$ rpki-client -vvf rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft File: kGA-NU21aLPKQpAOcDAR55ZiiS4.mft (raw, json) Hash identifier: UWbB/hrOpG1w1Q2k+JCQc4Dk1wrVgveW/1wqrqMlXKk= Subject key identifier: F2:12:41:F2:2A:32:A1:F9:40:AD:F8:69:26:31:AE:69:7B:28:59:B4 Authority key identifier: 90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E Certificate issuer: /CN=A91F731E/serialNumber=90603E354DB568B3CA42900E703011E79662892E Certificate serial: 0607 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft Manifest number: 05FD Signing time: Mon 16 Jun 2025 16:06:26 +0000 Manifest this update: Mon 16 Jun 2025 16:06:25 +0000 Manifest next update: Mon 23 Jun 2025 16:06:25 +0000 Files and hashes: 1: kGA-NU21aLPKQpAOcDAR55ZiiS4.crl (hash: mHCkdv7HWK7kt7EgQapwxfyf6VS7ePhg/CZdN0fu4nE=) 2: 8CD64094BDFE11EBBBB16A42C4F9AE02.roa (hash: EST3lTlCsBscnNbAgJCoSC2X1l7CJ5xbYo0Sib0cuM0=) 3: 30857DB6CBA211ECAE233133C4F9AE02.roa (hash: pliS+rwU3LbaprEyjV5mUgwfJirBs3RzVR6whO1ItwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 16:06:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1543 (0x607) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F731E, serialNumber=90603E354DB568B3CA42900E703011E79662892E Validity Not Before: Jun 16 16:06:25 2025 GMT Not After : Jun 23 16:06:25 2025 GMT Subject: CN=68504101-9c55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:04:9e:cf:fa:e9:61:ce:c8:46:4e:73:87:a8: e2:86:84:58:8e:53:60:00:b0:98:0a:18:94:8c:4a: a4:22:2a:b6:1f:f2:6f:08:ca:90:62:37:8d:ac:9d: 47:fd:53:89:21:39:16:f7:08:12:c8:bf:c0:53:dc: ca:c0:9c:b0:61:36:c5:8b:35:81:35:59:35:96:85: a8:01:ea:a7:35:f8:65:3c:ee:b8:75:ac:9e:6c:36: a5:cc:85:e1:44:c2:e1:21:27:4d:b0:6e:92:48:97: fc:95:d9:27:d3:ec:9b:e6:82:bb:30:39:2b:89:07: b3:37:5d:81:f9:4e:0e:2b:65:92:0b:4f:7f:1b:4c: b2:7d:a4:a2:61:33:b7:50:ff:67:0d:5e:ef:e0:e4: 56:43:51:c2:7f:3c:88:62:d3:65:8f:67:ea:ed:6c: 07:02:3c:8b:ad:7e:b0:e5:8e:56:b9:ea:03:1a:03: 5d:97:3e:4e:c9:ce:f4:b7:1f:6b:31:bd:56:36:76: 09:8f:66:7c:6c:af:c0:b2:4e:3b:25:e5:c1:5a:3b: 94:76:d7:87:b2:89:17:b7:c9:bd:24:d5:27:01:57: 53:84:ec:eb:ae:70:99:1b:7e:71:ff:c6:13:2c:8a: b1:57:3a:45:af:54:04:d0:8a:fe:52:47:ec:ba:a1: 83:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:12:41:F2:2A:32:A1:F9:40:AD:F8:69:26:31:AE:69:7B:28:59:B4 X509v3 Authority Key Identifier: keyid:90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:4e:13:e7:fa:b7:5a:3e:67:ae:46:6d:dd:2f:7e:7f:cf:63: