$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: IlI7221+fJsvk624qdeIF22JptGuRGPwql+3sol+R+I= Subject key identifier: 75:9F:AC:07:92:13:9E:6F:1B:A1:A5:8C:B4:C7:93:B5:94:2B:D9:C5 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 01C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 01C1 Signing time: Sat 23 Aug 2025 03:08:23 +0000 Manifest this update: Sat 23 Aug 2025 03:08:22 +0000 Manifest next update: Sat 30 Aug 2025 03:08:22 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: bUKr0OVi46v/ivsW3bOQQeaTBrbzzcEPxMKRFadSGuw=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: tmK0iDwld+e+aTJhpXj4A3zlzhe3/irDCWSZWb2ca9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:08:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Aug 23 03:08:22 2025 GMT Not After : Aug 30 03:08:22 2025 GMT Subject: CN=68a930a6-b583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:18:5e:73:d7:bc:d5:5a:99:86:37:3f:a4:9a: 50:10:80:ad:aa:9b:43:81:16:91:12:50:ec:42:56: 65:34:2f:dd:89:00:4f:41:f7:04:fb:01:21:36:42: bd:0e:1e:a2:5b:da:6a:1d:c5:f6:cd:f3:94:9f:5e: 73:6f:34:5c:80:5c:d9:47:3a:80:e6:d0:53:20:12: 40:36:b9:56:7a:00:0b:72:f6:38:f7:b9:5a:e4:ea: 0b:ad:f9:68:f0:a4:11:02:d4:9a:76:50:d2:89:0d: f2:21:ed:6f:5a:79:2a:84:1e:4b:43:89:24:f2:fa: d5:7a:14:70:2b:08:1b:d3:aa:43:5f:fe:32:c1:cf: d7:85:c4:f3:2d:ae:a7:31:cf:e0:ac:db:c2:b1:c7: 05:cf:ce:5e:cc:f9:7c:f2:12:9a:4f:2c:f6:2c:3a: b2:c8:c6:78:53:36:06:96:dd:73:4b:b3:42:ed:51: 18:71:0f:66:b3:ae:6f:31:69:04:f0:bd:2d:07:ab: c8:2b:00:b6:26:2f:6b:31:39:4f:96:19:c7:95:b4: 57:ea:63:19:65:6d:2d:44:31:51:93:55:fd:a2:59: 3b:f2:9a:9c:89:8e:11:60:44:46:3c:ab:f7:7d:76: 48:d4:80:1f:c2:d9:89:61:5f:3f:dd:82:62:ce:ec: d6:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:9F:AC:07:92:13:9E:6F:1B:A1:A5:8C:B4:C7:93:B5:94:2B:D9:C5 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:58:48:02:d5:91:04:99:9f:05:43:f0:5c:a9:d2:45:d5:da: f9:5d:e3:ca:0f:68:00:fb:c9:1b:58:5c:99:a5:43:cf:42:81: 48:ae:c2:f5:ae:0b:15:26:65:22:6c:80:84:08:3c:f6:49:33: 5e:9f:c3:43:ab:81:0d:b4:66:8b:99:82:fb:5d:d8:3c:2b:7d: 0f:84:28:79:e8:36:77:c6:46:81:52:e7:45:b7:65:a2:4f:bd: f0:b7:d5:be:86:54:f7:93:55:46:32:13:7f:19:80:0c:18:97: 82:a1:fa:4d:7c:1d:0e:23:26:46:70:14:8d:6b:74:b0:58:c6: d4:1f:fa:ce:89:b2:fa:aa:b1:00:56:0a:71:ad:e3:a1:0f:be: 11:24:4e:3d:7c:ac:08:0b:b1:bf:d7:bf:9a:75:1a:a2:fe:55: 91:87:83:47:c0:09:ed:b7:c8:6a:10:3a:de:36:21:15:30:c1: 9d:37:04:ac:46:b1:0f:0c:a5:92:58:03:7f:64:f2:87:23:de: 0e:1d:b3:25:b9:16:89:59:87:7c:9e:45:d8:92:19:1b:71:23: be:7f:90:f7:a7:50:28:19:bc:82:e9:28:59:80:8c:a9:91:c5: b7:40:30:97:ef:98:3a:45:bf:90:ca:10:49:29:b3:12:38:a4: 78:d1:0d:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUwODIzMDMwODIyWhcNMjUwODMwMDMwODIyWjAYMRYwFAYD VQQDEw02OGE5MzBhNi1iNTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Bhec9e81VqZhjc/pJpQEICtqptDgRaRElDsQlZlNC/diQBPQfcE+wEhNkK9 Dh6iW9pqHcX2zfOUn15zbzRcgFzZRzqA5tBTIBJANrlWegALcvY497la5OoLrflo 8KQRAtSadlDSiQ3yIe1vWnkqhB5LQ4kk8vrVehRwKwgb06pDX/4ywc/XhcTzLa6n Mc/grNvCsccFz85ezPl88hKaTyz2LDqyyMZ4UzYGlt1zS7NC7VEYcQ9ms65vMWkE 8L0tB6vIKwC2Ji9rMTlPlhnHlbRX6mMZZW0tRDFRk1X9olk78pqciY4RYERGPKv3 fXZI1IAfwtmJYV8/3YJizuzW3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWfrAeS E55vG6GljLTHk7WUK9nFMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFWEgC1ZEEmZ8FQ/BcqdJF1dr5XePKD2gA+8kbWFyZpUPPQoFIrsL1 rgsVJmUibICECDz2STNen8NDq4ENtGaLmYL7Xdg8K30PhCh56DZ3xkaBUudFt2Wi T73wt9W+hlT3k1VGMhN/GYAMGJeCofpNfB0OIyZGcBSNa3SwWMbUH/rOibL6qrEA VgpxreOhD74RJE49fKwIC7G/17+adRqi/lWRh4NHwAntt8hqEDreNiEVMMGdNwSs RrEPDKWSWAN/ZPKHI94OHbMluRaJWYd8nkXYkhkbcSO+f5D3p1AoGbyC6ShZgIyp kcW3QDCX75g6Rb+QyhBJKbMSOKR40Q1w -----END CERTIFICATE-----Generated at Sat Aug 23 16:44:26 2025 by rpki-client