$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft File: rs-kglLctVxfHrOBKIztw-b4YnQ.mft (raw, json) Hash identifier: feXBGcNww47w+S13KqndTnoS/prBarCpkv+GM9D63mU= Subject key identifier: 6D:F1:EA:7C:CB:34:3A:49:0E:C7:73:A7:F6:C7:7D:B3:C0:F2:CA:77 Authority key identifier: AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 Certificate issuer: /CN=A91356BA/serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft Manifest number: A0 Signing time: Thu 03 Jul 2025 06:29:08 +0000 Manifest this update: Thu 03 Jul 2025 06:29:08 +0000 Manifest next update: Thu 10 Jul 2025 06:29:08 +0000 Files and hashes: 1: rs-kglLctVxfHrOBKIztw-b4YnQ.crl (hash: uTPOIY7AodZCxBF+9amATlMA7ojPqX+v+9VyZj9bHCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BA, serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Validity Not Before: Jul 3 06:29:08 2025 GMT Not After : Jul 10 06:29:08 2025 GMT Subject: CN=68662334-7355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9c:06:9a:89:f4:f7:e4:24:a9:2e:d4:f6:22: 50:9c:c8:b4:15:ba:8d:f8:84:d5:b8:b7:2a:3c:50: d9:65:11:b4:0c:30:d3:5a:ee:2d:31:44:1d:f3:8f: 21:63:ff:be:ab:6d:fb:8d:f2:af:46:67:36:da:78: 5c:6c:fe:01:17:db:cf:12:aa:15:dd:a5:af:16:81: ea:f3:83:9b:88:f6:9b:d6:fd:d9:c8:89:19:a9:33: b0:ae:77:7d:88:06:6e:1e:51:ce:76:ab:e2:66:2c: 90:7d:6a:0e:b7:14:b0:4b:08:5b:58:94:8d:6c:77: 52:b0:89:29:b8:25:0a:7e:31:95:79:f2:87:eb:7a: 2f:b4:08:d8:9c:66:47:12:c8:14:81:c5:ac:19:b1: e6:cb:47:59:69:a9:ba:c6:ac:c2:ee:3a:3e:4f:b4: 09:74:c8:29:1c:78:75:a5:84:4e:8e:a7:fe:01:e3: ad:42:01:dd:09:9d:e2:28:c8:6a:d4:16:41:15:54: bb:c4:e3:2e:8a:a5:59:0e:a9:c1:13:19:0e:bb:48: 1d:aa:fe:0e:8f:32:f6:5a:00:d4:9b:2b:0c:b3:5d: 43:9c:33:ec:2f:c6:04:c7:cf:51:a0:52:95:23:c0: eb:5b:bb:a4:3b:3a:71:18:64:9b:9e:4b:97:29:7d: 45:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F1:EA:7C:CB:34:3A:49:0E:C7:73:A7:F6:C7:7D:B3:C0:F2:CA:77 X509v3 Authority Key Identifier: keyid:AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:b1:5c:34:09:ee:b5:fc:29:eb:fc:d4:72:f6:fe:1a:d3:f4: bd:a2:6a:6d:ba:08:9d:5a:a6:6f:12:6e:d7:5d:8d:8c:f3:ad: 3c:4c:ee:18:d6:09:0f:4c:e2:e5:c2:f7:dc:80:d1:75:b5:d2: 18:8f:3e:c3:38:83:be:8b:c3:d6:70:ac:b7:0f:78:77:0e:d1: 7b:53:44:b2:6f:20:d2:88:a4:f5:84:51:63:60:57:08:1a:86: 2b:93:29:f2:c3:8f:c3:29:cb:f2:f7:4f:84:14:a7:1f:e2:59: 90:bb:83:94:29:e5:89:aa:64:71:4e:9e:1a:b0:71:92:93:5a: 99:13:38:95:2f:27:6b:61:86:76:9f:2a:72:90:04:12:b4:76: e4:75:cf:29:bc:c5:a6:4c:69:74:65:1e:49:97:db:50:0c:31: 12:de:ae:77:d8:ec:5c:0d:65:2c:74:89:f3:36:2c:82:db:e8: db:1a:11:5a:b9:e8:dc:f3:af:f5:08:24:e3:cb:69:e5:01:60: 35:5e:c4:07:af:7e:46:91:6a:3b:7d:55:a6:4f:fd:5d:47:03: 53:89:7b:6b:46:44:51:dd:07:b8:db:62:fa:d4:c5:24:ae:cf: ce:7e:ea:52:72:df:23:18:46:2f:e8:83:ce:c6:81:c0:07:17: 88:c5:9c:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkExMTAvBgNVBAUTKEFFQ0ZBNDgyNTJEQ0I1NUM1RjFFQjM4MTI4OENFREMz RTZGODYyNzQwHhcNMjUwNzAzMDYyOTA4WhcNMjUwNzEwMDYyOTA4WjAYMRYwFAYD VQQDEw02ODY2MjMzNC03MzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJwGmon09+QkqS7U9iJQnMi0FbqN+ITVuLcqPFDZZRG0DDDTWu4tMUQd848h Y/++q237jfKvRmc22nhcbP4BF9vPEqoV3aWvFoHq84ObiPab1v3ZyIkZqTOwrnd9 iAZuHlHOdqviZiyQfWoOtxSwSwhbWJSNbHdSsIkpuCUKfjGVefKH63ovtAjYnGZH EsgUgcWsGbHmy0dZaam6xqzC7jo+T7QJdMgpHHh1pYROjqf+AeOtQgHdCZ3iKMhq 1BZBFVS7xOMuiqVZDqnBExkOu0gdqv4OjzL2WgDUmysMs11DnDPsL8YEx89RoFKV I8DrW7ukOzpxGGSbnkuXKX1FFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3x6nzL NDpJDsdzp/bHfbPA8sp3MB8GA1UdIwQYMBaAFK7PpIJS3LVcXx6zgSiM7cPm+GJ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQS8yNjQ1MjFEMjY5 MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RWeGZIck9CS0l6dHctYjRZ blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JzLWtnbExjdFZ4ZkhyT0JLSXp0dy1iNFluUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTZCQS8yNjQ1MjFEMjY5MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RW eGZIck9CS0l6dHctYjRZblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPsVw0Ce61/Cnr/NRy9v4a0/S9omptugidWqZvEm7XXY2M8608TO4Y 1gkPTOLlwvfcgNF1tdIYjz7DOIO+i8PWcKy3D3h3DtF7U0SybyDSiKT1hFFjYFcI GoYrkynyw4/DKcvy90+EFKcf4lmQu4OUKeWJqmRxTp4asHGSk1qZEziVLydrYYZ2 nypykAQStHbkdc8pvMWmTGl0ZR5Jl9tQDDES3q532OxcDWUsdInzNiyC2+jbGhFa uejc86/1CCTjy2nlAWA1XsQHr35GkWo7fVWmT/1dRwNTiXtrRkRR3Qe422L61MUk rs/OfupSct8jGEYv6IPOxoHABxeIxZzV -----END CERTIFICATE-----Generated at Thu Jul 3 22:01:33 2025 by rpki-client