$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: F4L0JXJLUiN4F71rozX8z1nHj/ixyq6uMjLI/T7ikHc= Subject key identifier: 2F:5A:8B:79:D7:59:56:1D:46:AF:3B:CF:32:73:10:30:47:0D:4A:9A Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 0369 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 0363 Signing time: Tue 09 Sep 2025 01:01:45 +0000 Manifest this update: Tue 09 Sep 2025 01:01:45 +0000 Manifest next update: Tue 16 Sep 2025 01:01:45 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: jDls1nk5HgrHPOs8A7D7Stq+a4D1uqAW/1Ny3qFsKB4=) 2: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: hQOYHlCjx2ScuN+oMwFJ/ejTbPq4orU4F7qi3kUTHdM=) 3: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: 7Gmx6aG6mVa6tW4ZmRdx25+Dm056uxm4nK4BIHzJbm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 873 (0x369) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71, serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: Sep 9 01:01:45 2025 GMT Not After : Sep 16 01:01:45 2025 GMT Subject: CN=68bf7c79-2eb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:24:57:c3:84:a1:b2:ed:ba:9b:b8:9f:10:05: a9:53:ad:c5:9d:de:c8:49:cb:e5:0e:92:77:2d:05: b7:10:16:42:3e:bd:51:72:e0:76:0e:02:3b:6f:a6: e9:e0:09:32:15:ab:f6:a3:16:28:a8:63:03:78:07: 13:1d:2d:cb:fe:3e:3c:2e:00:89:d7:f8:2a:ca:00: 18:2c:b0:05:0c:c1:4d:34:5b:ad:92:5e:b6:66:7a: 96:40:23:7a:68:13:6e:c3:94:a1:01:10:9f:c3:bb: ba:c3:1c:d4:d1:a5:fb:e4:8e:db:f2:a9:e0:3d:a2: a4:95:39:fc:4f:fc:68:e6:c7:1b:b3:1e:ac:ca:df: fd:2c:a1:d8:23:ed:12:df:25:89:db:b1:bd:4c:86: b1:b5:74:0f:9b:00:4c:7c:30:e1:38:39:7a:25:e8: 97:2a:a2:18:3f:84:49:db:86:0e:e3:f0:e4:5a:c9: 2f:50:3d:97:93:d9:f4:80:7f:c3:5d:46:f0:73:2f: cc:fb:62:70:b7:9b:83:34:bb:db:d2:2d:0a:ec:1f: c3:38:2f:b1:00:3a:5b:0e:2b:c4:b6:22:6f:88:ab: 8a:5b:2c:10:9a:a0:49:6e:11:20:22:ee:17:ca:f4: ad:b2:5b:e6:19:dd:6e:2a:24:49:c7:b7:cf:6b:82: 5d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:5A:8B:79:D7:59:56:1D:46:AF:3B:CF:32:73:10:30:47:0D:4A:9A X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:4a:d2:e9:c4:0f:cf:6a:e6:6c:04:0a:6e:62:78:d3:8e:d2: 67:e1:71:83:6d:79:87:a9:e8:bb:0a:b9:dc:20:e8:9d:2e:69: 55:05:fa:88:b2:fb:35:2f:e7:87:ba:d9:7d:e6:4f:f0:7e:70: 19:68:54:76:f2:38:1f:df:f9:78:7a:33:bb:9d:96:0e:64:98: 90:ba:7e:ee:b6:e4:44:6a:93:6c:01:de:46:c9:7c:ad:8e:f6: 8b:0b:87:cf:bb:4e:e5:45:35:63:a7:61:c9:ae:1d:c0:9f:f3: ee:ef:79:c2:7f:aa:45:77:9b:42:4c:01:d3:7d:58:12:75:7b: 29:95:cc:9e:cc:38:38:8d:ba:a3:88:29:73:20:f2:71:30:4c: ba:ef:1f:ec:2c:c1:09:d2:96:1d:32:1e:20:1f:8e:7e:96:4d: 23:75:1a:cc:50:4e:a0:d1:ef:28:2b:c1:56:0f:0b:45:da:d1: 92:2a:60:1c:ec:28:f7:95:30:9e:62:6c:2c:71:32:56:81:67: 0b:b5:6d:6f:b1:35:c1:d3:39:29:b9:ef:3c:ce:5c:d8:bf:eb: d7:70:db:cf:cc:26:c1:02:79:74:74:34:54:07:3d:b3:2c:04: d0:ca:f7:21:60:f7:45:08:6e:b3:49:f6:03:ff:35:ea:27:7c: 45:10:91:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjUwOTA5MDEwMTQ1WhcNMjUwOTE2MDEwMTQ1WjAYMRYwFAYD VQQDEw02OGJmN2M3OS0yZWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiRXw4Shsu26m7ifEAWpU63Fnd7IScvlDpJ3LQW3EBZCPr1RcuB2DgI7b6bp 4AkyFav2oxYoqGMDeAcTHS3L/j48LgCJ1/gqygAYLLAFDMFNNFutkl62ZnqWQCN6 aBNuw5ShARCfw7u6wxzU0aX75I7b8qngPaKklTn8T/xo5scbsx6syt/9LKHYI+0S 3yWJ27G9TIaxtXQPmwBMfDDhODl6JeiXKqIYP4RJ24YO4/DkWskvUD2Xk9n0gH/D XUbwcy/M+2Jwt5uDNLvb0i0K7B/DOC+xADpbDivEtiJviKuKWywQmqBJbhEgIu4X yvStslvmGd1uKiRJx7fPa4JdlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9ai3nX WVYdRq87zzJzEDBHDUqaMB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBStLpxA/PauZsBApuYnjTjtJn4XGDbXmHqei7CrncIOidLmlVBfqI svs1L+eHutl95k/wfnAZaFR28jgf3/l4ejO7nZYOZJiQun7utuREapNsAd5GyXyt jvaLC4fPu07lRTVjp2HJrh3An/Pu73nCf6pFd5tCTAHTfVgSdXsplcyezDg4jbqj iClzIPJxMEy67x/sLMEJ0pYdMh4gH45+lk0jdRrMUE6g0e8oK8FWDwtF2tGSKmAc 7Cj3lTCeYmwscTJWgWcLtW1vsTXB0zkpue88zlzYv+vXcNvPzCbBAnl0dDRUBz2z LATQyvchYPdFCG6zSfYD/zXqJ3xFEJGD -----END CERTIFICATE-----Generated at Tue Sep 9 18:29:29 2025 by rpki-client