$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: U3fcenplxY1owRP1GDmcBysGIaEO2xyaA0o9wwoWI2c= Subject key identifier: 3C:BF:08:18:3F:CA:71:72:35:8B:78:CC:07:48:3F:BA:A5:DB:D5:0B Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: 8D Signing time: Sat 09 Aug 2025 00:10:55 +0000 Manifest this update: Sat 09 Aug 2025 00:10:55 +0000 Manifest next update: Sat 16 Aug 2025 00:10:55 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: 7SgCqyn0bYdrfRULIV/9CEhKw1qtgDSPSYUf+xO/4TM=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: V0ubCLoQg1VTBDouQoudPE1DyZNQvqeyyMrWFtDfDUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Aug 9 00:10:55 2025 GMT Not After : Aug 16 00:10:55 2025 GMT Subject: CN=6896920f-c422 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:09:be:d3:e4:69:2a:48:47:a9:97:e6:cd:82: 3f:88:c8:4a:e0:55:8f:c8:58:5e:c8:1a:1b:5d:1a: 63:81:06:4a:ec:7c:37:88:9b:f6:60:da:3e:ba:7a: cc:b5:85:cd:bd:a5:1f:ad:20:c0:ba:be:21:cf:80: 12:ca:b0:c0:52:18:85:42:e6:ec:96:67:d1:be:f6: 2c:b2:a8:1d:52:82:32:4f:e7:84:82:a5:00:67:d2: 48:57:eb:3f:bc:e4:be:ef:df:96:e8:bb:68:7a:11: ae:6d:29:ae:d7:f2:d6:d5:c6:d8:5d:58:d7:78:7e: 2d:f6:f7:92:f7:c6:53:91:fd:9f:db:fb:c6:72:0c: 60:62:d5:93:5c:ba:b8:ab:b5:94:79:a0:6f:ad:be: c7:b2:75:0d:d8:98:e9:c2:80:cf:9a:47:87:d4:e1: 77:fa:c3:95:92:28:c4:1d:c9:a1:ad:5a:d3:df:b1: 6a:b5:c2:80:9c:c2:90:0b:51:6d:3b:a1:c6:c5:5a: 8b:02:b1:26:37:52:54:46:3c:a0:a4:21:9f:f4:5c: c4:28:17:ba:54:42:3f:c6:15:33:7e:7f:09:da:39: 1c:8d:ca:be:a7:14:bb:73:c7:43:f8:0d:ca:28:d0: 86:47:81:bb:ec:9f:81:bd:fd:72:37:a6:7a:db:d5: 95:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:BF:08:18:3F:CA:71:72:35:8B:78:CC:07:48:3F:BA:A5:DB:D5:0B X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:2c:e0:48:61:e2:cd:5c:22:c5:80:d4:55:4f:a3:5d:e0:e8: b3:a4:6b:aa:3f:23:27:f0:9c:c9:68:5f:70:19:17:6a:b0:e8: 66:8c:05:60:fe:06:38:14:24:7f:f1:e9:be:5f:92:59:5c:3f: 08:1a:01:7b:79:f4:e0:cc:9d:76:b9:94:ea:00:17:fc:8f:39: f6:22:35:f1:ab:cc:61:59:a4:89:be:7c:bf:8c:10:83:4f:49: ea:f8:20:95:81:09:8b:89:6e:d9:91:20:68:63:f8:f3:c8:47: 39:48:18:69:51:91:a6:fe:6c:9a:95:23:23:97:f7:dd:dd:3d: 9f:dc:c6:70:75:04:5f:81:3f:f7:17:c9:90:c4:06:df:5e:fb: 61:5a:1b:39:0b:73:a8:21:1a:e3:6d:ed:6e:d7:b6:38:c6:9e: 23:b7:55:f9:94:2e:f1:70:e5:9d:73:45:9d:31:26:1c:93:26: 7f:3a:33:e0:38:e2:27:1f:6d:4f:6c:10:6c:bf:ad:34:bd:b9: 3b:70:2a:77:bd:02:61:1e:3b:7b:69:da:1a:52:49:b1:fd:8c: 09:c8:c1:65:92:dd:c8:fb:4c:5f:8c:e9:9e:83:8d:82:bd:7f: f6:60:62:f9:33:d5:ed:4d:8c:d2:9d:75:66:ae:db:19:1d:3d: 55:77:c5:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKDkxMDgyNTc4RjcxRTRCODYwNTdEQzNFQjA3MDNGRTY1 ODlFNjY4OTEwHhcNMjUwODA5MDAxMDU1WhcNMjUwODE2MDAxMDU1WjAYMRYwFAYD VQQDEw02ODk2OTIwZi1jNDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgm+0+RpKkhHqZfmzYI/iMhK4FWPyFheyBobXRpjgQZK7Hw3iJv2YNo+unrM tYXNvaUfrSDAur4hz4ASyrDAUhiFQubslmfRvvYssqgdUoIyT+eEgqUAZ9JIV+s/ vOS+79+W6LtoehGubSmu1/LW1cbYXVjXeH4t9veS98ZTkf2f2/vGcgxgYtWTXLq4 q7WUeaBvrb7HsnUN2JjpwoDPmkeH1OF3+sOVkijEHcmhrVrT37FqtcKAnMKQC1Ft O6HGxVqLArEmN1JURjygpCGf9FzEKBe6VEI/xhUzfn8J2jkcjcq+pxS7c8dD+A3K KNCGR4G77J+Bvf1yN6Z629WVvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDy/CBg/ ynFyNYt4zAdIP7ql29ULMB8GA1UdIwQYMBaAFJEIJXj3HkuGBX3D6wcD/mWJ5miR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS8xNTM0QTA1QUEx NzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0WUZmY1ByQndQLVpZbm1h SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS8xNTM0QTA1QUExNzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0 WUZmY1ByQndQLVpZbm1hSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMLOBIYeLNXCLFgNRVT6Nd4OizpGuqPyMn8JzJaF9wGRdqsOhmjAVg /gY4FCR/8em+X5JZXD8IGgF7efTgzJ12uZTqABf8jzn2IjXxq8xhWaSJvny/jBCD T0nq+CCVgQmLiW7ZkSBoY/jzyEc5SBhpUZGm/myalSMjl/fd3T2f3MZwdQRfgT/3 F8mQxAbfXvthWhs5C3OoIRrjbe1u17Y4xp4jt1X5lC7xcOWdc0WdMSYckyZ/OjPg OOInH21PbBBsv600vbk7cCp3vQJhHjt7adoaUkmx/YwJyMFlkt3I+0xfjOmeg42C vX/2YGL5M9XtTYzSnXVmrtsZHT1Vd8Ut -----END CERTIFICATE-----Generated at Sun Aug 10 04:54:02 2025 by rpki-client