$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: R5wXVivh3JpzKGdzxGjJ/kW9zBzXMdHavvhTljag9KE= Subject key identifier: 50:CB:3C:75:5B:18:CF:37:78:20:8D:33:12:68:5A:72:6D:10:90:E1 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 01A4 Signing time: Tue 01 Jul 2025 03:42:39 +0000 Manifest this update: Tue 01 Jul 2025 03:42:39 +0000 Manifest next update: Tue 08 Jul 2025 03:42:39 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: RRIk9j2tFBWBUX4z8kx6OxPzdAU0pwJW+1h8u2DKnO4=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: 3TVSr4533KCeTr9n4si0My+MCE5XOLUQ499rzcPilqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:42:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Jul 1 03:42:39 2025 GMT Not After : Jul 8 03:42:39 2025 GMT Subject: CN=6863592f-3fcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5c:a5:4b:cb:46:fd:9c:ad:10:03:b6:fd:19: be:0d:88:2d:d3:bd:fc:99:9b:c9:76:90:c4:f7:05: dd:88:1d:39:35:03:68:30:38:df:35:5f:b5:0e:bf: e5:d3:e4:be:5b:bb:1f:3a:cb:a7:13:62:50:56:35: a6:3d:08:4f:4c:83:11:34:b9:4c:a1:67:a6:a3:69: eb:13:98:dd:c1:c0:4d:aa:2a:c0:b4:25:fe:18:ea: 86:7f:b6:0e:f1:df:79:c4:01:2d:da:cb:9e:8e:3f: 00:c5:68:3d:b9:31:a5:58:09:c2:a2:be:72:58:94: 54:36:84:2d:ac:f9:27:cf:f6:a9:8b:f6:35:d1:82: 73:8a:b7:af:44:eb:72:e4:42:e2:b2:f0:6e:a4:1a: 02:58:46:2f:95:ef:60:e4:bc:ed:f6:45:0b:0b:38: 91:ea:9b:6e:c3:7e:3c:7f:55:b7:c5:53:98:33:94: 03:de:0c:41:96:82:50:2f:c3:f6:6e:4d:a1:e5:95: 67:88:63:b6:80:b2:18:07:85:4f:d8:3b:7d:18:a8: ba:67:89:4b:48:28:bc:62:ae:68:a7:a4:6b:e8:45: 9e:97:78:1e:a3:d3:51:f7:38:e9:50:53:44:5d:be: b0:24:47:9f:dd:d1:2f:df:a7:84:af:da:e3:5a:0f: 85:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:CB:3C:75:5B:18:CF:37:78:20:8D:33:12:68:5A:72:6D:10:90:E1 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:28:3c:ce:c4:3a:0e:9f:c7:71:d8:5f:a3:d8:49:0c:e2:2f: c2:89:c7:c8:2e:f6:a7:5c:61:d3:8e:be:e9:e5:21:33:7d:39: 50:ae:bb:61:bc:f3:3c:2d:28:cf:08:b1:8f:c3:37:70:3d:23: 52:d6:04:f0:98:cf:91:23:b1:be:8d:23:98:44:e9:06:1a:83: ea:7d:c9:17:fa:38:cc:29:ac:b9:9c:e0:e4:bf:88:be:6e:18: 4e:3b:bb:60:5e:b3:b4:37:14:24:6f:1e:a1:c2:57:15:4d:ce: 2d:0a:d5:cc:78:69:10:c1:ae:b7:86:4a:33:33:1b:b4:6c:bb: e7:fa:39:d3:a5:11:6a:dc:0e:86:9a:f6:0f:7a:ae:f8:ef:67: 3e:e8:36:a9:09:27:ad:df:82:09:c6:05:fa:42:74:11:cc:47: 57:8e:47:d9:ac:f8:1a:20:8f:cc:f9:e2:6f:ba:4c:a2:48:db: 39:74:46:67:ce:ae:53:00:da:18:ed:84:7a:d4:bb:d6:6a:b2: e4:61:27:86:e9:b2:70:8d:ce:11:d3:f4:c4:49:32:5c:25:11: c5:79:55:4a:c7:93:de:14:d3:ff:35:83:e0:1a:d6:98:25:34: 4f:ef:c4:98:ac:42:70:9b:ce:7c:76:fe:f2:f1:b5:8c:14:98: 7b:ac:b2:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUwNzAxMDM0MjM5WhcNMjUwNzA4MDM0MjM5WjAYMRYwFAYD VQQDEw02ODYzNTkyZi0zZmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1ylS8tG/ZytEAO2/Rm+DYgt0738mZvJdpDE9wXdiB05NQNoMDjfNV+1Dr/l 0+S+W7sfOsunE2JQVjWmPQhPTIMRNLlMoWemo2nrE5jdwcBNqirAtCX+GOqGf7YO 8d95xAEt2suejj8AxWg9uTGlWAnCor5yWJRUNoQtrPknz/api/Y10YJzirevROty 5ELisvBupBoCWEYvle9g5Lzt9kULCziR6ptuw348f1W3xVOYM5QD3gxBloJQL8P2 bk2h5ZVniGO2gLIYB4VP2Dt9GKi6Z4lLSCi8Yq5op6Rr6EWel3geo9NR9zjpUFNE Xb6wJEef3dEv36eEr9rjWg+F6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDLPHVb GM83eCCNMxJoWnJtEJDhMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVKDzOxDoOn8dx2F+j2EkM4i/CicfILvanXGHTjr7p5SEzfTlQrrth vPM8LSjPCLGPwzdwPSNS1gTwmM+RI7G+jSOYROkGGoPqfckX+jjMKay5nODkv4i+ bhhOO7tgXrO0NxQkbx6hwlcVTc4tCtXMeGkQwa63hkozMxu0bLvn+jnTpRFq3A6G mvYPeq7472c+6DapCSet34IJxgX6QnQRzEdXjkfZrPgaII/M+eJvukyiSNs5dEZn zq5TANoY7YR61LvWarLkYSeG6bJwjc4R0/TESTJcJRHFeVVKx5PeFNP/NYPgGtaY JTRP78SYrEJwm858dv7y8bWMFJh7rLKu -----END CERTIFICATE-----Generated at Wed Jul 2 03:41:18 2025 by rpki-client