$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft File: rs-kglLctVxfHrOBKIztw-b4YnQ.mft (raw, json) Hash identifier: s7lNb0MAGVb6H+pNGmwWkIMKfNHaztAO6wQeTvhu8do= Subject key identifier: AD:68:9F:B2:D7:EC:1D:8E:16:BC:B8:BA:BC:3F:60:38:1E:B6:AC:7D Authority key identifier: AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 Certificate issuer: /CN=A91356BA/serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft Manifest number: A9 Signing time: Mon 21 Jul 2025 06:20:50 +0000 Manifest this update: Mon 21 Jul 2025 06:20:50 +0000 Manifest next update: Mon 28 Jul 2025 06:20:50 +0000 Files and hashes: 1: rs-kglLctVxfHrOBKIztw-b4YnQ.crl (hash: tc6r3neRHrD2YWTBOcs1+eJFIYP4iTE/p5nOwm0X39c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:20:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BA, serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Validity Not Before: Jul 21 06:20:50 2025 GMT Not After : Jul 28 06:20:50 2025 GMT Subject: CN=687ddc42-8e82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9f:ed:82:06:b2:31:e5:b0:10:d1:35:24:5a: 20:31:45:d6:7d:c3:26:a6:7d:44:ba:1e:4e:0e:26: 28:d6:86:87:b0:1b:04:b2:fc:6b:34:d8:87:88:14: 97:58:16:cd:44:70:10:88:8e:df:c2:7e:75:50:1e: a1:c3:60:30:4a:34:d8:0b:7d:53:89:ba:56:e5:48: 25:d7:4a:8b:be:b7:85:21:12:0b:e2:9e:ec:c3:9d: 31:35:a8:94:62:dd:b4:25:6f:e6:6f:56:2c:77:51: 48:86:77:de:93:0a:c4:ef:b1:8d:b4:b6:90:46:d8: 9c:d0:11:e1:d2:a9:43:09:d6:f2:32:b6:a0:6c:8b: e4:a0:53:45:0b:a5:ab:d6:d7:70:cf:8a:12:0c:e5: 0e:29:57:aa:82:f3:ed:75:5e:ae:0f:59:c7:fa:a3: 40:ff:9b:6b:cf:b3:88:c9:de:93:58:6b:19:9a:3a: 27:67:93:06:8b:7b:53:76:53:16:fb:5b:65:8b:31: 4c:9d:e2:c0:de:a2:86:b6:0b:e7:e7:6f:a3:88:9d: 82:91:e2:2c:c1:b4:5e:3d:18:7b:4b:97:b5:8d:66: e8:a3:05:14:2a:1c:94:eb:b5:83:3e:4c:02:9c:37: c9:7c:7f:1f:8b:0c:27:ec:ba:99:7b:73:97:0b:56: 3d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:68:9F:B2:D7:EC:1D:8E:16:BC:B8:BA:BC:3F:60:38:1E:B6:AC:7D X509v3 Authority Key Identifier: keyid:AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:8a:0b:72:ae:fa:94:c5:b1:93:b4:10:b0:be:b9:4f:39:3f: 30:5f:fd:92:2d:56:c0:11:0f:a8:bf:bb:b2:f6:95:0a:2b:2e: bd:ce:e8:f0:3a:d2:71:6f:31:a4:c6:a9:be:15:fd:14:9d:a3: 61:d7:9f:2f:ef:d5:00:7d:01:cd:6e:34:85:0d:c2:09:6d:90: b6:b6:d2:39:ff:50:b1:01:c4:5a:78:ba:15:f5:fa:e5:4d:4f: 32:d2:a7:06:d4:75:25:99:21:d6:c3:7b:6d:79:48:b7:85:d2: 5a:9d:7a:d5:63:a3:67:d7:a6:98:b7:1c:6c:3b:01:26:71:75: d0:fd:f8:f8:99:f1:2f:46:5a:aa:76:44:46:1e:e6:cc:35:1f: 6e:08:e7:34:23:3f:86:01:f5:c8:e6:a7:c6:85:de:44:a6:c8: 75:ec:bf:84:3f:13:4b:21:f4:df:ab:5b:f6:86:48:8f:86:8d: dd:52:57:1c:5e:13:c4:d5:a1:24:32:95:1e:60:53:3f:c2:1e: 40:d7:34:9b:85:a5:ce:1e:01:f3:08:32:d2:d0:12:fd:45:ec: 4c:d7:12:99:e0:d4:9c:22:38:5c:c7:69:5c:3b:45:8e:49:62: 71:94:cc:56:d6:99:16:7e:7c:26:a1:6f:36:18:18:42:54:2e: d1:f2:69:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkExMTAvBgNVBAUTKEFFQ0ZBNDgyNTJEQ0I1NUM1RjFFQjM4MTI4OENFREMz RTZGODYyNzQwHhcNMjUwNzIxMDYyMDUwWhcNMjUwNzI4MDYyMDUwWjAYMRYwFAYD VQQDEw02ODdkZGM0Mi04ZTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25/tggayMeWwENE1JFogMUXWfcMmpn1Euh5ODiYo1oaHsBsEsvxrNNiHiBSX WBbNRHAQiI7fwn51UB6hw2AwSjTYC31TibpW5Ugl10qLvreFIRIL4p7sw50xNaiU Yt20JW/mb1Ysd1FIhnfekwrE77GNtLaQRtic0BHh0qlDCdbyMragbIvkoFNFC6Wr 1tdwz4oSDOUOKVeqgvPtdV6uD1nH+qNA/5trz7OIyd6TWGsZmjonZ5MGi3tTdlMW +1tlizFMneLA3qKGtgvn52+jiJ2CkeIswbRePRh7S5e1jWboowUUKhyU67WDPkwC nDfJfH8fiwwn7LqZe3OXC1Y90QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1on7LX 7B2OFry4urw/YDgetqx9MB8GA1UdIwQYMBaAFK7PpIJS3LVcXx6zgSiM7cPm+GJ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQS8yNjQ1MjFEMjY5 MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RWeGZIck9CS0l6dHctYjRZ blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JzLWtnbExjdFZ4ZkhyT0JLSXp0dy1iNFluUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTZCQS8yNjQ1MjFEMjY5MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RW eGZIck9CS0l6dHctYjRZblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZigtyrvqUxbGTtBCwvrlPOT8wX/2SLVbAEQ+ov7uy9pUKKy69zujw OtJxbzGkxqm+Ff0UnaNh158v79UAfQHNbjSFDcIJbZC2ttI5/1CxAcRaeLoV9frl TU8y0qcG1HUlmSHWw3tteUi3hdJanXrVY6Nn16aYtxxsOwEmcXXQ/fj4mfEvRlqq dkRGHubMNR9uCOc0Iz+GAfXI5qfGhd5Epsh17L+EPxNLIfTfq1v2hkiPho3dUlcc XhPE1aEkMpUeYFM/wh5A1zSbhaXOHgHzCDLS0BL9RexM1xKZ4NScIjhcx2lcO0WO SWJxlMxW1pkWfnwmoW82GBhCVC7R8mnY -----END CERTIFICATE-----Generated at Mon Jul 21 13:27:11 2025 by rpki-client