$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: tOOmbg4ke0oXXnerHf6slg3/gbGmSdzWakD5YNbp+cc= Subject key identifier: 1B:E8:E3:34:65:9F:4F:FD:F7:1E:F6:47:32:AB:E0:A2:D9:87:B8:AC Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: 7A Signing time: Thu 03 Jul 2025 00:06:12 +0000 Manifest this update: Thu 03 Jul 2025 00:06:12 +0000 Manifest next update: Thu 10 Jul 2025 00:06:12 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: frNj7zRdk1aPheTn1LwCKCBq5npnSi5DLz9exoJ2jgU=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: V0ubCLoQg1VTBDouQoudPE1DyZNQvqeyyMrWFtDfDUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:06:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Jul 3 00:06:12 2025 GMT Not After : Jul 10 00:06:12 2025 GMT Subject: CN=6865c974-c122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:9f:9a:50:4f:75:ee:00:f7:b9:b0:d4:ae:f0: 1b:66:34:08:a9:e3:0a:f4:cf:97:4d:71:51:40:8d: de:ce:80:47:e7:b8:1f:9a:50:be:31:a2:bd:24:a3: 3d:7d:9d:2a:be:3c:9a:6c:eb:de:c3:61:43:2c:a9: 0f:e6:28:48:b9:17:c9:ec:79:c5:f7:48:d6:32:94: e4:06:5c:31:f1:14:49:8d:7c:b1:62:bf:d2:a8:f9: dc:c4:21:0d:cd:a7:d7:54:f4:43:67:92:bc:92:f5: d9:d3:1a:87:cf:cc:fe:5e:b3:e1:20:18:41:ed:5e: 2b:7b:ec:de:67:9c:aa:84:43:09:ca:37:dc:54:47: 96:ed:c6:88:c8:d9:d0:32:e0:67:be:99:19:ef:bd: 3a:d4:be:1c:37:b5:6e:53:d7:b0:78:83:10:eb:bc: da:e6:a5:b3:32:b2:f1:9b:66:79:78:35:f6:ec:5e: 45:a2:ec:c7:73:e3:62:01:dd:09:6c:5c:4c:4c:70: 9c:d6:ca:da:96:d6:65:12:f7:53:16:0d:2e:36:74: a8:e9:7b:12:1f:85:8b:67:40:20:39:4b:59:0d:d6: d8:57:2c:9d:b7:28:2c:d4:70:6f:27:39:ba:8f:db: 0b:c5:43:7d:58:b4:25:96:12:7e:13:fb:18:a0:8b: 4b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E8:E3:34:65:9F:4F:FD:F7:1E:F6:47:32:AB:E0:A2:D9:87:B8:AC X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:48:b1:15:88:f9:2e:b6:89:d5:04:c0:b1:98:e7:11:80:a9: be:81:dc:a0:89:0f:f0:32:9a:34:fe:e3:8c:fa:ee:6d:aa:08: 03:2e:5c:7e:a8:2d:37:80:5c:47:b4:3b:46:99:0d:02:cb:cc: ac:f1:63:07:59:31:06:29:bf:51:1b:bd:67:d6:ca:a3:2f:75: 07:66:7a:6e:14:42:62:7d:e3:1f:54:78:3f:44:ac:97:ca:00: a5:04:90:f5:6d:28:e2:fe:51:d9:fd:65:21:ff:6e:d6:7a:96: 6c:8c:e1:c9:b6:82:e1:68:77:a9:01:1e:a3:af:dd:2a:8d:6e: b7:db:93:9a:a5:e8:1e:3b:14:47:23:08:20:4f:8d:17:42:4e: ea:bb:55:d3:2b:f6:1b:9b:7b:40:eb:d2:d6:ce:c8:b7:99:02: 22:36:6c:86:80:00:ca:16:ef:88:4f:a6:67:8e:42:43:9f:f4: 0d:ce:c5:38:e5:45:42:5d:77:e6:10:5d:d6:19:bc:b2:db:ad: 5c:73:79:40:b8:f4:62:69:cf:cd:fe:c2:65:e5:1b:4b:78:de: 46:5b:a9:03:1e:7f:dc:e8:ad:01:86:90:42:d9:08:47:bc:61: 4b:cf:a4:7d:6f:2d:e1:5f:e5:b2:26:62:29:91:66:42:5b:f4: db:01:1e:fe -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QzAzOTExMC8GA1UEBRMoOTEwODI1NzhGNzFFNEI4NjA1N0RDM0VCMDcwM0ZFNjU4 OUU2Njg5MTAeFw0yNTA3MDMwMDA2MTJaFw0yNTA3MTAwMDA2MTJaMBgxFjAUBgNV BAMTDTY4NjVjOTc0LWMxMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnn5pQT3XuAPe5sNSu8BtmNAip4wr0z5dNcVFAjd7OgEfnuB+aUL4xor0koz19 nSq+PJps697DYUMsqQ/mKEi5F8nsecX3SNYylOQGXDHxFEmNfLFiv9Ko+dzEIQ3N p9dU9ENnkryS9dnTGofPzP5es+EgGEHtXit77N5nnKqEQwnKN9xUR5btxojI2dAy 4Ge+mRnvvTrUvhw3tW5T17B4gxDrvNrmpbMysvGbZnl4NfbsXkWi7Mdz42IB3Qls XExMcJzWytqW1mUS91MWDS42dKjpexIfhYtnQCA5S1kN1thXLJ23KCzUcG8nObqP 2wvFQ31YtCWWEn4T+xigi0tlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUG+jjNGWf T/33HvZHMqvgotmHuKwwHwYDVR0jBBgwFoAUkQglePceS4YFfcPrBwP+ZYnmaJEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDMDM5LzE1MzRBMDVBQTE3 NDExRUZCRjYxNjYyNEM0RjlBRTAyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFK RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva1FnbGVQY2VTNFlGZmNQckJ3UC1aWW5tYUpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD MDM5LzE1MzRBMDVBQTE3NDExRUZCRjYxNjYyNEM0RjlBRTAyL2tRZ2xlUGNlUzRZ RmZjUHJCd1AtWllubWFKRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADRIsRWI+S62idUEwLGY5xGAqb6B3KCJD/AymjT+44z67m2qCAMuXH6o LTeAXEe0O0aZDQLLzKzxYwdZMQYpv1EbvWfWyqMvdQdmem4UQmJ94x9UeD9ErJfK AKUEkPVtKOL+Udn9ZSH/btZ6lmyM4cm2guFod6kBHqOv3SqNbrfbk5ql6B47FEcj CCBPjRdCTuq7VdMr9hube0Dr0tbOyLeZAiI2bIaAAMoW74hPpmeOQkOf9A3OxTjl RUJdd+YQXdYZvLLbrVxzeUC49GJpz83+wmXlG0t43kZbqQMef9zorQGGkELZCEe8 YUvPpH1vLeFf5bImYimRZkJb9NsBHv4= -----END CERTIFICATE-----Generated at Thu Jul 3 20:35:51 2025 by rpki-client