$ rpki-client -vvf rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft File: kGA-NU21aLPKQpAOcDAR55ZiiS4.mft (raw, json) Hash identifier: jV50YLS97YOAnGXmEry1P9V+LoK+SHAISpvPw9bbqFQ= Subject key identifier: 83:C0:72:82:5E:35:FB:47:85:D4:7C:65:92:F9:98:71:6B:04:3F:BC Authority key identifier: 90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E Certificate issuer: /CN=A91F731E/serialNumber=90603E354DB568B3CA42900E703011E79662892E Certificate serial: 064B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft Manifest number: 063F Signing time: Mon 20 Oct 2025 16:16:12 +0000 Manifest this update: Mon 20 Oct 2025 16:16:12 +0000 Manifest next update: Mon 27 Oct 2025 16:16:12 +0000 Files and hashes: 1: kGA-NU21aLPKQpAOcDAR55ZiiS4.crl (hash: S11orLIaVEq5k5FA2lc9zNdDgZhvKiJPXQoJiIBtSLU=) 2: 8CD64094BDFE11EBBBB16A42C4F9AE02.roa (hash: JYcdT8gc4SSOPp9mZ4cChcf87lzFLOtfwrJ4fYMBet4=) 3: 30857DB6CBA211ECAE233133C4F9AE02.roa (hash: eSlTAoQ5k0fFKiHMdeu9X90T/rFtlTnA6Fx/5ofc1sU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1611 (0x64b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F731E, serialNumber=90603E354DB568B3CA42900E703011E79662892E Validity Not Before: Oct 20 16:16:12 2025 GMT Not After : Oct 27 16:16:12 2025 GMT Subject: CN=68f6604c-6854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c1:6d:89:50:b8:bd:e5:89:92:b9:9b:fa:52: 53:42:44:f3:93:a5:ea:58:0c:1e:fd:b0:51:a2:52: ba:1e:2c:18:71:ba:b6:f3:75:60:e3:a8:43:cc:6e: ab:a9:fe:7b:87:61:49:b6:50:16:c6:9a:a7:82:cc: e2:b1:90:b2:78:c0:26:84:7d:ee:6d:62:e2:38:ce: c7:79:1c:ea:0d:d7:fb:d0:bc:66:f4:0a:73:9c:f9: 16:e2:70:b1:1d:50:b1:ff:46:b6:bb:81:e4:eb:bc: 66:f0:76:fb:d0:fc:05:91:a0:90:13:fb:8c:7f:76: 12:76:24:9d:a1:74:44:df:1b:03:59:10:59:87:18: ac:c9:d7:fc:db:e9:5c:3a:47:70:ca:8b:85:6f:9e: 4f:b9:7e:e7:bd:3f:5d:d3:e4:b7:62:72:b8:90:06: 1b:42:5e:75:b3:5f:58:38:83:7e:63:17:32:82:9d: 55:3d:0f:03:8d:49:af:ff:d2:49:66:ed:ec:26:c4: cb:5a:ff:a1:5b:9e:3d:28:05:87:02:b5:b6:df:62: e4:5d:d5:56:7b:83:14:4b:08:5a:05:17:82:3e:e1: fe:02:90:4e:99:0c:c3:1d:a8:1f:ac:17:b2:b1:cf: 50:85:9f:37:c5:ee:95:be:78:21:c7:53:c9:7e:d2: 84:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:C0:72:82:5E:35:FB:47:85:D4:7C:65:92:F9:98:71:6B:04:3F:BC X509v3 Authority Key Identifier: keyid:90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:f6:35:a9:49:70:34:22:2d:b2:fa:f3:89:e7:61:e4:3b:8a: 