$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: ie7VapqMJIaRuszLq/MaMIBnzqqyazluY6tvWF4G37Q= Subject key identifier: 17:F8:F7:6E:FE:84:CE:46:9B:82:3B:A1:3C:D6:A0:C8:EA:40:B1:13 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 018B Signing time: Sun 11 May 2025 02:31:29 +0000 Manifest this update: Sun 11 May 2025 02:31:29 +0000 Manifest next update: Sun 18 May 2025 02:31:29 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: Fy6IbDjuZGNoXxMIAshvNaRxQfctZxhitmIUjiCJpPk=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: 3TVSr4533KCeTr9n4si0My+MCE5XOLUQ499rzcPilqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:31:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: May 11 02:31:29 2025 GMT Not After : May 18 02:31:29 2025 GMT Subject: CN=68200c01-4984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:08:4e:75:ea:c5:25:f1:3f:7b:82:73:7e:77: 1d:1e:41:4c:31:00:14:f9:22:05:c0:c6:41:6c:f5: ae:da:a8:39:55:71:19:72:b6:b2:75:44:b7:9e:c2: cd:7c:66:09:05:7e:50:ce:df:88:65:f3:8b:e6:ec: 29:3b:40:53:21:fb:f0:40:a0:c2:7f:7b:73:bb:c3: 8a:d8:e5:98:fd:99:45:4a:3f:28:e4:31:c7:08:57: be:60:69:39:4d:3f:0f:a3:11:2d:61:c9:e2:8f:af: 32:2b:4f:ee:14:80:0a:34:1e:79:76:f8:2a:8d:f1: 1b:f1:bd:d0:3f:52:eb:e7:87:15:8d:73:4c:43:da: bd:f0:e0:aa:84:70:c4:be:9f:fc:f3:78:b7:4c:e9: 89:c8:e4:1a:f3:bc:7d:8e:af:98:ff:08:58:df:31: 31:a0:8e:40:e5:ab:99:91:3d:b3:a8:42:69:d9:82: 7f:2d:2d:65:25:b4:3f:ca:ca:4f:fe:d6:80:ec:30: 88:04:15:1e:36:ff:01:40:6b:3a:1c:7a:9d:1e:37: 15:58:59:ed:fe:32:4a:8c:9b:4d:5f:93:7d:c6:89: dc:bb:a9:27:c8:55:35:c7:00:a1:6a:3b:ea:4f:08: f5:1f:d2:38:31:34:48:ad:a5:d8:da:36:89:1c:da: b9:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:F8:F7:6E:FE:84:CE:46:9B:82:3B:A1:3C:D6:A0:C8:EA:40:B1:13 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:f9:d5:30:e3:33:aa:b7:80:e8:b5:a9:90:41:cc:3f:ab:ed: fd:f2:70:eb:43:b4:d2:33:6b:1a:ea:98:f9:83:58:44:19:89: 64:0d:d4:49:fc:38:c2:df:66:e4:0a:a3:46:d4:78:ba:aa:a7: 1e:a1:7e:34:6d:b6:a3:50:bd:a4:fc:72:cb:1f:60:f6:8b:a3: 18:ba:ec:06:d7:ff:4b:f1:0f:73:57:a3:87:b3:05:f0:a5:73: a2:70:d9:21:d8:a9:82:1d:0d:12:e5:71:7f:6c:3a:13:c4:dc: a5:4e:34:8f:66:e7:f5:a3:98:01:1d:29:ed:bb:3b:65:21:72: e6:fe:47:49:bd:e8:cf:d2:eb:68:ce:60:d2:d1:51:05:46:f0: 2f:e1:81:aa:24:2c:7f:96:a9:58:f1:93:d6:b6:e5:b4:58:8f: cd:58:b8:bf:37:a1:3e:50:e0:46:98:c8:a0:e4:1c:7b:7a:e7: 6c:89:7e:d9:95:07:0f:be:3d:90:c6:3a:b9:2f:3f:35:84:50: 83:93:85:ce:e7:7f:23:5d:24:d0:4a:47:7a:aa:85:c2:10:e3: eb:f1:10:53:e4:40:3e:2d:49:b7:52:a5:d8:71:40:9c:a1:0a: e2:ff:58:76:1d:36:20:3a:2b:94:36:56:26:0b:82:3e:ce:d8: 5a:37:5b:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUwNTExMDIzMTI5WhcNMjUwNTE4MDIzMTI5WjAYMRYwFAYD VQQDEw02ODIwMGMwMS00OTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwhOderFJfE/e4JzfncdHkFMMQAU+SIFwMZBbPWu2qg5VXEZcraydUS3nsLN fGYJBX5Qzt+IZfOL5uwpO0BTIfvwQKDCf3tzu8OK2OWY/ZlFSj8o5DHHCFe+YGk5 TT8PoxEtYcnij68yK0/uFIAKNB55dvgqjfEb8b3QP1Lr54cVjXNMQ9q98OCqhHDE vp/883i3TOmJyOQa87x9jq+Y/whY3zExoI5A5auZkT2zqEJp2YJ/LS1lJbQ/yspP /taA7DCIBBUeNv8BQGs6HHqdHjcVWFnt/jJKjJtNX5N9xoncu6knyFU1xwChajvq Twj1H9I4MTRIraXY2jaJHNq5GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBf4927+ hM5Gm4I7oTzWoMjqQLETMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAW+dUw4zOqt4DotamQQcw/q+398nDrQ7TSM2sa6pj5g1hEGYlkDdRJ /DjC32bkCqNG1Hi6qqceoX40bbajUL2k/HLLH2D2i6MYuuwG1/9L8Q9zV6OHswXw pXOicNkh2KmCHQ0S5XF/bDoTxNylTjSPZuf1o5gBHSntuztlIXLm/kdJvejP0uto zmDS0VEFRvAv4YGqJCx/lqlY8ZPWtuW0WI/NWLi/N6E+UOBGmMig5Bx7eudsiX7Z lQcPvj2Qxjq5Lz81hFCDk4XO538jXSTQSkd6qoXCEOPr8RBT5EA+LUm3UqXYcUCc oQri/1h2HTYgOiuUNlYmC4I+zthaN1vg -----END CERTIFICATE-----Generated at Sun May 11 22:52:38 2025 by rpki-client