$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: kYlz2Wv3kPbxE4dTz10oUTVckHUlBsjtQi+ooSxgxRQ= Subject key identifier: 99:95:CE:BB:2C:AE:6B:49:B8:BB:75:AA:36:8C:C7:D0:72:B1:D0:F7 Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 0335 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 032F Signing time: Sat 31 May 2025 01:18:06 +0000 Manifest this update: Sat 31 May 2025 01:18:06 +0000 Manifest next update: Sat 07 Jun 2025 01:18:06 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: C9zCdcTNq7iRi9NLMAl0FmEOHT8G5P6oyNHtIff9vVQ=) 2: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: hQOYHlCjx2ScuN+oMwFJ/ejTbPq4orU4F7qi3kUTHdM=) 3: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: 7Gmx6aG6mVa6tW4ZmRdx25+Dm056uxm4nK4BIHzJbm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:18:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 821 (0x335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71, serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: May 31 01:18:06 2025 GMT Not After : Jun 7 01:18:06 2025 GMT Subject: CN=683a58ce-b5c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:57:81:16:f8:2b:be:fe:c3:5b:52:be:74:d2: 08:6f:aa:18:8b:fe:53:69:48:38:74:ea:af:9a:25: 26:49:46:9c:93:0d:90:e2:e3:29:a8:a4:55:3b:d4: fc:c7:01:3c:f6:b6:45:89:45:c3:85:10:e9:68:27: 99:69:8b:0e:9e:9d:57:2f:d5:8d:f9:56:76:a0:2a: fa:f2:a1:fe:8f:b4:85:7e:c3:f9:5d:4d:cf:b6:09: 8e:2a:c6:b2:21:73:20:7b:c1:ca:c4:cd:88:46:65: 20:ef:8d:7c:0c:b1:9f:0e:4f:8d:9c:83:38:f2:2c: bf:1d:02:36:a4:44:99:74:de:7a:20:2d:0c:05:0a: 9c:53:04:c2:07:ee:57:ba:7f:fc:cd:32:f3:0e:f8: fe:8a:59:4f:7f:d8:76:d5:f7:21:ef:3e:28:a8:91: 49:36:d8:9d:f6:25:24:b5:3d:1f:78:5a:49:69:89: 2e:1b:a2:ce:84:43:16:ff:df:c0:51:b1:9c:a6:65: c9:8f:6b:1d:a4:48:28:b8:77:d3:bf:99:fc:13:f6: 49:d2:a5:a1:0b:c1:e5:f4:d4:43:ba:f7:18:20:67: 3c:fd:7f:be:c6:b8:2c:ba:75:41:dc:b9:23:db:ab: 21:07:e2:e1:e6:a9:73:ae:bd:75:91:b8:ad:a3:91: c7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:95:CE:BB:2C:AE:6B:49:B8:BB:75:AA:36:8C:C7:D0:72:B1:D0:F7 X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:6c:b8:43:83:b2:a2:4a:22:a5:d3:c8:45:0c:92:6c:1b:0c: 7c:9d:d2:be:59:91:d2:0f:46:4c:07:e6:c2:fe:8c:20:2f:91: 4e:78:85:c3:49:72:1a:ed:5d:b1:3a:48:1f:ec:01:23:8c:45: 36:82:c7:64:e0:0d:85:1d:31:c5:d7:65:49:25:39:ac:f9:3e: 88:e4:30:83:d5:24:6c:3e:46:97:02:32:e8:d9:e8:da:df:ec: 56:37:9d:ec:a0:4b:d1:64:69:40:e5:54:1b:ce:d5:ea:2d:02: db:46:15:4b:16:70:e5:7c:eb:c8:03:22:c7:96:be:cc:90:46: 39:a0:cb:c5:3f:c1:16:c3:19:0a:f0:d1:dc:dc:e5:70:b3:cd: 0f:c9:8c:95:f8:ee:be:20:53:15:7b:c5:3e:fa:df:9b:7f:65: 21:a1:b8:2d:b6:d2:13:d8:d5:69:0b:af:80:aa:d1:52:36:03: 70:64:82:e7:40:b7:22:45:33:c8:06:cd:2b:85:be:5e:0a:1a: 18:d8:1d:a5:82:83:df:9d:8f:9e:bb:9e:e6:54:4d:ef:be:8e: 21:77:dd:b4:1e:f6:2d:64:37:25:24:87:46:d0:e2:ce:78:d2: 63:35:04:72:e4:b5:d9:03:16:73:eb:78:c0:09:83:9e:c6:23: b2:5d:40:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjUwNTMxMDExODA2WhcNMjUwNjA3MDExODA2WjAYMRYwFAYD VQQDEw02ODNhNThjZS1iNWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFeBFvgrvv7DW1K+dNIIb6oYi/5TaUg4dOqvmiUmSUackw2Q4uMpqKRVO9T8 xwE89rZFiUXDhRDpaCeZaYsOnp1XL9WN+VZ2oCr68qH+j7SFfsP5XU3PtgmOKsay IXMge8HKxM2IRmUg7418DLGfDk+NnIM48iy/HQI2pESZdN56IC0MBQqcUwTCB+5X un/8zTLzDvj+illPf9h21fch7z4oqJFJNtid9iUktT0feFpJaYkuG6LOhEMW/9/A UbGcpmXJj2sdpEgouHfTv5n8E/ZJ0qWhC8Hl9NRDuvcYIGc8/X++xrgsunVB3Lkj 26shB+Lh5qlzrr11kbito5HHMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJmVzrss rmtJuLt1qjaMx9BysdD3MB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7bLhDg7KiSiKl08hFDJJsGwx8ndK+WZHSD0ZMB+bC/owgL5FOeIXD SXIa7V2xOkgf7AEjjEU2gsdk4A2FHTHF12VJJTms+T6I5DCD1SRsPkaXAjLo2eja 3+xWN53soEvRZGlA5VQbztXqLQLbRhVLFnDlfOvIAyLHlr7MkEY5oMvFP8EWwxkK 8NHc3OVws80PyYyV+O6+IFMVe8U++t+bf2UhobgtttIT2NVpC6+AqtFSNgNwZILn QLciRTPIBs0rhb5eChoY2B2lgoPfnY+eu57mVE3vvo4hd920HvYtZDclJIdG0OLO eNJjNQRy5LXZAxZz63jACYOexiOyXUBG -----END CERTIFICATE-----Generated at Sat May 31 17:37:46 2025 by rpki-client