$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft File: SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft (raw, json) Hash identifier: PwZa4gE+/ZRM0mg8MJRuYZ+1iupqfxWASSXEyEhnk7I= Subject key identifier: E4:E0:87:40:CE:C0:1A:49:69:19:29:4C:E5:8A:74:CC:3B:88:A1:C0 Authority key identifier: 49:47:5B:59:75:F1:97:98:95:A3:C6:E4:41:83:E4:BC:A2:E8:34:6F Certificate issuer: /CN=A91BC4FF/serialNumber=49475B5975F1979895A3C6E44183E4BCA2E8346F Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft Manifest number: 8F Signing time: Thu 03 Jul 2025 06:41:42 +0000 Manifest this update: Thu 03 Jul 2025 06:41:42 +0000 Manifest next update: Thu 10 Jul 2025 06:41:42 +0000 Files and hashes: 1: SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl (hash: q55rB6w78WStYhpuRSzYCBkbKbd50bwe6B3ZpjuAb7I=) 2: 35525B92845611EFB053C341C4F9AE02.roa (hash: VrKew/904a7WGaHwfTfVmRygoJsUgD+2JGEhLd8TxAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC4FF, serialNumber=49475B5975F1979895A3C6E44183E4BCA2E8346F Validity Not Before: Jul 3 06:41:42 2025 GMT Not After : Jul 10 06:41:42 2025 GMT Subject: CN=68662626-875a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e0:d2:dc:0c:78:f6:0e:5e:49:a1:df:45:7d: 01:0f:76:eb:59:18:ce:67:c6:92:d0:b3:a3:4b:99: 97:3b:c4:c9:21:e6:b2:01:d8:30:e3:d5:89:2b:1c: 0f:44:51:53:68:c7:84:c8:07:4b:ef:20:66:c4:9c: 23:75:4a:c4:6e:99:33:5f:b1:53:84:bb:a1:cc:11: 2d:69:d9:44:db:dc:56:5f:56:91:49:82:b1:17:87: c3:17:7f:4a:43:aa:0b:90:e4:fa:05:6f:e2:68:9d: 8d:a9:2e:d8:c7:d4:28:5a:34:c9:75:0e:8d:46:54: 03:63:1e:79:58:5d:a8:e0:68:be:8b:ce:25:f4:dd: 97:4d:98:0d:4a:c5:4a:88:9e:d5:5e:0a:f0:97:35: 2e:0d:a4:c2:9e:6e:11:ec:35:d5:ad:70:c8:a0:48: 4d:b3:cf:24:92:8d:b1:c7:a4:7b:88:e7:a9:5b:68: 63:f2:18:96:86:a7:a0:b4:2d:68:df:6f:0e:5f:f5: ea:64:84:84:6a:a0:cd:0f:a7:1a:15:b5:86:05:bf: 1d:93:d7:e4:54:e9:60:fa:a2:6e:9e:6c:f9:4c:bc: 3d:fd:85:24:15:9a:57:78:95:e7:e8:85:9a:45:d8: dd:a1:49:e4:41:b7:37:b0:dc:25:fe:ff:7e:08:02: 99:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E0:87:40:CE:C0:1A:49:69:19:29:4C:E5:8A:74:CC:3B:88:A1:C0 X509v3 Authority Key Identifier: keyid:49:47:5B:59:75:F1:97:98:95:A3:C6:E4:41:83:E4:BC:A2:E8:34:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:67:bc:20:86:36:3e:34:c2:ac:e0:c0:6c:7f:0d:da:75:3e: