$ rpki-client -vvf rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft File: kGA-NU21aLPKQpAOcDAR55ZiiS4.mft (raw, json) Hash identifier: Dz6RJ6+O6YZuseic9JaMni2UEfX9hbKfcwh6hTJp/hE= Subject key identifier: F3:B4:A2:A1:D7:59:E5:58:95:99:E1:31:2C:12:7B:58:8E:47:05:94 Authority key identifier: 90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E Certificate issuer: /CN=A91F731E/serialNumber=90603E354DB568B3CA42900E703011E79662892E Certificate serial: 06AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft Manifest number: 069E Signing time: Thu 16 Apr 2026 15:57:40 +0000 Manifest this update: Thu 16 Apr 2026 15:57:39 +0000 Manifest next update: Thu 23 Apr 2026 15:57:39 +0000 Files and hashes: 1: kGA-NU21aLPKQpAOcDAR55ZiiS4.crl (hash: Ywbz47CqYw69n9jlijO9TkwC+TJfQjm7xUNJFFbejhI=) 2: 30857DB6CBA211ECAE233133C4F9AE02.roa (hash: po/i8uxPFYRsNFTlJU1d5KEDrihE5XxUDGJv65GiON0=) 3: 8CD64094BDFE11EBBBB16A42C4F9AE02.roa (hash: yCmJKCeUjCX4/1rndfEcZXyyAy1UCnlaRalfod8v7Ts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:57:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1710 (0x6ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F731E, serialNumber=90603E354DB568B3CA42900E703011E79662892E Validity Not Before: Apr 16 15:57:39 2026 GMT Not After : Apr 23 15:57:39 2026 GMT Subject: CN=69e106f4-4b11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e7:cc:52:45:d4:cd:34:4c:c2:53:05:fe:43: 91:21:f0:40:55:a8:84:56:3b:0f:3b:c8:49:71:3f: 49:69:e3:fd:ab:30:b2:3c:96:09:35:a6:ec:45:e9: 33:61:88:c7:94:88:cc:3b:f8:48:64:a6:0f:22:76: 7e:31:79:c5:7a:7a:b7:54:35:ec:3e:84:0d:34:73: 3c:7c:21:60:93:13:36:43:2a:fc:90:62:7b:d7:a2: 62:db:c9:58:75:28:02:d1:f0:38:4e:cc:0b:cd:b9: 15:26:2b:f2:11:f6:a2:b5:a7:f6:7e:ac:c5:5e:d0: 70:0b:fc:95:bd:7e:16:42:53:11:4a:14:d5:8e:08: 89:99:24:84:87:67:71:58:6c:70:8f:36:bb:8a:96: 03:97:87:d8:ba:4d:98:ad:89:6a:0d:97:50:59:64: 39:dd:d5:dd:f8:11:a5:93:30:26:21:d8:75:6c:09: f2:22:7a:7a:9f:71:b3:d2:f5:ac:61:74:18:70:5e: 85:9f:3d:8d:26:f7:60:c5:7e:ab:a0:aa:d9:ce:fd: 82:63:e5:3a:5c:72:ca:84:e2:99:68:05:fa:76:55: 90:40:d7:4a:41:6b:50:1a:fc:62:38:3e:91:9e:5a: d3:91:a4:f8:32:0d:fc:14:98:3e:8e:94:6b:5d:0f: 4e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B4:A2:A1:D7:59:E5:58:95:99:E1:31:2C:12:7B:58:8E:47:05:94 X509v3 Authority Key Identifier: keyid:90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:a5:7c:55:d7:64:f7:6e:66:ff:d1:d8:cb:8c:e2:2a:a8:21: