$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft File: esDADw_KR57kZeT39UXoyUmT1hw.mft (raw, json) Hash identifier: uLXeiQPOym6aJRzRYwevNtaHF/YEf/OT8kpwX9vA0Ho= Subject key identifier: 77:49:86:89:13:A0:6F:DF:35:52:46:20:17:70:3F:65:BD:A7:54:09 Authority key identifier: 7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C Certificate issuer: /CN=A91D1691/serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Certificate serial: 2463 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft Manifest number: 2438 Signing time: Tue 22 Jul 2025 15:54:18 +0000 Manifest this update: Tue 22 Jul 2025 15:54:17 +0000 Manifest next update: Tue 29 Jul 2025 15:54:17 +0000 Files and hashes: 1: esDADw_KR57kZeT39UXoyUmT1hw.crl (hash: 1l8G9NfIKGnvzyjrnO/vsQLFO0D+b7qY39Y4dgzvuMU=) 2: E8976FF0928211EF8D2A551EC4F9AE02.roa (hash: ZQDzR5Xdny7JF3r/Zb16j0lL2mL345yAUojH7vcVjic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 15:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9315 (0x2463) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691, serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Validity Not Before: Jul 22 15:54:17 2025 GMT Not After : Jul 29 15:54:17 2025 GMT Subject: CN=687fb42a-243d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:74:74:19:13:ac:f1:a9:e9:bb:d0:e4:d9:b4: f2:6d:24:ab:8d:97:65:c7:35:11:e7:9c:13:7a:2d: 2b:0f:91:6d:0a:6f:5e:cd:1d:ab:21:c9:00:99:b7: 96:7f:ca:63:0a:a8:6f:a1:df:ac:d9:16:3e:e7:d3: fd:49:1b:54:31:41:80:a4:ec:22:4b:d2:c6:5c:b8: 87:e9:43:2d:36:54:bc:b7:cf:f2:9e:a5:51:8f:f4: 43:f0:83:d9:ba:08:57:4d:af:44:db:4c:93:01:9d: ac:1e:70:0c:37:0b:5f:0e:77:98:23:01:e0:3a:fa: 54:50:06:72:75:92:54:28:49:4d:60:10:c1:0a:4a: 6d:da:ce:d2:7b:5c:47:f8:59:34:ba:42:91:0f:47: 7b:d0:b8:1b:84:59:c3:5b:4a:ed:89:d4:ba:b0:f7: e5:16:b4:ff:21:f9:76:a9:e3:9d:00:b5:f9:35:48: f6:06:b3:8a:c3:b4:a8:8a:06:31:43:e2:19:7c:98: d2:04:91:a5:7f:e8:ba:5d:93:1d:b4:5d:b6:c6:9b: 32:47:82:60:12:0d:e9:d2:a0:45:eb:76:8a:a1:52: 24:41:61:f0:0c:f7:57:50:d6:99:8d:ba:56:e3:fc: fd:e3:5e:2d:56:23:cc:80:3b:9b:de:60:cc:3a:ed: 76:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:49:86:89:13:A0:6F:DF:35:52:46:20:17:70:3F:65:BD:A7:54:09 X509v3 Authority Key Identifier: keyid:7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:b2:92:e4:74:c0:e2:20:c1:06:c1:37:d9:9b:66:e9:74:4e: db:00:f9:c2:bd:89:68:37:fb:41:ae:e5:c0:e6:26:7c:c1:96: 1b:31:88:ed:8c:21:f0:8f:ca:ba:a5:23:6d:01:c2:4f:8e:b1: 56:50:a7:42:38:9c:b0:3b:9b:4d:88:20:a0:2d:e6:8f:00:13: af:3b:87:f9:06:eb:77:e8:b2:fb:bf:bf:37:e4:0f:55:bd:bf: 7b:52:bc:d0:9b:36:fd:c8:8b:13:02:82:8b:42:86:15:79:d8: ed:38:76:47:06:2d:ba:e6:db:56:06:90:cb:45:50:2e:14:7f: cd:03:67:74:a8:d6:48:37:c2:71:aa:63:9c:ee:d1:3b:15:53: 80:19:25:bb:ee:4b:88:7f:7a:b3:23:ce:c1:a0:68:bb:06:22: 92:d9:a7:56:c6:f9:8e:83:fe:98:10:79:2f:ee:7f:b0:96:c0: 98:47:bb:7b:5c:1e:2c:9b:fc:6f:a3:5e:ed:84:c8:58:fb:b7: 90:6d:a5:f6:02:63:0f:35:e2:05:c9:d1:91:c3:87:3a:6c:bf: 14:96:3c:21:da:e4:c3:43:97:2d:23:e6:ce:13:e2:63:88:6b: 4b:fa:42:97:0b:13:fc:c6:83:17:c5:e0:b3:61:63:71:90:71: b7:fe:ab:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKDdBQzBDMDBGMEZDQTQ3OUVFNDY1RTRGN0Y1NDVFOEM5 NDk5M0Q2MUMwHhcNMjUwNzIyMTU1NDE3WhcNMjUwNzI5MTU1NDE3WjAYMRYwFAYD VQQDEw02ODdmYjQyYS0yNDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5nR0GROs8anpu9Dk2bTybSSrjZdlxzUR55wTei0rD5FtCm9ezR2rIckAmbeW f8pjCqhvod+s2RY+59P9SRtUMUGApOwiS9LGXLiH6UMtNlS8t8/ynqVRj/RD8IPZ ughXTa9E20yTAZ2sHnAMNwtfDneYIwHgOvpUUAZydZJUKElNYBDBCkpt2s7Se1xH +Fk0ukKRD0d70LgbhFnDW0rtidS6sPflFrT/Ifl2qeOdALX5NUj2BrOKw7SoigYx Q+IZfJjSBJGlf+i6XZMdtF22xpsyR4JgEg3p0qBF63aKoVIkQWHwDPdXUNaZjbpW 4/z9414tViPMgDub3mDMOu12MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdJhokT oG/fNVJGIBdwP2W9p1QJMB8GA1UdIwQYMBaAFHrAwA8Pykee5GXk9/VF6MlJk9Yc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81QUZDMjY5MjY1 MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1N2taZVQzOVVYb3lVbVQx aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzREFEd19LUjU3a1plVDM5VVhveVVtVDFody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTY5MS81QUZDMjY5MjY1MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1 N2taZVQzOVVYb3lVbVQxaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkspLkdMDiIMEGwTfZm2bpdE7bAPnCvYloN/tBruXA5iZ8wZYbMYjt jCHwj8q6pSNtAcJPjrFWUKdCOJywO5tNiCCgLeaPABOvO4f5But36LL7v7835A9V vb97UrzQmzb9yIsTAoKLQoYVedjtOHZHBi265ttWBpDLRVAuFH/NA2d0qNZIN8Jx qmOc7tE7FVOAGSW77kuIf3qzI87BoGi7BiKS2adWxvmOg/6YEHkv7n+wlsCYR7t7 XB4sm/xvo17thMhY+7eQbaX2AmMPNeIFydGRw4c6bL8Uljwh2uTDQ5ctI+bOE+Jj iGtL+kKXCxP8xoMXxeCzYWNxkHG3/quE -----END CERTIFICATE-----Generated at Wed Jul 23 12:52:58 2025 by rpki-client