$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: ifLSfpcZ0qSfsNLhvVD4dC/IlbmmZ6lDv69RIM5BNdA= Subject key identifier: D1:3C:9A:DD:1D:1A:7A:74:8D:07:C7:F0:9D:BB:5A:EC:86:1F:12:25 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 0199 Signing time: Mon 09 Jun 2025 02:31:52 +0000 Manifest this update: Mon 09 Jun 2025 02:31:52 +0000 Manifest next update: Mon 16 Jun 2025 02:31:52 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: YkkAB+86PQTJjuA+cxPV7oqO5CXlEYwxS22ewyQEKhk=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: 3TVSr4533KCeTr9n4si0My+MCE5XOLUQ499rzcPilqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 02:31:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Jun 9 02:31:52 2025 GMT Not After : Jun 16 02:31:52 2025 GMT Subject: CN=68464798-deab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9b:5e:da:77:52:4e:64:75:08:b4:0a:01:98: 2f:f0:76:43:cd:09:51:0f:87:96:7a:5a:99:98:be: da:dd:2c:14:70:22:fc:5a:6a:11:e3:ed:0b:c8:28: f5:ba:ad:95:4c:11:b1:e7:87:2a:25:ca:f4:2e:76: 83:00:a9:f6:b9:b1:3c:77:a5:05:51:f6:da:8b:1e: 9a:6a:cb:23:28:19:78:69:9c:6f:de:af:e1:bc:51: 31:7f:65:52:65:55:58:5e:6d:1b:4a:8a:b7:ad:b2: c2:00:d7:bf:f6:0a:33:3b:c7:cf:36:c3:a8:bc:6a: 02:22:15:f6:3f:46:09:27:4f:8f:21:2b:99:77:8a: 99:ee:9a:22:82:dd:be:f0:d1:2d:e4:0a:61:16:6c: 7b:6a:af:3d:23:98:a0:e7:3b:b9:31:4a:8b:ec:14: c9:05:fd:73:c8:fd:1d:10:b8:b5:6c:1b:3a:ec:d9: c6:0c:b9:8e:4d:fb:19:cc:4f:a9:44:90:bc:08:5e: df:82:c9:e0:fa:e6:21:b1:bc:11:26:b0:35:d2:54: f7:2b:c9:39:de:73:d3:88:16:2a:0a:91:51:1b:a9: 44:e8:8d:0c:e1:40:d0:aa:81:c1:0c:68:cf:d9:82: 31:dc:c2:a1:7d:c0:21:4c:07:ad:22:1d:b6:e4:d9: 0d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:3C:9A:DD:1D:1A:7A:74:8D:07:C7:F0:9D:BB:5A:EC:86:1F:12:25 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ed:a3:85:a9:7e:d6:72:68:e5:fe:b0:fe:f0:7a:64:86:5b: 26:8f:c5:55:a1:e3:74:70:59:5f:22:5a:45:ed:15:57:e6:e2: f6:87:e4:79:ba:40:dd:b4:7c:0e:8c:55:23:b9:05:c0:1e:d3: 43:c4:ca:f2:1e:9f:72:96:6e:cf:9e:56:c7:9c:e2:06:17:cd: 11:88:05:6a:8f:a8:a1:81:c7:6f:44:20:94:26:88:a3:86:37: da:09:56:86:b5:d2:bc:ac:af:a5:54:40:d5:14:ea:98:d7:41: e1:12:da:44:08:68:84:30:98:95:df:20:a6:fd:f9:ea:d2:bc: 85:9a:8a:42:24:7f:08:47:ad:3f:13:d3:c3:69:be:c2:0e:76: ef:90:9c:76:ae:a4:22:ad:d1:10:18:09:5c:c7:a4:92:dc:70: 54:70:12:ea:42:b6:9c:a0:ee:5a:56:2f:c4:e7:e5:43:f1:22: d5:9a:a7:27:f3:98:57:0f:bb:e2:cf:8e:86:73:20:dc:80:d1: 36:fa:48:32:1a:32:02:cf:66:78:01:e9:2e:4c:b5:30:5b:73: c2:08:c7:3d:ca:f2:f0:39:68:47:f4:f0:93:7c:1f:c9:4d:e9: f9:3b:5d:ce:a2:13:07:5d:8d:5d:17:07:28:86:c8:5d:35:5a: 18:2f:88:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUwNjA5MDIzMTUyWhcNMjUwNjE2MDIzMTUyWjAYMRYwFAYD VQQDEw02ODQ2NDc5OC1kZWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5te2ndSTmR1CLQKAZgv8HZDzQlRD4eWelqZmL7a3SwUcCL8WmoR4+0LyCj1 uq2VTBGx54cqJcr0LnaDAKn2ubE8d6UFUfbaix6aassjKBl4aZxv3q/hvFExf2VS ZVVYXm0bSoq3rbLCANe/9gozO8fPNsOovGoCIhX2P0YJJ0+PISuZd4qZ7poigt2+ 8NEt5AphFmx7aq89I5ig5zu5MUqL7BTJBf1zyP0dELi1bBs67NnGDLmOTfsZzE+p RJC8CF7fgsng+uYhsbwRJrA10lT3K8k53nPTiBYqCpFRG6lE6I0M4UDQqoHBDGjP 2YIx3MKhfcAhTAetIh225NkN3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNE8mt0d Gnp0jQfH8J27WuyGHxIlMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW7aOFqX7Wcmjl/rD+8Hpkhlsmj8VVoeN0cFlfIlpF7RVX5uL2h+R5 ukDdtHwOjFUjuQXAHtNDxMryHp9ylm7PnlbHnOIGF80RiAVqj6ihgcdvRCCUJoij hjfaCVaGtdK8rK+lVEDVFOqY10HhEtpECGiEMJiV3yCm/fnq0ryFmopCJH8IR60/ E9PDab7CDnbvkJx2rqQirdEQGAlcx6SS3HBUcBLqQracoO5aVi/E5+VD8SLVmqcn 85hXD7viz46GcyDcgNE2+kgyGjICz2Z4AekuTLUwW3PCCMc9yvLwOWhH9PCTfB/J Ten5O13OohMHXY1dFwcohshdNVoYL4hq -----END CERTIFICATE-----Generated at Mon Jun 9 04:44:43 2025 by rpki-client