$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: pzyujbJXru6PVbuZYqWAvkkiMQG2jd/EvwPzecqaH48= Subject key identifier: C0:15:5D:72:4A:55:28:E4:CE:B8:D3:56:69:2C:E6:70:61:8B:02:4D Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 034E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 0348 Signing time: Sat 19 Jul 2025 01:27:08 +0000 Manifest this update: Sat 19 Jul 2025 01:27:07 +0000 Manifest next update: Sat 26 Jul 2025 01:27:07 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: 4ffm3ciRV5KOoXerVbE8rTM0oIShsb1+cMYZoo0UUKc=) 2: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: hQOYHlCjx2ScuN+oMwFJ/ejTbPq4orU4F7qi3kUTHdM=) 3: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: 7Gmx6aG6mVa6tW4ZmRdx25+Dm056uxm4nK4BIHzJbm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:27:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 846 (0x34e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71, serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: Jul 19 01:27:07 2025 GMT Not After : Jul 26 01:27:07 2025 GMT Subject: CN=687af46c-e5cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:db:64:90:82:79:fa:de:68:7f:74:f8:be:b5: 85:7b:01:6e:41:29:74:8e:7d:a0:a9:0f:dc:13:76: d0:c9:f4:c3:42:fb:7c:b3:5b:f1:1d:11:2c:7a:a1: ac:65:e0:30:c7:30:2e:69:55:a8:6c:86:07:c8:50: 81:ae:99:25:18:db:47:bc:24:d0:ce:56:60:89:ef: e1:f9:d3:08:76:d9:1e:7a:a2:98:be:8b:8c:32:5f: d5:e7:0a:35:f0:c7:0a:55:6d:20:a9:c5:e2:df:6c: 91:57:d2:e0:90:30:e0:6c:ff:fe:48:14:3c:83:bf: 2b:13:44:fa:70:5d:e9:b3:9a:b1:51:15:3a:7b:bc: 07:8c:33:c0:ec:21:97:3e:e2:fd:ef:bc:36:cd:12: 67:a9:c9:37:0b:87:59:d8:75:ee:fb:0f:29:fa:11: 84:8c:d7:4e:2f:35:89:57:7c:54:83:52:6d:57:17: 1d:c0:55:81:3d:d3:ff:2c:c5:4e:b5:57:b5:35:be: 54:00:76:4e:77:8a:6e:9e:c3:7b:45:78:df:8d:e8: 01:f9:8b:ae:56:28:11:2c:7a:5f:83:34:20:b6:e3: da:34:39:dc:9e:a8:aa:e9:f5:17:2c:da:a6:1b:e7: d8:db:2f:d4:fa:f1:58:3b:67:bb:8f:ee:e0:6c:8e: 95:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:15:5D:72:4A:55:28:E4:CE:B8:D3:56:69:2C:E6:70:61:8B:02:4D X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:7c:c6:2d:ed:39:29:7f:fa:e9:d2:d1:14:cd:7d:ca:23:ae: 6e:73:a1:83:a5:be:40:f3:0b:93:76:f6:fd:82:7f:e0:22:81: 69:54:56:9a:03:7a:0a:43:35:3e:8b:89:75:1b:fe:14:ae:eb: 70:b3:5a:1a:95:36:ed:47:ee:f1:55:cf:b2:6c:b4:55:2d:74: e5:0d:f9:90:ec:a9:2f:8a:b9:b0:34:c4:38:a0:fb:2a:db:02: 06:dc:a5:a6:42:e3:6b:80:99:f8:d8:4e:0f:21:4f:0b:e6:d0: 17:81:12:09:bd:33:f1:30:63:99:b1:f2:27:2f:1f:9e:1f:22: f6:78:68:95:a6:25:78:ec:da:38:8f:65:e1:1c:50:6a:09:69: 19:50:57:bc:67:05:38:7b:67:56:cf:af:90:1b:10:80:0e:77: 40:54:a5:58:84:cb:30:28:fd:46:36:c5:5b:ef:31:28:03:e9: f8:76:2e:7f:2b:99:c2:41:14:9e:7b:59:35:96:38:f0:ec:a0: 83:c1:07:a0:09:ca:79:2f:05:fd:e7:1a:28:86:90:69:57:bb: 1d:19:51:6d:20:1e:f3:c1:1a:fa:68:ad:7c:63:cf:4b:16:ad: be:8f:fe:67:99:e7:57:c0:50:37:b0:48:2a:24:55:4e:af:da: 3d:10:88:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjUwNzE5MDEyNzA3WhcNMjUwNzI2MDEyNzA3WjAYMRYwFAYD VQQDEw02ODdhZjQ2Yy1lNWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ttkkIJ5+t5of3T4vrWFewFuQSl0jn2gqQ/cE3bQyfTDQvt8s1vxHREseqGs ZeAwxzAuaVWobIYHyFCBrpklGNtHvCTQzlZgie/h+dMIdtkeeqKYvouMMl/V5wo1 8McKVW0gqcXi32yRV9LgkDDgbP/+SBQ8g78rE0T6cF3ps5qxURU6e7wHjDPA7CGX PuL977w2zRJnqck3C4dZ2HXu+w8p+hGEjNdOLzWJV3xUg1JtVxcdwFWBPdP/LMVO tVe1Nb5UAHZOd4punsN7RXjfjegB+YuuVigRLHpfgzQgtuPaNDncnqiq6fUXLNqm G+fY2y/U+vFYO2e7j+7gbI6VDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMAVXXJK VSjkzrjTVmks5nBhiwJNMB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYfMYt7Tkpf/rp0tEUzX3KI65uc6GDpb5A8wuTdvb9gn/gIoFpVFaa A3oKQzU+i4l1G/4Urutws1oalTbtR+7xVc+ybLRVLXTlDfmQ7KkvirmwNMQ4oPsq 2wIG3KWmQuNrgJn42E4PIU8L5tAXgRIJvTPxMGOZsfInLx+eHyL2eGiVpiV47No4 j2XhHFBqCWkZUFe8ZwU4e2dWz6+QGxCADndAVKVYhMswKP1GNsVb7zEoA+n4di5/ K5nCQRSee1k1ljjw7KCDwQegCcp5LwX95xoohpBpV7sdGVFtIB7zwRr6aK18Y89L Fq2+j/5nmedXwFA3sEgqJFVOr9o9EIgA -----END CERTIFICATE-----Generated at Sun Jul 20 18:59:49 2025 by rpki-client