$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: 4+Ply/+/A0GzLn2auGKWaxRKhIeju3q87ozTsheHdp0= Subject key identifier: 98:4F:A2:B8:CE:2C:66:78:D4:87:6B:D4:98:D1:31:8F:82:BF:96:87 Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 34C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 349B Signing time: Thu 24 Apr 2025 14:43:11 +0000 Manifest this update: Thu 24 Apr 2025 14:43:10 +0000 Manifest next update: Thu 01 May 2025 14:43:10 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: EMg7bj1AUR7JliGqAjgGLGDESIciN7cd2e9e2GRi+9M=) 2: A5FDB194C68611EFB4077137C4F9AE02.roa (hash: 7I8kXqSxz+6NjutJQZnEdYEeWA6i5ZbGEU7PIpXyo/8=) 3: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: lagg7XqNxsfyb1w3gTP+tCUMQSRTn5F81GdacPwOxBo=) 4: A582509EC68611EFB4077137C4F9AE02.roa (hash: 64CAbdllSyxCx8brqJo5EHBLoAmhatUaDGkIKThzCKI=) 5: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (hash: dC278Jasv16ABeBncckRYaabj45oiL9uCdUDcCgUOqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:43:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13509 (0x34c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Apr 24 14:43:10 2025 GMT Not After : May 1 14:43:10 2025 GMT Subject: CN=680a4dfe-f407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bf:3d:cd:30:b6:b0:74:65:24:bf:10:8b:39: 80:b5:fe:a7:28:e3:51:5e:bc:29:07:c2:f5:29:85: 0d:d7:00:9f:3e:63:c2:32:c1:12:3b:4a:42:3f:53: 95:be:0c:7e:31:5d:78:e9:c1:9c:df:e4:d2:30:68: 9e:23:77:6e:ac:80:94:17:b5:65:b2:1f:a0:e8:d6: b6:c2:da:5a:dc:6a:9f:e0:cf:c3:4a:2e:9c:ed:f7: 76:79:f6:e9:d6:fb:2f:ec:3e:10:3a:a4:fc:46:f8: 29:75:56:f0:f1:ca:b1:bc:c7:da:07:e0:f0:b7:56: 87:6a:f6:c1:6e:12:80:e7:fe:c0:dd:0d:15:06:3a: e4:a7:ed:c8:fb:b3:fc:dd:f8:1e:44:98:af:1a:27: 46:81:3d:6b:6c:7c:cd:35:ff:fd:15:f8:8f:44:8f: df:0b:45:29:69:bb:3c:05:4a:d2:de:fd:1b:d3:c9: 0d:94:aa:e6:de:be:bf:8e:f0:30:81:d4:f1:24:73: cd:f2:a5:fa:7b:04:68:62:e3:5b:ea:0a:a1:ee:af: 77:e4:19:13:53:2d:2d:7e:3c:f8:c6:b8:ad:f1:12: 40:eb:5b:cb:eb:ad:99:38:b7:a4:dc:a4:ea:2b:89: 9f:00:eb:14:72:ae:8a:5d:84:16:cb:9f:36:eb:52: ba:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:4F:A2:B8:CE:2C:66:78:D4:87:6B:D4:98:D1:31:8F:82:BF:96:87 X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:f1:9d:6f:25:b5:d9:24:b4:25:0e:1b:7e:51:b4:3a:e9:0c: 17:ed:71:45:bb:3a:fe:79:20:df:4c:fc:34:ca:c6:9b:78:76: 5d:cd:1b:ca:b5:a3:5a:fc:db:05:bc:3d:e8:5a:c2:21:16:6d: 49:6f:ed:e7:a5:0a:89:25:cc:53:6c:c0:db:70:3b:d6:31:5b: 06:c9:79:12:53:da:8e:b2:c2:57:23:ab:1e:ba:af:28:ca:f2: 2f:22:d4:e0:64:f1:d2:0f:2a:0f:75:a2:2b:76:f2:4b:51:3c: b7:2f:b9:33:2b:9e:9f:88:c1:4f:07:30:db:91:bb:2b:42:a1: a5:07:5d:84:b5:67:c3:13:92:9d:ed:a6:0b:30:b6:15:46:73: 0b:51:04:2a:70:8d:0a:29:2a:71:01:48:b6:c7:7e:eb:8a:e6: b4:04:53:72:ad:93:b8:4a:7c:e3:d2:14:a8:e3:7e:48:6f:99: 7a:4b:a3:36:02:e0:c4:06:4d:a1:5e:d3:fe:e1:8a:ad:49:61: 89:28:13:0a:08:ba:2e:6f:d8:67:f8:83:30:e3:12:1a:61:22: 14:2c:5a:40:5c:20:72:a3:38:e7:dd:3b:d7:3d:45:27:0c:39: 7c:62:1c:dd:8d:c7:07:4e:88:72:42:86:4b:9a:ff:e6:55:30: 12:7a:0b:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUwNDI0MTQ0MzEwWhcNMjUwNTAxMTQ0MzEwWjAYMRYwFAYD VQQDEw02ODBhNGRmZS1mNDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvL89zTC2sHRlJL8QizmAtf6nKONRXrwpB8L1KYUN1wCfPmPCMsESO0pCP1OV vgx+MV146cGc3+TSMGieI3durICUF7Vlsh+g6Na2wtpa3Gqf4M/DSi6c7fd2efbp 1vsv7D4QOqT8RvgpdVbw8cqxvMfaB+Dwt1aHavbBbhKA5/7A3Q0VBjrkp+3I+7P8 3fgeRJivGidGgT1rbHzNNf/9FfiPRI/fC0Upabs8BUrS3v0b08kNlKrm3r6/jvAw gdTxJHPN8qX6ewRoYuNb6gqh7q935BkTUy0tfjz4xrit8RJA61vL662ZOLek3KTq K4mfAOsUcq6KXYQWy58261K6YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhPorjO LGZ41Idr1JjRMY+Cv5aHMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG8Z1vJbXZJLQlDht+UbQ66QwX7XFFuzr+eSDfTPw0ysabeHZdzRvK taNa/NsFvD3oWsIhFm1Jb+3npQqJJcxTbMDbcDvWMVsGyXkSU9qOssJXI6seuq8o yvIvItTgZPHSDyoPdaIrdvJLUTy3L7kzK56fiMFPBzDbkbsrQqGlB12EtWfDE5Kd 7aYLMLYVRnMLUQQqcI0KKSpxAUi2x37riua0BFNyrZO4Snzj0hSo435Ib5l6S6M2 AuDEBk2hXtP+4YqtSWGJKBMKCLoub9hn+IMw4xIaYSIULFpAXCByozjn3TvXPUUn DDl8YhzdjccHTohyQoZLmv/mVTASegs4 -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:01 2025 by rpki-client