$ rpki-client -vvf rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft File: kGA-NU21aLPKQpAOcDAR55ZiiS4.mft (raw, json) Hash identifier: IJBe/1sbQG17FFN5MlvBswb21FSeeLAq+L2fMMSIKIo= Subject key identifier: 1C:E8:C3:6F:5D:AD:6B:CC:58:E5:83:0C:9D:5A:6C:30:DC:92:BF:C1 Authority key identifier: 90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E Certificate issuer: /CN=A91F731E/serialNumber=90603E354DB568B3CA42900E703011E79662892E Certificate serial: 0621 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft Manifest number: 0617 Signing time: Wed 06 Aug 2025 16:07:06 +0000 Manifest this update: Wed 06 Aug 2025 16:07:05 +0000 Manifest next update: Wed 13 Aug 2025 16:07:05 +0000 Files and hashes: 1: kGA-NU21aLPKQpAOcDAR55ZiiS4.crl (hash: lL8k6MaqH/WvMGQ4GrCyiaXMNn2kO1RO0/3KCgMFrpE=) 2: 8CD64094BDFE11EBBBB16A42C4F9AE02.roa (hash: EST3lTlCsBscnNbAgJCoSC2X1l7CJ5xbYo0Sib0cuM0=) 3: 30857DB6CBA211ECAE233133C4F9AE02.roa (hash: pliS+rwU3LbaprEyjV5mUgwfJirBs3RzVR6whO1ItwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 16:07:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1569 (0x621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F731E, serialNumber=90603E354DB568B3CA42900E703011E79662892E Validity Not Before: Aug 6 16:07:05 2025 GMT Not After : Aug 13 16:07:05 2025 GMT Subject: CN=68937daa-4240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:74:eb:03:87:4c:c7:98:70:10:69:d9:28:d9: eb:c5:1b:66:38:aa:56:62:ee:3d:e5:b4:1c:84:f3: c1:67:c0:9e:d5:dc:e3:2d:17:8e:1d:22:69:00:34: 76:4f:20:fc:96:fc:3a:75:2e:90:b4:17:f7:0d:69: e8:19:49:02:92:56:69:e8:e7:03:c6:a8:29:84:20: 11:bc:df:cb:98:92:4f:a8:c6:bd:c7:00:8b:aa:5a: 36:d8:12:39:e5:ab:94:fe:ee:c5:28:cf:a7:58:0f: 1b:39:c8:f1:16:1b:d7:f5:2c:67:25:93:05:7d:44: ae:b5:e1:92:e4:16:52:60:b2:66:b7:f5:6d:b3:a8: 59:43:96:01:d1:03:02:57:a4:3b:08:63:17:11:de: 66:51:8d:a8:e6:fb:41:ad:38:a2:ea:14:e3:00:06: b5:a9:04:d8:42:2e:05:62:6e:89:97:d9:04:e5:24: 91:07:e9:e8:1e:28:56:4d:11:c9:f2:08:ac:8d:a3: 55:99:f0:0c:8a:c3:da:e2:57:b0:39:24:62:4d:37: 80:b5:2a:e0:b6:a1:59:fd:6f:5d:03:4b:e7:8e:ca: 18:e3:8c:b6:37:16:43:46:1a:2f:00:42:2d:86:e9: 77:d3:6b:30:6f:7e:7a:79:f2:35:a9:26:b9:f8:87: c1:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:E8:C3:6F:5D:AD:6B:CC:58:E5:83:0C:9D:5A:6C:30:DC:92:BF:C1 X509v3 Authority Key Identifier: keyid:90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:9c:64:25:a6:bd:de:05:a1:a9:bf:d6:cd:f2:96:d9:3a:0f: 