$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: B2JBkduckzfWRMZEaDmcb37jGuQ7Z1jv5WQUP6y5fyc= Subject key identifier: D0:97:35:A0:22:95:34:3C:48:65:2B:70:E2:25:B7:AE:C7:94:D5:1B Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: B1 Signing time: Sun 19 Oct 2025 01:21:27 +0000 Manifest this update: Sun 19 Oct 2025 01:21:27 +0000 Manifest next update: Sun 26 Oct 2025 01:21:26 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: 5CJ14dwdK85fD4jzHwH/eyHor/l6kOYP1k+Or1RaUD8=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: V0ubCLoQg1VTBDouQoudPE1DyZNQvqeyyMrWFtDfDUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:21:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Oct 19 01:21:27 2025 GMT Not After : Oct 26 01:21:26 2025 GMT Subject: CN=68f43d17-aef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:65:61:7a:1d:4f:db:d7:ea:4e:13:57:5d:58: c9:d8:ba:f2:8e:a1:de:7e:fa:12:6b:5b:ad:cf:5d: 13:d8:e9:8a:65:1d:32:e2:2b:fc:e7:88:8f:56:68: 58:f4:37:71:a9:2c:89:c1:70:eb:f9:33:2b:07:b0: b2:12:be:04:0f:22:ed:c6:28:4b:49:a9:c1:83:0e: ff:29:5b:82:fb:82:3c:d4:3c:81:92:25:f5:dc:67: 6b:a4:89:44:81:8b:6a:87:32:aa:6a:7c:52:99:b5: 69:3b:36:49:5a:30:c6:f9:1c:15:e8:0e:88:58:f5: 32:97:20:03:31:9c:fc:63:6a:70:b1:c3:24:2b:7a: d2:c9:7a:2e:27:b2:4a:4b:98:04:07:fe:34:4f:ba: 3e:29:8f:f2:a4:60:89:e0:34:e0:a0:5c:53:42:ef: 78:2f:16:7b:1d:a6:f6:28:92:f3:c9:28:46:d7:14: 70:90:b7:6a:76:bf:8e:49:f0:58:65:77:09:e5:58: c7:74:44:d8:f1:df:9d:de:ed:f4:d2:88:85:32:91: c0:d8:d1:9f:9c:02:87:8e:e0:87:fc:10:86:d6:2f: 08:f8:6f:10:f6:9c:03:ed:8b:0b:ab:c3:e0:bd:76: 26:84:31:e9:48:eb:88:e9:15:74:fc:63:fc:92:48: e5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:97:35:A0:22:95:34:3C:48:65:2B:70:E2:25:B7:AE:C7:94:D5:1B X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:b4:e2:23:79:de:9b:ba:9d:f8:1a:74:bc:2e:db:83:09:22: c1:b6:67:b9:61:94:bc:58:66:63:84:df:55:54:f4:52:ae:49: 87:8a:22:31:0f:b8:94:d7:cd:3b:6a:a9:73:cd:06:51:08:9f: 66:65:22:4d:72:e2:6f:15:38:66:f8:5f:1a:3c:a4:6e:5a:6d: 03:2c:4b:10:ea:16:0c:67:0a:26:47:b1:58:a6:68:e5:8d:75: 26:61:4d:95:ee:43:f0:78:91:7a:9a:4c:b2:04:54:55:fe:23: 00:46:0a:f9:b7:ba:99:18:8f:90:1f:c0:27:af:58:f5:d4:86: c2:73:42:88:ba:75:78:3c:2f:06:b7:35:69:94:98:cb:8a:d1: 89:1d:ba:d2:d4:60:c0:bc:11:64:16:07:3a:fa:64:e2:cc:79: 57:74:f6:b8:87:7f:38:c0:85:8c:bc:a7:0c:48:4f:6d:db:31: 30:74:c0:48:99:0e:2a:a4:4e:52:32:47:d0:ca:b4:c2:30:87: 28:d7:fb:4d:eb:e5:7f:6d:08:47:59:98:0d:48:f9:4a:bc:9c: 49:ce:a3:01:a0:75:ee:62:41:f0:e1:86:12:05:6b:0c:b8:f0: 00:23:b7:cd:6c:5c:57:6c:66:38:7a:9e:f1:4e:79:d7:da:68: f7:39:cf:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKDkxMDgyNTc4RjcxRTRCODYwNTdEQzNFQjA3MDNGRTY1 ODlFNjY4OTEwHhcNMjUxMDE5MDEyMTI3WhcNMjUxMDI2MDEyMTI2WjAYMRYwFAYD VQQDEw02OGY0M2QxNy1hZWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3GVheh1P29fqThNXXVjJ2LryjqHefvoSa1utz10T2OmKZR0y4iv854iPVmhY 9DdxqSyJwXDr+TMrB7CyEr4EDyLtxihLSanBgw7/KVuC+4I81DyBkiX13GdrpIlE gYtqhzKqanxSmbVpOzZJWjDG+RwV6A6IWPUylyADMZz8Y2pwscMkK3rSyXouJ7JK S5gEB/40T7o+KY/ypGCJ4DTgoFxTQu94LxZ7Hab2KJLzyShG1xRwkLdqdr+OSfBY ZXcJ5VjHdETY8d+d3u300oiFMpHA2NGfnAKHjuCH/BCG1i8I+G8Q9pwD7YsLq8Pg vXYmhDHpSOuI6RV0/GP8kkjluwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNCXNaAi lTQ8SGUrcOIlt67HlNUbMB8GA1UdIwQYMBaAFJEIJXj3HkuGBX3D6wcD/mWJ5miR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS8xNTM0QTA1QUEx NzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0WUZmY1ByQndQLVpZbm1h SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS8xNTM0QTA1QUExNzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0 WUZmY1ByQndQLVpZbm1hSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAstOIjed6bup34GnS8LtuDCSLBtme5YZS8WGZjhN9VVPRSrkmHiiIx D7iU1807aqlzzQZRCJ9mZSJNcuJvFThm+F8aPKRuWm0DLEsQ6hYMZwomR7FYpmjl jXUmYU2V7kPweJF6mkyyBFRV/iMARgr5t7qZGI+QH8Anr1j11IbCc0KIunV4PC8G tzVplJjLitGJHbrS1GDAvBFkFgc6+mTizHlXdPa4h384wIWMvKcMSE9t2zEwdMBI mQ4qpE5SMkfQyrTCMIco1/tN6+V/bQhHWZgNSPlKvJxJzqMBoHXuYkHw4YYSBWsM uPAAI7fNbFxXbGY4ep7xTnnX2mj3Oc/O -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:56 2025 by rpki-client