$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: zhCML0WaatrtEPYYx7oSx6XpKIMHwkcW8AxD02dpr4g= Subject key identifier: 92:15:84:B2:BE:29:78:8C:55:D2:70:13:89:DC:D0:03:DA:65:4F:24 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 01B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 01B1 Signing time: Wed 23 Jul 2025 03:25:46 +0000 Manifest this update: Wed 23 Jul 2025 03:25:46 +0000 Manifest next update: Wed 30 Jul 2025 03:25:46 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: Xuc5FuEZCDG7jhoYeatXjUpWqgXN15FQpM2ya6scwgM=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: tmK0iDwld+e+aTJhpXj4A3zlzhe3/irDCWSZWb2ca9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 03:25:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Jul 23 03:25:46 2025 GMT Not After : Jul 30 03:25:46 2025 GMT Subject: CN=6880563a-cbb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:08:bc:7e:4e:16:fc:29:ee:ff:a7:ef:2d:79: e2:f0:ae:c8:d7:a5:79:4e:0c:dd:6f:e3:f7:61:3b: 06:88:fa:5b:27:aa:a4:85:ba:9a:a2:ea:c1:c0:dc: b7:94:79:b3:0e:20:2f:89:e6:2b:83:df:f8:f5:c8: 49:eb:52:40:ae:0a:65:67:24:d9:83:c2:6f:b9:f5: 8f:8c:99:4b:e7:20:a4:9d:3b:dc:61:78:4c:de:d3: c9:92:dd:d9:7b:16:fd:63:0f:fd:37:b2:2e:49:77: 38:22:cc:0c:3e:f5:b3:a2:cf:4b:9d:dc:ef:65:fd: 91:6b:26:72:d7:a3:d3:d3:6e:f4:d4:64:90:7a:bd: a6:44:eb:d9:ac:c6:9c:e3:0d:53:1e:5c:fe:62:39: b3:4b:85:f2:8d:0b:21:4a:d9:31:04:44:3b:ec:7c: 32:af:a8:40:7d:1d:bf:8b:f4:01:fe:f7:df:2e:86: 28:96:d0:93:fc:79:ef:67:9b:9b:1c:51:f7:50:66: f5:41:fc:86:57:4e:9f:dd:20:a5:af:84:53:b2:51: a5:10:41:63:68:73:3d:38:df:32:a1:46:59:dc:9d: d7:04:a4:cc:c0:6e:30:78:46:fc:13:37:ff:c1:0e: e3:07:24:18:22:58:98:69:10:67:41:d6:7b:e7:41: dc:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:15:84:B2:BE:29:78:8C:55:D2:70:13:89:DC:D0:03:DA:65:4F:24 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:2e:87:e4:81:53:e1:32:96:eb:86:75:25:88:e4:38:f7:db: de:cf:63:92:7d:ea:25:ed:1c:de:eb:c7:fc:57:e9:60:b3:e9: 23:aa:f8:3b:bc:cc:88:1c:3e:5f:f1:34:04:66:81:d1:b5:5f: 87:d5:3c:30:60:fd:73:91:54:9a:ed:45:9a:9b:cc:33:1f:3c: 93:f3:88:12:c3:d3:a5:1b:68:a6:26:b6:c8:c5:61:05:b1:da: a3:4d:f2:12:bf:8d:33:0f:e2:06:c8:d0:ae:43:67:43:34:3f: 7a:03:e8:38:a9:6d:5d:e4:48:99:c7:02:98:49:18:4f:99:1e: 5e:7d:d5:45:ac:21:9d:85:ad:dc:76:e3:5c:cb:8c:a8:1c:a8: 2e:7e:08:af:bb:3b:e3:00:b0:ea:81:cb:1c:22:86:4c:04:5c: c9:24:19:1a:04:1d:a5:81:eb:22:d4:ee:a1:e8:12:0d:59:6b: 69:bf:52:49:63:6e:fe:87:bd:7d:ed:91:b2:48:ff:07:07:c6: 1b:5b:f0:7e:13:49:eb:c4:b7:92:c4:33:9c:9a:89:9d:72:c1: a2:05:fa:9d:ba:c4:5f:00:ce:bc:6b:8f:a2:99:72:78:b1:3b: 7c:53:ea:df:25:c4:23:a9:76:d7:e8:0f:e1:f6:b6:60:2f:9b: 08:9f:0f:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUwNzIzMDMyNTQ2WhcNMjUwNzMwMDMyNTQ2WjAYMRYwFAYD VQQDEw02ODgwNTYzYS1jYmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3gi8fk4W/Cnu/6fvLXni8K7I16V5Tgzdb+P3YTsGiPpbJ6qkhbqaourBwNy3 lHmzDiAvieYrg9/49chJ61JArgplZyTZg8JvufWPjJlL5yCknTvcYXhM3tPJkt3Z exb9Yw/9N7IuSXc4IswMPvWzos9LndzvZf2RayZy16PT02701GSQer2mROvZrMac 4w1THlz+YjmzS4XyjQshStkxBEQ77Hwyr6hAfR2/i/QB/vffLoYoltCT/HnvZ5ub HFH3UGb1QfyGV06f3SClr4RTslGlEEFjaHM9ON8yoUZZ3J3XBKTMwG4weEb8Ezf/ wQ7jByQYIliYaRBnQdZ750HcKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJIVhLK+ KXiMVdJwE4nc0APaZU8kMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7LofkgVPhMpbrhnUliOQ499vez2OSfeol7Rze68f8V+lgs+kjqvg7 vMyIHD5f8TQEZoHRtV+H1TwwYP1zkVSa7UWam8wzHzyT84gSw9OlG2imJrbIxWEF sdqjTfISv40zD+IGyNCuQ2dDND96A+g4qW1d5EiZxwKYSRhPmR5efdVFrCGdha3c duNcy4yoHKgufgivuzvjALDqgcscIoZMBFzJJBkaBB2lgesi1O6h6BINWWtpv1JJ Y27+h7197ZGySP8HB8YbW/B+E0nrxLeSxDOcmomdcsGiBfqdusRfAM68a4+imXJ4 sTt8U+rfJcQjqXbX6A/h9rZgL5sInw+Z -----END CERTIFICATE-----Generated at Thu Jul 24 17:20:46 2025 by rpki-client