$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: Ib+jTaa8hNaUIlo0RsusdEOpYEc+aXbKYwpWqnj6OJk= Subject key identifier: FD:B7:A8:BA:39:CB:E9:EB:6A:D5:9D:95:FF:EF:68:DC:8E:18:0D:13 Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 352E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 3500 Signing time: Tue 04 Nov 2025 14:47:39 +0000 Manifest this update: Tue 04 Nov 2025 14:47:38 +0000 Manifest next update: Tue 11 Nov 2025 14:47:38 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: pyMcXUq2GjFx59sySZTzknN6+6soNSCWMDMXpjBPQms=) 2: A5FDB194C68611EFB4077137C4F9AE02.roa (hash: 20d7zSG28KO67SoUKSTv5DsgPDhDa3AEuM/R+x5ywro=) 3: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: Npaiqv8wx3x0juj2XPFP6NT15iQeinsY3d+rnK9Ipa8=) 4: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (hash: t8ZApbp8ZgdmZpVbm08QjAGg0vnpe//NggnR/4OMSk8=) 5: A582509EC68611EFB4077137C4F9AE02.roa (hash: htBdLlmm2i58ANdYRz6MXQaGCSG7yL+kzZ3EQqldEig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:47:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13614 (0x352e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Nov 4 14:47:38 2025 GMT Not After : Nov 11 14:47:38 2025 GMT Subject: CN=690a120a-e35b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a0:0c:84:23:a7:e6:1f:78:f5:20:2a:d0:b3: 4a:dc:3a:52:d2:e8:83:f7:33:c4:6d:fe:51:bd:07: a8:d1:d3:9b:b1:6e:5f:53:22:63:7b:a5:5a:93:49: 58:f9:72:a9:71:5f:3c:6c:f0:63:8b:18:b8:09:e4: a0:05:76:4a:15:e3:bc:59:1b:ff:c0:dd:94:87:6c: cc:af:0c:ac:6d:51:70:ec:34:ee:28:72:0d:5d:e0: 02:84:6e:d1:ad:c6:2a:6e:a1:e9:81:65:62:09:bc: 13:15:83:b2:c1:4f:77:f5:49:36:95:a9:88:f7:95: a8:24:5b:46:80:37:9a:34:81:e3:2b:10:28:18:9e: 8d:1d:48:ad:7b:22:1e:a0:18:07:04:4f:29:55:b2: 86:37:73:ce:0c:68:1b:cc:b4:9e:c1:8e:76:21:8b: 5f:d2:6e:2d:f9:3b:57:5b:e0:30:aa:97:da:d7:22: 05:aa:8b:2b:78:85:c5:93:2a:a2:6a:83:ff:93:96: 6c:87:1d:43:2f:76:74:63:3a:d0:fd:b9:5f:5e:75: 1d:ed:99:30:c8:c1:5b:97:dc:ae:b3:e8:ae:90:9b: 73:e2:33:e8:b7:2e:c6:1a:f2:cf:53:4a:4a:5a:0e: 34:01:e2:83:25:ca:34:ef:e2:e2:d6:8c:a7:97:b0: 1c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:B7:A8:BA:39:CB:E9:EB:6A:D5:9D:95:FF:EF:68:DC:8E:18:0D:13 X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:a2:ee:16:c8:70:a3:fe:9a:f4:a7:41:70:e2:2f:0a:e3:fa: 6f:28:37:a7:93:af:9b:9c:c1:42:af:32:79:de:c1:40:c3:17: d0:cc:4f:55:0f:98:90:4f:f4:41:3a:f4:27:bf:3b:92:52:22: f8:3c:43:b5:5e:b1:ae:4b:a1:38:aa:a8:0b:2f:a5:ec:e8:7c: e0:db:ee:58:12:7d:d5:f0:a9:1f:31:d8:a7:a7:b9:80:95:d8: db:26:dd:38:67:1f:2d:eb:b3:11:e0:33:7c:e4:74:dc:c6:5d: f9:04:50:86:4f:eb:05:fb:4b:d6:6f:fb:bf:be:7e:11:67:cd: 08:8e:9a:3e:1a:11:da:04:d4:b9:6f:e2:6d:bf:7f:c2:8e:23: e8:26:35:6b:39:8f:45:6a:99:bb:5c:c0:85:d8:07:a0:f2:b1: 6e:7d:37:b6:b0:15:5c:ae:a8:af:af:44:b0:e4:41:14:83:09: 00:4e:21:2b:ca:13:f5:f6:ee:4b:7e:85:82:20:68:57:1a:e9: 69:a1:c5:ef:db:fc:99:f1:83:e7:4b:60:9a:52:52:2b:15:a0: 5b:01:ab:8f:44:c7:7d:b9:e2:f8:3a:4d:3c:18:6b:2f:2a:7f: c2:6e:3a:5a:ba:82:99:0d:67:b3:48:1d:25:61:6d:21:32:f0: 5e:47:88:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUxMTA0MTQ0NzM4WhcNMjUxMTExMTQ0NzM4WjAYMRYwFAYD VQQDEw02OTBhMTIwYS1lMzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aAMhCOn5h949SAq0LNK3DpS0uiD9zPEbf5RvQeo0dObsW5fUyJje6Vak0lY +XKpcV88bPBjixi4CeSgBXZKFeO8WRv/wN2Uh2zMrwysbVFw7DTuKHINXeAChG7R rcYqbqHpgWViCbwTFYOywU939Uk2lamI95WoJFtGgDeaNIHjKxAoGJ6NHUiteyIe oBgHBE8pVbKGN3PODGgbzLSewY52IYtf0m4t+TtXW+Awqpfa1yIFqosreIXFkyqi aoP/k5Zshx1DL3Z0YzrQ/blfXnUd7ZkwyMFbl9yus+iukJtz4jPoty7GGvLPU0pK Wg40AeKDJco07+Li1oynl7AclwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP23qLo5 y+nratWdlf/vaNyOGA0TMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABou4WyHCj/pr0p0Fw4i8K4/pvKDenk6+bnMFCrzJ53sFAwxfQzE9V D5iQT/RBOvQnvzuSUiL4PEO1XrGuS6E4qqgLL6Xs6Hzg2+5YEn3V8KkfMdinp7mA ldjbJt04Zx8t67MR4DN85HTcxl35BFCGT+sF+0vWb/u/vn4RZ80Ijpo+GhHaBNS5 b+Jtv3/CjiPoJjVrOY9Fapm7XMCF2Aeg8rFufTe2sBVcrqivr0Sw5EEUgwkATiEr yhP19u5LfoWCIGhXGulpocXv2/yZ8YPnS2CaUlIrFaBbAauPRMd9ueL4Ok08GGsv Kn/CbjpauoKZDWezSB0lYW0hMvBeR4h1 -----END CERTIFICATE-----Generated at Tue Nov 4 16:30:18 2025 by rpki-client