a6:bb:be:53:57:f9:d9:81:33:d1:65:c1:5b:c9:50:17:f5:27: 97:ac:dd:d4:f1:c0:7d:77:d0:24:2b:e7:1b:d0:c9:b7:bf:52: c9:16:96:2b:ab:99:5b:1c:16:ea:59:00:fc:76:9d:3f:8a:5d: d7:28:e7:78:0c:cc:df:bd:5d:3a:4d:cb:1e:22:54:a9:e3:49: 07:2b:af:e7:ec:45:78:92:d0:4e:ea:3d:27:05:13:50:3d:b4: f5:0e:e8:25:60:e7:11:dc:f4:db:fc:71:84:55:96:1a:2e:e0: c6:bd:51:4d:93:d2:66:ce:74:0d:bd:23:23:0f:ff:18:79:e8: 66:67:26:ce:e0:dd:f8:3e:88:59:5b:9e:b7:aa:e4:b2:35:69: 3b:cb:b0:0d:a5:52:01:7b:d4:30:b9:19:01:3f:eb:e1:d7:41: 40:6a:05:9e:29:b5:cf:e8:39:91:89:6c:1f:22:58:f2:b9:48: cc:de:cc:9b:68:05:07:c4:9b:d3:7d:1c:05:b0:69:94:3e:90: 5c:c0:8f:fe:54:8f:67:d4:68:fc:9c:26:73:f5:37:78:9f:cc: 44:9e:3b:b6:05:19:61:33:8b:af:5f:fb:c8:54:52:6c:50:bc: e9:bc:86:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMUUxMTAvBgNVBAUTKDkwNjAzRTM1NERCNTY4QjNDQTQyOTAwRTcwMzAxMUU3 OTY2Mjg5MkUwHhcNMjYwNDE2MTU1NzM5WhcNMjYwNDIzMTU1NzM5WjAYMRYwFAYD VQQDEw02OWUxMDZmNC00YjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+fMUkXUzTRMwlMF/kORIfBAVaiEVjsPO8hJcT9JaeP9qzCyPJYJNabsRekz YYjHlIjMO/hIZKYPInZ+MXnFenq3VDXsPoQNNHM8fCFgkxM2Qyr8kGJ716Ji28lY dSgC0fA4TswLzbkVJivyEfaitaf2fqzFXtBwC/yVvX4WQlMRShTVjgiJmSSEh2dx WGxwjza7ipYDl4fYuk2YrYlqDZdQWWQ53dXd+BGlkzAmIdh1bAnyInp6n3Gz0vWs YXQYcF6Fnz2NJvdgxX6roKrZzv2CY+U6XHLKhOKZaAX6dlWQQNdKQWtQGvxiOD6R nlrTkaT4Mg38FJg+jpRrXQ9OlwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPO0oqHX WeVYlZnhMSwSe1iORwWUMB8GA1UdIwQYMBaAFJBgPjVNtWizykKQDnAwEeeWYoku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxRS9FQUExOUNCNEIy REMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFMUEtRcEFPY0RBUjU1Wmlp UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tHQS1OVTIxYUxQS1FwQU9jREFSNTVaaWlTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxRS9FQUExOUNCNEIyREMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFM UEtRcEFPY0RBUjU1WmlpUzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZaV8Vddk925m/9HYy4ziKqghpru+U1f52YEz0WXBW8lQF/Unl6zd1PHAfXfQ JCvnG9DJt79SyRaWK6uZWxwW6lkA/HadP4pd1yjneAzM371dOk3LHiJUqeNJByuv 5+xFeJLQTuo9JwUTUD209Q7oJWDnEdz02/xxhFWWGi7gxr1RTZPSZs50Db0jIw// GHnoZmcmzuDd+D6IWVuet6rksjVpO8uwDaVSAXvUMLkZAT/r4ddBQGoFnim1z+g5 kYlsHyJY8rlIzN7Mm2gFB8Sb030cBbBplD6QXMCP/lSPZ9Ro/Jwmc/U3eJ/MRJ47 tgUZYTOLr1/7yFRSbFC86byGDQ== -----END CERTIFICATE-----Generated at Fri Apr 17 05:32:05 2026 by rpki-client