$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: 3cABURZNTYQwXfP9kZlUkm45A5mV4ZTHVxeZrsNsmbI= Subject key identifier: 00:F9:AE:2A:85:23:BF:02:E0:AB:60:0A:5E:6E:81:75:99:A4:36:BE Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 3516 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 34E8 Signing time: Thu 18 Sep 2025 14:46:30 +0000 Manifest this update: Thu 18 Sep 2025 14:46:30 +0000 Manifest next update: Thu 25 Sep 2025 14:46:30 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: g2SqYfuYuqPASeXLF7fxtgz+Vw64PeedLaBVIsGLx04=) 2: A5FDB194C68611EFB4077137C4F9AE02.roa (hash: 20d7zSG28KO67SoUKSTv5DsgPDhDa3AEuM/R+x5ywro=) 3: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: Npaiqv8wx3x0juj2XPFP6NT15iQeinsY3d+rnK9Ipa8=) 4: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (hash: t8ZApbp8ZgdmZpVbm08QjAGg0vnpe//NggnR/4OMSk8=) 5: A582509EC68611EFB4077137C4F9AE02.roa (hash: htBdLlmm2i58ANdYRz6MXQaGCSG7yL+kzZ3EQqldEig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13590 (0x3516) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Sep 18 14:46:30 2025 GMT Not After : Sep 25 14:46:30 2025 GMT Subject: CN=68cc1b46-820d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e1:45:fd:62:a6:74:51:33:76:fe:8f:96:cb: 12:e0:65:5b:03:75:9a:da:4d:e8:ce:09:e4:d4:65: 69:9a:6f:78:c1:5f:ec:fb:6c:65:3a:a6:15:d7:5b: 82:16:0f:b2:7a:52:25:bd:25:9d:bd:c9:99:9d:08: e2:0e:41:11:43:b1:9e:ff:b3:14:48:8a:eb:fd:23: e5:19:9b:52:37:a8:dc:14:9c:ef:e0:94:d9:fd:fa: 33:a9:a3:00:29:9d:61:d6:85:b9:67:d0:70:21:9a: c8:09:17:fd:c1:aa:c6:90:ef:31:90:92:4b:18:7d: c1:5e:06:92:ad:cc:4e:a5:b2:6c:6b:42:1e:e9:db: 23:9d:01:d1:8f:db:fd:1f:8d:0c:c2:0e:ad:1d:03: ed:bc:33:88:7b:21:04:e0:e2:fb:5e:d3:86:7a:29: f0:8b:9d:eb:b0:82:85:bc:a2:e4:d3:65:fa:8f:aa: cf:9f:01:10:c5:e5:5e:fd:6b:ab:0f:91:10:98:80: ea:7c:e0:c5:79:bd:e0:b8:13:ac:44:2b:17:4d:6f: 8e:eb:e8:e4:0c:b3:c9:c5:79:3e:33:5d:80:0f:4f: 37:d5:66:74:50:6b:be:4a:63:48:f8:1b:96:a7:58: 4f:29:41:ef:aa:c5:c4:c1:d7:85:f6:fd:cd:53:9c: c2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:F9:AE:2A:85:23:BF:02:E0:AB:60:0A:5E:6E:81:75:99:A4:36:BE X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:21:6f:3c:92:e5:64:b3:e3:a6:aa:33:c1:4f:dc:44:32:c0: 76:9b:4b:ad:0b:55:aa:36:c8:05:fa:88:72:d2:6c:a6:84:8f: de:8e:41:60:77:55:0d:d4:e5:ce:1e:59:18:80:ee:99:ee:02: 37:f8:a3:b1:d6:c3:ba:08:d8:ed:49:0d:4d:ef:8d:4f:c6:6a: e6:c4:76:57:1e:94:b7:ce:c0:b9:ac:06:0c:c4:c3:b9:d9:c5: 18:7b:61:c7:c8:cb:cc:21:17:2c:05:cc:64:13:a6:ea:e5:b7: 15:14:82:87:ce:31:25:7d:9c:98:46:ac:81:fd:4e:b5:83:cf: c3:a2:ee:12:e6:20:76:85:a5:d7:0c:b4:8d:db:db:cf:23:4c: 2a:38:9a:d6:74:fc:ba:3f:bb:61:99:72:30:56:17:3b:e5:d7: a4:6b:18:75:66:be:87:67:ee:0f:99:fc:0a:3f:7c:59:00:4e: 66:9c:9b:88:b7:da:6f:10:79:3d:82:ab:15:d5:aa:48:f3:90: 5a:5c:af:13:02:b6:b3:11:92:65:a8:31:0e:88:7e:71:fd:1b: db:dd:23:e0:67:bf:52:6d:a5:98:0b:0f:df:ff:10:90:2a:51: 36:bb:4f:ec:fc:82:e7:dd:a4:d7:2d:e1:62:b2:35:b0:b9:9a: cb:c5:63:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUwOTE4MTQ0NjMwWhcNMjUwOTI1MTQ0NjMwWjAYMRYwFAYD VQQDEw02OGNjMWI0Ni04MjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eFF/WKmdFEzdv6PlssS4GVbA3Wa2k3ozgnk1GVpmm94wV/s+2xlOqYV11uC Fg+yelIlvSWdvcmZnQjiDkERQ7Ge/7MUSIrr/SPlGZtSN6jcFJzv4JTZ/fozqaMA KZ1h1oW5Z9BwIZrICRf9warGkO8xkJJLGH3BXgaSrcxOpbJsa0Ie6dsjnQHRj9v9 H40Mwg6tHQPtvDOIeyEE4OL7XtOGeinwi53rsIKFvKLk02X6j6rPnwEQxeVe/Wur D5EQmIDqfODFeb3guBOsRCsXTW+O6+jkDLPJxXk+M12AD0831WZ0UGu+SmNI+BuW p1hPKUHvqsXEwdeF9v3NU5zCjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAD5riqF I78C4KtgCl5ugXWZpDa+MB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeIW88kuVks+OmqjPBT9xEMsB2m0utC1WqNsgF+ohy0mymhI/ejkFg d1UN1OXOHlkYgO6Z7gI3+KOx1sO6CNjtSQ1N741PxmrmxHZXHpS3zsC5rAYMxMO5 2cUYe2HHyMvMIRcsBcxkE6bq5bcVFIKHzjElfZyYRqyB/U61g8/Dou4S5iB2haXX DLSN29vPI0wqOJrWdPy6P7thmXIwVhc75dekaxh1Zr6HZ+4PmfwKP3xZAE5mnJuI t9pvEHk9gqsV1apI85BaXK8TArazEZJlqDEOiH5x/Rvb3SPgZ79SbaWYCw/f/xCQ KlE2u0/s/ILn3aTXLeFisjWwuZrLxWMh -----END CERTIFICATE-----Generated at Fri Sep 19 00:44:10 2025 by rpki-client