$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft File: KUrNCNoZE4w376-ydKHndXceRT4.mft (raw, json) Hash identifier: 6kAE/qLA+1wHYPjxmwC4l0Uxbt+Vtl6ellZr3Z34JWQ= Subject key identifier: CD:AE:E9:A8:B7:9F:AD:53:29:4C:BC:19:D4:EC:30:9B:DE:DC:CC:06 Authority key identifier: 29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E Certificate issuer: /CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Certificate serial: 057D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft Manifest number: 0577 Signing time: Tue 04 Nov 2025 23:21:57 +0000 Manifest this update: Tue 04 Nov 2025 23:21:56 +0000 Manifest next update: Tue 11 Nov 2025 23:21:56 +0000 Files and hashes: 1: KUrNCNoZE4w376-ydKHndXceRT4.crl (hash: ssdPHsT7Vaoh51P4VfivJBQ4jkBFnBBC16W4qOeF28k=) 2: 2D7BD4EA03DD11ECA448405BC4F9AE02.roa (hash: KKWKrtsh/34nl8r+0Ut1+Gkgstz0StRYtgWm9ide930=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1405 (0x57d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8F9, serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Validity Not Before: Nov 4 23:21:56 2025 GMT Not After : Nov 11 23:21:56 2025 GMT Subject: CN=690a8a95-2fd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b1:dc:62:34:39:c8:e6:a4:80:a7:49:83:0f: 4c:f5:40:c1:49:2b:cb:b3:db:06:e4:ea:52:30:90: d7:4a:a3:78:c7:ba:8b:48:b4:85:96:40:4a:44:93: 30:6a:0f:78:0c:38:2b:29:89:38:8f:68:13:a9:b9: de:26:51:b0:ce:c4:02:c6:e8:84:8a:13:e2:bd:6f: 5d:83:bd:6d:4a:1e:68:12:5b:05:87:bc:b2:88:4c: 2c:6d:92:b9:ff:77:68:57:a2:b4:e4:48:f4:de:59: d8:5c:b4:c9:bc:a6:41:a0:21:39:cd:7e:ad:79:5c: 27:28:36:aa:f4:0a:5d:54:d5:d5:f6:c3:2a:98:36: 54:4c:df:e7:26:64:54:67:9e:0c:ee:be:a0:69:43: ee:95:61:8a:b1:51:41:4f:3e:f1:98:b6:e0:10:b3: 82:02:1d:18:de:21:4f:17:05:60:a0:4c:ae:8a:97: 34:ea:cb:5f:b9:6d:21:d2:b6:47:4b:3e:b4:a1:43: 4a:88:ae:9f:2f:7f:5f:98:ec:cf:95:59:ac:85:ef: c4:ef:b0:e6:e3:de:7d:89:3a:fb:0f:6f:2e:13:c4: ca:b5:ca:e5:4e:04:4b:30:ee:0a:11:8a:85:f0:49: b9:41:61:f1:c1:c0:2a:54:4d:e9:51:5e:66:cd:33: 2a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:AE:E9:A8:B7:9F:AD:53:29:4C:BC:19:D4:EC:30:9B:DE:DC:CC:06 X509v3 Authority Key Identifier: keyid:29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:06:e1:68:b7:b2:c6:31:d9:13:c9:51:f6:b6:19:ea:b8:30: 23:ad:a3:49:bd:67:8c:1a:dd:12:e2:15:d5:0a:4b:81:0e:a1: fc:66:17:bb:2b:c8:d2:29:1d:2c:fa:86:36:2d:21:f9:94:97: 78:dc:78:74:07:7a:a6:21:60:7a:e2:d3:fb:d3:ef:a7:1d:d6: f4:14:bc:94:14:79:25:82:3c:e8:82:c2:43:23:f7:9d:de:7e: 5b:e2:de:79:81:9a:67:2a:f0:6e:6d:a3:62:d7:d4:20:86:37: 2f:4c:41:f4:9e:5f:5b:87:5a:d4:5e:35:20:27:85:3b:08:e2: 7c:30:4c:1a:27:12:1f:41:39:27:10:9d:e8:e4:c0:ca:db:47: 10:7c:1e:34:ad:41:b3:86:d6:fc:db:2b:16:85:4f:95:5b:13: 98:ce:3d:d8:91:3e:6c:a1:06:54:46:2e:58:30:c1:7e:fb:fe: bc:69:f3:57:e0:d6:02:13:95:01:a6:77:4a:8d:e5:9a:ca:75: 56:aa:db:f6:3d:54:6b:4c:0a:8b:5c:44:be:81:8b:f4:69:ab: 2b:9f:27:70:f4:94:77:3a:7a:08:28:d8:d2:5c:f6:d1:ca:c9: f8:2b:e5:4f:d1:61:d5:58:29:e1:09:0f:b1:ef:b1:51:6f:bb: 9a:23:b5:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4RjkxMTAvBgNVBAUTKDI5NEFDRDA4REExOTEzOEMzN0VGQUZCMjc0QTFFNzc1 NzcxRTQ1M0UwHhcNMjUxMTA0MjMyMTU2WhcNMjUxMTExMjMyMTU2WjAYMRYwFAYD VQQDEw02OTBhOGE5NS0yZmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7HcYjQ5yOakgKdJgw9M9UDBSSvLs9sG5OpSMJDXSqN4x7qLSLSFlkBKRJMw ag94DDgrKYk4j2gTqbneJlGwzsQCxuiEihPivW9dg71tSh5oElsFh7yyiEwsbZK5 /3doV6K05Ej03lnYXLTJvKZBoCE5zX6teVwnKDaq9ApdVNXV9sMqmDZUTN/nJmRU Z54M7r6gaUPulWGKsVFBTz7xmLbgELOCAh0Y3iFPFwVgoEyuipc06stfuW0h0rZH Sz60oUNKiK6fL39fmOzPlVmshe/E77Dm4959iTr7D28uE8TKtcrlTgRLMO4KEYqF 8Em5QWHxwcAqVE3pUV5mzTMq4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2u6ai3 n61TKUy8GdTsMJve3MwGMB8GA1UdIwQYMBaAFClKzQjaGROMN++vsnSh53V3HkU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhGOS9EQzZCMzYxNEZF NkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0dzM3Ni15ZEtIbmRYY2VS VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVck5DTm9aRTR3Mzc2LXlkS0huZFhjZVJUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhGOS9EQzZCMzYxNEZFNkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0 dzM3Ni15ZEtIbmRYY2VSVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsBuFot7LGMdkTyVH2thnquDAjraNJvWeMGt0S4hXVCkuBDqH8Zhe7 K8jSKR0s+oY2LSH5lJd43Hh0B3qmIWB64tP70++nHdb0FLyUFHklgjzogsJDI/ed 3n5b4t55gZpnKvBubaNi19QghjcvTEH0nl9bh1rUXjUgJ4U7COJ8MEwaJxIfQTkn EJ3o5MDK20cQfB40rUGzhtb82ysWhU+VWxOYzj3YkT5soQZURi5YMMF++/68afNX 4NYCE5UBpndKjeWaynVWqtv2PVRrTAqLXES+gYv0aasrnydw9JR3OnoIKNjSXPbR ysn4K+VP0WHVWCnhCQ+x77FRb7uaI7Uy -----END CERTIFICATE-----Generated at Wed Nov 5 05:10:20 2025 by rpki-client