34:a5:f1:88:c6:0f:cc:5d:1e:d0:76:9a:4b:2d:e3:bc:be:cb: 96:99:c1:a8:9b:37:2d:21:17:a9:cb:e0:ea:d8:c2:12:77:c1: 11:57:13:29:60:11:5a:79:92:bb:f1:04:2c:58:1b:dc:4d:12: 3c:f7:ee:49:eb:1a:e2:08:1c:ae:bc:5a:c5:69:d8:29:24:16: cd:ac:ad:72:a4:b2:8e:3f:3e:92:59:61:b4:9e:78:b6:96:42: 1d:63:49:2a:f6:df:17:e5:73:23:71:68:2e:7c:09:c8:39:34: 16:44:91:ac:a5:b8:45:6a:5a:dc:a2:90:28:3f:78:2e:e6:aa: c7:ba:c1:08:cd:66:57:cb:d9:07:c1:cb:6e:c8:48:94:60:8c: 76:fa:3f:47:5a:ac:97:b6:ac:a6:e6:97:e0:33:91:da:73:8b: 19:71:ba:41:6b:2b:a3:16:4d:83:b9:57:94:60:74:80:77:26: 3f:fd:24:18:fc:ee:23:d8:b6:6a:0a:1c:65:2d:be:b8:81:a5: 74:a9:82:63:06:b2:f4:9b:93:c2:b4:d0:c3:67:28:33:bd:b1: 91:72:c1:30:2e:ab:a8:77:70:54:fd:57:0a:dc:5f:83:c5:85: 24:6a:6a:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMUUxMTAvBgNVBAUTKDkwNjAzRTM1NERCNTY4QjNDQTQyOTAwRTcwMzAxMUU3 OTY2Mjg5MkUwHhcNMjUxMDIwMTYxNjEyWhcNMjUxMDI3MTYxNjEyWjAYMRYwFAYD VQQDEw02OGY2NjA0Yy02ODU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsFtiVC4veWJkrmb+lJTQkTzk6XqWAwe/bBRolK6HiwYcbq283Vg46hDzG6r qf57h2FJtlAWxpqngszisZCyeMAmhH3ubWLiOM7HeRzqDdf70Lxm9ApznPkW4nCx HVCx/0a2u4Hk67xm8Hb70PwFkaCQE/uMf3YSdiSdoXRE3xsDWRBZhxisydf82+lc OkdwyouFb55PuX7nvT9d0+S3YnK4kAYbQl51s19YOIN+Yxcygp1VPQ8DjUmv/9JJ Zu3sJsTLWv+hW549KAWHArW232LkXdVWe4MUSwhaBReCPuH+ApBOmQzDHagfrBey sc9QhZ83xe6Vvnghx1PJftKEzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPAcoJe NftHhdR8ZZL5mHFrBD+8MB8GA1UdIwQYMBaAFJBgPjVNtWizykKQDnAwEeeWYoku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxRS9FQUExOUNCNEIy REMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFMUEtRcEFPY0RBUjU1Wmlp UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tHQS1OVTIxYUxQS1FwQU9jREFSNTVaaWlTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxRS9FQUExOUNCNEIyREMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFM UEtRcEFPY0RBUjU1WmlpUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE9jWpSXA0Ii2y+vOJ52HkO4o0pfGIxg/MXR7QdppLLeO8vsuWmcGo mzctIRepy+Dq2MISd8ERVxMpYBFaeZK78QQsWBvcTRI89+5J6xriCByuvFrFadgp JBbNrK1ypLKOPz6SWWG0nni2lkIdY0kq9t8X5XMjcWgufAnIOTQWRJGspbhFalrc opAoP3gu5qrHusEIzWZXy9kHwctuyEiUYIx2+j9HWqyXtqym5pfgM5Hac4sZcbpB ayujFk2DuVeUYHSAdyY//SQY/O4j2LZqChxlLb64gaV0qYJjBrL0m5PCtNDDZygz vbGRcsEwLquod3BU/VcK3F+DxYUkamr1 -----END CERTIFICATE-----Generated at Mon Oct 20 18:39:23 2025 by rpki-client