$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: 3J1XujJ8+gY0Yfk60jj1VRpMB+JvGHx+QtXNKFWjvP8= Subject key identifier: 6F:4F:52:95:6B:E4:F7:F2:74:81:D7:EA:39:44:E9:CC:5F:70:32:F4 Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: B9 Signing time: Tue 04 Nov 2025 23:38:52 +0000 Manifest this update: Tue 04 Nov 2025 23:38:51 +0000 Manifest next update: Tue 11 Nov 2025 23:38:51 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: QTK9PHsjI1dLkQzG7D6qtjqMbHlQNT1UH5ePMOQPDeQ=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: V0ubCLoQg1VTBDouQoudPE1DyZNQvqeyyMrWFtDfDUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:38:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Nov 4 23:38:51 2025 GMT Not After : Nov 11 23:38:51 2025 GMT Subject: CN=690a8e8c-017c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:44:a8:1f:dd:6c:e9:84:70:13:30:2c:42:79: 0f:46:10:bd:3d:68:32:11:5a:6b:73:67:10:92:b4: 95:b1:98:83:d5:d5:35:da:15:98:8c:a8:1f:4e:0b: f9:86:e1:b7:dd:08:ff:88:db:8b:28:fe:5c:8c:ce: 1d:3e:10:03:be:de:be:99:84:7d:d9:05:c9:a9:00: ce:f9:78:8d:6a:21:05:c2:61:ca:4f:b0:cf:9d:ef: cc:60:ca:83:c3:53:4c:67:51:4f:4e:fe:23:f1:8f: 21:b0:82:2e:09:ad:f0:83:9c:78:3c:12:a8:54:70: be:1b:ae:bd:23:f0:8e:13:66:90:8d:a6:03:e3:10: 3e:c4:1f:fe:0c:d8:fc:4f:93:fa:23:ca:b8:7c:bc: d2:a3:d4:aa:9b:ba:92:00:95:6b:8c:4b:27:22:9e: a3:b9:9b:63:15:60:c4:6e:75:40:25:3b:6d:c7:b5: bf:4c:87:0b:19:e6:b1:35:e2:a7:78:c4:41:3e:78: f0:6c:76:72:3a:44:89:7b:96:88:16:fd:0e:0c:0f: 1b:38:18:cd:53:03:94:24:4d:0b:ff:85:72:08:0e: fc:df:89:7e:a9:8e:7b:d2:0d:bc:aa:52:71:5b:30: 36:58:68:07:d5:ad:99:22:88:17:d7:02:d5:06:c5: e5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:4F:52:95:6B:E4:F7:F2:74:81:D7:EA:39:44:E9:CC:5F:70:32:F4 X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:4d:56:ba:22:6f:cd:e8:f3:3e:ee:5f:62:49:64:fa:ab:b6: b5:41:3f:d1:d4:35:6e:41:c5:28:2f:8c:26:c2:f5:2b:ad:cf: 8a:52:7e:36:14:be:1b:ab:10:c3:b2:b6:c6:89:a6:48:1d:fa: 05:ca:85:a8:66:79:0c:16:58:4e:37:03:a8:a5:84:69:ea:1e: 25:de:7f:96:8e:68:c0:ad:6e:bb:dd:2d:45:fc:75:0e:ed:2b: 95:17:55:6a:41:4f:73:76:70:3b:e5:2b:92:4b:a6:f1:5e:0f: 40:52:3f:89:e0:b5:c0:14:1d:bc:bd:54:f1:7c:86:5d:2d:87: d4:c8:a6:84:92:4a:25:c2:b5:6a:de:3f:d4:88:f7:31:78:00: 46:19:0a:3a:49:f7:bd:b5:71:09:c8:ed:3b:63:40:cd:09:bf: 5b:fa:ba:4d:2c:3f:7e:f0:e5:5d:ae:49:0b:3c:25:08:4a:94: 55:fe:54:2d:8e:5b:9e:0c:19:3d:b0:fa:d9:15:db:ab:7e:0b: 7c:e7:f6:f5:8c:9b:9b:f1:60:f9:c7:93:ae:a6:67:ab:48:38: 59:3f:37:59:17:be:3d:7d:71:15:44:2c:b8:ae:b5:f3:dc:3a: 5f:99:bb:4f:5b:b4:c4:ac:74:ef:24:4e:29:7c:f7:14:1c:18: 84:20:aa:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKDkxMDgyNTc4RjcxRTRCODYwNTdEQzNFQjA3MDNGRTY1 ODlFNjY4OTEwHhcNMjUxMTA0MjMzODUxWhcNMjUxMTExMjMzODUxWjAYMRYwFAYD VQQDEw02OTBhOGU4Yy0wMTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kSoH91s6YRwEzAsQnkPRhC9PWgyEVprc2cQkrSVsZiD1dU12hWYjKgfTgv5 huG33Qj/iNuLKP5cjM4dPhADvt6+mYR92QXJqQDO+XiNaiEFwmHKT7DPne/MYMqD w1NMZ1FPTv4j8Y8hsIIuCa3wg5x4PBKoVHC+G669I/COE2aQjaYD4xA+xB/+DNj8 T5P6I8q4fLzSo9Sqm7qSAJVrjEsnIp6juZtjFWDEbnVAJTttx7W/TIcLGeaxNeKn eMRBPnjwbHZyOkSJe5aIFv0ODA8bOBjNUwOUJE0L/4VyCA7834l+qY570g28qlJx WzA2WGgH1a2ZIogX1wLVBsXlAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9PUpVr 5PfydIHX6jlE6cxfcDL0MB8GA1UdIwQYMBaAFJEIJXj3HkuGBX3D6wcD/mWJ5miR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS8xNTM0QTA1QUEx NzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0WUZmY1ByQndQLVpZbm1h SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS8xNTM0QTA1QUExNzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0 WUZmY1ByQndQLVpZbm1hSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBTVa6Im/N6PM+7l9iSWT6q7a1QT/R1DVuQcUoL4wmwvUrrc+KUn42 FL4bqxDDsrbGiaZIHfoFyoWoZnkMFlhONwOopYRp6h4l3n+WjmjArW673S1F/HUO 7SuVF1VqQU9zdnA75SuSS6bxXg9AUj+J4LXAFB28vVTxfIZdLYfUyKaEkkolwrVq 3j/UiPcxeABGGQo6Sfe9tXEJyO07Y0DNCb9b+rpNLD9+8OVdrkkLPCUISpRV/lQt jlueDBk9sPrZFdurfgt85/b1jJub8WD5x5OupmerSDhZPzdZF749fXEVRCy4rrXz 3DpfmbtPW7TErHTvJE4pfPcUHBiEIKr6 -----END CERTIFICATE-----Generated at Wed Nov 5 04:48:25 2025 by rpki-client