$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: jiLlXo5aKYyoSIy3jvliTpoxOLtyfB7Y7nMSfy4p7K4= Subject key identifier: 53:D0:5B:39:BC:CC:BD:BA:74:A7:93:C3:86:4B:E7:D2:32:F8:76:2B Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 352D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 34FF Signing time: Sun 02 Nov 2025 14:44:33 +0000 Manifest this update: Sun 02 Nov 2025 14:44:33 +0000 Manifest next update: Sun 09 Nov 2025 14:44:33 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: Npzc/OUjv5jGuUbrK7P5MGK9l7tQm91qKunQhL2jWvA=) 2: A5FDB194C68611EFB4077137C4F9AE02.roa (hash: 20d7zSG28KO67SoUKSTv5DsgPDhDa3AEuM/R+x5ywro=) 3: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: Npaiqv8wx3x0juj2XPFP6NT15iQeinsY3d+rnK9Ipa8=) 4: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (hash: t8ZApbp8ZgdmZpVbm08QjAGg0vnpe//NggnR/4OMSk8=) 5: A582509EC68611EFB4077137C4F9AE02.roa (hash: htBdLlmm2i58ANdYRz6MXQaGCSG7yL+kzZ3EQqldEig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:44:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13613 (0x352d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Nov 2 14:44:33 2025 GMT Not After : Nov 9 14:44:33 2025 GMT Subject: CN=69076e51-3160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e2:49:9d:94:06:42:0d:78:a9:8f:e3:55:ab: 3b:1e:3b:70:f2:82:32:09:e4:35:75:e7:aa:32:f9: 8c:9f:ad:30:b1:2c:a7:5e:7b:81:9e:a6:0c:cd:8a: 04:0c:83:d9:c1:81:4e:6d:39:8f:e1:d1:e1:c2:0c: 4e:15:6d:73:00:d8:ed:af:37:b4:b3:d0:c9:df:f2: d0:40:60:16:c9:c1:1b:8f:a1:1e:d9:70:3f:5f:b8: d9:24:c6:27:78:0b:15:c9:f3:3a:99:5b:38:2d:5f: 7e:9d:47:c7:24:92:a7:70:0f:ac:0c:86:fe:2c:04: ca:83:ae:ca:f3:43:d0:f3:20:97:6f:53:15:bd:e8: 9e:41:e6:b7:8c:39:a1:55:47:93:68:79:5f:00:ea: 65:a5:6c:d1:31:0c:0c:56:b1:15:96:8e:98:ce:99: cf:e7:43:89:a9:6e:13:e1:62:8f:b0:1f:43:e5:b5: 82:89:56:e9:39:f8:67:a4:3f:53:7c:67:0b:3f:5e: af:bd:69:1f:75:52:6f:dc:af:bd:89:6d:c9:6f:27: b2:95:b7:18:01:b6:6e:dc:20:d9:ea:8d:7e:52:9c: 89:1a:4e:da:bc:c9:cf:01:64:97:51:32:19:c1:f5: a7:d1:28:3d:b8:fa:4b:d6:e0:e7:04:20:ff:be:f2: e8:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:D0:5B:39:BC:CC:BD:BA:74:A7:93:C3:86:4B:E7:D2:32:F8:76:2B X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:2f:fc:a1:a6:1d:d5:d0:ed:77:18:4f:7b:0e:5e:3b:24:9c: 3c:d4:aa:66:56:f2:b9:2e:e4:b2:7e:c9:d1:7a:5a:c2:83:8c: 04:83:69:db:77:fc:9e:fd:d7:06:b0:51:85:ca:b3:aa:fb:15: 9b:a5:11:63:b6:bb:5c:cc:d7:f0:e9:0a:9f:ec:20:5d:cd:7b: c7:95:57:15:e0:78:2b:eb:0c:ed:b4:eb:86:27:1b:79:a7:00: a8:6b:bb:70:b9:f7:89:57:6c:3d:32:e9:2f:b7:0f:4a:22:21: 35:39:e0:5c:5f:49:6b:f8:6a:45:3a:dd:cf:a5:50:1e:ab:29: 05:f3:ea:63:24:57:cf:8e:5f:eb:4e:92:52:88:a3:89:4b:5f: fe:a3:c6:30:bf:90:18:de:65:96:74:69:b1:ac:36:ba:cf:2f: 9f:47:a3:bf:12:fb:6d:78:24:63:44:0a:84:2e:5a:d6:a6:18: 80:34:8d:af:89:70:d7:e2:28:0a:21:bc:b1:d0:4b:ad:e5:c8: 21:48:67:63:73:ef:fe:1c:43:7c:1f:9b:bb:e1:b2:ad:24:39: 59:ee:8f:15:7d:90:11:a9:52:0d:9f:6a:cc:4b:14:a0:c9:13: 5c:33:8c:02:02:1f:ea:e5:8b:9d:70:bc:56:30:50:12:10:31: df:1c:e1:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUxMTAyMTQ0NDMzWhcNMjUxMTA5MTQ0NDMzWjAYMRYwFAYD VQQDEw02OTA3NmU1MS0zMTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOJJnZQGQg14qY/jVas7Hjtw8oIyCeQ1deeqMvmMn60wsSynXnuBnqYMzYoE DIPZwYFObTmP4dHhwgxOFW1zANjtrze0s9DJ3/LQQGAWycEbj6Ee2XA/X7jZJMYn eAsVyfM6mVs4LV9+nUfHJJKncA+sDIb+LATKg67K80PQ8yCXb1MVveieQea3jDmh VUeTaHlfAOplpWzRMQwMVrEVlo6YzpnP50OJqW4T4WKPsB9D5bWCiVbpOfhnpD9T fGcLP16vvWkfdVJv3K+9iW3JbyeylbcYAbZu3CDZ6o1+UpyJGk7avMnPAWSXUTIZ wfWn0Sg9uPpL1uDnBCD/vvLo5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPQWzm8 zL26dKeTw4ZL59Iy+HYrMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaL/yhph3V0O13GE97Dl47JJw81KpmVvK5LuSyfsnRelrCg4wEg2nb d/ye/dcGsFGFyrOq+xWbpRFjtrtczNfw6Qqf7CBdzXvHlVcV4Hgr6wzttOuGJxt5 pwCoa7twufeJV2w9Mukvtw9KIiE1OeBcX0lr+GpFOt3PpVAeqykF8+pjJFfPjl/r TpJSiKOJS1/+o8Ywv5AY3mWWdGmxrDa6zy+fR6O/EvtteCRjRAqELlrWphiANI2v iXDX4igKIbyx0Eut5cghSGdjc+/+HEN8H5u74bKtJDlZ7o8VfZARqVINn2rMSxSg yRNcM4wCAh/q5YudcLxWMFASEDHfHOFf -----END CERTIFICATE-----Generated at Tue Nov 4 13:36:23 2025 by rpki-client