$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft File: SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft (raw, json) Hash identifier: kdihk4ZAZ27IPelf2V0EkcBwNZsMAzbsG4M6/wHWqRM= Subject key identifier: ED:08:36:74:AE:A2:CF:F2:12:A1:B1:7D:E6:77:B8:E4:C1:02:89:E5 Authority key identifier: 49:47:5B:59:75:F1:97:98:95:A3:C6:E4:41:83:E4:BC:A2:E8:34:6F Certificate issuer: /CN=A91BC4FF/serialNumber=49475B5975F1979895A3C6E44183E4BCA2E8346F Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft Manifest number: A9 Signing time: Sat 23 Aug 2025 06:24:29 +0000 Manifest this update: Sat 23 Aug 2025 06:24:29 +0000 Manifest next update: Sat 30 Aug 2025 06:24:29 +0000 Files and hashes: 1: SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl (hash: GV1BYiivznvyaZ32ExCJG2Bq7v2P+3jZiIY4BcCw+Gc=) 2: 35525B92845611EFB053C341C4F9AE02.roa (hash: VrKew/904a7WGaHwfTfVmRygoJsUgD+2JGEhLd8TxAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC4FF, serialNumber=49475B5975F1979895A3C6E44183E4BCA2E8346F Validity Not Before: Aug 23 06:24:29 2025 GMT Not After : Aug 30 06:24:29 2025 GMT Subject: CN=68a95e9d-456f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:52:55:16:a9:f3:0f:31:b9:c1:87:c1:8e:50: f5:e4:a0:dc:6c:ea:e3:f7:a2:f4:1d:7b:95:66:c5: 9d:ea:9b:51:84:66:d9:9c:81:82:7b:d3:6f:96:e9: f2:de:7d:c2:87:c4:8a:d0:55:63:9d:d6:91:53:e7: b9:c6:2f:26:a0:82:f6:f9:e4:ed:71:1f:2c:44:fe: c4:86:2a:43:09:e0:50:ca:dd:98:ef:b4:cd:89:86: 17:7f:0c:0c:79:3a:18:5c:91:bd:8c:66:b6:55:84: d7:bf:aa:51:b3:42:8c:b0:9e:5c:53:86:3e:c8:5d: 35:71:5b:78:ac:ce:0f:c5:cb:d6:78:36:c4:79:e0: 3e:74:75:d1:ef:40:17:60:fb:96:08:31:60:4a:82: cc:0f:9a:2f:31:ea:03:2e:e7:93:1d:da:1f:0f:33: eb:b7:56:3b:d2:5e:66:d0:1b:f7:0a:04:e2:79:b7: 67:bd:b7:fb:5c:a0:1b:af:48:0b:4f:40:cc:8e:f5: 46:de:77:fb:62:ce:1b:bc:71:37:b8:2e:a4:b7:80: ae:04:86:ce:a0:3e:63:67:0f:5c:26:e8:f7:f4:cf: df:f6:c0:80:51:46:47:f4:21:a0:6d:1a:fb:46:ac: 65:f6:58:38:26:5b:22:1c:d7:fc:6c:f7:5d:81:6c: 18:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:08:36:74:AE:A2:CF:F2:12:A1:B1:7D:E6:77:B8:E4:C1:02:89:E5 X509v3 Authority Key Identifier: keyid:49:47:5B:59:75:F1:97:98:95:A3:C6:E4:41:83:E4:BC:A2:E8:34:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:de:1f:e7:60:4c:31:d4:ac:17:d6:08:73:f8:71:58:83:29: