$ rpki-client -vvf rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft File: kGA-NU21aLPKQpAOcDAR55ZiiS4.mft (raw, json) Hash identifier: MwTbfkYyljX77i4LdqOR7nK9T4YGTzU1MoNjGuopOzA= Subject key identifier: 53:25:D5:EE:2E:13:50:1B:A8:91:B0:60:24:B4:8B:D9:07:42:7F:A5 Authority key identifier: 90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E Certificate issuer: /CN=A91F731E/serialNumber=90603E354DB568B3CA42900E703011E79662892E Certificate serial: 05F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft Manifest number: 05EB Signing time: Mon 12 May 2025 16:00:19 +0000 Manifest this update: Mon 12 May 2025 16:00:19 +0000 Manifest next update: Mon 19 May 2025 16:00:19 +0000 Files and hashes: 1: kGA-NU21aLPKQpAOcDAR55ZiiS4.crl (hash: 5AjSF870Xw9mFcqtmuFWPIGxN6vGBc27uamPXVzf69g=) 2: 8CD64094BDFE11EBBBB16A42C4F9AE02.roa (hash: EST3lTlCsBscnNbAgJCoSC2X1l7CJ5xbYo0Sib0cuM0=) 3: 30857DB6CBA211ECAE233133C4F9AE02.roa (hash: pliS+rwU3LbaprEyjV5mUgwfJirBs3RzVR6whO1ItwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1525 (0x5f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F731E, serialNumber=90603E354DB568B3CA42900E703011E79662892E Validity Not Before: May 12 16:00:19 2025 GMT Not After : May 19 16:00:19 2025 GMT Subject: CN=68221b13-0736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:10:48:3d:d5:68:da:d1:58:2b:d6:fc:1c:0e: 92:ab:0a:72:f0:8d:ce:d3:82:a1:94:d8:eb:28:01: a5:91:09:51:7b:77:37:31:ae:de:d1:01:1a:1b:28: 60:79:0f:2e:b4:83:fd:a0:41:ae:35:9b:aa:e4:c0: 30:ca:b0:fa:e8:4d:06:dd:c4:61:1a:69:ad:c4:c8: 22:d2:37:78:92:bd:23:84:b0:8e:a6:40:d1:57:2b: 18:1c:16:35:85:57:6d:76:26:10:ee:60:25:60:bb: bb:d4:16:4c:1a:05:9a:8f:68:a7:6b:e4:bb:5e:99: ca:e1:e2:c3:12:fe:ee:1a:69:0c:34:cf:14:1e:de: 77:3e:a1:63:e4:00:68:93:bb:82:2f:78:8f:64:3e: 95:b5:ac:fe:ca:7f:eb:fc:dc:a6:f3:b7:f1:b0:3b: 56:97:ca:7d:24:5d:2a:f9:37:dc:cc:96:06:a8:58: b8:18:53:77:22:d8:26:7d:1a:23:c3:82:84:99:ee: fb:69:fc:ad:28:fb:04:cd:c8:70:ac:58:a4:96:dc: ec:5e:c3:35:c0:c0:44:b2:33:da:97:4e:4a:52:dd: a3:14:54:72:3e:10:c5:82:48:13:76:3c:d7:d4:42: 0f:f5:45:f2:e4:16:db:7e:cd:47:33:31:cb:5d:f5: f0:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:25:D5:EE:2E:13:50:1B:A8:91:B0:60:24:B4:8B:D9:07:42:7F:A5 X509v3 Authority Key Identifier: keyid:90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:d3:1e:60:a6:43:a7:cb:c3:fd:b8:1c:77:da:49:30:57:33: 