d6:0e:bf:97:b9:07:1a:eb:87:96:7d:c4:b0:d3:9f:86:39:e2: 4b:35:90:9c:7f:55:17:d8:b4:37:7d:0f:02:7b:02:7f:57:72: 45:90:de:6f:26:c1:bf:e4:26:71:c3:79:80:52:ab:94:91:b5: c0:40:a0:67:c9:aa:5e:0e:7b:ca:f2:da:95:d9:12:d0:7c:97: 3c:70:76:11:3c:dc:79:48:96:71:e4:c3:86:c9:8d:cd:26:62: 72:15:ef:50:3a:5c:cf:d3:06:8c:e9:5a:cd:28:61:1b:00:ab: 6d:04:c2:01:15:1d:d1:74:f4:14:23:0c:fa:ff:6e:51:e3:2a: 61:1a:71:88:a1:86:87:e6:b5:70:3d:c6:a0:c5:54:90:e5:49: f2:eb:a7:9d:65:be:a8:0f:ab:80:82:60:fe:ae:47:d9:d6:88: 6c:9e:6f:6d:65:f0:7d:17:24:db:88:3c:e9:62:46:c9:a2:21: 49:08:fa:a2:5e:9f:b8:6a:41:8f:af:36:a8:1b:0e:b9:7a:79: aa:9f:d7:22:2d:ec:6a:bc:dc:1d:0c:96:37:e5:76:2f:a0:3f: 07:87:1d:f2:86:df:53:23:ec:b7:b8:d5:6d:4c:98:82:47:c1: 1e:57:73:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMUUxMTAvBgNVBAUTKDkwNjAzRTM1NERCNTY4QjNDQTQyOTAwRTcwMzAxMUU3 OTY2Mjg5MkUwHhcNMjUwNjE2MTYwNjI1WhcNMjUwNjIzMTYwNjI1WjAYMRYwFAYD VQQDEw02ODUwNDEwMS05YzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8gSez/rpYc7IRk5zh6jihoRYjlNgALCYChiUjEqkIiq2H/JvCMqQYjeNrJ1H /VOJITkW9wgSyL/AU9zKwJywYTbFizWBNVk1loWoAeqnNfhlPO64dayebDalzIXh RMLhISdNsG6SSJf8ldkn0+yb5oK7MDkriQezN12B+U4OK2WSC09/G0yyfaSiYTO3 UP9nDV7v4ORWQ1HCfzyIYtNlj2fq7WwHAjyLrX6w5Y5WueoDGgNdlz5Oyc70tx9r Mb1WNnYJj2Z8bK/Ask47JeXBWjuUdteHsokXt8m9JNUnAVdThOzrrnCZG35x/8YT LIqxVzpFr1QE0Ir+UkfsuqGDywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPISQfIq MqH5QK34aSYxrml7KFm0MB8GA1UdIwQYMBaAFJBgPjVNtWizykKQDnAwEeeWYoku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxRS9FQUExOUNCNEIy REMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFMUEtRcEFPY0RBUjU1Wmlp UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tHQS1OVTIxYUxQS1FwQU9jREFSNTVaaWlTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxRS9FQUExOUNCNEIyREMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFM UEtRcEFPY0RBUjU1WmlpUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaThPn+rdaPmeuRm3dL35/z2PWDr+XuQca64eWfcSw05+GOeJLNZCc f1UX2LQ3fQ8CewJ/V3JFkN5vJsG/5CZxw3mAUquUkbXAQKBnyapeDnvK8tqV2RLQ fJc8cHYRPNx5SJZx5MOGyY3NJmJyFe9QOlzP0waM6VrNKGEbAKttBMIBFR3RdPQU Iwz6/25R4yphGnGIoYaH5rVwPcagxVSQ5Uny66edZb6oD6uAgmD+rkfZ1ohsnm9t ZfB9FyTbiDzpYkbJoiFJCPqiXp+4akGPrzaoGw65enmqn9ciLexqvNwdDJY35XYv oD8Hhx3yht9TI+y3uNVtTJiCR8EeV3OS -----END CERTIFICATE-----Generated at Tue Jun 17 18:26:03 2025 by rpki-client