$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: ZTbeJ6OAUw/lO+6vC6NKNPqEYOAx4PS3uFyEhGgHGuQ= Subject key identifier: 7F:9E:4F:9C:28:98:D0:73:19:13:4D:64:1F:7F:E6:FC:DB:AC:43:22 Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: 50 Signing time: Tue 08 Apr 2025 23:37:12 +0000 Manifest this update: Tue 08 Apr 2025 23:37:12 +0000 Manifest next update: Tue 15 Apr 2025 23:37:12 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: W8Im61ePyKEIzqJsVnghaaUpq19LiYFwwdSSmmjZ2ZQ=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: V0ubCLoQg1VTBDouQoudPE1DyZNQvqeyyMrWFtDfDUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 23:37:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039 Validity Not Before: Apr 8 23:37:12 2025 GMT Not After : Apr 15 23:37:12 2025 GMT Subject: CN=67f5b328-ee28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:4f:40:b4:41:dd:f3:09:fb:ca:df:af:ff:76: c4:ab:db:7b:c1:ab:34:f6:24:78:3b:42:b7:19:84: 1f:f1:96:56:47:4d:f9:9d:2e:84:c7:ac:8b:24:6e: 3e:ca:ca:0f:46:68:3b:fe:63:0e:3c:4e:90:06:2e: 88:71:66:cf:07:00:54:d6:e1:9c:f3:a1:01:78:3b: 26:82:10:1b:7f:54:40:f7:bf:4a:9e:90:f7:c8:38: 35:96:29:03:d7:b5:6f:45:fc:84:b3:62:94:6c:90: 5c:62:12:4d:93:76:27:0b:35:0d:3e:91:82:6d:58: 54:f7:b2:4f:79:04:d9:af:1b:1b:08:87:2a:db:04: 73:24:ee:e5:81:0a:15:a1:0b:b7:f6:57:24:d7:a5: 54:aa:25:1d:19:eb:05:3b:06:c6:fd:5a:de:e0:25: e4:53:92:2c:40:5d:7b:c3:48:70:a8:b8:ea:1a:35: 90:34:10:18:82:ec:ab:9c:a1:11:4c:b6:8b:b6:b1: e8:e3:5a:8c:37:33:82:6c:eb:f2:84:18:b9:96:2f: 06:9c:91:0d:73:42:6a:e4:83:1d:94:f3:3c:cc:63: a3:15:c9:cd:d5:38:4d:64:6c:cb:21:e7:48:04:f9: e8:87:06:bc:11:12:03:8c:1a:e2:58:81:2e:d6:40: f3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:9E:4F:9C:28:98:D0:73:19:13:4D:64:1F:7F:E6:FC:DB:AC:43:22 X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:06:40:df:2d:82:94:a8:6d:e0:a5:cb:76:34:74:00:16:fd: b5:b1:93:56:67:a1:0f:0d:16:83:57:64:61:54:8c:b0:7d:15: 0e:69:c4:43:94:99:10:66:a5:99:f2:cd:1e:2e:b1:9a:01:13: e9:34:66:07:e2:9e:dd:83:f4:ac:89:a4:c0:6a:c0:c3:56:5a: 63:6c:85:1c:fb:f4:47:0d:a0:b6:7e:88:ab:99:10:4d:42:d9: 02:be:a7:cb:73:0c:b8:0f:39:4c:d2:21:09:79:42:df:38:90: fd:86:b5:4b:96:34:4a:eb:2b:6b:22:85:1f:86:00:62:27:c6: 4b:a7:a0:3d:ee:aa:54:6b:a9:a2:e6:fb:d0:a4:46:a6:f4:01: df:92:6c:75:2f:93:56:7f:c2:e8:d8:5e:46:48:13:79:d5:68: 8a:0a:b1:33:29:4c:c3:3f:16:c9:73:ac:39:3f:75:e1:2e:2a: bd:f0:d1:fc:47:ca:d7:c0:38:3a:f9:40:d7:ee:b8:1e:c4:3c: f6:d8:9a:37:09:ce:e0:72:27:98:60:cd:3b:0f:35:52:38:0a: 2a:d4:3f:ed:65:02:cf:07:af:bf:55:00:78:8b:6a:10:5f:eb: bc:26:dd:59:03:00:57:11:bf:cb:67:8d:9f:2f:8c:80:20:48: 7a:ba:22:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QzAzOTExMC8GA1UEBRMoOTEwODI1NzhGNzFFNEI4NjA1N0RDM0VCMDcwM0ZFNjU4 OUU2Njg5MTAeFw0yNTA0MDgyMzM3MTJaFw0yNTA0MTUyMzM3MTJaMBgxFjAUBgNV BAMTDTY3ZjViMzI4LWVlMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0T0C0Qd3zCfvK36//dsSr23vBqzT2JHg7QrcZhB/xllZHTfmdLoTHrIskbj7K yg9GaDv+Yw48TpAGLohxZs8HAFTW4ZzzoQF4OyaCEBt/VED3v0qekPfIODWWKQPX tW9F/ISzYpRskFxiEk2TdicLNQ0+kYJtWFT3sk95BNmvGxsIhyrbBHMk7uWBChWh C7f2VyTXpVSqJR0Z6wU7Bsb9Wt7gJeRTkixAXXvDSHCouOoaNZA0EBiC7KucoRFM tou2sejjWow3M4Js6/KEGLmWLwackQ1zQmrkgx2U8zzMY6MVyc3VOE1kbMsh50gE +eiHBrwREgOMGuJYgS7WQPN/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUf55PnCiY 0HMZE01kH3/m/NusQyIwHwYDVR0jBBgwFoAUkQglePceS4YFfcPrBwP+ZYnmaJEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDMDM5LzE1MzRBMDVBQTE3 NDExRUZCRjYxNjYyNEM0RjlBRTAyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFK RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva1FnbGVQY2VTNFlGZmNQckJ3UC1aWW5tYUpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD MDM5LzE1MzRBMDVBQTE3NDExRUZCRjYxNjYyNEM0RjlBRTAyL2tRZ2xlUGNlUzRZ RmZjUHJCd1AtWllubWFKRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADQGQN8tgpSobeCly3Y0dAAW/bWxk1ZnoQ8NFoNXZGFUjLB9FQ5pxEOU mRBmpZnyzR4usZoBE+k0Zgfint2D9KyJpMBqwMNWWmNshRz79EcNoLZ+iKuZEE1C 2QK+p8tzDLgPOUzSIQl5Qt84kP2GtUuWNErrK2sihR+GAGInxkunoD3uqlRrqaLm +9CkRqb0Ad+SbHUvk1Z/wujYXkZIE3nVaIoKsTMpTMM/FslzrDk/deEuKr3w0fxH ytfAODr5QNfuuB7EPPbYmjcJzuByJ5hgzTsPNVI4CirUP+1lAs8Hr79VAHiLahBf 67wm3VkDAFcRv8tnjZ8vjIAgSHq6Imo= -----END CERTIFICATE-----Generated at Fri Apr 11 18:13:02 2025 by rpki-client