$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: JQNyzkCkktsEe8g2W8l6cz53ZX1m7uUByC6g276UO6Q= Subject key identifier: 7D:A8:F8:A2:98:62:E1:B3:BC:7F:74:7F:13:73:90:43:1A:B6:2A:20 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 01BC Signing time: Wed 13 Aug 2025 03:32:32 +0000 Manifest this update: Wed 13 Aug 2025 03:32:31 +0000 Manifest next update: Wed 20 Aug 2025 03:32:31 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: LLttyaz9m/lo2NvKSuhqCROYUmAGI3dXOCE5hrDn8JE=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: tmK0iDwld+e+aTJhpXj4A3zlzhe3/irDCWSZWb2ca9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 03:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Aug 13 03:32:31 2025 GMT Not After : Aug 20 03:32:31 2025 GMT Subject: CN=689c074f-0963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e3:9e:21:5e:af:bc:4d:3c:04:f7:96:48:61: 7e:50:eb:e3:d0:38:14:df:c9:56:10:3c:61:2e:23: ae:d2:ec:1c:31:27:94:69:07:bd:e1:b0:ce:78:89: fd:e5:52:d6:db:b0:88:c1:e2:bf:f4:fe:d3:a3:72: e2:55:0a:12:9d:ab:90:5c:fc:1e:61:b3:ca:5f:a3: 6a:ac:78:a1:df:40:1b:ff:ad:b1:b8:6f:ff:7c:14: ca:d3:26:ea:ca:0f:af:0b:6f:a9:52:66:77:de:c9: fb:b4:35:f3:c0:bd:c2:cb:60:d8:a7:1f:62:e0:98: 9c:48:1e:27:c4:97:b7:bb:4e:15:e0:e8:76:f4:72: 5a:09:96:f2:f7:90:5c:fc:ad:9a:7f:c5:09:5d:a2: eb:f1:04:1f:c7:6d:05:9a:5e:1e:ab:b8:dd:d7:36: 1c:40:aa:e2:cf:1c:b0:46:8c:c3:d7:6b:f2:99:28: e8:13:66:fa:fd:77:85:f0:a1:9d:31:3d:43:40:b8: a1:8c:0b:d3:f9:75:18:ea:37:8a:be:5d:02:b9:ed: 20:4f:7f:f4:b0:f6:e9:65:8f:1b:12:03:a2:6d:dc: af:6e:26:e2:85:c5:62:65:d7:dc:06:a5:ee:8b:33: 84:b0:3a:2a:9a:eb:c4:e3:1c:2a:af:4e:bf:11:83: 9a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A8:F8:A2:98:62:E1:B3:BC:7F:74:7F:13:73:90:43:1A:B6:2A:20 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:53:7a:eb:14:a6:e0:2b:d5:24:99:f9:4b:26:b3:25:bd:b9: 46:28:0e:1b:9d:e8:4c:98:11:09:67:18:8e:4f:20:2e:93:b5: 55:f0:4b:dc:9b:d9:c5:c3:d9:71:bd:2f:0f:70:0a:12:44:db: 21:65:7f:86:17:d0:9e:06:ab:60:50:33:a4:75:c4:3d:4f:52: e7:24:67:60:ee:43:46:af:a1:c7:45:8b:1c:34:fc:17:97:14: 03:8e:30:56:c3:fc:62:7d:f6:fa:d8:71:5d:02:3b:ca:49:c6: 82:d9:a7:cf:61:16:fe:f3:f2:9e:66:b4:12:a1:99:b5:07:2e: e2:0c:a3:cc:8c:ae:a8:99:2e:60:e7:bf:23:3f:55:eb:78:9a: a6:51:84:81:3a:1c:01:2b:03:dd:ef:18:dd:7d:ad:52:d5:cc: e3:e0:ec:2a:e0:82:3d:5a:c7:87:6a:54:4b:4d:fc:89:0c:40: 00:d2:63:bf:e6:63:d6:e0:3a:3a:b4:3c:c3:03:49:3e:fa:0c: f2:43:9a:7f:bb:c1:87:87:1d:e1:32:7a:2f:2c:6a:26:3c:5d: 88:c2:36:13:a2:be:19:27:2a:1b:60:02:99:7c:e8:86:c8:8d: 53:a5:cc:13:11:d6:bc:e1:6c:80:bf:a6:46:e4:2f:eb:93:8a: 00:63:ae:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUwODEzMDMzMjMxWhcNMjUwODIwMDMzMjMxWjAYMRYwFAYD VQQDEw02ODljMDc0Zi0wOTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuOeIV6vvE08BPeWSGF+UOvj0DgU38lWEDxhLiOu0uwcMSeUaQe94bDOeIn9 5VLW27CIweK/9P7To3LiVQoSnauQXPweYbPKX6NqrHih30Ab/62xuG//fBTK0ybq yg+vC2+pUmZ33sn7tDXzwL3Cy2DYpx9i4JicSB4nxJe3u04V4Oh29HJaCZby95Bc /K2af8UJXaLr8QQfx20Fml4eq7jd1zYcQKrizxywRozD12vymSjoE2b6/XeF8KGd MT1DQLihjAvT+XUY6jeKvl0Cue0gT3/0sPbpZY8bEgOibdyvbibihcViZdfcBqXu izOEsDoqmuvE4xwqr06/EYOavwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2o+KKY YuGzvH90fxNzkEMatiogMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfU3rrFKbgK9UkmflLJrMlvblGKA4bnehMmBEJZxiOTyAuk7VV8Evc m9nFw9lxvS8PcAoSRNshZX+GF9CeBqtgUDOkdcQ9T1LnJGdg7kNGr6HHRYscNPwX lxQDjjBWw/xiffb62HFdAjvKScaC2afPYRb+8/KeZrQSoZm1By7iDKPMjK6omS5g 578jP1XreJqmUYSBOhwBKwPd7xjdfa1S1czj4Owq4II9WseHalRLTfyJDEAA0mO/ 5mPW4Do6tDzDA0k++gzyQ5p/u8GHhx3hMnovLGomPF2IwjYTor4ZJyobYAKZfOiG yI1TpcwTEda84WyAv6ZG5C/rk4oAY67Y -----END CERTIFICATE-----Generated at Wed Aug 13 08:47:08 2025 by rpki-client