$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft File: UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft (raw, json) Hash identifier: obeCy8ktM0zJjUGKl4G1xZv6ArcqTJebkaF7bhk9AYg= Subject key identifier: 9C:AB:BD:78:4B:17:19:36:4F:D9:C7:B3:2A:E3:7D:F3:23:6E:E0:40 Authority key identifier: 50:3D:1B:F5:6B:22:29:B5:2A:A3:FF:68:53:46:99:F0:6F:D2:50:23 Certificate issuer: /CN=A91FBDDF/serialNumber=503D1BF56B2229B52AA3FF68534699F06FD25023 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft Manifest number: 0156 Signing time: Sat 23 Aug 2025 04:14:33 +0000 Manifest this update: Sat 23 Aug 2025 04:14:33 +0000 Manifest next update: Sat 30 Aug 2025 04:14:33 +0000 Files and hashes: 1: UD0b9WsiKbUqo_9oU0aZ8G_SUCM.crl (hash: 6b8aQJn7IP+RNJXuS+cFQPnNVi5yxqHtZW8OGz0AKgg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.crl rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:14:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBDDF, serialNumber=503D1BF56B2229B52AA3FF68534699F06FD25023 Validity Not Before: Aug 23 04:14:33 2025 GMT Not After : Aug 30 04:14:33 2025 GMT Subject: CN=68a94029-40e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0f:dd:fd:e7:7b:12:71:16:3a:a0:98:bd:b2: 3d:91:b1:f0:37:0b:3f:6e:7c:ed:16:37:f6:cc:73: 9b:b5:a5:28:34:7d:bd:45:30:f3:38:fb:7b:59:01: d5:99:f2:67:fa:77:bd:9f:a7:2e:c9:cb:6d:30:d7: 38:72:89:41:43:cd:bb:dc:43:00:17:3b:a0:29:8f: cb:c3:ff:53:7c:2b:70:9c:a9:b4:e6:35:49:cb:06: 8b:39:7f:74:4d:50:4b:c7:6a:c5:a5:74:b2:94:92: b3:a5:7b:1e:31:45:65:d0:24:8c:ca:5e:33:6a:f9: 06:57:21:a1:86:15:5b:74:4f:94:69:a7:13:a6:50: 08:00:33:63:1f:3a:cc:93:91:d4:55:69:b1:e2:ae: 28:c5:4d:4b:26:f4:2e:49:b4:ea:ce:99:ad:f6:ee: 96:d4:c3:57:02:fc:99:c0:6a:7f:cd:16:09:39:5e: 31:dc:dd:20:37:ab:5c:1f:a1:b3:41:30:33:b9:2c: 7b:f0:08:0c:c4:d6:76:6c:41:b8:55:83:1b:4f:a2: 90:4d:19:b7:af:54:f7:ae:e0:7e:62:64:7f:88:72: 2a:57:f5:bf:53:c2:7e:a1:ef:4e:c5:65:c0:50:1a: c5:6c:67:13:12:11:ff:22:25:50:9f:32:76:41:94: 19:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:AB:BD:78:4B:17:19:36:4F:D9:C7:B3:2A:E3:7D:F3:23:6E:E0:40 X509v3 Authority Key Identifier: keyid:50:3D:1B:F5:6B:22:29:B5:2A:A3:FF:68:53:46:99:F0:6F:D2:50:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:57:7e:ba:5c:cf:8c:8f:2f:54:84:68:20:5e:54:06:bf:c7: