$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft File: UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft (raw, json) Hash identifier: T4bZd+y8umg5PJyqcq7tS7Oed1TfltEDufI9aj9yHtk= Subject key identifier: 61:A2:5E:FF:FF:27:13:8E:CA:EF:1A:A5:0F:9C:91:90:D1:E2:EB:1F Authority key identifier: 50:3D:1B:F5:6B:22:29:B5:2A:A3:FF:68:53:46:99:F0:6F:D2:50:23 Certificate issuer: /CN=A91FBDDF/serialNumber=503D1BF56B2229B52AA3FF68534699F06FD25023 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft Manifest number: 013C Signing time: Thu 03 Jul 2025 04:30:07 +0000 Manifest this update: Thu 03 Jul 2025 04:30:06 +0000 Manifest next update: Thu 10 Jul 2025 04:30:06 +0000 Files and hashes: 1: UD0b9WsiKbUqo_9oU0aZ8G_SUCM.crl (hash: FDvbK4fHpyNiqNLlJ9SdQ1RIFWt3YDdbvgzBsW4dL/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.crl rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBDDF, serialNumber=503D1BF56B2229B52AA3FF68534699F06FD25023 Validity Not Before: Jul 3 04:30:06 2025 GMT Not After : Jul 10 04:30:06 2025 GMT Subject: CN=6866074e-5d1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:89:35:cd:42:7d:10:d8:ab:51:0b:c6:96:c3: 85:d8:01:78:02:a5:9b:6c:34:7b:57:fe:75:46:6d: 9d:95:5f:12:31:12:eb:ed:62:96:de:ad:45:fb:a0: 18:48:3b:52:32:04:58:76:18:ea:ae:64:1d:40:2d: e8:bd:81:3e:63:e5:01:26:b9:b2:d3:27:02:72:97: 19:f2:4b:c1:6a:73:49:8b:26:f4:0f:24:7b:74:22: 49:89:6c:50:b5:c7:f6:b0:ba:f5:ec:48:6e:54:69: 23:43:20:39:bb:bc:6b:3f:0a:f7:c6:7e:f7:b7:51: 2d:17:cf:e6:61:f5:04:b8:f1:18:07:49:df:05:24: 4b:84:be:17:f8:16:d2:c0:e9:03:27:0a:7c:5b:7b: a3:2d:28:ba:3b:de:93:0d:4e:43:80:8f:51:3e:53: 30:de:58:3a:09:69:63:7b:30:bc:06:b3:5a:99:01: 70:39:2d:2a:ea:6b:22:5c:23:6c:13:8f:27:a4:58: 38:ae:9f:26:ae:b4:84:39:f8:cc:20:3b:c1:9e:0f: b2:9f:7d:dc:42:31:df:ae:18:08:8b:99:1e:26:f2: c9:74:0d:b1:e3:ef:80:39:9e:3b:38:ab:7f:ba:84: dd:2c:03:52:43:de:7d:6b:f1:91:e1:d7:3d:e6:4e: 39:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:A2:5E:FF:FF:27:13:8E:CA:EF:1A:A5:0F:9C:91:90:D1:E2:EB:1F X509v3 Authority Key Identifier: keyid:50:3D:1B:F5:6B:22:29:B5:2A:A3:FF:68:53:46:99:F0:6F:D2:50:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:59:11:9e:66:63:7e:3f:a9:4a:f7:92:2a:16:80:04:2e:0d: 22:c3:53:97:89:b1:c8:61:76:72:e0:85:02:8c:7b:85:6b:40: 0e:f3:ac:58:41:a2:c1:b0:36:84:d5:f8:f2:74:ac:ed:4e:9c: 7e:48:f9:53:6e:ed:32:f3:9e:8e:83:10:66:0f:b7:20:33:1c: 89:7f:b1:6c:ba:24:6a:48:d8:1b:88:47:61:83:00:5c:87:42: a0:75:83:af:43:07:f5:fa:fd:6c:57:10:ec:3a:5d:b0:55:4c: 12:81:0d:09:55:43:7f:c5:2b:75:12:04:54:af:d8:00:6e:58: 31:df:3b:0e:0d:e8:ed:96:b7:d2:cb:62:94:bc:cd:0a:d9:ff: d5:e0:03:8f:9d:23:71:c6:a5:1a:8a:fb:66:db:89:59:64:20: 36:35:92:5d:09:de:14:3e:e8:48:2b:72:35:44:31:2e:d2:f2: dc:4e:75:37:2d:d9:b2:da:82:66:1d:7c:06:1e:08:6f:d0:59: d1:d3:28:08:68:59:bd:6f:be:88:07:66:20:2c:fd:5b:5b:0a: fd:8b:31:70:78:bc:46:77:07:99:27:9d:de:04:cf:23:78:eb: ff:0e:e6:5b:ae:e0:06:bf:6e:f9:48:27:f0:94:ed:ae:d4:54: 68:f9:8d:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEREYxMTAvBgNVBAUTKDUwM0QxQkY1NkIyMjI5QjUyQUEzRkY2ODUzNDY5OUYw NkZEMjUwMjMwHhcNMjUwNzAzMDQzMDA2WhcNMjUwNzEwMDQzMDA2WjAYMRYwFAYD VQQDEw02ODY2MDc0ZS01ZDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtok1zUJ9ENirUQvGlsOF2AF4AqWbbDR7V/51Rm2dlV8SMRLr7WKW3q1F+6AY SDtSMgRYdhjqrmQdQC3ovYE+Y+UBJrmy0ycCcpcZ8kvBanNJiyb0DyR7dCJJiWxQ tcf2sLr17EhuVGkjQyA5u7xrPwr3xn73t1EtF8/mYfUEuPEYB0nfBSRLhL4X+BbS wOkDJwp8W3ujLSi6O96TDU5DgI9RPlMw3lg6CWljezC8BrNamQFwOS0q6msiXCNs E48npFg4rp8mrrSEOfjMIDvBng+yn33cQjHfrhgIi5keJvLJdA2x4++AOZ47OKt/ uoTdLANSQ959a/GR4dc95k45VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGiXv// JxOOyu8apQ+ckZDR4usfMB8GA1UdIwQYMBaAFFA9G/VrIim1KqP/aFNGmfBv0lAj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkRERi80NzVDNjRCRTcy NDUxMUVFQUEyOUVDNzRDNEY5QUUwMi9VRDBiOVdzaUtiVXFvXzlvVTBhWjhHX1NV Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VEMGI5V3NpS2JVcW9fOW9VMGFaOEdfU1VDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkRERi80NzVDNjRCRTcyNDUxMUVFQUEyOUVDNzRDNEY5QUUwMi9VRDBiOVdzaUti VXFvXzlvVTBhWjhHX1NVQ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvWRGeZmN+P6lK95IqFoAELg0iw1OXibHIYXZy4IUCjHuFa0AO86xY QaLBsDaE1fjydKztTpx+SPlTbu0y856OgxBmD7cgMxyJf7FsuiRqSNgbiEdhgwBc h0KgdYOvQwf1+v1sVxDsOl2wVUwSgQ0JVUN/xSt1EgRUr9gAblgx3zsODejtlrfS y2KUvM0K2f/V4AOPnSNxxqUaivtm24lZZCA2NZJdCd4UPuhIK3I1RDEu0vLcTnU3 Ldmy2oJmHXwGHghv0FnR0ygIaFm9b76IB2YgLP1bWwr9izFweLxGdweZJ53eBM8j eOv/DuZbruAGv275SCfwlO2u1FRo+Y3v -----END CERTIFICATE-----Generated at Thu Jul 3 13:51:30 2025 by rpki-client