f4:3f:fb:f0:40:42:6f:4f:84:32:1c:f9:16:68:d1:5d:02:36: 59:b9:73:3b:6c:54:d0:e9:34:de:58:a7:4b:9d:71:5e:e3:04: 0e:38:99:61:bc:cb:2e:c1:ed:b6:98:81:21:78:18:f5:c4:d6: f8:d9:c8:54:5d:88:66:88:3b:71:7c:aa:f1:60:e3:b6:4d:5a: 4e:5d:d9:f5:11:6b:9d:6f:75:6b:ec:5d:81:53:96:de:6a:ff: 0f:d7:1c:a3:7c:ab:c5:90:0b:87:f7:a3:8f:33:5b:f9:cc:d9: a4:f7:85:09:92:a6:4a:c9:ff:5f:56:ec:d7:08:aa:2a:c0:5f: d0:73:bd:b1:54:47:76:b5:ac:1f:d6:3f:84:07:de:96:79:fa: f9:36:f6:ec:7c:ec:1d:b4:db:a8:ed:2f:45:b0:ee:86:e3:ed: 3f:b3:32:4f:25:6c:5a:df:67:aa:46:3f:a5:17:ec:18:4e:98: 60:c9:bb:c8:82:e1:90:fe:84:6c:21:ad:c7:a8:10:1f:2c:83: 79:a8:36:bc:5d:51:0d:af:71:e7:9b:9a:16:e3:00:77:fe:b4: 46:b7:81:e3:d4:b4:a1:23:25:e7:33:ec:ce:40:ad:66:4c:5a: c4:f1:cb:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM0RkYxMTAvBgNVBAUTKDQ5NDc1QjU5NzVGMTk3OTg5NUEzQzZFNDQxODNFNEJD QTJFODM0NkYwHhcNMjUwODIzMDYyNDI5WhcNMjUwODMwMDYyNDI5WjAYMRYwFAYD VQQDEw02OGE5NWU5ZC00NTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFJVFqnzDzG5wYfBjlD15KDcbOrj96L0HXuVZsWd6ptRhGbZnIGCe9Nvluny 3n3Ch8SK0FVjndaRU+e5xi8moIL2+eTtcR8sRP7EhipDCeBQyt2Y77TNiYYXfwwM eToYXJG9jGa2VYTXv6pRs0KMsJ5cU4Y+yF01cVt4rM4PxcvWeDbEeeA+dHXR70AX YPuWCDFgSoLMD5ovMeoDLueTHdofDzPrt1Y70l5m0Bv3CgTiebdnvbf7XKAbr0gL T0DMjvVG3nf7Ys4bvHE3uC6kt4CuBIbOoD5jZw9cJuj39M/f9sCAUUZH9CGgbRr7 Rqxl9lg4JlsiHNf8bPddgWwYIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0INnSu os/yEqGxfeZ3uOTBAonlMB8GA1UdIwQYMBaAFElHW1l18ZeYlaPG5EGD5Lyi6DRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzRGRi85QzU2QkU0Mjg0 NTUxMUVGQjc2RDI3NDBDNEY5QUUwMi9TVWRiV1hYeGw1aVZvOGJrUVlQa3ZLTG9O RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVZGJXWFh4bDVpVm84YmtRWVBrdktMb05HOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzRGRi85QzU2QkU0Mjg0NTUxMUVGQjc2RDI3NDBDNEY5QUUwMi9TVWRiV1hYeGw1 aVZvOGJrUVlQa3ZLTG9ORzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo3h/nYEwx1KwX1ghz+HFYgyn0P/vwQEJvT4QyHPkWaNFdAjZZuXM7 bFTQ6TTeWKdLnXFe4wQOOJlhvMsuwe22mIEheBj1xNb42chUXYhmiDtxfKrxYOO2 TVpOXdn1EWudb3Vr7F2BU5beav8P1xyjfKvFkAuH96OPM1v5zNmk94UJkqZKyf9f VuzXCKoqwF/Qc72xVEd2tawf1j+EB96Wefr5NvbsfOwdtNuo7S9FsO6G4+0/szJP JWxa32eqRj+lF+wYTphgybvIguGQ/oRsIa3HqBAfLIN5qDa8XVENr3Hnm5oW4wB3 /rRGt4Hj1LShIyXnM+zOQK1mTFrE8csE -----END CERTIFICATE-----Generated at Sat Aug 23 20:22:38 2025 by rpki-client