$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: 9tp7fZjEbaRlyQrTP1Ms30WPKtkYkGrMYJ8BR4cv0uo= Subject key identifier: F9:7C:08:F2:FE:0F:37:A6:E2:BE:5F:F3:96:8C:D8:DF:17:C4:C1:B6 Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: 94 Signing time: Fri 22 Aug 2025 23:53:24 +0000 Manifest this update: Fri 22 Aug 2025 23:53:24 +0000 Manifest next update: Fri 29 Aug 2025 23:53:24 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: eDfhJJOVGDWP/QfTuIst3d/97++X/Si0Q2y60nxYPQQ=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: V0ubCLoQg1VTBDouQoudPE1DyZNQvqeyyMrWFtDfDUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:53:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Aug 22 23:53:24 2025 GMT Not After : Aug 29 23:53:24 2025 GMT Subject: CN=68a902f4-704f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ff:db:ee:5e:16:d9:aa:1a:c3:98:33:da:ee: db:92:a9:1a:d3:d3:d1:f9:4b:4c:d4:32:2d:2c:e4: 34:37:a2:72:59:73:12:29:fc:f6:20:80:1f:05:62: bc:78:17:a6:03:10:a6:0a:c9:23:f6:02:2d:e1:e5: 01:11:b7:ba:a5:31:55:7a:6d:b8:db:89:45:3c:2d: b2:ea:29:eb:40:a8:76:99:09:f5:5f:91:a1:0a:35: 10:f7:e6:e7:3e:96:aa:56:bf:fc:1c:0f:b8:40:cc: 97:f7:1d:a0:e8:99:d0:fc:bb:a6:59:54:7f:3b:b0: e4:7f:a6:9f:c7:7c:65:50:c5:78:52:e8:ec:20:ce: 60:51:6b:72:58:20:8a:a2:b6:2b:d4:3d:2a:67:ca: 59:c2:13:45:5f:16:db:f8:71:a0:6e:c1:b5:01:46: e0:8e:42:e3:b7:60:e9:ae:71:dd:a7:1c:a2:69:60: 71:4d:13:ef:ae:7d:99:95:3e:8c:57:04:3f:16:55: 29:0e:4d:7a:ba:6c:43:81:1e:d0:a7:24:5b:d0:f2: ec:a6:3c:8a:99:cf:fd:ec:b0:d3:ef:05:86:82:7f: 49:24:56:a0:12:b8:88:ec:6a:c1:8e:a5:48:b7:03: f0:e1:11:66:88:ae:e2:02:59:27:a4:49:71:36:2d: f5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:7C:08:F2:FE:0F:37:A6:E2:BE:5F:F3:96:8C:D8:DF:17:C4:C1:B6 X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:39:31:c5:99:8d:7a:84:70:d2:ee:f8:9e:51:6a:b3:f0:7d: 1f:30:40:b2:01:2d:b2:09:72:ff:c6:a7:ea:43:d4:6d:02:c7: b7:a8:cc:58:74:f1:b2:d7:47:c8:e9:f5:75:c5:2d:fc:9b:2a: 4c:13:eb:d9:11:20:53:7d:e5:9c:22:d5:2f:7f:b4:a1:e4:df: 52:a9:f0:44:56:da:e2:bf:dc:03:5c:10:49:cd:e6:ff:59:ae: 4e:40:5c:5a:5e:f8:1c:67:59:a3:8f:3f:67:9a:23:a0:07:2a: 51:cb:ba:d4:28:4f:73:e2:42:c7:44:32:ec:a4:0d:76:79:eb: c8:6e:3c:d1:d1:a5:a6:15:40:c0:f5:8b:74:5d:c6:45:2d:5a: 55:ca:ae:63:bb:62:0b:79:b7:01:97:24:28:ec:fe:7f:e1:ab: 0c:9b:e4:f3:84:e8:87:f9:e7:26:01:95:67:63:19:fe:3a:a9: ce:01:e9:74:0d:a8:03:96:24:8e:91:a4:6e:39:e4:31:11:1f: 33:68:c0:7d:5e:e5:67:1a:a0:08:af:95:bd:97:2b:a0:fe:b6: e7:40:74:88:c7:d1:ee:96:32:81:e4:1c:2c:75:4a:6a:58:ec: 2c:27:5e:d6:66:3f:8a:12:86:c5:12:61:78:65:85:f6:c7:e9: fa:d7:f3:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKDkxMDgyNTc4RjcxRTRCODYwNTdEQzNFQjA3MDNGRTY1 ODlFNjY4OTEwHhcNMjUwODIyMjM1MzI0WhcNMjUwODI5MjM1MzI0WjAYMRYwFAYD VQQDEw02OGE5MDJmNC03MDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuP/b7l4W2aoaw5gz2u7bkqka09PR+UtM1DItLOQ0N6JyWXMSKfz2IIAfBWK8 eBemAxCmCskj9gIt4eUBEbe6pTFVem2424lFPC2y6inrQKh2mQn1X5GhCjUQ9+bn PpaqVr/8HA+4QMyX9x2g6JnQ/LumWVR/O7Dkf6afx3xlUMV4UujsIM5gUWtyWCCK orYr1D0qZ8pZwhNFXxbb+HGgbsG1AUbgjkLjt2DprnHdpxyiaWBxTRPvrn2ZlT6M VwQ/FlUpDk16umxDgR7QpyRb0PLspjyKmc/97LDT7wWGgn9JJFagEriI7GrBjqVI twPw4RFmiK7iAlknpElxNi31DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPl8CPL+ Dzem4r5f85aM2N8XxMG2MB8GA1UdIwQYMBaAFJEIJXj3HkuGBX3D6wcD/mWJ5miR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS8xNTM0QTA1QUEx NzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0WUZmY1ByQndQLVpZbm1h SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS8xNTM0QTA1QUExNzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0 WUZmY1ByQndQLVpZbm1hSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTOTHFmY16hHDS7vieUWqz8H0fMECyAS2yCXL/xqfqQ9RtAse3qMxY dPGy10fI6fV1xS38mypME+vZESBTfeWcItUvf7Sh5N9SqfBEVtriv9wDXBBJzeb/ Wa5OQFxaXvgcZ1mjjz9nmiOgBypRy7rUKE9z4kLHRDLspA12eevIbjzR0aWmFUDA 9Yt0XcZFLVpVyq5ju2ILebcBlyQo7P5/4asMm+TzhOiH+ecmAZVnYxn+OqnOAel0 DagDliSOkaRuOeQxER8zaMB9XuVnGqAIr5W9lyug/rbnQHSIx9HuljKB5BwsdUpq WOwsJ17WZj+KEobFEmF4ZYX2x+n61/Pe -----END CERTIFICATE-----Generated at Sat Aug 23 10:42:48 2025 by rpki-client