d2:63:98:e4:be:4e:6e:35:97:c6:18:fb:3d:ea:50:21:08:ba: 4f:91:0d:91:5b:de:68:ae:6c:d9:5c:2d:06:c2:57:3b:65:41: c2:80:87:43:4d:ba:fe:27:b1:55:7d:18:20:c1:2b:c5:4f:10: 17:d0:fa:a4:86:53:cb:35:8f:bc:45:dd:7c:f9:d9:37:e5:25: 42:b0:e1:c7:7c:09:eb:c8:b7:b5:cc:94:5a:2a:7d:23:62:76: c0:c4:52:55:54:7e:90:ac:12:57:73:f0:39:45:63:ac:a0:50: b0:5d:d1:fa:30:a8:c1:26:a7:2f:c9:fa:e8:fb:2c:c6:7d:88: 07:b8:7f:40:f0:1f:c7:ea:a0:39:d9:83:76:91:8e:d0:12:da: 06:5b:df:63:a9:14:4b:52:6a:cc:b1:65:cc:a4:bc:88:c5:8a: f4:94:49:57:f2:85:ec:ec:0c:5b:48:9b:71:3e:53:c2:83:95: 24:ec:5d:b6:41:03:98:12:2e:6b:0e:50:44:4e:59:e7:d0:55: d4:6e:82:10:35:40:2b:5f:3e:fe:2e:f3:9f:4f:a4:69:f9:90: ae:fa:ab:2c:34:7b:a2:69:43:23:a6:fd:c1:4f:7e:11:28:f8: de:f2:a8:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM0RkYxMTAvBgNVBAUTKDQ5NDc1QjU5NzVGMTk3OTg5NUEzQzZFNDQxODNFNEJD QTJFODM0NkYwHhcNMjUwNzAzMDY0MTQyWhcNMjUwNzEwMDY0MTQyWjAYMRYwFAYD VQQDEw02ODY2MjYyNi04NzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ODS3Ax49g5eSaHfRX0BD3brWRjOZ8aS0LOjS5mXO8TJIeayAdgw49WJKxwP RFFTaMeEyAdL7yBmxJwjdUrEbpkzX7FThLuhzBEtadlE29xWX1aRSYKxF4fDF39K Q6oLkOT6BW/iaJ2NqS7Yx9QoWjTJdQ6NRlQDYx55WF2o4Gi+i84l9N2XTZgNSsVK iJ7VXgrwlzUuDaTCnm4R7DXVrXDIoEhNs88kko2xx6R7iOepW2hj8hiWhqegtC1o 328OX/XqZISEaqDND6caFbWGBb8dk9fkVOlg+qJunmz5TLw9/YUkFZpXeJXn6IWa RdjdoUnkQbc3sNwl/v9+CAKZeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTgh0DO wBpJaRkpTOWKdMw7iKHAMB8GA1UdIwQYMBaAFElHW1l18ZeYlaPG5EGD5Lyi6DRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzRGRi85QzU2QkU0Mjg0 NTUxMUVGQjc2RDI3NDBDNEY5QUUwMi9TVWRiV1hYeGw1aVZvOGJrUVlQa3ZLTG9O RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVZGJXWFh4bDVpVm84YmtRWVBrdktMb05HOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzRGRi85QzU2QkU0Mjg0NTUxMUVGQjc2RDI3NDBDNEY5QUUwMi9TVWRiV1hYeGw1 aVZvOGJrUVlQa3ZLTG9ORzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKZ7wghjY+NMKs4MBsfw3adT7SY5jkvk5uNZfGGPs96lAhCLpPkQ2R W95ormzZXC0Gwlc7ZUHCgIdDTbr+J7FVfRggwSvFTxAX0PqkhlPLNY+8Rd18+dk3 5SVCsOHHfAnryLe1zJRaKn0jYnbAxFJVVH6QrBJXc/A5RWOsoFCwXdH6MKjBJqcv yfro+yzGfYgHuH9A8B/H6qA52YN2kY7QEtoGW99jqRRLUmrMsWXMpLyIxYr0lElX 8oXs7AxbSJtxPlPCg5Uk7F22QQOYEi5rDlBETlnn0FXUboIQNUArXz7+LvOfT6Rp +ZCu+qssNHuiaUMjpv3BT34RKPje8qiD -----END CERTIFICATE-----Generated at Fri Jul 4 03:34:15 2025 by rpki-client