$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft File: KUrNCNoZE4w376-ydKHndXceRT4.mft (raw, json) Hash identifier: XLH2yb3yyrA6Yx72b1TATLiJCZG+a39n45BCfFsBtp8= Subject key identifier: 0A:3F:87:99:68:01:80:62:A4:B5:81:DF:5B:51:E7:61:98:95:28:EB Authority key identifier: 29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E Certificate issuer: /CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Certificate serial: 0575 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft Manifest number: 056F Signing time: Sun 19 Oct 2025 01:00:58 +0000 Manifest this update: Sun 19 Oct 2025 01:00:58 +0000 Manifest next update: Sun 26 Oct 2025 01:00:58 +0000 Files and hashes: 1: KUrNCNoZE4w376-ydKHndXceRT4.crl (hash: 2SvKyufGZ8TRXThNYn7HuWoS6QWQICJ0MSRaoZNu+fs=) 2: 2D7BD4EA03DD11ECA448405BC4F9AE02.roa (hash: KKWKrtsh/34nl8r+0Ut1+Gkgstz0StRYtgWm9ide930=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1397 (0x575) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8F9, serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Validity Not Before: Oct 19 01:00:58 2025 GMT Not After : Oct 26 01:00:58 2025 GMT Subject: CN=68f4384a-a796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6f:b9:17:44:38:3c:35:60:63:68:2d:e0:15: c1:8d:34:ee:97:a3:3d:cc:32:01:ef:11:48:29:69: 83:2d:20:9a:d8:a3:ab:ce:e3:4e:c3:62:b2:03:f2: a8:9d:38:d3:ee:99:69:2e:2d:07:ee:12:bc:b6:da: 9f:72:cc:ba:92:86:51:d4:6e:af:38:c7:b5:6f:b6: c3:f3:9b:6a:a0:ef:18:39:86:44:cb:d0:a8:95:a0: 45:0b:55:f5:7b:fa:c7:ae:5f:aa:37:6e:61:84:7b: 10:ba:51:ec:05:31:df:76:ee:ab:35:43:8f:39:53: a1:82:00:cf:69:07:83:89:49:8a:86:f7:9f:04:ac: fd:25:2d:97:f9:91:cc:3d:ba:ca:4b:2f:59:b9:c5: 54:9c:80:a7:a0:90:d5:6e:f6:63:ab:5d:2e:89:45: b7:21:c4:ed:1d:0a:10:ce:f0:5b:28:47:da:33:7b: 56:ef:a1:6c:64:5f:a1:93:c4:1b:d7:92:0f:77:18: f2:9a:73:2a:f4:c4:d9:43:86:65:12:1b:94:96:4d: 51:ef:e9:4e:7a:d5:83:d9:dd:fc:50:d5:d4:65:44: 5f:e2:fb:aa:80:c0:c7:4a:83:9a:62:1e:a9:fa:7d: 26:e1:77:3e:22:1c:ca:cc:4c:27:8f:24:b3:06:65: 78:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:3F:87:99:68:01:80:62:A4:B5:81:DF:5B:51:E7:61:98:95:28:EB X509v3 Authority Key Identifier: keyid:29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:62:44:a2:47:c0:61:ce:82:95:d4:2f:2a:ea:92:70:c2:a4: 02:62:c7:a9:75:86:09:20:c4:5e:78:99:15:6d:b9:ad:39:e4: 20:98:0b:dc:42:dc:50:5c:b5:a5:d8:0e:b4:ee:4b:bd:a1:25: c6:f9:96:b5:9e:bb:d7:da:93:6d:a2:ba:0f:c7:33:b2:8e:7e: 1c:ef:4e:44:db:f2:99:8a:6b:3b:0c:df:32:4c:b5:42:b9:77: e6:6a:db:47:7a:c8:70:0b:82:56:5f:4a:b6:f3:c6:85:2e:84: 2e:4a:ec:19:b6:39:0d:4c:2b:9c:3f:00:36:d3:7e:c0:80:b1: 5c:9c:b2:bb:e0:ea:0a:e9:5d:90:c9:67:1e:46:57:20:4f:e7: a1:90:ac:f0:64:b3:c0:62:d3:02:09:92:fc:da:5b:10:09:80: ff:e8:8d:71:86:7c:85:1a:9f:51:d6:5f:fd:11:bf:70:01:6a: 52:b9:20:3b:5b:41:f7:6d:66:54:37:87:c9:ec:a9:fd:9b:77: d6:61:89:75:5c:f7:2e:9a:f0:ac:a0:34:0b:e7:98:48:6b:70: 55:88:a7:ec:1c:8b:28:2e:98:5a:35:92:07:e8:dc:f6:bf:35: e2:fc:42:e9:a1:8f:33:d5:45:0a:2a:91:3b:c4:94:35:97:d1: 04:d2:4e:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4RjkxMTAvBgNVBAUTKDI5NEFDRDA4REExOTEzOEMzN0VGQUZCMjc0QTFFNzc1 NzcxRTQ1M0UwHhcNMjUxMDE5MDEwMDU4WhcNMjUxMDI2MDEwMDU4WjAYMRYwFAYD VQQDEw02OGY0Mzg0YS1hNzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxW+5F0Q4PDVgY2gt4BXBjTTul6M9zDIB7xFIKWmDLSCa2KOrzuNOw2KyA/Ko nTjT7plpLi0H7hK8ttqfcsy6koZR1G6vOMe1b7bD85tqoO8YOYZEy9ColaBFC1X1 e/rHrl+qN25hhHsQulHsBTHfdu6rNUOPOVOhggDPaQeDiUmKhvefBKz9JS2X+ZHM PbrKSy9ZucVUnICnoJDVbvZjq10uiUW3IcTtHQoQzvBbKEfaM3tW76FsZF+hk8Qb 15IPdxjymnMq9MTZQ4ZlEhuUlk1R7+lOetWD2d38UNXUZURf4vuqgMDHSoOaYh6p +n0m4Xc+IhzKzEwnjySzBmV4ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAo/h5lo AYBipLWB31tR52GYlSjrMB8GA1UdIwQYMBaAFClKzQjaGROMN++vsnSh53V3HkU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhGOS9EQzZCMzYxNEZF NkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0dzM3Ni15ZEtIbmRYY2VS VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVck5DTm9aRTR3Mzc2LXlkS0huZFhjZVJUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhGOS9EQzZCMzYxNEZFNkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0 dzM3Ni15ZEtIbmRYY2VSVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiYkSiR8BhzoKV1C8q6pJwwqQCYsepdYYJIMReeJkVbbmtOeQgmAvc QtxQXLWl2A607ku9oSXG+Za1nrvX2pNtoroPxzOyjn4c705E2/KZims7DN8yTLVC uXfmattHeshwC4JWX0q288aFLoQuSuwZtjkNTCucPwA2037AgLFcnLK74OoK6V2Q yWceRlcgT+ehkKzwZLPAYtMCCZL82lsQCYD/6I1xhnyFGp9R1l/9Eb9wAWpSuSA7 W0H3bWZUN4fJ7Kn9m3fWYYl1XPcumvCsoDQL55hIa3BViKfsHIsoLphaNZIH6Nz2 vzXi/ELpoY8z1UUKKpE7xJQ1l9EE0k5t -----END CERTIFICATE-----Generated at Mon Oct 20 12:44:25 2025 by rpki-client