$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft File: SUICsDHp9CdkMVegbvqkwHDH8-0.mft (raw, json) Hash identifier: j6IpdV01QAsX/82W2Ift0zY51XL1hnf2CB+p5qE1dkA= Subject key identifier: D3:BA:14:24:88:E3:58:C3:45:7E:BA:67:7C:C1:B7:E8:7F:B1:FC:3E Authority key identifier: 49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED Certificate issuer: /CN=A91C0C9B/serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Certificate serial: 04F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft Manifest number: 04D6 Signing time: Mon 21 Jul 2025 00:04:59 +0000 Manifest this update: Mon 21 Jul 2025 00:04:58 +0000 Manifest next update: Mon 28 Jul 2025 00:04:58 +0000 Files and hashes: 1: SUICsDHp9CdkMVegbvqkwHDH8-0.crl (hash: x/PEEPTpYJ9+kgZQLwbIcXx9v7sNHt9FMPPDK9EGIgk=) 2: 1BEFBED451B911F097C15C49C4F9AE02.roa (hash: ZvucB2E7NeTigUiBDA7qRL8qFkVVJvyXSrzFIulP+x8=) 3: A042865C3DB211EE9EB40D3DC4F9AE02.roa (hash: 00gQlkZJ/La3W11cygPUEyOgfEz6qTJK4E6QUbIb+4w=) 4: 1CC78D4651B911F097C15C49C4F9AE02.roa (hash: CBpPhJ6pPqhVc/HJrSFukBxQwV65YTwQkZm/veGYg0U=) 5: C32D1F4A13A011F09B8EF66AC4F9AE02.roa (hash: StmcDPPzK2yilWPNElLi3+ESljyQBtG5nEZLldO1WuA=) 6: 1D854DF451B911F097C15C49C4F9AE02.roa (hash: xaxaySmnWqQ+K7erniFCyus+l9/HXrQPK69GxtJF7qA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:04:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1267 (0x4f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C9B, serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Validity Not Before: Jul 21 00:04:58 2025 GMT Not After : Jul 28 00:04:58 2025 GMT Subject: CN=687d842b-5efb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d8:ea:ef:66:7c:33:69:81:35:5c:80:60:aa: 26:97:5a:4e:ca:26:3d:88:dd:a3:5b:78:34:98:dc: 86:da:2d:86:13:a6:04:3e:3f:21:75:40:61:6b:e6: 76:f5:2e:9a:3e:6f:ff:5f:55:9c:e3:3f:18:33:71: cf:34:9c:89:04:87:da:b5:40:dd:0d:6b:92:d5:38: fd:53:a9:f9:47:77:8e:fe:d7:aa:b6:b0:96:8b:12: d8:00:79:21:c3:5a:a8:18:35:32:d9:51:44:b1:64: ae:20:8a:5a:a2:82:dc:0a:cd:5c:2c:21:c4:2d:df: c2:aa:98:10:ac:a4:22:fb:6c:5b:19:40:5b:94:66: c9:c5:9e:f2:0c:b8:96:f8:46:01:99:3d:f6:da:b8: e7:d9:cb:7f:f6:54:c6:40:e1:86:b4:74:aa:69:de: 32:0f:bf:f3:0e:04:d9:4d:bb:0f:fd:fd:de:49:6f: 3c:13:a3:a4:8e:30:4e:7c:31:a7:66:5b:6b:14:7c: 27:90:9b:70:5f:88:7c:7c:75:41:9a:9d:34:e0:66: 4d:af:8e:75:73:2a:f2:94:87:e8:6c:22:4f:55:ce: 26:8c:f4:42:1c:1d:2b:b1:3d:39:c4:eb:4e:17:5d: 74:bc:90:37:f3:c3:4a:d0:62:e7:d3:28:f6:7a:9f: ea:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:BA:14:24:88:E3:58:C3:45:7E:BA:67:7C:C1:B7:E8:7F:B1:FC:3E