$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft File: UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft (raw, json) Hash identifier: OZPbrIxEjxi4cZs3fm5AshwvoDPGjC0jTLTwMkwCuNw= Subject key identifier: B0:3E:7D:38:D6:F7:B2:C9:FE:29:7C:EB:87:F7:EB:E7:24:10:FE:D8 Authority key identifier: 50:3D:1B:F5:6B:22:29:B5:2A:A3:FF:68:53:46:99:F0:6F:D2:50:23 Certificate issuer: /CN=A91FBDDF/serialNumber=503D1BF56B2229B52AA3FF68534699F06FD25023 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft Manifest number: 0173 Signing time: Sun 19 Oct 2025 06:26:36 +0000 Manifest this update: Sun 19 Oct 2025 06:26:35 +0000 Manifest next update: Sun 26 Oct 2025 06:26:35 +0000 Files and hashes: 1: UD0b9WsiKbUqo_9oU0aZ8G_SUCM.crl (hash: i/lI7uwGp62gKvjGrWowZoaopdlTzeLUzxT9bMQNQXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.crl rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:26:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBDDF, serialNumber=503D1BF56B2229B52AA3FF68534699F06FD25023 Validity Not Before: Oct 19 06:26:35 2025 GMT Not After : Oct 26 06:26:35 2025 GMT Subject: CN=68f4849b-15ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:96:a1:fe:e2:08:36:06:25:3e:c2:7f:18:96: c7:0e:60:6d:63:4f:40:e3:59:34:6c:4d:f0:e8:66: 46:4b:7f:3b:5d:b7:3d:92:86:60:e0:c5:08:f0:df: e4:87:07:05:aa:d2:9e:1c:16:79:b7:a8:85:66:d1: 03:76:11:62:2a:9b:80:82:e6:f3:b9:cc:2c:0f:f5: 78:f1:2a:0c:3b:c9:f5:08:1d:8e:58:85:b0:ef:27: a8:1b:dc:c6:03:84:80:e9:7b:dc:e9:ec:df:fa:a5: cc:0b:f2:45:13:42:99:32:c1:1d:a9:a5:a2:4d:16: a7:0d:70:04:66:53:79:c9:0b:ca:e5:1d:eb:7c:fd: 7f:77:c5:1a:47:fa:3a:e1:53:22:8b:a6:db:2f:66: 1e:cc:f5:1c:06:5c:e9:b4:a5:f1:17:4d:da:92:e1: 42:67:07:03:ad:fc:e6:21:5b:47:ff:c7:4f:f7:13: 29:00:44:44:69:0e:5f:6c:e5:38:4f:88:19:8d:af: 54:b4:a7:76:28:6d:7e:5b:1e:9b:11:38:2a:47:55: 4d:a5:7d:8d:dd:b1:b4:d9:1d:0c:bd:bf:95:93:54: f4:3c:2d:b4:7d:34:d0:d6:2a:81:cc:6d:73:ac:21: d4:65:b3:6b:9a:f8:db:2c:8a:4a:0c:c4:21:c9:de: 92:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:3E:7D:38:D6:F7:B2:C9:FE:29:7C:EB:87:F7:EB:E7:24:10:FE:D8 X509v3 Authority Key Identifier: keyid:50:3D:1B:F5:6B:22:29:B5:2A:A3:FF:68:53:46:99:F0:6F:D2:50:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:51:c9:07:ba:53:17:f0:f2:b9:a5:d5:f5:b4:1c:cc:91:39: