$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft File: KUrNCNoZE4w376-ydKHndXceRT4.mft (raw, json) Hash identifier: n4pspBqtghJxAQ6+/pSL/c6w6Py59PEfgJHW0xP2iks= Subject key identifier: 11:0A:56:43:38:3E:D0:9A:35:50:7B:A7:3B:98:61:3A:D8:C7:B7:09 Authority key identifier: 29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E Certificate issuer: /CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Certificate serial: 0552 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft Manifest number: 054C Signing time: Sun 10 Aug 2025 23:32:07 +0000 Manifest this update: Sun 10 Aug 2025 23:32:06 +0000 Manifest next update: Sun 17 Aug 2025 23:32:06 +0000 Files and hashes: 1: KUrNCNoZE4w376-ydKHndXceRT4.crl (hash: Cl3TM6lMF2GFF7RN8xQKacwF5nGaQZC65gOfATIvTpo=) 2: 2D7BD4EA03DD11ECA448405BC4F9AE02.roa (hash: KKWKrtsh/34nl8r+0Ut1+Gkgstz0StRYtgWm9ide930=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1362 (0x552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8F9, serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Validity Not Before: Aug 10 23:32:06 2025 GMT Not After : Aug 17 23:32:06 2025 GMT Subject: CN=68992bf7-5aff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0a:ce:e0:1c:ec:c2:5c:76:66:b1:1a:80:3c: 5f:8e:83:8b:53:b6:ba:06:10:44:43:5f:60:b3:26: d4:06:36:97:2d:c4:d4:a9:61:63:33:59:8c:2e:36: b2:58:56:48:fe:6f:e0:3f:dc:bf:a5:05:81:44:eb: cd:4e:a4:73:e1:2c:f0:5b:36:bb:7b:52:96:9a:29: 4d:e8:16:a8:13:96:9a:d1:6b:b0:8e:43:82:c0:40: d3:99:ea:77:fb:a9:19:f5:ba:8b:fb:a8:a7:37:6e: 69:97:44:2c:03:dc:12:78:f0:8c:4f:28:e0:fd:0b: 09:cf:d5:06:a3:b7:ae:30:9b:26:5a:17:44:c8:cd: 6e:67:ac:d3:77:3e:cf:44:5e:0f:eb:1d:ff:08:35: 7b:37:36:ae:d1:f5:a2:a5:d5:66:0d:e2:61:7d:5f: d2:e3:45:53:dc:d0:cf:a7:5e:0d:12:4a:b3:b9:ce: 11:0a:fa:ce:ba:b5:36:c1:c1:56:8a:ec:c7:27:6c: c8:21:db:83:8d:a4:cf:ba:2e:b0:a6:25:fe:3a:64: 99:fb:36:83:3d:d2:1d:a7:dd:ca:fb:22:42:93:f9: dc:b4:8d:b3:5a:1e:90:71:b9:00:6d:aa:ab:dc:e4: fd:9e:f6:d8:27:5a:63:b6:9f:1c:fd:ba:a6:41:29: 88:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:0A:56:43:38:3E:D0:9A:35:50:7B:A7:3B:98:61:3A:D8:C7:B7:09 X509v3 Authority Key Identifier: keyid:29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:fb:42:a4:ac:ea:e9:73:f1:71:11:26:dd:3f:c4:26:3f:19: 46:59:6a:90:a0:e2:5c:14:44:b9:3f:71:fd:78:87:0b:22:02: c1:ca:41:76:c6:60:a6:fd:4b:19:e0:8c:9b:f6:18:de:a6:8e: 45:0b:43:67:ab:1b:ea:37:e7:4a:ab:50:e5:9c:84:cd:08:a1: 49:d5:03:62:20:6f:a0:5a:49:a9:68:81:7d:ea:cb:eb:01:18: 09:ee:1d:83:33:e3:75:ab:e2:fa:c0:5b:f4:df:61:49:37:5d: 82:4f:3c:de:95:d4:e4:15:7e:0d:f4:0f:2f:64:eb:1f:a8:69: ac:26:f0:38:94:c5:d1:50:0d:84:13:74:3a:2c:c6:99:9e:d5: 0d:00:92:1b:5b:41:5c:67:a2:fa:ba:ad:ad:84:ae:19:ad:5d: 60:2d:72:0d:7d:3f:e7:e4:8f:d5:24:ab:4a:d7:9e:0e:75:a4: fa:27:1c:08:bb:82:86:50:e1:43:35:fa:96:bd:5b:df:a8:d9: 18:43:48:58:87:e3:38:30:68:c4:8f:fa:28:ea:b4:50:6a:fb: b1:2e:b8:80:c4:f8:9b:30:cc:b2:77:62:08:f9:57:23:cc:36: 76:54:60:05:f4:46:71:0e:2e:a4:e0:dc:9e:c0:fe:5d:59:84: e1:b2:a0:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4RjkxMTAvBgNVBAUTKDI5NEFDRDA4REExOTEzOEMzN0VGQUZCMjc0QTFFNzc1 NzcxRTQ1M0UwHhcNMjUwODEwMjMzMjA2WhcNMjUwODE3MjMzMjA2WjAYMRYwFAYD VQQDEw02ODk5MmJmNy01YWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogrO4Bzswlx2ZrEagDxfjoOLU7a6BhBEQ19gsybUBjaXLcTUqWFjM1mMLjay WFZI/m/gP9y/pQWBROvNTqRz4SzwWza7e1KWmilN6BaoE5aa0WuwjkOCwEDTmep3 +6kZ9bqL+6inN25pl0QsA9wSePCMTyjg/QsJz9UGo7euMJsmWhdEyM1uZ6zTdz7P RF4P6x3/CDV7Nzau0fWipdVmDeJhfV/S40VT3NDPp14NEkqzuc4RCvrOurU2wcFW iuzHJ2zIIduDjaTPui6wpiX+OmSZ+zaDPdIdp93K+yJCk/nctI2zWh6QcbkAbaqr 3OT9nvbYJ1pjtp8c/bqmQSmI3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBEKVkM4 PtCaNVB7pzuYYTrYx7cJMB8GA1UdIwQYMBaAFClKzQjaGROMN++vsnSh53V3HkU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhGOS9EQzZCMzYxNEZF NkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0dzM3Ni15ZEtIbmRYY2VS VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVck5DTm9aRTR3Mzc2LXlkS0huZFhjZVJUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhGOS9EQzZCMzYxNEZFNkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0 dzM3Ni15ZEtIbmRYY2VSVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS+0KkrOrpc/FxESbdP8QmPxlGWWqQoOJcFES5P3H9eIcLIgLBykF2 xmCm/UsZ4Iyb9hjepo5FC0NnqxvqN+dKq1DlnITNCKFJ1QNiIG+gWkmpaIF96svr ARgJ7h2DM+N1q+L6wFv032FJN12CTzzeldTkFX4N9A8vZOsfqGmsJvA4lMXRUA2E E3Q6LMaZntUNAJIbW0FcZ6L6uq2thK4ZrV1gLXINfT/n5I/VJKtK154OdaT6JxwI u4KGUOFDNfqWvVvfqNkYQ0hYh+M4MGjEj/oo6rRQavuxLriAxPibMMyyd2II+Vcj zDZ2VGAF9EZxDi6k4NyewP5dWYThsqAL -----END CERTIFICATE-----Generated at Mon Aug 11 10:30:55 2025 by rpki-client