X509v3 Authority Key Identifier: keyid:49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:a5:fb:c0:11:fd:44:25:c4:81:53:cb:3b:e7:da:03:13:26: f9:e9:58:ed:42:0f:1f:53:86:53:25:80:ba:e6:05:d1:21:99: 61:80:43:5b:1a:64:d0:5d:9f:2a:79:3a:91:10:b9:fb:b7:da: 0a:06:44:ea:91:a4:f2:71:8c:f6:a1:be:72:6d:bf:4c:3e:2c: b5:d3:08:41:99:f2:89:c2:32:82:91:64:b2:54:82:f5:3d:80: 10:67:af:8f:11:c2:ab:2e:4a:28:b5:79:51:44:cc:79:7a:84: bf:c2:75:83:6f:f7:ee:30:d5:c1:3a:99:fc:2d:9d:87:fc:25: ae:ae:b6:57:29:a6:68:e0:0d:86:5f:4d:1f:17:de:e6:47:fc: 73:ea:b1:57:20:61:37:80:a1:1d:46:d5:14:1e:cc:ac:50:45: 46:d3:03:65:99:da:23:2c:1b:3e:e5:89:67:97:a7:5c:c9:79: 49:d5:74:7c:1c:6c:36:e8:d0:f6:60:88:e8:d8:15:39:33:0b: 0b:5d:74:c9:2a:95:5d:05:e2:e7:c1:5a:db:cd:86:61:24:a2: fe:2c:55:8d:24:47:14:7e:e5:fb:bb:82:68:76:71:25:07:0b: 90:d8:1e:9a:05:25:35:b2:57:c2:29:63:b6:36:3a:03:86:47: c5:00:bc:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDOUIxMTAvBgNVBAUTKDQ5NDIwMkIwMzFFOUY0Mjc2NDMxNTdBMDZFRkFBNEMw NzBDN0YzRUQwHhcNMjUwNzIxMDAwNDU4WhcNMjUwNzI4MDAwNDU4WjAYMRYwFAYD VQQDEw02ODdkODQyYi01ZWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNjq72Z8M2mBNVyAYKoml1pOyiY9iN2jW3g0mNyG2i2GE6YEPj8hdUBha+Z2 9S6aPm//X1Wc4z8YM3HPNJyJBIfatUDdDWuS1Tj9U6n5R3eO/teqtrCWixLYAHkh w1qoGDUy2VFEsWSuIIpaooLcCs1cLCHELd/CqpgQrKQi+2xbGUBblGbJxZ7yDLiW +EYBmT322rjn2ct/9lTGQOGGtHSqad4yD7/zDgTZTbsP/f3eSW88E6OkjjBOfDGn ZltrFHwnkJtwX4h8fHVBmp004GZNr451cyrylIfobCJPVc4mjPRCHB0rsT05xOtO F110vJA388NK0GLn0yj2ep/qKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNO6FCSI 41jDRX66Z3zBt+h/sfw+MB8GA1UdIwQYMBaAFElCArAx6fQnZDFXoG76pMBwx/Pt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEM5Qi9BNDZFOTg5QTMy MkIxMUVDOTdGOENGN0NDNEY5QUUwMi9TVUlDc0RIcDlDZGtNVmVnYnZxa3dIREg4 LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVSUNzREhwOUNka01WZWdidnFrd0hESDgtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEM5Qi9BNDZFOTg5QTMyMkIxMUVDOTdGOENGN0NDNEY5QUUwMi9TVUlDc0RIcDlD ZGtNVmVnYnZxa3dIREg4LTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6pfvAEf1EJcSBU8s759oDEyb56VjtQg8fU4ZTJYC65gXRIZlhgENb GmTQXZ8qeTqRELn7t9oKBkTqkaTycYz2ob5ybb9MPiy10whBmfKJwjKCkWSyVIL1 PYAQZ6+PEcKrLkootXlRRMx5eoS/wnWDb/fuMNXBOpn8LZ2H/CWurrZXKaZo4A2G X00fF97mR/xz6rFXIGE3gKEdRtUUHsysUEVG0wNlmdojLBs+5Ylnl6dcyXlJ1XR8 HGw26ND2YIjo2BU5MwsLXXTJKpVdBeLnwVrbzYZhJKL+LFWNJEcUfuX7u4JodnEl BwuQ2B6aBSU1slfCKWO2NjoDhkfFALw4 -----END CERTIFICATE-----Generated at Mon Jul 21 06:09:06 2025 by rpki-client