$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: HlAxqo+51IJRE2oVrRt3C9UtfEKIa6u8U/WqQjyhA20= Subject key identifier: 74:46:ED:29:53:1E:1F:2A:BD:5A:B5:A8:4C:D1:76:38:07:FB:80:61 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 0187 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 0183 Signing time: Fri 25 Apr 2025 02:48:12 +0000 Manifest this update: Fri 25 Apr 2025 02:48:11 +0000 Manifest next update: Fri 02 May 2025 02:48:11 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: LkPsmNpKCRYN2QDg6fM2/WL+P1sonKP3chOmWoITRMw=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: 3TVSr4533KCeTr9n4si0My+MCE5XOLUQ499rzcPilqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:48:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Apr 25 02:48:11 2025 GMT Not After : May 2 02:48:11 2025 GMT Subject: CN=680af7ec-1610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:6c:0c:86:f8:e5:12:f1:67:1c:5e:94:2f:b2: ea:c4:72:ca:d4:8d:27:76:89:05:c9:97:85:69:e5: 43:d8:94:40:94:8e:c6:c9:c8:da:fd:0e:95:c2:0e: 39:d7:b5:ac:d8:7d:d8:3c:96:45:b6:16:5a:db:c2: a5:b1:5e:5e:26:c2:5b:d2:e2:81:1a:55:30:16:75: 19:5d:73:4b:f2:c6:6f:91:75:a7:7f:6c:4b:41:ad: 2d:48:9b:2e:b7:94:7a:cb:94:e9:27:ab:a3:99:7b: 95:ac:44:a7:b9:3b:81:d4:99:9a:24:fc:d4:f1:7b: 89:c7:0c:19:b9:3b:07:e7:55:56:2e:3c:57:87:37: f9:fd:84:a5:99:a2:14:cc:33:a0:b7:b3:f4:b0:01: 12:19:9f:01:17:d8:f5:16:64:0d:bd:64:78:8e:60: 92:f2:d0:f3:e4:8b:37:57:65:71:c7:77:9c:91:05: 5e:2c:8c:ba:1d:18:0f:9e:fa:a1:0d:61:00:98:a4: 3d:f2:5f:23:a2:52:dc:18:fa:2c:56:49:94:75:d0: ce:24:1e:12:97:10:77:6a:90:7d:8c:4b:e2:ea:0c: cd:cb:f9:5d:23:4a:f9:e8:59:2f:15:72:ea:66:e1: 96:52:ff:0e:0f:ac:2f:3b:18:d3:1c:9c:96:fd:02: 0f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:46:ED:29:53:1E:1F:2A:BD:5A:B5:A8:4C:D1:76:38:07:FB:80:61 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:6e:ae:c1:b8:14:d8:e9:3d:36:da:ef:ad:12:ca:0a:e2:64: 9a:74:b7:2e:ff:26:10:84:21:ed:8c:b2:89:01:9f:07:d1:c5: 24:46:5e:6a:0f:07:bc:28:e9:fb:77:03:f1:4e:fe:53:6e:6d: 77:57:dc:6a:ed:f9:c1:ef:d8:91:63:01:57:fb:65:ef:43:23: b0:02:a5:81:03:31:44:d2:c9:ec:47:8e:84:b2:af:3d:46:25: f1:03:f7:c3:a0:06:0f:af:4b:e7:3e:a7:9e:55:bd:44:39:2e: 38:67:80:30:70:3b:78:03:82:38:ac:c7:ea:dd:cf:ae:04:96: 12:09:f9:d9:70:75:a5:af:2a:1e:af:2b:ff:eb:04:c6:69:de: f7:d5:99:36:d7:38:04:9e:14:f0:0d:90:7a:30:3b:db:c1:96: 1a:18:c6:a2:02:80:2f:b3:5e:28:ac:2a:b7:8a:c8:45:79:48: 58:11:2a:30:dd:18:9c:90:16:5f:49:37:94:b0:61:7d:50:0a: 2f:db:15:d1:60:8f:5a:c4:17:a1:e2:b9:a9:52:96:2b:31:44: 1d:76:7a:13:84:8b:88:87:a8:33:e1:96:97:2e:13:03:6a:47: 75:ce:e1:c2:fd:42:ed:7d:15:fb:63:06:48:58:bf:f8:1a:79: ae:47:5e:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUwNDI1MDI0ODExWhcNMjUwNTAyMDI0ODExWjAYMRYwFAYD VQQDEw02ODBhZjdlYy0xNjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6WwMhvjlEvFnHF6UL7LqxHLK1I0ndokFyZeFaeVD2JRAlI7Gycja/Q6Vwg45 17Ws2H3YPJZFthZa28KlsV5eJsJb0uKBGlUwFnUZXXNL8sZvkXWnf2xLQa0tSJsu t5R6y5TpJ6ujmXuVrESnuTuB1JmaJPzU8XuJxwwZuTsH51VWLjxXhzf5/YSlmaIU zDOgt7P0sAESGZ8BF9j1FmQNvWR4jmCS8tDz5Is3V2Vxx3eckQVeLIy6HRgPnvqh DWEAmKQ98l8jolLcGPosVkmUddDOJB4SlxB3apB9jEvi6gzNy/ldI0r56FkvFXLq ZuGWUv8OD6wvOxjTHJyW/QIPFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRG7SlT Hh8qvVq1qEzRdjgH+4BhMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqbq7BuBTY6T022u+tEsoK4mSadLcu/yYQhCHtjLKJAZ8H0cUkRl5q Dwe8KOn7dwPxTv5Tbm13V9xq7fnB79iRYwFX+2XvQyOwAqWBAzFE0snsR46Esq89 RiXxA/fDoAYPr0vnPqeeVb1EOS44Z4AwcDt4A4I4rMfq3c+uBJYSCfnZcHWlryoe ryv/6wTGad731Zk21zgEnhTwDZB6MDvbwZYaGMaiAoAvs14orCq3ishFeUhYESow 3RickBZfSTeUsGF9UAov2xXRYI9axBeh4rmpUpYrMUQddnoThIuIh6gz4ZaXLhMD akd1zuHC/ULtfRX7YwZIWL/4GnmuR15m -----END CERTIFICATE-----Generated at Sat Apr 26 13:01:18 2025 by rpki-client