$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: i9mx/tSJvPiXS7JyUWpxEyGVMC6e1oHKQGJ/IK0a5JE= Subject key identifier: 66:14:11:7D:46:80:4C:6C:F8:50:9E:46:EA:18:A6:77:01:E8:72:45 Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 34DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 34B5 Signing time: Sat 14 Jun 2025 14:43:20 +0000 Manifest this update: Sat 14 Jun 2025 14:43:20 +0000 Manifest next update: Sat 21 Jun 2025 14:43:20 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: u44Xk9GUqmT1GzUpnqb7POZ6ISxourFUfBb1kj7BBG8=) 2: A5FDB194C68611EFB4077137C4F9AE02.roa (hash: 7I8kXqSxz+6NjutJQZnEdYEeWA6i5ZbGEU7PIpXyo/8=) 3: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: lagg7XqNxsfyb1w3gTP+tCUMQSRTn5F81GdacPwOxBo=) 4: A582509EC68611EFB4077137C4F9AE02.roa (hash: 64CAbdllSyxCx8brqJo5EHBLoAmhatUaDGkIKThzCKI=) 5: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (hash: dC278Jasv16ABeBncckRYaabj45oiL9uCdUDcCgUOqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:43:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13535 (0x34df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Jun 14 14:43:20 2025 GMT Not After : Jun 21 14:43:20 2025 GMT Subject: CN=684d8a88-52b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:cb:61:07:e7:32:28:0e:08:07:6e:f5:93:39: f5:05:89:d3:34:59:76:cb:db:5c:e3:62:d9:29:3b: 7d:d9:13:28:02:b5:81:1a:91:54:9c:f8:c1:6e:29: 08:e1:3b:2c:f9:e6:f0:83:c6:54:7a:66:56:28:40: 84:b1:f0:26:cb:bd:e7:d4:40:5c:c5:fc:18:a4:bc: 13:86:96:d8:9f:8e:3d:d4:60:f0:9e:86:5e:0f:b6: fe:85:4f:2a:cf:37:3f:ec:1f:e6:a1:b9:9a:b3:2b: 61:5b:1c:a5:4d:31:97:97:ee:80:a0:85:37:c3:a9: 45:88:24:cc:bf:54:8a:4d:c8:76:ba:fa:f3:26:d5: ad:83:29:0b:3f:f4:36:43:47:fc:91:aa:95:63:80: 96:e7:c3:c0:77:f1:de:85:19:9e:82:70:f6:6e:95: fc:93:a0:43:06:26:2d:c1:9c:e3:94:d8:b5:c1:8c: 31:82:88:cc:96:03:50:82:93:ee:9a:50:d1:72:f8: 9a:a3:80:55:5a:79:d4:1d:e1:41:23:d3:b3:0c:f7: 55:52:b9:3c:54:f6:49:8e:5e:ac:bc:77:87:18:a6: 11:1d:ff:78:b6:98:f4:e4:9c:b8:26:ea:e0:66:4b: 50:a7:fa:c8:61:93:07:f5:04:90:f8:dd:be:c9:7a: aa:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:14:11:7D:46:80:4C:6C:F8:50:9E:46:EA:18:A6:77:01:E8:72:45 X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:3e:09:8e:08:68:39:5e:04:b7:5f:e4:e0:5a:72:d4:43:7e: ef:b2:88:0b:1b:96:3b:c8:8f:db:fb:ac:4e:61:9a:5b:f7:bc: b6:30:e8:10:8f:5d:bc:11:53:26:df:7f:38:8a:bc:ff:75:b5: 41:f8:f9:57:e9:c6:ca:9d:52:fb:b7:82:b3:20:6f:41:8d:62: ce:00:c9:c6:de:d4:fb:1b:e3:7c:d5:48:47:06:02:80:70:a9: c5:35:49:14:21:80:19:ab:e2:ef:34:6a:13:e4:0e:93:36:4e: 1b:1a:97:03:40:e5:d8:44:7d:5d:2c:63:d8:0e:55:74:46:ac: 38:37:6a:00:7e:e8:05:52:21:cc:e4:29:6e:fa:5e:83:ef:45: 7b:ff:05:52:c0:14:75:7a:14:30:0d:fd:d6:20:ba:0c:2a:16: ee:83:c5:bc:dc:09:3b:5f:4c:40:93:b9:f0:65:e4:e6:2c:4c: 2b:bc:d6:f6:3a:e0:4c:71:09:9a:20:c1:61:97:42:bc:5d:b8: c5:96:9f:3c:2f:8f:3c:5b:b4:d6:53:7e:73:95:d4:1b:6c:73: 45:41:6e:4f:68:bc:68:85:4f:3c:a3:45:de:2d:cf:a3:eb:d6: 9a:65:ff:f2:08:b1:74:51:8f:01:0a:fe:c8:ae:ce:2a:3e:76: b9:2a:90:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUwNjE0MTQ0MzIwWhcNMjUwNjIxMTQ0MzIwWjAYMRYwFAYD VQQDEw02ODRkOGE4OC01MmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8thB+cyKA4IB271kzn1BYnTNFl2y9tc42LZKTt92RMoArWBGpFUnPjBbikI 4Tss+ebwg8ZUemZWKECEsfAmy73n1EBcxfwYpLwThpbYn4491GDwnoZeD7b+hU8q zzc/7B/mobmasythWxylTTGXl+6AoIU3w6lFiCTMv1SKTch2uvrzJtWtgykLP/Q2 Q0f8kaqVY4CW58PAd/HehRmegnD2bpX8k6BDBiYtwZzjlNi1wYwxgojMlgNQgpPu mlDRcviao4BVWnnUHeFBI9OzDPdVUrk8VPZJjl6svHeHGKYRHf94tpj05Jy4Jurg ZktQp/rIYZMH9QSQ+N2+yXqqNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYUEX1G gExs+FCeRuoYpncB6HJFMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcPgmOCGg5XgS3X+TgWnLUQ37vsogLG5Y7yI/b+6xOYZpb97y2MOgQ j128EVMm3384irz/dbVB+PlX6cbKnVL7t4KzIG9BjWLOAMnG3tT7G+N81UhHBgKA cKnFNUkUIYAZq+LvNGoT5A6TNk4bGpcDQOXYRH1dLGPYDlV0Rqw4N2oAfugFUiHM 5Clu+l6D70V7/wVSwBR1ehQwDf3WILoMKhbug8W83Ak7X0xAk7nwZeTmLEwrvNb2 OuBMcQmaIMFhl0K8XbjFlp88L488W7TWU35zldQbbHNFQW5PaLxohU88o0XeLc+j 69aaZf/yCLF0UY8BCv7Irs4qPna5KpB7 -----END CERTIFICATE-----Generated at Sat Jun 14 18:47:34 2025 by rpki-client