$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: Kw0t1C2EuCo5+3B11asUCSinyIBhgcfsp9bC+cwsWUE= Subject key identifier: 08:BF:C5:40:CA:6E:4A:14:64:06:68:E0:3D:D3:C3:3C:70:61:DD:48 Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: 83 Signing time: Sun 20 Jul 2025 23:56:39 +0000 Manifest this update: Sun 20 Jul 2025 23:56:39 +0000 Manifest next update: Sun 27 Jul 2025 23:56:39 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: 8XepaVkEZAWRDB3KuUh677A6GpT+VJVs69sPURNYouI=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: V0ubCLoQg1VTBDouQoudPE1DyZNQvqeyyMrWFtDfDUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:56:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Jul 20 23:56:39 2025 GMT Not After : Jul 27 23:56:39 2025 GMT Subject: CN=687d8237-1f17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:df:88:e9:dc:5b:54:42:ed:73:ad:68:cb:83: eb:a8:96:ca:ee:c6:b4:f5:4d:ec:e4:c8:a8:b7:5b: bf:0a:6b:01:a8:94:47:4f:f0:1f:4c:5d:11:22:d4: 5b:25:4b:9f:d7:ac:34:05:1f:ab:ab:d3:90:3d:e1: 11:9a:f8:5a:01:a5:2a:e4:98:fd:2a:60:23:a9:3a: 76:e9:b9:15:33:0a:14:74:a4:25:f5:6f:d1:93:23: a5:ea:4d:93:ef:d6:4e:e4:ce:71:39:7f:f1:8f:c8: 30:30:e3:66:7a:c7:52:f9:44:60:cb:0b:cf:d5:89: 36:2e:24:44:e1:33:1c:3b:4e:dd:92:0e:63:de:e0: 04:34:f1:0e:60:6c:ae:85:db:a4:14:8a:40:f6:60: 1f:47:fa:6b:30:80:37:8e:b7:1c:10:60:50:4b:5e: f9:c1:72:33:6e:e7:8b:2b:81:8e:a2:32:f0:05:1f: 39:53:ac:93:a5:ae:30:91:59:86:02:3c:9c:68:9c: 19:3a:95:e2:79:b4:25:df:9a:94:6c:a4:22:16:a1: e5:09:2f:11:b2:4e:3a:93:d8:bd:20:82:21:28:2d: 88:17:50:56:31:bf:5b:fb:87:60:c5:a0:68:2a:aa: 09:67:72:fa:75:bb:e3:90:8d:3a:ea:96:16:3e:3a: ab:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:BF:C5:40:CA:6E:4A:14:64:06:68:E0:3D:D3:C3:3C:70:61:DD:48 X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:06:b5:f9:36:f3:11:a1:6d:f4:d2:04:af:ea:0e:d5:f1:29: 06:2c:cc:35:39:58:74:f6:24:ee:33:36:83:36:86:a9:48:42: 31:8c:2a:a8:08:59:54:84:97:c1:cb:21:50:65:d7:a9:0a:aa: 37:31:3c:4e:0d:86:88:9b:41:89:75:cd:b7:cf:1c:3a:ff:90: a5:45:5f:10:f7:50:4c:90:e6:87:8b:30:aa:d7:78:d6:04:d5: a8:fd:7f:6c:ed:d6:cb:f5:8e:64:95:d4:7d:27:67:56:02:fa: cc:44:ba:c5:1b:e0:11:2b:b6:70:5d:24:cd:62:16:30:d6:bc: f6:cb:d1:3d:27:21:a1:24:f9:1e:fc:08:98:0c:14:23:e5:d4: e3:63:20:42:56:7f:a9:3d:53:47:ea:a2:50:c1:81:a9:1d:e9: 16:c5:3b:d8:67:61:67:d2:75:95:4a:bf:78:7d:e0:24:84:21: 73:6c:3f:57:6c:d2:fa:19:fa:97:5d:88:56:63:ad:b7:c4:e5: 00:e3:d4:12:fb:4a:f3:be:0c:bd:14:68:5e:07:3d:61:a6:04: 25:b5:02:8a:f2:cb:1e:9f:ad:fa:2b:5e:08:1f:3a:0e:a5:8a: 16:64:78:82:f0:c7:24:5d:e0:72:b7:58:87:79:c8:c8:66:54: 6c:9f:b7:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKDkxMDgyNTc4RjcxRTRCODYwNTdEQzNFQjA3MDNGRTY1 ODlFNjY4OTEwHhcNMjUwNzIwMjM1NjM5WhcNMjUwNzI3MjM1NjM5WjAYMRYwFAYD VQQDEw02ODdkODIzNy0xZjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtd+I6dxbVELtc61oy4PrqJbK7sa09U3s5Miot1u/CmsBqJRHT/AfTF0RItRb JUuf16w0BR+rq9OQPeERmvhaAaUq5Jj9KmAjqTp26bkVMwoUdKQl9W/RkyOl6k2T 79ZO5M5xOX/xj8gwMONmesdS+URgywvP1Yk2LiRE4TMcO07dkg5j3uAENPEOYGyu hdukFIpA9mAfR/prMIA3jrccEGBQS175wXIzbueLK4GOojLwBR85U6yTpa4wkVmG AjycaJwZOpXiebQl35qUbKQiFqHlCS8Rsk46k9i9IIIhKC2IF1BWMb9b+4dgxaBo KqoJZ3L6dbvjkI066pYWPjqrqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAi/xUDK bkoUZAZo4D3TwzxwYd1IMB8GA1UdIwQYMBaAFJEIJXj3HkuGBX3D6wcD/mWJ5miR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS8xNTM0QTA1QUEx NzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0WUZmY1ByQndQLVpZbm1h SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS8xNTM0QTA1QUExNzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0 WUZmY1ByQndQLVpZbm1hSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtBrX5NvMRoW300gSv6g7V8SkGLMw1OVh09iTuMzaDNoapSEIxjCqo CFlUhJfByyFQZdepCqo3MTxODYaIm0GJdc23zxw6/5ClRV8Q91BMkOaHizCq13jW BNWo/X9s7dbL9Y5kldR9J2dWAvrMRLrFG+ARK7ZwXSTNYhYw1rz2y9E9JyGhJPke /AiYDBQj5dTjYyBCVn+pPVNH6qJQwYGpHekWxTvYZ2Fn0nWVSr94feAkhCFzbD9X bNL6GfqXXYhWY623xOUA49QS+0rzvgy9FGheBz1hpgQltQKK8ssen636K14IHzoO pYoWZHiC8MckXeByt1iHecjIZlRsn7ep -----END CERTIFICATE-----Generated at Mon Jul 21 13:15:19 2025 by rpki-client