20UaHLhomSoMaFOKuX8EMOU yY6yyDKKLY7WTUm24dUxcGA6yipWdjgFDJJ3xGNiSnZAEtKG8RsC1qiODQOwpKm1 K6tZRjJ/Fj0GL7LTJbkC5jgv6554bV5rz3tnYAlMn77/saED1fPS5GcOEJRT9cGf 9fR83O6935WDqAuieKUSXyuUkRLdiuO60l5ivyx0WoUVg5m3ItXUuXcQbTV5kalZ XJcSxVFlI430Tiya/0FI2+1hbpKMXHe1xXcyvtm24jEohFoQDjlFbtLi3s8Rd16/ a/0zWTDK1SOi4yjK1JYD9d48NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkrXMUL 0CG2KbaZIxQKMahmLagKMB8GA1UdIwQYMBaAFHrAwA8Pykee5GXk9/VF6MlJk9Yc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81QUZDMjY5MjY1 MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1N2taZVQzOVVYb3lVbVQx aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzREFEd19LUjU3a1plVDM5VVhveVVtVDFody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTY5MS81QUZDMjY5MjY1MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1 N2taZVQzOVVYb3lVbVQxaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCffSgJjzWlJ3/abaC5P7E9kZWOoWf4CiXKX3cHX2FFUv83ixXZCYxj 0f3Jci80qjcyniuo0cRoEShpOwJLXvU3aGSm2U4F1xY0kqA5zQuTsazBrCfAjTWn 4HcJc9loBvCh5jMqHQBaV9z1484Y1t8Aa3qcfgoYVsStpLFtZGfgYGh2Ie5ArFdO /wMkKHlnxhE4BwhOeoV1MoW+Pp9cmrC1bOaepNf1vGAAiz9HnJ12jy6+GYIICV4o Lr0i/9rOeXgNOIgiQFe7Vatl9vg0K0zps2ei3tOKR0U0af09tbCXPllAuZxpTtn3 3/4HJMKlKwIaX34r++OQc3NDbk+IyT0r -----END CERTIFICATE-----Generated at Tue Apr 8 10:45:58 2025 by rpki-client