35:2b:33:b8:d0:85:8c:1b:86:c7:80:b0:54:87:ef:1a:df:5e: ac:f0:e8:e9:1e:60:4d:a8:d6:27:10:7a:4f:fa:87:7b:f4:60: 08:15:dd:e7:11:61:b9:7a:0c:1d:35:39:c5:12:5a:86:3b:ef: 94:7e:e3:2e:22:0d:b2:fe:18:3e:bc:c9:75:22:a0:63:c8:1e: c0:d1:a7:e9:ef:29:1b:76:45:5e:ad:b3:4b:5c:d5:78:8a:88: 68:a5:e6:de:d3:b9:f3:e2:9f:b0:2a:bd:dc:30:32:48:81:f8: 06:53:c5:5b:47:13:93:f0:9b:4d:40:b1:4b:05:01:44:b2:f4: ad:a7:a6:2c:a6:4b:39:78:c3:0b:2f:b0:ff:85:f5:47:18:42: 57:e8:fa:aa:12:ae:ec:3c:ef:df:1d:c0:99:52:24:72:86:75: 02:c1:90:70:3d:35:5e:f6:16:5b:49:59:f0:7f:ce:0c:ee:12: b5:d7:6a:5e:6c:4a:8f:75:67:71:6f:04:25:9f:ec:ec:03:31: 89:05:18:4f:d3:04:20:23:6a:97:f1:42:19:b5:ea:94:cb:ce: 3b:a3:f7:9c:02:b3:d0:5b:b6:6a:ff:6e:cf:66:bb:56:59:9d: 80:6a:64:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMUUxMTAvBgNVBAUTKDkwNjAzRTM1NERCNTY4QjNDQTQyOTAwRTcwMzAxMUU3 OTY2Mjg5MkUwHhcNMjUwNTEyMTYwMDE5WhcNMjUwNTE5MTYwMDE5WjAYMRYwFAYD VQQDEw02ODIyMWIxMy0wNzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxBIPdVo2tFYK9b8HA6Sqwpy8I3O04KhlNjrKAGlkQlRe3c3Ma7e0QEaGyhg eQ8utIP9oEGuNZuq5MAwyrD66E0G3cRhGmmtxMgi0jd4kr0jhLCOpkDRVysYHBY1 hVdtdiYQ7mAlYLu71BZMGgWaj2ina+S7XpnK4eLDEv7uGmkMNM8UHt53PqFj5ABo k7uCL3iPZD6Vtaz+yn/r/Nym87fxsDtWl8p9JF0q+TfczJYGqFi4GFN3ItgmfRoj w4KEme77afytKPsEzchwrFikltzsXsM1wMBEsjPal05KUt2jFFRyPhDFgkgTdjzX 1EIP9UXy5Bbbfs1HMzHLXfXwnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMl1e4u E1AbqJGwYCS0i9kHQn+lMB8GA1UdIwQYMBaAFJBgPjVNtWizykKQDnAwEeeWYoku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxRS9FQUExOUNCNEIy REMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFMUEtRcEFPY0RBUjU1Wmlp UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tHQS1OVTIxYUxQS1FwQU9jREFSNTVaaWlTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxRS9FQUExOUNCNEIyREMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFM UEtRcEFPY0RBUjU1WmlpUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV0x5gpkOny8P9uBx32kkwVzM1KzO40IWMG4bHgLBUh+8a316s8Ojp HmBNqNYnEHpP+od79GAIFd3nEWG5egwdNTnFElqGO++UfuMuIg2y/hg+vMl1IqBj yB7A0afp7ykbdkVerbNLXNV4iohopebe07nz4p+wKr3cMDJIgfgGU8VbRxOT8JtN QLFLBQFEsvStp6Yspks5eMMLL7D/hfVHGEJX6PqqEq7sPO/fHcCZUiRyhnUCwZBw PTVe9hZbSVnwf84M7hK112pebEqPdWdxbwQln+zsAzGJBRhP0wQgI2qX8UIZteqU y847o/ecArPQW7Zq/27PZrtWWZ2AamRk -----END CERTIFICATE-----Generated at Wed May 14 00:21:39 2025 by rpki-client