$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: Ywplr+6ViJD1PMWVYk/h6fOfxLjljzbSDH/6GY1jNh0= Subject key identifier: AC:A7:F3:7D:91:98:B3:3E:F4:BA:41:B1:B4:FD:77:A4:DB:BC:5B:FC Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: 61 Signing time: Mon 12 May 2025 23:38:10 +0000 Manifest this update: Mon 12 May 2025 23:38:09 +0000 Manifest next update: Mon 19 May 2025 23:38:09 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: daKtB3QjYz3NnOKxH3s1L6fTv3w/gOwJsCZM8J9i54M=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: V0ubCLoQg1VTBDouQoudPE1DyZNQvqeyyMrWFtDfDUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: May 12 23:38:09 2025 GMT Not After : May 19 23:38:09 2025 GMT Subject: CN=68228662-2647 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:79:5e:5c:c7:a1:b7:42:4e:4a:bd:89:af:d5: 2b:ca:dd:5e:6a:d1:2f:7e:ff:9d:6d:4b:f3:c0:c5: 0a:f7:80:91:9a:87:50:3f:af:6c:b2:10:1b:d5:64: 7f:40:38:11:93:a0:4e:99:0c:c3:b8:54:a9:5a:02: 65:b7:03:6c:a4:88:dd:57:93:37:5d:54:49:54:4e: 49:d4:3a:f4:ad:4c:85:a4:67:d3:27:1b:bf:ac:21: f6:fb:55:82:f9:43:6e:3b:2d:dd:56:64:5f:43:71: b3:8d:a8:e5:cf:53:98:22:d6:70:90:00:c9:84:ea: 9d:a4:35:f2:75:22:e2:c6:14:f4:c0:f4:a3:0b:83: 3e:a3:6d:83:c9:f2:d2:5f:4e:28:1f:d0:16:14:02: 42:4f:a4:7e:38:3c:65:76:41:58:9e:56:1d:49:24: 0e:a6:ff:62:ed:b0:c8:a1:52:ad:5c:34:c4:80:47: 21:13:e1:c2:db:20:97:22:8b:a1:c1:ff:36:85:b5: 21:a9:f8:19:eb:fa:fd:9b:f9:b5:c5:b6:76:9a:b3: b4:0e:33:52:cf:86:9e:94:f3:5d:2e:63:91:a8:af: 44:3e:6d:8e:cd:37:5b:e2:c8:69:a5:9e:fc:25:9c: 55:1a:d8:61:2d:82:be:a3:df:38:9b:d7:c1:a0:36: 5a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A7:F3:7D:91:98:B3:3E:F4:BA:41:B1:B4:FD:77:A4:DB:BC:5B:FC X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:b0:9a:57:73:74:1f:fa:6a:d3:2e:ad:47:03:01:1b:ee:ba: 27:da:0f:30:8c:18:4b:16:42:99:52:8d:6d:70:83:60:5d:18: 43:32:09:03:ad:a0:2b:44:aa:6e:d5:52:6a:04:ec:61:b2:c8: 50:aa:65:ea:51:76:6a:86:9c:d2:84:8e:a8:35:e3:96:f2:75: 8f:8a:93:17:a8:56:77:b8:bb:c9:99:de:69:9f:2c:07:50:39: 05:2a:70:e9:70:dd:1b:6a:b5:d8:02:23:a9:36:d4:ce:d4:aa: 29:fc:20:79:84:73:c7:0e:d4:b1:ad:98:f5:87:e9:82:75:0a: 24:5d:45:71:49:81:05:4a:98:0a:49:a4:6f:3d:74:0b:7d:0d: 9f:55:dd:58:fa:76:4c:4e:02:52:73:15:97:da:26:e9:79:32: 05:a7:a5:8c:1c:40:00:1a:b1:2e:b0:ad:97:00:08:06:81:cb: 2d:b9:c0:fd:b1:53:ef:46:d1:6c:89:2f:2e:7e:be:d2:13:3e: fb:b2:a0:1d:18:41:d0:31:45:70:d0:c8:84:68:9c:6e:ad:cd: 94:87:7c:7a:b8:cf:17:3f:54:eb:e7:6e:79:5a:4f:10:94:06: ca:95:93:17:b5:81:cf:09:c0:22:77:f8:dd:c9:09:f2:8e:49: 26:16:df:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QzAzOTExMC8GA1UEBRMoOTEwODI1NzhGNzFFNEI4NjA1N0RDM0VCMDcwM0ZFNjU4 OUU2Njg5MTAeFw0yNTA1MTIyMzM4MDlaFw0yNTA1MTkyMzM4MDlaMBgxFjAUBgNV BAMTDTY4MjI4NjYyLTI2NDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAeV5cx6G3Qk5KvYmv1SvK3V5q0S9+/51tS/PAxQr3gJGah1A/r2yyEBvVZH9A OBGToE6ZDMO4VKlaAmW3A2ykiN1XkzddVElUTknUOvStTIWkZ9MnG7+sIfb7VYL5 Q247Ld1WZF9DcbONqOXPU5gi1nCQAMmE6p2kNfJ1IuLGFPTA9KMLgz6jbYPJ8tJf Tigf0BYUAkJPpH44PGV2QVieVh1JJA6m/2LtsMihUq1cNMSARyET4cLbIJcii6HB /zaFtSGp+Bnr+v2b+bXFtnaas7QOM1LPhp6U810uY5Gor0Q+bY7NN1viyGmlnvwl nFUa2GEtgr6j3zib18GgNlpbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrKfzfZGY sz70ukGxtP13pNu8W/wwHwYDVR0jBBgwFoAUkQglePceS4YFfcPrBwP+ZYnmaJEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDMDM5LzE1MzRBMDVBQTE3 NDExRUZCRjYxNjYyNEM0RjlBRTAyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFK RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva1FnbGVQY2VTNFlGZmNQckJ3UC1aWW5tYUpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD MDM5LzE1MzRBMDVBQTE3NDExRUZCRjYxNjYyNEM0RjlBRTAyL2tRZ2xlUGNlUzRZ RmZjUHJCd1AtWllubWFKRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKuwmldzdB/6atMurUcDARvuuifaDzCMGEsWQplSjW1wg2BdGEMyCQOt oCtEqm7VUmoE7GGyyFCqZepRdmqGnNKEjqg145bydY+KkxeoVne4u8mZ3mmfLAdQ OQUqcOlw3RtqtdgCI6k21M7Uqin8IHmEc8cO1LGtmPWH6YJ1CiRdRXFJgQVKmApJ pG89dAt9DZ9V3Vj6dkxOAlJzFZfaJul5MgWnpYwcQAAasS6wrZcACAaByy25wP2x U+9G0WyJLy5+vtITPvuyoB0YQdAxRXDQyIRonG6tzZSHfHq4zxc/VOvnbnlaTxCU BsqVkxe1gc8JwCJ3+N3JCfKOSSYW32o= -----END CERTIFICATE-----Generated at Wed May 14 21:26:56 2025 by rpki-client