$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft File: KUrNCNoZE4w376-ydKHndXceRT4.mft (raw, json) Hash identifier: 7iXJaOYi2sYrlHbF8QJHMIdDfez4mEwVxcEoxanRaXI= Subject key identifier: 56:13:3A:7D:C9:EC:84:3A:5C:E8:5C:A5:84:0C:64:2E:B9:12:00:0C Authority key identifier: 29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E Certificate issuer: /CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Certificate serial: 053E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft Manifest number: 0538 Signing time: Wed 02 Jul 2025 23:48:20 +0000 Manifest this update: Wed 02 Jul 2025 23:48:19 +0000 Manifest next update: Wed 09 Jul 2025 23:48:19 +0000 Files and hashes: 1: KUrNCNoZE4w376-ydKHndXceRT4.crl (hash: Dk401pMPHGO/VNrSmmxBeHUR9YtmaWQPsglUOXuH/7o=) 2: 2D7BD4EA03DD11ECA448405BC4F9AE02.roa (hash: KKWKrtsh/34nl8r+0Ut1+Gkgstz0StRYtgWm9ide930=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:48:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1342 (0x53e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8F9, serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Validity Not Before: Jul 2 23:48:19 2025 GMT Not After : Jul 9 23:48:19 2025 GMT Subject: CN=6865c544-d84c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:27:90:40:f9:89:b3:8a:70:4b:9a:9f:02:9f: ae:b6:b7:2e:77:0c:94:d6:00:12:ed:51:a5:16:3b: 65:34:ca:30:7a:9a:91:31:1f:32:0c:c5:97:26:88: 6e:2b:a1:ed:7a:aa:40:b1:82:b1:8e:00:8e:08:22: 42:e5:66:60:a7:68:bf:2c:98:45:2e:b0:d4:fc:6b: 5a:3e:39:f1:2f:e4:71:b9:63:23:69:80:85:c3:f3: 02:3b:d3:e8:87:2d:79:a8:50:8b:d5:e8:6d:a7:ca: a4:26:9b:f6:31:a7:e2:09:ca:d7:d6:39:49:23:e5: a7:bc:e0:5b:06:be:a4:94:a5:f4:77:6f:73:a9:fb: b2:f3:12:4f:a4:54:19:34:d7:41:c3:a2:a0:5b:21: aa:bb:8f:26:ae:73:41:2c:bb:06:a4:b0:d5:f6:cc: 8a:b0:51:30:9c:b9:6b:b4:21:0b:86:92:d1:53:77: 2e:54:fb:54:40:dd:d3:cc:38:a3:e8:08:be:d1:e7: 0d:32:cf:da:b3:8a:1b:01:59:08:5a:fc:62:8d:37: 21:84:13:63:f1:43:a5:0f:32:46:5a:d8:e7:27:b8: f2:55:3f:5c:57:a7:82:90:16:d0:98:5a:ba:d1:76: 3b:75:ce:fa:4f:c9:0a:e4:ce:0a:6b:b4:a1:ad:f8: f2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:13:3A:7D:C9:EC:84:3A:5C:E8:5C:A5:84:0C:64:2E:B9:12:00:0C X509v3 Authority Key Identifier: keyid:29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:8e:9a:73:7c:25:21:94:ee:28:b2:59:dd:b0:77:f6:58:ac: 61:cc:38:5f:4d:07:66:85:c3:94:c8:bb:2c:98:d9:90:c4:26: cd:80:66:8c:25:9e:37:6f:e0:d0:05:a8:f5:02:2a:60:b5:a3: 84:ee:4d:f2:cd:ad:f7:0f:cc:b9:bc:ff:d5:b9:3d:77:ab:9b: fa:67:60:38:de:89:ad:5d:90:57:f4:b9:8b:9b:6c:ff:f6:7c: 57:b5:4a:dc:99:98:01:23:e6:93:e5:fa:88:b8:74:f4:6d:ca: 3c:09:2c:f5:c2:19:5d:7e:33:ac:5f:b5:a5:b1:b7:e5:7c:78: e5:79:71:61:75:99:c0:e9:ef:e7:5f:ee:ae:ed:4a:f3:86:ac: 42:f0:20:db:e6:25:53:e7:ea:07:b6:b7:44:d5:1a:e1:2c:9d: b9:f4:4b:27:a5:4c:9d:4e:2e:4a:46:3b:40:1c:e4:83:58:7f: 5b:5a:61:1d:57:10:92:ba:a4:3b:85:98:3d:84:68:f1:6f:73: 1a:0b:c8:4f:63:df:95:8e:ca:1e:a0:cf:a8:95:b8:44:7d:75: 06:df:ae:4a:02:4c:3a:a4:90:39:9c:59:f2:17:b0:47:58:c7: 9f:07:6c:1d:8c:6e:4d:66:04:35:ab:d9:25:37:7e:db:18:03: 7b:be:0e:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4RjkxMTAvBgNVBAUTKDI5NEFDRDA4REExOTEzOEMzN0VGQUZCMjc0QTFFNzc1 NzcxRTQ1M0UwHhcNMjUwNzAyMjM0ODE5WhcNMjUwNzA5MjM0ODE5WjAYMRYwFAYD VQQDEw02ODY1YzU0NC1kODRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyeQQPmJs4pwS5qfAp+utrcudwyU1gAS7VGlFjtlNMowepqRMR8yDMWXJohu K6HteqpAsYKxjgCOCCJC5WZgp2i/LJhFLrDU/GtaPjnxL+RxuWMjaYCFw/MCO9Po hy15qFCL1ehtp8qkJpv2MafiCcrX1jlJI+WnvOBbBr6klKX0d29zqfuy8xJPpFQZ NNdBw6KgWyGqu48mrnNBLLsGpLDV9syKsFEwnLlrtCELhpLRU3cuVPtUQN3TzDij 6Ai+0ecNMs/as4obAVkIWvxijTchhBNj8UOlDzJGWtjnJ7jyVT9cV6eCkBbQmFq6 0XY7dc76T8kK5M4Ka7ShrfjyKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYTOn3J 7IQ6XOhcpYQMZC65EgAMMB8GA1UdIwQYMBaAFClKzQjaGROMN++vsnSh53V3HkU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhGOS9EQzZCMzYxNEZF NkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0dzM3Ni15ZEtIbmRYY2VS VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVck5DTm9aRTR3Mzc2LXlkS0huZFhjZVJUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhGOS9EQzZCMzYxNEZFNkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0 dzM3Ni15ZEtIbmRYY2VSVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQjppzfCUhlO4oslndsHf2WKxhzDhfTQdmhcOUyLssmNmQxCbNgGaM JZ43b+DQBaj1AipgtaOE7k3yza33D8y5vP/VuT13q5v6Z2A43omtXZBX9LmLm2z/ 9nxXtUrcmZgBI+aT5fqIuHT0bco8CSz1whldfjOsX7WlsbflfHjleXFhdZnA6e/n X+6u7UrzhqxC8CDb5iVT5+oHtrdE1RrhLJ259EsnpUydTi5KRjtAHOSDWH9bWmEd VxCSuqQ7hZg9hGjxb3MaC8hPY9+VjsoeoM+olbhEfXUG365KAkw6pJA5nFnyF7BH WMefB2wdjG5NZgQ1q9klN37bGAN7vg7E -----END CERTIFICATE-----Generated at Thu Jul 3 10:21:19 2025 by rpki-client