78:ae:82:34:b1:83:57:c9:30:70:83:5f:9a:f0:92:34:d9:5d: 50:73:ea:81:01:00:77:dd:5b:6a:67:9e:59:87:77:6b:e5:ea: a2:c0:d4:c1:3c:a5:98:ed:21:32:6d:39:30:29:12:1d:a9:a8: e3:08:a2:16:dc:84:81:d3:b3:3e:46:26:b8:11:e9:32:d3:3b: a0:d4:c4:96:f4:f5:a9:f3:a0:b6:6d:b4:b0:ca:33:04:b4:8c: ad:e1:a6:1e:8d:3c:82:52:4d:9f:74:fe:44:62:b7:ef:2c:ce: f7:c1:82:dd:83:26:a5:b1:c4:8d:8e:9e:4c:f8:a7:35:50:8e: f1:2e:68:e1:6d:69:b2:e1:3a:04:2a:d3:f5:e1:f0:85:22:7b: 92:05:a2:9d:94:36:bf:94:a7:3d:56:d9:9a:3d:48:eb:fb:c1: 94:44:f8:e0:93:f5:af:1d:2c:93:b1:53:eb:c2:8e:91:9e:ef: b3:74:1b:98:fb:32:f2:dc:7c:2f:2e:9c:58:d3:8e:38:1e:00: e8:92:51:f8:55:e5:61:11:74:0f:56:64:3e:c4:e6:80:36:12: 37:f5:50:52:9c:e0:bd:af:3d:76:cb:f1:60:f9:88:7d:3d:ee: 43:ce:43:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMUUxMTAvBgNVBAUTKDkwNjAzRTM1NERCNTY4QjNDQTQyOTAwRTcwMzAxMUU3 OTY2Mjg5MkUwHhcNMjUwODA2MTYwNzA1WhcNMjUwODEzMTYwNzA1WjAYMRYwFAYD VQQDEw02ODkzN2RhYS00MjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnTrA4dMx5hwEGnZKNnrxRtmOKpWYu495bQchPPBZ8Ce1dzjLReOHSJpADR2 TyD8lvw6dS6QtBf3DWnoGUkCklZp6OcDxqgphCARvN/LmJJPqMa9xwCLqlo22BI5 5auU/u7FKM+nWA8bOcjxFhvX9SxnJZMFfUSuteGS5BZSYLJmt/Vts6hZQ5YB0QMC V6Q7CGMXEd5mUY2o5vtBrTii6hTjAAa1qQTYQi4FYm6Jl9kE5SSRB+noHihWTRHJ 8gisjaNVmfAMisPa4lewOSRiTTeAtSrgtqFZ/W9dA0vnjsoY44y2NxZDRhovAEIt hul302swb356efI1qSa5+IfB3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzow29d rWvMWOWDDJ1abDDckr/BMB8GA1UdIwQYMBaAFJBgPjVNtWizykKQDnAwEeeWYoku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxRS9FQUExOUNCNEIy REMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFMUEtRcEFPY0RBUjU1Wmlp UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tHQS1OVTIxYUxQS1FwQU9jREFSNTVaaWlTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxRS9FQUExOUNCNEIyREMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFM UEtRcEFPY0RBUjU1WmlpUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChnGQlpr3eBaGpv9bN8pbZOg94roI0sYNXyTBwg1+a8JI02V1Qc+qB AQB33VtqZ55Zh3dr5eqiwNTBPKWY7SEybTkwKRIdqajjCKIW3ISB07M+Ria4Eeky 0zug1MSW9PWp86C2bbSwyjMEtIyt4aYejTyCUk2fdP5EYrfvLM73wYLdgyalscSN jp5M+Kc1UI7xLmjhbWmy4ToEKtP14fCFInuSBaKdlDa/lKc9VtmaPUjr+8GURPjg k/WvHSyTsVPrwo6Rnu+zdBuY+zLy3HwvLpxY0444HgDoklH4VeVhEXQPVmQ+xOaA NhI39VBSnOC9rz12y/Fg+Yh9Pe5DzkMm -----END CERTIFICATE-----Generated at Thu Aug 7 04:44:43 2025 by rpki-client