$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: nClQaUm8xyXteXPdwyM6IrL9yzsPQwbIrutq//bcc9s= Subject key identifier: AE:DF:88:C0:57:1C:3A:E3:B0:5E:5E:53:7D:E2:8F:F9:E5:DF:83:7A Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 34F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 34C9 Signing time: Sun 20 Jul 2025 14:45:32 +0000 Manifest this update: Sun 20 Jul 2025 14:45:31 +0000 Manifest next update: Sun 27 Jul 2025 14:45:31 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: T8fZZy0PqJWxcxAVaeWCVyQZiyfiJMAnuvhI7H3IQQo=) 2: A5FDB194C68611EFB4077137C4F9AE02.roa (hash: 20d7zSG28KO67SoUKSTv5DsgPDhDa3AEuM/R+x5ywro=) 3: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: Npaiqv8wx3x0juj2XPFP6NT15iQeinsY3d+rnK9Ipa8=) 4: A582509EC68611EFB4077137C4F9AE02.roa (hash: htBdLlmm2i58ANdYRz6MXQaGCSG7yL+kzZ3EQqldEig=) 5: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (hash: t8ZApbp8ZgdmZpVbm08QjAGg0vnpe//NggnR/4OMSk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:45:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13559 (0x34f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Jul 20 14:45:31 2025 GMT Not After : Jul 27 14:45:31 2025 GMT Subject: CN=687d010c-6c2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bf:42:31:22:b9:ab:a9:80:77:38:66:e9:4f: b5:8b:9b:96:43:42:09:d4:eb:b6:39:f5:bf:6d:e5: 75:fe:44:35:b4:61:ee:d1:9f:69:17:97:78:2b:87: 87:88:23:21:ae:da:d3:19:9b:4b:4c:21:0e:47:79: 5a:16:ff:52:a6:72:32:4f:d8:a9:24:9a:ed:8e:8a: 0e:c9:4a:09:8a:d5:3a:71:46:c4:b8:64:8e:ee:c6: 12:72:e3:8c:ca:12:7e:67:6f:cd:f5:a9:6f:64:79: 47:00:fb:ae:83:a4:2a:e0:77:99:ed:4f:73:9f:da: 74:a9:0b:54:ea:8c:7d:7f:a4:1d:5b:2d:5f:b1:82: 28:df:cf:50:2e:04:93:41:c1:52:64:2b:0d:59:9f: 49:f2:4c:80:a9:e1:0e:b0:6c:83:ca:7a:42:fc:6e: ce:59:8e:cc:d0:f6:89:0a:9f:15:31:e8:b3:c8:f4: ca:cc:bd:e9:7a:2c:0d:3e:5a:25:d1:ff:c7:a6:07: b4:63:f9:0e:ff:bc:06:dd:e4:ea:c1:fd:fc:9d:de: 73:e8:bb:e8:ee:66:8c:fc:2a:85:31:91:e2:b2:d8: 87:20:d2:45:a5:0b:9f:3c:b6:cc:f4:2c:0c:f1:5a: fb:6e:38:c8:fd:0f:9d:a8:92:56:68:69:e4:b1:95: 8b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DF:88:C0:57:1C:3A:E3:B0:5E:5E:53:7D:E2:8F:F9:E5:DF:83:7A X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:fd:14:e3:35:4d:11:de:35:73:56:3d:2d:f7:23:34:d5:30: 9e:f1:59:32:35:7f:0d:a6:a3:be:01:61:34:7d:ca:40:76:c6: 0d:2d:45:4d:94:f4:28:cc:99:7f:ed:f4:57:bd:a3:71:5d:8a: 3b:31:76:4b:56:8d:77:95:2f:09:5a:bb:7c:db:e0:15:4a:a1: e3:82:2c:1e:65:1c:65:68:f2:17:a4:94:16:7a:70:f4:64:11: 19:da:bf:57:45:4d:64:ce:6e:f1:f8:94:84:6e:69:e4:6a:8a: 01:f5:50:75:fa:14:27:cf:2b:f5:2c:f1:32:de:ef:11:84:cc: 0c:cf:ca:b2:75:80:46:d8:82:64:55:c0:ad:1b:b2:76:1c:e8: 23:e2:6c:4c:e0:ab:58:f9:e8:c9:17:10:e0:f5:b9:0f:fd:26: 35:47:0e:f5:20:a6:1c:d2:71:46:d5:29:a5:af:d1:58:ab:1e: 7b:26:ae:5a:32:da:87:e9:2a:30:d2:ac:e7:5d:f9:73:82:21: 65:9b:f2:3f:14:00:09:8e:b9:82:02:d0:9a:b4:7d:78:3c:f0: c5:02:27:af:8f:ed:dc:e4:79:4e:de:fd:00:c6:25:0a:89:1b: cf:d8:df:47:f4:0a:be:12:a9:fb:84:cc:f7:65:b8:f3:a6:10: 82:14:0a:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUwNzIwMTQ0NTMxWhcNMjUwNzI3MTQ0NTMxWjAYMRYwFAYD VQQDEw02ODdkMDEwYy02YzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwL9CMSK5q6mAdzhm6U+1i5uWQ0IJ1Ou2OfW/beV1/kQ1tGHu0Z9pF5d4K4eH iCMhrtrTGZtLTCEOR3laFv9SpnIyT9ipJJrtjooOyUoJitU6cUbEuGSO7sYScuOM yhJ+Z2/N9alvZHlHAPuug6Qq4HeZ7U9zn9p0qQtU6ox9f6QdWy1fsYIo389QLgST QcFSZCsNWZ9J8kyAqeEOsGyDynpC/G7OWY7M0PaJCp8VMeizyPTKzL3peiwNPlol 0f/Hpge0Y/kO/7wG3eTqwf38nd5z6Lvo7maM/CqFMZHistiHINJFpQufPLbM9CwM 8Vr7bjjI/Q+dqJJWaGnksZWLCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7fiMBX HDrjsF5eU33ij/nl34N6MB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx/RTjNU0R3jVzVj0t9yM01TCe8VkyNX8NpqO+AWE0fcpAdsYNLUVN lPQozJl/7fRXvaNxXYo7MXZLVo13lS8JWrt82+AVSqHjgiweZRxlaPIXpJQWenD0 ZBEZ2r9XRU1kzm7x+JSEbmnkaooB9VB1+hQnzyv1LPEy3u8RhMwMz8qydYBG2IJk VcCtG7J2HOgj4mxM4KtY+ejJFxDg9bkP/SY1Rw71IKYc0nFG1Smlr9FYqx57Jq5a MtqH6Sow0qznXflzgiFlm/I/FAAJjrmCAtCatH14PPDFAievj+3c5HlO3v0AxiUK iRvP2N9H9Aq+Eqn7hMz3ZbjzphCCFAoq -----END CERTIFICATE-----Generated at Mon Jul 21 05:47:32 2025 by rpki-client