$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: SRQvM7yW+x1hZxWYxmAcPsJfbXtKO49PxERo0yQrgSQ= Subject key identifier: 8F:5F:FA:23:6C:CD:E5:14:CD:19:85:E8:95:CC:2D:FB:17:C8:91:A2 Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: 6B Signing time: Tue 03 Jun 2025 00:02:09 +0000 Manifest this update: Tue 03 Jun 2025 00:02:08 +0000 Manifest next update: Tue 10 Jun 2025 00:02:08 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: zgtjPicb1/6ZexWePV+xbiiaBmONMY6vfAkPEDIQEZM=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: V0ubCLoQg1VTBDouQoudPE1DyZNQvqeyyMrWFtDfDUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:02:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Jun 3 00:02:08 2025 GMT Not After : Jun 10 00:02:08 2025 GMT Subject: CN=683e3b80-99e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:10:67:26:59:0a:6a:94:e2:96:34:1a:1a:2b: 44:f2:dd:b4:07:96:4f:20:fa:10:82:68:a4:5a:ca: b9:83:64:42:2e:c2:5f:6a:59:8e:a2:0c:13:2e:7b: 3c:bb:7a:2f:7d:29:4e:c6:66:c1:3d:ee:04:eb:16: f7:e9:af:e5:99:64:95:75:9d:ff:fd:10:0c:bc:a4: e7:e4:0e:8c:4a:25:6d:67:77:17:6b:bc:50:26:98: ae:24:91:a8:28:8c:bc:d1:c8:f9:4d:5f:26:4f:7c: b1:96:21:6a:d1:fc:ec:58:8d:5a:1e:34:49:4a:bf: 2f:e1:ba:b3:14:42:d0:71:97:86:da:f8:e4:be:db: 9a:1a:52:44:f0:05:b0:f8:0a:60:82:34:33:16:67: 6d:b5:ba:7f:8e:40:cb:49:1f:0f:a5:15:11:20:0a: 81:e6:42:ab:9e:49:56:02:6d:1d:e3:03:7f:11:6a: 8e:4b:78:03:11:97:83:c5:7f:62:56:1b:a5:2b:38: bf:bb:0a:89:0f:6f:dc:db:aa:58:77:bf:44:d4:58: 37:6f:e7:88:91:75:7a:35:d1:1e:a9:aa:fa:d9:d1: 9b:57:a0:03:55:a9:fe:d3:90:d8:65:38:7c:2b:f5: 9d:52:0b:c5:2d:cd:1b:ab:30:e2:8a:cd:fc:be:87: 4d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:5F:FA:23:6C:CD:E5:14:CD:19:85:E8:95:CC:2D:FB:17:C8:91:A2 X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:84:f2:e0:a4:00:6d:32:b9:e8:23:1d:79:d5:d1:57:e8:8c: c2:f1:28:9b:22:08:48:c3:0d:fe:79:03:e4:2d:94:9c:a1:88: e7:fb:30:a2:a0:38:04:59:a8:22:f0:4e:62:41:4e:9c:c2:35: c9:f8:dc:65:f2:12:24:bb:6d:a2:43:bb:57:96:31:69:26:8e: 29:30:83:4a:86:17:45:f9:ae:ec:5a:a3:03:59:f8:4d:8b:ea: 0a:2b:c9:3a:6e:3f:39:c8:b8:9e:34:47:80:6f:3a:90:4e:bd: f5:1e:d0:f2:ee:ad:e9:c1:1f:95:12:2d:5c:30:dc:48:67:83: 9b:11:c9:11:7e:b4:9d:ed:7b:f5:be:a8:ac:c4:6c:22:90:a2: 52:f1:98:7f:a2:cb:cd:0a:3c:59:6f:eb:f5:fc:09:f1:34:85: 7f:55:f2:7f:7a:d2:e4:ff:ca:66:4a:c8:c6:94:9c:f7:bc:2d: b1:27:48:87:f8:06:72:90:cf:e7:fa:77:84:54:9e:15:89:85: 8d:f0:13:62:de:7d:53:fd:c9:a2:da:15:c5:ac:14:22:26:7d: 9f:6b:91:c4:73:6b:97:2d:9b:77:86:e0:62:b5:ee:21:da:42: f9:9c:93:85:fe:ae:dd:8a:dd:86:43:25:ee:d4:13:b7:0a:c9: 00:9a:d9:6e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QzAzOTExMC8GA1UEBRMoOTEwODI1NzhGNzFFNEI4NjA1N0RDM0VCMDcwM0ZFNjU4 OUU2Njg5MTAeFw0yNTA2MDMwMDAyMDhaFw0yNTA2MTAwMDAyMDhaMBgxFjAUBgNV BAMTDTY4M2UzYjgwLTk5ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvEGcmWQpqlOKWNBoaK0Ty3bQHlk8g+hCCaKRayrmDZEIuwl9qWY6iDBMuezy7 ei99KU7GZsE97gTrFvfpr+WZZJV1nf/9EAy8pOfkDoxKJW1ndxdrvFAmmK4kkago jLzRyPlNXyZPfLGWIWrR/OxYjVoeNElKvy/hurMUQtBxl4ba+OS+25oaUkTwBbD4 CmCCNDMWZ221un+OQMtJHw+lFREgCoHmQqueSVYCbR3jA38Rao5LeAMRl4PFf2JW G6UrOL+7CokPb9zbqlh3v0TUWDdv54iRdXo10R6pqvrZ0ZtXoANVqf7TkNhlOHwr 9Z1SC8UtzRurMOKKzfy+h00nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUj1/6I2zN 5RTNGYXolcwt+xfIkaIwHwYDVR0jBBgwFoAUkQglePceS4YFfcPrBwP+ZYnmaJEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDMDM5LzE1MzRBMDVBQTE3 NDExRUZCRjYxNjYyNEM0RjlBRTAyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFK RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva1FnbGVQY2VTNFlGZmNQckJ3UC1aWW5tYUpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD MDM5LzE1MzRBMDVBQTE3NDExRUZCRjYxNjYyNEM0RjlBRTAyL2tRZ2xlUGNlUzRZ RmZjUHJCd1AtWllubWFKRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALSE8uCkAG0yuegjHXnV0VfojMLxKJsiCEjDDf55A+QtlJyhiOf7MKKg OARZqCLwTmJBTpzCNcn43GXyEiS7baJDu1eWMWkmjikwg0qGF0X5ruxaowNZ+E2L 6goryTpuPznIuJ40R4BvOpBOvfUe0PLurenBH5USLVww3Ehng5sRyRF+tJ3te/W+ qKzEbCKQolLxmH+iy80KPFlv6/X8CfE0hX9V8n960uT/ymZKyMaUnPe8LbEnSIf4 BnKQz+f6d4RUnhWJhY3wE2LefVP9yaLaFcWsFCImfZ9rkcRza5ctm3eG4GK17iHa Qvmck4X+rt2K3YZDJe7UE7cKyQCa2W4= -----END CERTIFICATE-----Generated at Wed Jun 4 00:10:17 2025 by rpki-client