$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: RaoTEk14Ym7wfGvRX8sdYdCHjncHXWRQRqr9r85ge7k= Subject key identifier: 34:A6:8C:5C:CA:EB:2C:44:5D:7D:0F:1B:91:DB:A8:A6:24:DA:97:D0 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 01DE Signing time: Sun 19 Oct 2025 05:10:15 +0000 Manifest this update: Sun 19 Oct 2025 05:10:15 +0000 Manifest next update: Sun 26 Oct 2025 05:10:15 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: x8Ze7HxOaZqdXubsuhyzO6LHHaHvFWtxr6yn4FySDuE=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: tmK0iDwld+e+aTJhpXj4A3zlzhe3/irDCWSZWb2ca9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Oct 19 05:10:15 2025 GMT Not After : Oct 26 05:10:15 2025 GMT Subject: CN=68f472b7-b867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:55:68:cb:75:5a:78:5e:58:dc:4d:4d:58:6f: 45:9d:0c:6c:4b:04:69:72:cd:8a:ea:e7:ba:b3:05: e7:05:1e:ab:51:f5:5b:9e:38:00:25:14:2e:48:01: c3:a1:fd:2d:10:f0:91:e2:a4:46:6f:c0:c2:e0:85: 62:85:41:f0:08:d8:7d:34:e6:18:c2:15:aa:ee:b8: 54:3e:1e:69:83:8d:59:94:ac:dc:d1:ef:e2:0e:78: 5a:bd:a2:01:24:0e:cd:12:2b:9c:0d:00:90:6a:bf: 4e:23:b3:1f:cd:97:25:13:c8:e4:ba:d6:4d:ae:b9: 67:1c:84:d4:d0:e0:4a:71:74:ee:da:fe:8b:db:ac: b0:4c:52:83:ec:c1:cf:58:2e:64:67:a7:ab:da:cd: 67:55:60:b2:3d:49:8e:99:cd:5a:5e:ef:ec:28:41: e5:a2:08:64:12:c7:f1:2a:bc:1f:f9:a1:ac:a7:46: 34:22:fc:8d:f9:a6:38:08:b2:12:3d:3a:96:92:c0: 1e:9b:c7:37:b0:da:66:b9:04:fd:7a:cf:17:f2:d8: c3:45:a0:10:54:10:96:2a:c9:33:5c:7d:04:e2:af: 99:af:be:93:bc:e3:91:7a:76:a5:bb:ea:18:0b:8d: 0c:de:51:de:5f:ef:14:74:d0:50:b8:f5:5b:68:1a: 12:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:A6:8C:5C:CA:EB:2C:44:5D:7D:0F:1B:91:DB:A8:A6:24:DA:97:D0 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:db:60:00:97:5f:6f:aa:24:54:f3:3f:4f:40:43:9a:28:06: c9:c2:18:0f:b9:29:e8:08:2a:35:96:d0:9b:6a:e5:3f:1f:c7: 6b:ff:4f:69:72:b9:30:64:2d:0e:d6:ed:5a:e1:d9:bb:92:fc: f2:2f:17:cf:72:0f:f7:dc:a7:dc:95:68:46:01:73:9e:92:c7: 3d:ad:8a:bf:00:08:6e:02:01:94:32:fc:e1:3f:d5:65:39:42: 71:75:cd:bb:50:12:58:4b:af:73:8e:6d:91:76:78:c7:60:91: 47:00:ae:d2:fc:35:b6:4c:70:d6:3c:2e:5b:47:b8:8e:a0:b1: 1a:5a:8d:1f:25:52:1f:5f:3d:3a:00:1a:64:fe:01:fb:8b:30: ca:97:0e:e1:f9:19:47:84:45:ab:5a:cc:d1:e3:9e:3d:9d:75: e7:e6:f1:02:13:b8:9a:fb:3d:53:97:d5:88:52:40:be:42:de: df:37:51:59:a3:13:83:c8:43:87:ea:56:cc:cd:ba:2d:6a:24: b0:e1:03:57:a0:ee:cb:2b:07:78:55:90:21:a2:6b:b0:ec:6e: 58:3f:9e:6b:d8:98:3b:3f:85:dc:00:73:04:70:5d:ca:24:7b: b7:07:37:4c:08:6a:16:94:c3:45:18:5f:d2:73:7f:b8:3f:fb: 77:4a:b6:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUxMDE5MDUxMDE1WhcNMjUxMDI2MDUxMDE1WjAYMRYwFAYD VQQDEw02OGY0NzJiNy1iODY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFVoy3VaeF5Y3E1NWG9FnQxsSwRpcs2K6ue6swXnBR6rUfVbnjgAJRQuSAHD of0tEPCR4qRGb8DC4IVihUHwCNh9NOYYwhWq7rhUPh5pg41ZlKzc0e/iDnhavaIB JA7NEiucDQCQar9OI7MfzZclE8jkutZNrrlnHITU0OBKcXTu2v6L26ywTFKD7MHP WC5kZ6er2s1nVWCyPUmOmc1aXu/sKEHloghkEsfxKrwf+aGsp0Y0IvyN+aY4CLIS PTqWksAem8c3sNpmuQT9es8X8tjDRaAQVBCWKskzXH0E4q+Zr76TvOORenalu+oY C40M3lHeX+8UdNBQuPVbaBoSBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSmjFzK 6yxEXX0PG5HbqKYk2pfQMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp22AAl19vqiRU8z9PQEOaKAbJwhgPuSnoCCo1ltCbauU/H8dr/09p crkwZC0O1u1a4dm7kvzyLxfPcg/33KfclWhGAXOeksc9rYq/AAhuAgGUMvzhP9Vl OUJxdc27UBJYS69zjm2RdnjHYJFHAK7S/DW2THDWPC5bR7iOoLEaWo0fJVIfXz06 ABpk/gH7izDKlw7h+RlHhEWrWszR4549nXXn5vECE7ia+z1Tl9WIUkC+Qt7fN1FZ oxODyEOH6lbMzbotaiSw4QNXoO7LKwd4VZAhomuw7G5YP55r2Jg7P4XcAHMEcF3K JHu3BzdMCGoWlMNFGF/Sc3+4P/t3SraO -----END CERTIFICATE-----Generated at Sun Oct 19 23:29:13 2025 by rpki-client