$ rpki-client -vvf rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft File: kGA-NU21aLPKQpAOcDAR55ZiiS4.mft (raw, json) Hash identifier: daVz5thbpO6G57KXPe9NB188oweZZy42SYG9ZrGsBYU= Subject key identifier: E0:E2:E8:D4:69:54:87:D3:CB:77:C9:1D:2A:89:9F:DD:C8:1A:CA:84 Authority key identifier: 90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E Certificate issuer: /CN=A91F731E/serialNumber=90603E354DB568B3CA42900E703011E79662892E Certificate serial: 06BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft Manifest number: 06AB Signing time: Tue 12 May 2026 16:00:11 +0000 Manifest this update: Tue 12 May 2026 16:00:11 +0000 Manifest next update: Tue 19 May 2026 16:00:11 +0000 Files and hashes: 1: kGA-NU21aLPKQpAOcDAR55ZiiS4.crl (hash: t1pPsiD+Odnguk95MLyuzFFnHzMzmUhP7JVyW5K3i5E=) 2: 30857DB6CBA211ECAE233133C4F9AE02.roa (hash: po/i8uxPFYRsNFTlJU1d5KEDrihE5XxUDGJv65GiON0=) 3: 8CD64094BDFE11EBBBB16A42C4F9AE02.roa (hash: yCmJKCeUjCX4/1rndfEcZXyyAy1UCnlaRalfod8v7Ts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1723 (0x6bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F731E, serialNumber=90603E354DB568B3CA42900E703011E79662892E Validity Not Before: May 12 16:00:11 2026 GMT Not After : May 19 16:00:11 2026 GMT Subject: CN=6a034e8b-4043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b9:fd:56:a8:a2:c8:3b:b1:cf:a3:a0:e2:d4: 4c:c2:91:59:8c:ce:01:41:62:b9:af:05:e3:91:0e: f0:32:c9:9b:1d:6e:32:af:ac:11:5c:0b:dd:04:c7: 91:8e:c4:8b:90:fa:cb:58:64:f0:cd:f8:46:c1:b9: ab:09:9b:9a:8d:05:e4:71:46:dd:14:81:68:bc:55: bb:79:c5:33:20:1f:7a:cb:10:1d:55:a0:a4:15:36: 1f:5b:88:83:7b:92:34:19:f2:79:79:aa:34:0f:10: fb:51:01:ee:44:d8:01:86:f4:c9:5c:51:6c:9e:b2: 28:7d:c7:e3:af:c1:18:b6:e4:58:f4:b2:24:cd:52: a2:34:41:54:fb:98:a2:d6:fa:fb:fe:5e:78:f9:15: 6d:17:5a:6f:51:49:a3:6c:17:a0:72:b3:88:40:22: 9f:02:fe:aa:4e:1e:87:fb:da:aa:cf:84:35:a4:7d: 18:cb:76:2a:3b:c9:98:87:44:d7:18:a4:44:ce:cd: 89:06:60:3f:8b:50:29:02:15:e1:83:9a:e8:c1:b6: bd:d7:78:b6:3a:e8:4f:8c:97:77:c0:91:53:43:07: df:1e:d4:b6:7b:6f:19:b4:2b:2a:63:c7:91:ce:ea: ec:17:24:31:ff:9f:22:b2:69:97:5f:ed:a1:db:5a: ee:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E2:E8:D4:69:54:87:D3:CB:77:C9:1D:2A:89:9F:DD:C8:1A:CA:84 X509v3 Authority Key Identifier: keyid:90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:70:05:6b:d1:21:62:6f:bd:44:4e:37:aa:3e:a5:57:66:a0: 