$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: vMZOvejOYYP6jE6kuM+q09QVd4lqbhL3fVogZNmUkOM= Subject key identifier: C5:86:CA:31:C8:7C:6A:9D:E2:19:19:BD:E3:B0:14:6B:2C:C9:F9:B6 Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 0380 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 037A Signing time: Mon 27 Oct 2025 02:16:21 +0000 Manifest this update: Mon 27 Oct 2025 02:16:20 +0000 Manifest next update: Mon 03 Nov 2025 02:16:20 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: a8fW7arkuwobLQ/CrEYYG1sek4Mwmy3sYBla3mqw0dg=) 2: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: hQOYHlCjx2ScuN+oMwFJ/ejTbPq4orU4F7qi3kUTHdM=) 3: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: 7Gmx6aG6mVa6tW4ZmRdx25+Dm056uxm4nK4BIHzJbm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 02:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 896 (0x380) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71, serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: Oct 27 02:16:20 2025 GMT Not After : Nov 3 02:16:20 2025 GMT Subject: CN=68fed5f5-35b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3b:38:66:06:dd:ae:47:20:b1:1c:d7:aa:2a: 8d:83:f5:5c:fd:8e:db:3b:83:f8:82:f3:05:ce:36: 6c:dc:14:73:f8:88:50:bb:c5:f9:55:b0:81:46:0c: 29:48:ab:47:0c:ba:3e:1b:d5:ce:ed:79:37:bc:8b: 4b:e6:8c:f8:e5:73:96:87:1d:f8:e9:3a:6b:71:e9: 82:23:be:30:a2:82:ad:3e:83:8b:44:19:70:ae:eb: b0:f3:70:d2:7a:fe:e2:6b:34:8b:f7:32:41:fa:24: c6:de:09:a9:b8:38:89:1e:ec:4f:69:8d:55:26:00: 67:b7:df:88:4e:87:bb:e5:2a:67:56:a4:1c:1b:4d: 96:3b:ba:3d:fb:f7:e4:60:d3:a0:6c:4f:3d:b2:59: 36:26:e0:09:e4:48:a0:1a:11:90:6c:55:93:bd:d8: e9:a5:11:ef:71:a8:a6:f7:95:71:97:f0:40:ee:00: 7a:04:29:a7:60:6f:b8:87:ac:5e:31:70:27:65:84: 46:4a:66:77:34:3c:23:e5:af:af:da:3b:b7:8d:5e: 43:d8:c0:99:96:d7:fa:aa:4d:32:54:a9:ae:48:18: d5:6e:44:7c:aa:9c:81:6b:b1:a7:f6:27:e7:04:26: b0:dd:0f:80:78:c2:39:a9:f9:92:57:50:5c:4e:c2: 24:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:86:CA:31:C8:7C:6A:9D:E2:19:19:BD:E3:B0:14:6B:2C:C9:F9:B6 X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:75:dd:fa:5d:74:cf:03:0a:48:80:17:f8:29:7d:ae:57:a5: 36:9f:fc:08:26:30:c3:3d:3e:f6:b4:0c:d6:ec:98:18:63:f9: 5b:6c:6a:0c:98:d9:13:47:f5:31:50:ac:56:62:e1:f1:95:8a: ec:62:66:b2:ed:c7:17:f2:81:65:dd:a9:66:e5:0f:f1:fa:2d: e6:b3:fe:e1:5e:17:5f:ec:f0:0c:a1:94:fa:57:43:d4:60:8e: 37:13:29:c2:d0:a5:d5:0d:13:a6:80:25:b2:9c:f3:88:1b:b6: c6:04:3b:44:db:3e:82:cd:c8:fa:ae:f8:58:b5:60:e5:52:3d: 70:d0:46:7f:7b:12:af:df:b9:35:01:75:e0:94:7e:8e:49:85: 88:69:d3:d2:18:92:39:cc:98:41:9a:ef:0b:f1:44:50:a2:99: b7:00:5c:c5:0b:c5:03:a1:68:87:cc:8b:71:c7:d2:13:f4:4d: 9b:f5:74:a5:94:c9:a6:5f:26:5b:39:ec:81:fc:b9:41:9a:d8: 5e:93:4e:b7:ad:77:39:00:87:cd:04:29:57:c8:c1:e0:40:42: 23:ec:63:35:15:e4:18:bd:8a:7f:25:f1:f7:0d:80:b9:e4:b7: e0:6f:f7:b6:9b:e1:68:cd:e7:ab:e0:c2:6c:77:04:4e:6e:1b: 3c:cb:e0:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjUxMDI3MDIxNjIwWhcNMjUxMTAzMDIxNjIwWjAYMRYwFAYD VQQDEw02OGZlZDVmNS0zNWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDs4ZgbdrkcgsRzXqiqNg/Vc/Y7bO4P4gvMFzjZs3BRz+IhQu8X5VbCBRgwp SKtHDLo+G9XO7Xk3vItL5oz45XOWhx346TprcemCI74wooKtPoOLRBlwruuw83DS ev7iazSL9zJB+iTG3gmpuDiJHuxPaY1VJgBnt9+IToe75SpnVqQcG02WO7o9+/fk YNOgbE89slk2JuAJ5EigGhGQbFWTvdjppRHvcaim95Vxl/BA7gB6BCmnYG+4h6xe MXAnZYRGSmZ3NDwj5a+v2ju3jV5D2MCZltf6qk0yVKmuSBjVbkR8qpyBa7Gn9ifn BCaw3Q+AeMI5qfmSV1BcTsIkzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWGyjHI fGqd4hkZveOwFGssyfm2MB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJdd36XXTPAwpIgBf4KX2uV6U2n/wIJjDDPT72tAzW7JgYY/lbbGoM mNkTR/UxUKxWYuHxlYrsYmay7ccX8oFl3alm5Q/x+i3ms/7hXhdf7PAMoZT6V0PU YI43EynC0KXVDROmgCWynPOIG7bGBDtE2z6Czcj6rvhYtWDlUj1w0EZ/exKv37k1 AXXglH6OSYWIadPSGJI5zJhBmu8L8URQopm3AFzFC8UDoWiHzItxx9IT9E2b9XSl lMmmXyZbOeyB/LlBmthek063rXc5AIfNBClXyMHgQEIj7GM1FeQYvYp/JfH3DYC5 5Lfgb/e2m+Fozeer4MJsdwRObhs8y+Bb -----END CERTIFICATE-----Generated at Mon Oct 27 17:35:53 2025 by rpki-client