$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: L0sa1qm8+oSzNfHA1z5KHK6Y+HdwMoaMb+OMXnZ7qp8= Subject key identifier: 15:18:07:9C:9D:C8:3E:73:91:22:B1:05:C0:57:D2:52:05:97:14:5B Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: 58 Signing time: Thu 24 Apr 2025 23:38:58 +0000 Manifest this update: Thu 24 Apr 2025 23:38:57 +0000 Manifest next update: Thu 01 May 2025 23:38:57 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: z5z5qz9i6SZcCyoDMsNLIfOG0klhNR67PslA9vVS7a4=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: V0ubCLoQg1VTBDouQoudPE1DyZNQvqeyyMrWFtDfDUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Apr 24 23:38:57 2025 GMT Not After : May 1 23:38:57 2025 GMT Subject: CN=680acb91-9a5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e2:ee:83:68:bb:4a:52:ea:db:8c:2d:f0:70: 5c:3f:3c:5a:fa:1b:be:5f:6b:02:de:4f:fd:3a:d3: c7:b7:07:5f:31:20:11:3b:af:0f:47:49:4f:92:fa: 5a:31:0a:3c:b2:d6:2e:ac:ae:8a:2a:76:6f:e5:ad: c4:26:4d:50:be:56:d6:1a:30:e2:d2:cd:71:f5:09: 10:42:d8:9e:33:40:fe:b6:b8:2b:c5:32:b5:88:d9: 91:28:c7:6d:35:11:07:8e:f0:fc:b0:04:7b:f6:c8: 89:9e:bb:f6:41:03:e3:b3:df:04:23:b9:49:9d:ac: 30:c5:cb:6b:4a:90:ca:b4:aa:58:d3:4d:73:8c:c7: 91:3b:1d:11:17:27:7a:17:ba:2e:08:1f:ad:ee:90: bb:3a:5e:16:29:93:78:99:7c:95:31:0b:f9:7d:58: 70:24:05:20:f8:57:48:d4:14:57:fa:9c:0b:de:ec: af:43:4d:b4:6d:25:2e:ae:67:a6:50:7a:2e:8d:ca: 3d:c9:9a:43:41:21:a0:92:78:d1:79:b6:46:33:e7: 21:e4:22:5d:af:45:40:0a:94:f4:e6:17:15:9f:1b: 20:c9:c5:d4:78:e5:7f:86:07:db:3c:2e:16:59:70: 10:df:06:49:dd:e7:af:ec:b3:6b:05:ed:86:fa:15: dd:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:18:07:9C:9D:C8:3E:73:91:22:B1:05:C0:57:D2:52:05:97:14:5B X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:1d:3e:7f:83:80:94:79:32:e0:58:f3:73:04:a2:b5:15:4d: d1:bb:cc:ab:60:cc:ce:29:56:62:a9:01:b4:28:7e:ef:4d:dc: 56:da:67:4f:e9:88:d6:75:75:4a:66:83:dc:f1:fb:dc:6f:db: a4:75:c3:e8:13:9d:15:49:dd:47:bc:6f:37:a3:39:a7:21:e4: 80:32:64:73:93:82:67:64:97:c4:ba:90:d3:dc:67:0e:73:7e: 5d:d4:e6:47:44:0a:20:e2:67:de:c0:8a:c6:33:03:61:37:e1: 7f:d0:9e:e2:f5:a8:7e:7f:5f:8e:b4:b9:15:f5:f5:ab:30:bb: 57:78:80:b1:4b:98:32:df:b4:62:f9:eb:7e:ff:0b:3b:a6:37: 92:81:b4:65:70:f3:32:0e:bd:76:a1:5f:84:f5:78:67:e9:4d: 5d:4c:b6:dc:40:77:a6:50:e0:5f:c8:a3:d3:d8:32:41:31:fa: 3c:ea:ff:c3:8c:3a:f5:51:77:76:d6:94:30:64:99:2c:1b:1c: c1:ac:d7:59:5d:57:3d:20:1f:2b:6c:b3:8a:60:7e:2c:7a:fe: 91:13:4e:e9:98:99:3b:ce:72:b8:ec:ed:40:68:77:aa:b7:13: 34:16:99:26:1b:e8:3e:bb:ba:fe:cf:3a:24:48:c2:79:e9:53: ea:0f:c3:29 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QzAzOTExMC8GA1UEBRMoOTEwODI1NzhGNzFFNEI4NjA1N0RDM0VCMDcwM0ZFNjU4 OUU2Njg5MTAeFw0yNTA0MjQyMzM4NTdaFw0yNTA1MDEyMzM4NTdaMBgxFjAUBgNV BAMTDTY4MGFjYjkxLTlhNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ4u6DaLtKUurbjC3wcFw/PFr6G75fawLeT/0608e3B18xIBE7rw9HSU+S+lox Cjyy1i6srooqdm/lrcQmTVC+VtYaMOLSzXH1CRBC2J4zQP62uCvFMrWI2ZEox201 EQeO8PywBHv2yImeu/ZBA+Oz3wQjuUmdrDDFy2tKkMq0qljTTXOMx5E7HREXJ3oX ui4IH63ukLs6XhYpk3iZfJUxC/l9WHAkBSD4V0jUFFf6nAve7K9DTbRtJS6uZ6ZQ ei6Nyj3JmkNBIaCSeNF5tkYz5yHkIl2vRUAKlPTmFxWfGyDJxdR45X+GB9s8LhZZ cBDfBknd56/ss2sF7Yb6Fd1dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFRgHnJ3I PnORIrEFwFfSUgWXFFswHwYDVR0jBBgwFoAUkQglePceS4YFfcPrBwP+ZYnmaJEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDMDM5LzE1MzRBMDVBQTE3 NDExRUZCRjYxNjYyNEM0RjlBRTAyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFK RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva1FnbGVQY2VTNFlGZmNQckJ3UC1aWW5tYUpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD MDM5LzE1MzRBMDVBQTE3NDExRUZCRjYxNjYyNEM0RjlBRTAyL2tRZ2xlUGNlUzRZ RmZjUHJCd1AtWllubWFKRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJcdPn+DgJR5MuBY83MEorUVTdG7zKtgzM4pVmKpAbQofu9N3FbaZ0/p iNZ1dUpmg9zx+9xv26R1w+gTnRVJ3Ue8bzejOach5IAyZHOTgmdkl8S6kNPcZw5z fl3U5kdECiDiZ97AisYzA2E34X/QnuL1qH5/X460uRX19aswu1d4gLFLmDLftGL5 637/CzumN5KBtGVw8zIOvXahX4T1eGfpTV1MttxAd6ZQ4F/Io9PYMkEx+jzq/8OM OvVRd3bWlDBkmSwbHMGs11ldVz0gHytss4pgfix6/pETTumYmTvOcrjs7UBod6q3 EzQWmSYb6D67uv7POiRIwnnpU+oPwyk= -----END CERTIFICATE-----Generated at Sat Apr 26 17:03:11 2025 by rpki-client