bc:78:7b:eb:73:14:81:3c:1a:1d:3b:80:da:75:3a:2f:6e:38: 17:86:d8:07:ab:62:3f:18:c4:e3:d8:a3:12:62:31:c4:23:4f: 5b:50:dc:ba:a0:40:96:45:e6:be:72:6b:5f:5a:76:76:79:e5: 17:2f:71:37:b9:5b:8d:24:db:1d:2a:3f:23:e5:ac:50:de:b0: 3a:3f:b7:3c:ff:d1:3c:fa:b0:2b:59:8c:05:82:50:4f:df:0c: 5b:38:3e:e2:fb:9a:b8:1a:83:a2:08:90:1c:ad:ba:69:9c:8e: 92:4b:e6:cb:ec:fd:1b:b1:67:e2:d2:7d:61:97:a8:05:72:b0: d4:be:a8:f0:fa:ca:a2:8b:52:f1:96:39:72:b3:4b:ca:b9:8c: 45:e1:d7:fd:44:6a:8a:40:23:1a:ef:0f:db:75:c1:1e:a3:e3: 00:7c:11:9b:0d:05:c2:c5:ef:b0:f5:11:db:ec:ca:6d:8b:f2: ec:38:fd:c4:e9:47:c2:67:e0:4d:87:cf:3f:22:2a:34:55:bf: c3:17:51:27:2a:de:1d:e8:3a:6a:d5:dd:5d:34:b1:b8:25:ea: 66:84:57:5b:ed:b5:0f:7e:d7:b9:99:a7:69:02:81:7d:fe:54: 12:52:7c:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEREYxMTAvBgNVBAUTKDUwM0QxQkY1NkIyMjI5QjUyQUEzRkY2ODUzNDY5OUYw NkZEMjUwMjMwHhcNMjUwODIzMDQxNDMzWhcNMjUwODMwMDQxNDMzWjAYMRYwFAYD VQQDEw02OGE5NDAyOS00MGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsw/d/ed7EnEWOqCYvbI9kbHwNws/bnztFjf2zHObtaUoNH29RTDzOPt7WQHV mfJn+ne9n6cuycttMNc4colBQ8273EMAFzugKY/Lw/9TfCtwnKm05jVJywaLOX90 TVBLx2rFpXSylJKzpXseMUVl0CSMyl4zavkGVyGhhhVbdE+UaacTplAIADNjHzrM k5HUVWmx4q4oxU1LJvQuSbTqzpmt9u6W1MNXAvyZwGp/zRYJOV4x3N0gN6tcH6Gz QTAzuSx78AgMxNZ2bEG4VYMbT6KQTRm3r1T3ruB+YmR/iHIqV/W/U8J+oe9OxWXA UBrFbGcTEhH/IiVQnzJ2QZQZCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJyrvXhL Fxk2T9nHsyrjffMjbuBAMB8GA1UdIwQYMBaAFFA9G/VrIim1KqP/aFNGmfBv0lAj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkRERi80NzVDNjRCRTcy NDUxMUVFQUEyOUVDNzRDNEY5QUUwMi9VRDBiOVdzaUtiVXFvXzlvVTBhWjhHX1NV Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VEMGI5V3NpS2JVcW9fOW9VMGFaOEdfU1VDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkRERi80NzVDNjRCRTcyNDUxMUVFQUEyOUVDNzRDNEY5QUUwMi9VRDBiOVdzaUti VXFvXzlvVTBhWjhHX1NVQ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIV366XM+Mjy9UhGggXlQGv8e8eHvrcxSBPBodO4DadTovbjgXhtgH q2I/GMTj2KMSYjHEI09bUNy6oECWRea+cmtfWnZ2eeUXL3E3uVuNJNsdKj8j5axQ 3rA6P7c8/9E8+rArWYwFglBP3wxbOD7i+5q4GoOiCJAcrbppnI6SS+bL7P0bsWfi 0n1hl6gFcrDUvqjw+sqii1Lxljlys0vKuYxF4df9RGqKQCMa7w/bdcEeo+MAfBGb DQXCxe+w9RHb7Mpti/LsOP3E6UfCZ+BNh88/Iio0Vb/DF1EnKt4d6Dpq1d1dNLG4 JepmhFdb7bUPfte5madpAoF9/lQSUnxn -----END CERTIFICATE-----Generated at Sun Aug 24 03:13:08 2025 by rpki-client