$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft File: rs-kglLctVxfHrOBKIztw-b4YnQ.mft (raw, json) Hash identifier: XVkjlJZPXEhIVJGhZTJehGxd48XiOw8dzJKT+nujjfY= Subject key identifier: 1D:4D:86:F8:7E:7E:BA:51:2B:B7:79:DD:44:F1:22:FB:63:59:AD:29 Authority key identifier: AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 Certificate issuer: /CN=A91356BA/serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft Manifest number: BA Signing time: Sat 23 Aug 2025 06:11:55 +0000 Manifest this update: Sat 23 Aug 2025 06:11:54 +0000 Manifest next update: Sat 30 Aug 2025 06:11:54 +0000 Files and hashes: 1: rs-kglLctVxfHrOBKIztw-b4YnQ.crl (hash: U90T++rkOZSBbTuL3yB6fRcJDLKmgxya1DNuBKT4uBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BA, serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Validity Not Before: Aug 23 06:11:54 2025 GMT Not After : Aug 30 06:11:54 2025 GMT Subject: CN=68a95baa-2c97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ef:18:98:6b:98:3a:9b:09:ca:e3:d7:e1:57: fc:fc:7f:15:72:25:ed:a8:1e:31:98:6e:23:b6:c0: c2:4e:3c:2b:0f:c0:37:01:ce:ee:2a:b0:26:23:5f: 9f:18:9a:89:58:f2:73:11:90:75:a2:e2:39:85:28: 6f:1d:88:62:30:9e:6f:33:44:03:54:8f:ca:57:ee: 59:d1:cb:c3:4a:6c:aa:dc:55:f9:93:65:e5:18:61: ae:6c:34:1a:43:82:82:ba:6a:dc:83:53:99:8a:40: 6e:b5:89:bc:21:de:47:d6:75:42:fe:8f:63:f1:3e: 6d:b3:7e:61:67:4d:f6:3f:b8:c8:f9:f2:df:b9:25: eb:e3:2b:bb:07:57:53:c4:a8:12:21:23:8b:e7:5e: 38:fa:15:72:97:1b:6d:26:d9:f1:e4:4b:1f:25:d7: 0d:f4:43:27:ec:49:4a:76:e7:74:91:61:33:3d:ec: ce:ec:b3:70:f5:37:7f:c7:06:b4:d9:33:ef:c6:9b: 7b:ff:30:05:b6:a3:21:17:f0:42:41:ce:14:93:aa: 51:3e:7b:e0:af:c1:59:75:34:63:1f:c4:6a:1d:ae: ba:56:51:64:08:f2:b5:2f:86:9d:12:c2:9c:81:86: 56:b0:ed:49:38:9d:3e:23:8e:9a:80:8e:1f:4f:4b: cd:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:4D:86:F8:7E:7E:BA:51:2B:B7:79:DD:44:F1:22:FB:63:59:AD:29 X509v3 Authority Key Identifier: keyid:AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:1d:95:a0:0c:8c:6c:c3:08:0d:a5:2e:d1:b6:fa:3a:33:b1: 09:b1:46:12:f0:6b:e7:ac:81:b3:07:18:25:5a:a5:b7:7c:5b: 60:ce:4a:f3:21:a1:a2:f3:fa:78:0a:09:6a:12:90:e9:a1:99: 27:7b:35:7e:3d:88:ab:fb:5c:59:ed:ef:60:7f:f8:ea:c6:3b: cc:a2:1b:be:c3:06:8f:5a:a8:85:93:e9:76:f6:e4:cf:2b:d0: 90:28:4e:0e:23:1f:4f:8b:57:0b:2b:dd:11:75:3b:79:0e:cc: 11:25:01:2d:d0:95:2f:6e:8b:d5:00:bc:8b:f7:63:e8:b3:bc: 57:53:a9:b1:ff:46:b7:d9:00:9e:c0:ee:f1:75:25:a3:47:d3: 95:06:4e:5c:ee:79:27:03:f7:b5:97:48:67:01:aa:9f:0d:e2: c1:80:23:cb:e9:15:ef:c8:cb:2b:2c:3c:62:8c:f2:de:d0:d8: 8e:99:88:be:4a:4e:64:17:07:be:e1:26:7d:3e:e2:41:a3:57: d2:7e:ce:ba:41:51:02:15:43:fb:c0:b5:72:10:ee:49:a8:fd: 40:62:06:92:71:5a:41:71:0a:3d:8f:25:e6:28:d8:14:3f:b3: b4:31:23:cc:e8:56:bb:ca:89:1c:04:a1:cc:8b:8c:79:bd:5b: 41:c4:6e:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkExMTAvBgNVBAUTKEFFQ0ZBNDgyNTJEQ0I1NUM1RjFFQjM4MTI4OENFREMz RTZGODYyNzQwHhcNMjUwODIzMDYxMTU0WhcNMjUwODMwMDYxMTU0WjAYMRYwFAYD VQQDEw02OGE5NWJhYS0yYzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqO8YmGuYOpsJyuPX4Vf8/H8VciXtqB4xmG4jtsDCTjwrD8A3Ac7uKrAmI1+f GJqJWPJzEZB1ouI5hShvHYhiMJ5vM0QDVI/KV+5Z0cvDSmyq3FX5k2XlGGGubDQa Q4KCumrcg1OZikButYm8Id5H1nVC/o9j8T5ts35hZ032P7jI+fLfuSXr4yu7B1dT xKgSISOL5144+hVylxttJtnx5EsfJdcN9EMn7ElKdud0kWEzPezO7LNw9Td/xwa0 2TPvxpt7/zAFtqMhF/BCQc4Uk6pRPnvgr8FZdTRjH8RqHa66VlFkCPK1L4adEsKc gYZWsO1JOJ0+I46agI4fT0vNKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1Nhvh+ frpRK7d53UTxIvtjWa0pMB8GA1UdIwQYMBaAFK7PpIJS3LVcXx6zgSiM7cPm+GJ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQS8yNjQ1MjFEMjY5 MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RWeGZIck9CS0l6dHctYjRZ blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JzLWtnbExjdFZ4ZkhyT0JLSXp0dy1iNFluUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTZCQS8yNjQ1MjFEMjY5MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RW eGZIck9CS0l6dHctYjRZblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVHZWgDIxswwgNpS7Rtvo6M7EJsUYS8GvnrIGzBxglWqW3fFtgzkrz IaGi8/p4CglqEpDpoZknezV+PYir+1xZ7e9gf/jqxjvMohu+wwaPWqiFk+l29uTP K9CQKE4OIx9Pi1cLK90RdTt5DswRJQEt0JUvbovVALyL92Pos7xXU6mx/0a32QCe wO7xdSWjR9OVBk5c7nknA/e1l0hnAaqfDeLBgCPL6RXvyMsrLDxijPLe0NiOmYi+ Sk5kFwe+4SZ9PuJBo1fSfs66QVECFUP7wLVyEO5JqP1AYgaScVpBcQo9jyXmKNgU P7O0MSPM6Fa7yokcBKHMi4x5vVtBxG5h -----END CERTIFICATE-----Generated at Sat Aug 23 21:39:47 2025 by rpki-client