a3:d9:74:85:72:de:6d:71:2a:ce:95:88:ca:6d:b7:3f:c8:58: b8:e7:06:99:94:c8:fd:4d:04:b8:8a:74:e1:88:37:73:9a:9d: d4:01:29:c2:a7:df:d7:26:8c:6c:44:7a:65:86:d3:41:16:f9: 83:94:05:9b:a5:ab:f5:8e:d8:13:55:64:bd:a4:d2:67:5f:ec: a9:c6:2a:b3:38:fd:a9:f5:b7:a5:a2:d2:ee:f4:33:8c:b0:88: 0d:68:2c:b9:f3:9c:b6:6c:aa:c0:c0:d7:ba:09:fe:a4:37:b9: ed:6f:c4:95:dd:ec:e2:90:3c:5b:22:19:32:00:76:27:88:5a: 62:1e:9e:c1:72:81:72:c0:cd:c3:fe:87:39:b2:32:8d:e5:b3: 14:e4:d1:2c:85:38:58:2e:60:a1:7a:d0:d7:e4:cd:94:dc:e4: 33:70:fa:e0:d5:40:5e:4e:6a:71:df:7f:f0:3d:2d:dc:87:c3: bb:0e:3c:28:6d:5d:99:a1:5b:d3:eb:26:28:a5:4c:59:97:ed: 17:68:b9:7c:69:cd:d0:e5:f5:2c:4a:53:ff:dc:fc:77:24:cb: eb:5c:97:0b:4e:24:ca:9b:52:0f:6f:69:d1:22:e2:74:48:4a: 05:ce:5f:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEREYxMTAvBgNVBAUTKDUwM0QxQkY1NkIyMjI5QjUyQUEzRkY2ODUzNDY5OUYw NkZEMjUwMjMwHhcNMjUxMDE5MDYyNjM1WhcNMjUxMDI2MDYyNjM1WjAYMRYwFAYD VQQDEw02OGY0ODQ5Yi0xNWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJah/uIINgYlPsJ/GJbHDmBtY09A41k0bE3w6GZGS387Xbc9koZg4MUI8N/k hwcFqtKeHBZ5t6iFZtEDdhFiKpuAgubzucwsD/V48SoMO8n1CB2OWIWw7yeoG9zG A4SA6Xvc6ezf+qXMC/JFE0KZMsEdqaWiTRanDXAEZlN5yQvK5R3rfP1/d8UaR/o6 4VMii6bbL2YezPUcBlzptKXxF03akuFCZwcDrfzmIVtH/8dP9xMpAEREaQ5fbOU4 T4gZja9UtKd2KG1+Wx6bETgqR1VNpX2N3bG02R0Mvb+Vk1T0PC20fTTQ1iqBzG1z rCHUZbNrmvjbLIpKDMQhyd6SAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLA+fTjW 97LJ/il864f36+ckEP7YMB8GA1UdIwQYMBaAFFA9G/VrIim1KqP/aFNGmfBv0lAj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkRERi80NzVDNjRCRTcy NDUxMUVFQUEyOUVDNzRDNEY5QUUwMi9VRDBiOVdzaUtiVXFvXzlvVTBhWjhHX1NV Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VEMGI5V3NpS2JVcW9fOW9VMGFaOEdfU1VDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkRERi80NzVDNjRCRTcyNDUxMUVFQUEyOUVDNzRDNEY5QUUwMi9VRDBiOVdzaUti VXFvXzlvVTBhWjhHX1NVQ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcUckHulMX8PK5pdX1tBzMkTmj2XSFct5tcSrOlYjKbbc/yFi45waZ lMj9TQS4inThiDdzmp3UASnCp9/XJoxsRHplhtNBFvmDlAWbpav1jtgTVWS9pNJn X+ypxiqzOP2p9belotLu9DOMsIgNaCy585y2bKrAwNe6Cf6kN7ntb8SV3ezikDxb IhkyAHYniFpiHp7BcoFywM3D/oc5sjKN5bMU5NEshThYLmChetDX5M2U3OQzcPrg 1UBeTmpx33/wPS3ch8O7DjwobV2ZoVvT6yYopUxZl+0XaLl8ac3Q5fUsSlP/3Px3 JMvrXJcLTiTKm1IPb2nRIuJ0SEoFzl/0 -----END CERTIFICATE-----Generated at Mon Oct 20 12:43:07 2025 by rpki-client