$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: InXTxiitBakvzpo0zgMELVqkBrSPc97X/ZdeY+1Mk2U= Subject key identifier: AE:D8:C4:24:AB:07:BD:93:A8:64:2C:AA:CA:6B:84:8E:B5:74:BC:98 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 016D Signing time: Thu 13 Mar 2025 02:42:15 +0000 Manifest this update: Thu 13 Mar 2025 02:42:14 +0000 Manifest next update: Thu 20 Mar 2025 02:42:14 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: b1AIOaCmIpBAAvBlaVvvamfhPRAfe3Zjks4FgxcxP9I=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: 3TVSr4533KCeTr9n4si0My+MCE5XOLUQ499rzcPilqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 02:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389 Validity Not Before: Mar 13 02:42:14 2025 GMT Not After : Mar 20 02:42:14 2025 GMT Subject: CN=67d24607-72c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b2:db:67:5e:54:a1:bd:73:da:33:87:f8:09: 86:de:1c:73:4d:c5:57:18:a4:b5:53:8e:10:4f:41: 08:bf:61:0c:6d:e2:97:54:63:20:89:7c:3d:88:28: 8d:75:7d:8d:3a:1c:31:b3:ea:0e:90:57:dc:18:ac: 80:dd:99:b5:b8:87:92:cb:1d:cd:39:54:82:d5:d2: 70:ba:3d:70:3e:24:87:1f:1f:ca:4a:94:9f:3c:c5: e1:61:18:bc:a6:d8:27:11:c9:b0:bc:2d:3d:a0:3a: 7e:c7:07:3b:b4:a9:11:02:5c:c1:8b:6b:ec:b0:f1: 4d:be:8e:82:89:ec:a2:2e:0c:47:d1:bd:89:d8:d2: 32:49:f2:a2:6e:80:47:b3:ce:12:bc:a1:cf:34:6a: 37:3d:fc:8b:a9:71:6a:58:3f:50:d7:7a:fc:05:0a: fd:5d:08:63:98:c6:12:a4:4a:d8:37:cc:62:2c:23: 33:bb:d6:d0:bd:32:eb:e8:12:e6:16:5e:10:07:af: 5e:85:9e:35:ea:41:9b:7d:6c:eb:6f:8b:36:57:7e: 48:03:5d:b9:f2:cc:15:37:5e:50:01:e9:e5:be:9f: 1e:e2:b3:b1:44:ac:8f:09:23:da:d4:b5:0d:b9:ea: 2e:56:26:57:53:25:d0:bb:7b:6e:4d:eb:b9:96:99: 22:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:D8:C4:24:AB:07:BD:93:A8:64:2C:AA:CA:6B:84:8E:B5:74:BC:98 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:75:dd:8e:15:a9:8b:e1:d1:9c:c8:52:6f:4d:49:79:7f:6c: 66:37:99:53:41:41:36:2e:43:e2:ff:89:c8:fe:3b:68:27:71: a9:39:1c:81:de:cb:60:df:01:eb:10:b2:e4:92:76:70:e7:1b: ad:af:62:20:cc:6e:7f:0e:92:95:5c:9e:6b:24:3e:f2:eb:b0: 54:af:8a:84:d1:8b:70:c1:6b:ca:ac:d9:49:1c:ec:74:dc:01: f2:86:8a:42:2b:55:9b:56:76:66:11:9d:88:5c:41:12:31:45: 67:e6:f1:4a:e8:52:36:7d:8c:e6:80:3e:a3:20:97:ff:0f:86: 7b:ea:a3:bb:ab:4c:31:c9:36:26:d2:5e:a2:35:ab:2c:ac:c1: a1:d4:b8:da:fb:b6:bd:5b:de:66:73:cf:ca:a5:cc:13:e0:08: 3e:c7:e5:df:7c:81:8e:2d:27:92:77:16:39:3d:bc:10:52:83: 63:a4:cc:ca:76:21:28:2e:10:c7:b7:f4:ef:64:eb:48:4f:07: 57:87:31:31:3a:89:e7:1a:db:06:59:62:07:ba:a0:0c:b9:b1: 1d:72:7e:63:c8:71:61:15:61:3d:c3:40:30:e2:ea:47:cf:ee: 53:84:f0:28:bb:90:df:f6:fc:db:24:9d:14:ed:d2:c1:67:cb: a6:ea:e2:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUwMzEzMDI0MjE0WhcNMjUwMzIwMDI0MjE0WjAYMRYwFAYD VQQDEw02N2QyNDYwNy03MmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybLbZ15Uob1z2jOH+AmG3hxzTcVXGKS1U44QT0EIv2EMbeKXVGMgiXw9iCiN dX2NOhwxs+oOkFfcGKyA3Zm1uIeSyx3NOVSC1dJwuj1wPiSHHx/KSpSfPMXhYRi8 ptgnEcmwvC09oDp+xwc7tKkRAlzBi2vssPFNvo6CieyiLgxH0b2J2NIySfKiboBH s84SvKHPNGo3PfyLqXFqWD9Q13r8BQr9XQhjmMYSpErYN8xiLCMzu9bQvTLr6BLm Fl4QB69ehZ416kGbfWzrb4s2V35IA1258swVN15QAenlvp8e4rOxRKyPCSPa1LUN ueouViZXUyXQu3tuTeu5lpkiewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7YxCSr B72TqGQsqsprhI61dLyYMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5dd2OFamL4dGcyFJvTUl5f2xmN5lTQUE2LkPi/4nI/jtoJ3GpORyB 3stg3wHrELLkknZw5xutr2IgzG5/DpKVXJ5rJD7y67BUr4qE0YtwwWvKrNlJHOx0 3AHyhopCK1WbVnZmEZ2IXEESMUVn5vFK6FI2fYzmgD6jIJf/D4Z76qO7q0wxyTYm 0l6iNassrMGh1Lja+7a9W95mc8/KpcwT4Ag+x+XffIGOLSeSdxY5PbwQUoNjpMzK diEoLhDHt/TvZOtITwdXhzExOonnGtsGWWIHuqAMubEdcn5jyHFhFWE9w0Aw4upH z+5ThPAou5Df9vzbJJ0U7dLBZ8um6uKv -----END CERTIFICATE-----Generated at Thu Mar 13 21:29:18 2025 by rpki-client