1e:42:79:f1:b3:1e:95:be:62:e8:7b:5f:3f:bf:db:91:c3:13: 10:57:18:36:a5:e4:cf:3f:8b:ce:e4:d1:3c:4d:23:62:5f:39: 56:ac:4c:e1:c7:2e:70:c8:fa:e5:55:71:5e:4c:ff:18:95:13: 80:38:1f:97:b2:76:b6:5a:e9:0d:d4:77:5f:d7:57:eb:4e:2a: da:6c:9a:3f:af:9a:ae:72:88:b3:4e:77:23:1d:67:ee:ba:cf: bb:ac:5d:fd:d4:09:3a:4e:e8:45:46:8f:9e:73:82:ea:2e:4f: 82:d6:ba:0d:d0:31:3e:e6:c6:b4:a1:86:19:e2:36:bc:ad:11: b9:88:dd:43:cc:6a:b6:1b:50:1e:e9:64:05:c9:dd:1c:04:0a: 51:9b:c3:f5:fb:e7:4b:03:de:a0:23:bf:95:95:a2:e4:25:e5: ec:a1:c7:43:39:17:d4:ef:4f:65:66:da:db:f5:65:d9:55:30: 36:0d:6d:27:5d:57:57:97:63:9d:3a:65:f6:c8:dc:9f:fb:70: da:2f:f5:f7:13:ef:bf:2e:9f:f6:fc:3a:c4:27:7f:46:d9:c0: ae:5d:3e:14:41:2e:c9:ef:dc:a6:d4:8c:f3:fd:c9:56:d9:aa: 89:3f:8d:54 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMUUxMTAvBgNVBAUTKDkwNjAzRTM1NERCNTY4QjNDQTQyOTAwRTcwMzAxMUU3 OTY2Mjg5MkUwHhcNMjYwNTEyMTYwMDExWhcNMjYwNTE5MTYwMDExWjAYMRYwFAYD VQQDEw02YTAzNGU4Yi00MDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLn9VqiiyDuxz6Og4tRMwpFZjM4BQWK5rwXjkQ7wMsmbHW4yr6wRXAvdBMeR jsSLkPrLWGTwzfhGwbmrCZuajQXkcUbdFIFovFW7ecUzIB96yxAdVaCkFTYfW4iD e5I0GfJ5eao0DxD7UQHuRNgBhvTJXFFsnrIofcfjr8EYtuRY9LIkzVKiNEFU+5ii 1vr7/l54+RVtF1pvUUmjbBegcrOIQCKfAv6qTh6H+9qqz4Q1pH0Yy3YqO8mYh0TX GKREzs2JBmA/i1ApAhXhg5rowba913i2OuhPjJd3wJFTQwffHtS2e28ZtCsqY8eR zursFyQx/58ismmXX+2h21ruXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFODi6NRp VIfTy3fJHSqJn93IGsqEMB8GA1UdIwQYMBaAFJBgPjVNtWizykKQDnAwEeeWYoku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxRS9FQUExOUNCNEIy REMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFMUEtRcEFPY0RBUjU1Wmlp UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tHQS1OVTIxYUxQS1FwQU9jREFSNTVaaWlTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxRS9FQUExOUNCNEIyREMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFM UEtRcEFPY0RBUjU1WmlpUzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiXAFa9EhYm+9RE43qj6lV2agHkJ58bMelb5i6HtfP7/bkcMTEFcYNqXkzz+L zuTRPE0jYl85VqxM4ccucMj65VVxXkz/GJUTgDgfl7J2tlrpDdR3X9dX604q2mya P6+arnKIs053Ix1n7rrPu6xd/dQJOk7oRUaPnnOC6i5Pgta6DdAxPubGtKGGGeI2 vK0RuYjdQ8xqthtQHulkBcndHAQKUZvD9fvnSwPeoCO/lZWi5CXl7KHHQzkX1O9P ZWba2/Vl2VUwNg1tJ11XV5djnTpl9sjcn/tw2i/19xPvvy6f9vw6xCd/RtnArl0+ FEEuye/cptSM8/3JVtmqiT+NVA== -----END CERTIFICATE-----Generated at Wed May 13 05:04:55 2026 by rpki-client