$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: /e6eeHW7/BDwFuQmFxokpEsOPzQ6EynMpTBY0TwYPe8= Subject key identifier: 54:25:93:D3:55:CD:31:1E:75:F6:4F:1A:DB:C6:41:1F:3B:57:6A:01 Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 03D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 03C8 Signing time: Sat 21 Mar 2026 00:07:18 +0000 Manifest this update: Sat 21 Mar 2026 00:07:18 +0000 Manifest next update: Sat 28 Mar 2026 00:07:18 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: KERKQ2DYa5czMm4Y9fX8cNKVGSEDD4naygx3iZXYy3c=) 2: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: +ePsXEldU8XwZr86Pjr8gpmcjv5LOq79B94UDeNsGa8=) 3: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: KxT8vQKIHFK7Gk3hZ5CxcVmRf+RluSRn51YSF+ICMIo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 00:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 980 (0x3d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71, serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: Mar 21 00:07:18 2026 GMT Not After : Mar 28 00:07:18 2026 GMT Subject: CN=69bde136-6ed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:28:fb:ec:b9:48:e6:fa:6e:70:ef:c1:1d:d2: a8:3b:68:9e:9e:00:44:80:e4:9e:a9:6b:b2:45:4a: 7d:70:8b:bc:e1:10:a7:ac:fd:23:f5:b6:49:5b:50: d8:1f:0f:01:f7:59:9c:07:04:15:39:d9:79:37:9c: 39:8d:4a:0b:b7:3a:8a:b4:34:e8:df:cb:e1:64:ca: 4b:50:38:c1:2f:0d:6f:8f:10:82:95:5f:44:6e:b5: 71:08:f2:c7:92:81:a9:9f:5b:3f:ff:44:0a:ec:ca: 01:be:f4:06:cd:fa:59:dc:11:92:e5:9f:32:67:bd: 3a:c7:60:37:30:4a:dd:81:a7:17:63:ce:a2:35:0e: d8:db:82:e6:3d:85:b8:5f:e6:5c:3a:0e:fa:33:8a: 8a:1e:bb:95:39:45:85:a6:6e:ce:7c:0f:96:bd:7a: 6c:71:91:b9:08:2b:6b:3d:84:52:4b:bb:15:76:ed: cf:db:ff:42:6a:e6:82:a2:03:4f:48:db:02:ec:65: 4f:2c:93:de:46:c1:20:e1:f1:b4:60:dc:5c:04:94: 3b:3e:d0:9d:1f:af:30:f1:7e:b4:33:23:45:a1:bc: c2:d3:e6:a2:5c:1a:f8:37:8d:57:7f:f8:9b:85:e1: ab:c0:6f:36:5c:26:58:c5:f7:01:af:05:14:07:7f: 8a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:25:93:D3:55:CD:31:1E:75:F6:4F:1A:DB:C6:41:1F:3B:57:6A:01 X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:ce:56:c6:8f:de:b7:60:23:66:fb:13:76:7d:ce:91:79:0d: 57:87:fd:08:ce:e8:80:29:a4:d1:4f:0e:ec:29:e7:b7:64:11: 1e:c6:1f:ea:fc:6a:8f:3c:0f:6f:49:3e:a1:28:20:4a:c1:9f: 2c:94:21:cc:77:9c:b4:17:25:c6:20:88:0a:d5:50:ab:b9:1b: fb:d7:91:52:03:57:82:2a:1f:10:f7:8f:bb:c6:85:eb:20:c9: 42:17:ba:41:4e:4b:0b:92:d0:ef:11:07:21:33:35:29:7a:b8: b7:44:ea:34:86:d3:8b:9d:e1:c8:80:62:66:81:c2:fa:3b:73: d2:92:57:ea:f4:65:53:62:03:e6:65:f0:e0:85:56:b6:29:23: 79:c3:f8:ac:a9:c9:49:fe:d3:7f:00:a9:40:f3:2c:86:6c:33: 05:75:ea:cd:c7:cf:b8:e5:9f:37:5d:16:51:33:5b:5d:bb:bb: d6:fb:4b:60:69:18:3a:f2:cc:0d:d8:08:ac:8c:00:3d:09:df: 83:9c:b0:99:4b:44:23:66:fb:96:76:49:82:4d:aa:00:26:2f: c2:13:ff:d5:3a:7c:b4:aa:7d:d8:f4:8b:00:ae:7b:3b:88:09: ff:5a:f1:e1:d8:83:c8:61:09:66:db:47:b7:b6:6b:6b:de:cb: 0e:ac:87:05 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjYwMzIxMDAwNzE4WhcNMjYwMzI4MDAwNzE4WjAYMRYwFAYD VQQDEw02OWJkZTEzNi02ZWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuij77LlI5vpucO/BHdKoO2iengBEgOSeqWuyRUp9cIu84RCnrP0j9bZJW1DY Hw8B91mcBwQVOdl5N5w5jUoLtzqKtDTo38vhZMpLUDjBLw1vjxCClV9EbrVxCPLH koGpn1s//0QK7MoBvvQGzfpZ3BGS5Z8yZ706x2A3MErdgacXY86iNQ7Y24LmPYW4 X+ZcOg76M4qKHruVOUWFpm7OfA+WvXpscZG5CCtrPYRSS7sVdu3P2/9CauaCogNP SNsC7GVPLJPeRsEg4fG0YNxcBJQ7PtCdH68w8X60MyNFobzC0+aiXBr4N41Xf/ib heGrwG82XCZYxfcBrwUUB3+KrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFQlk9NV zTEedfZPGtvGQR87V2oBMB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjc5Wxo/et2AjZvsTdn3OkXkNV4f9CM7ogCmk0U8O7Cnnt2QRHsYf6vxqjzwP b0k+oSggSsGfLJQhzHectBclxiCICtVQq7kb+9eRUgNXgiofEPePu8aF6yDJQhe6 QU5LC5LQ7xEHITM1KXq4t0TqNIbTi53hyIBiZoHC+jtz0pJX6vRlU2ID5mXw4IVW tikjecP4rKnJSf7TfwCpQPMshmwzBXXqzcfPuOWfN10WUTNbXbu71vtLYGkYOvLM DdgIrIwAPQnfg5ywmUtEI2b7lnZJgk2qACYvwhP/1Tp8tKp92PSLAK57O4gJ/1rx 4diDyGEJZttHt7Zra97LDqyHBQ== -----END CERTIFICATE-----Generated at Sun Mar 22 00:11:59 2026 by rpki-client