$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: Tuj7E4iHYf7XOnw1baA2l4chEJCWLCDvq9gdlLwQWPI= Subject key identifier: 4B:35:43:04:49:E8:64:DC:F1:F5:F3:9F:43:75:12:C4:60:F6:28:4E Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 0360 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 035A Signing time: Sat 23 Aug 2025 01:13:14 +0000 Manifest this update: Sat 23 Aug 2025 01:13:14 +0000 Manifest next update: Sat 30 Aug 2025 01:13:14 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: 8ejnaPayT3vsVLXClAdOQwhv4GhnElu8FjWY56hCYW4=) 2: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: hQOYHlCjx2ScuN+oMwFJ/ejTbPq4orU4F7qi3kUTHdM=) 3: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: 7Gmx6aG6mVa6tW4ZmRdx25+Dm056uxm4nK4BIHzJbm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 864 (0x360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71, serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: Aug 23 01:13:14 2025 GMT Not After : Aug 30 01:13:14 2025 GMT Subject: CN=68a915aa-1ba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ee:8c:e1:06:ed:d9:20:00:f2:eb:19:3d:d3: 19:8a:9a:f3:fd:d0:01:59:2d:07:4c:5c:1f:c2:01: 52:74:74:dc:d8:50:0b:56:5d:e8:91:59:60:d9:3f: 1b:e4:42:62:b0:80:a7:05:57:4f:79:2f:73:da:0f: 8e:73:cc:09:bf:1c:b9:ea:bd:5f:31:72:7f:79:87: 86:f9:36:b8:d2:5e:7f:77:42:7e:39:af:d0:fc:06: f2:01:0b:5d:c6:bd:92:c0:6a:a2:94:ed:47:54:80: ff:9c:aa:50:66:64:6c:6b:99:61:42:9f:20:16:47: 53:52:aa:41:7f:21:48:33:22:0f:00:fe:27:04:40: 4c:da:98:65:d7:77:5a:e8:59:fc:32:d7:da:b4:80: 7b:e2:99:48:4d:b4:57:1f:7b:43:94:0c:81:62:46: 95:24:b8:7e:5a:17:a3:59:b6:c2:37:ed:d5:03:4f: 97:56:d4:2b:80:2b:2f:cc:1d:0d:7b:3d:f3:61:bc: 25:28:5f:8d:1e:9a:86:c1:b0:e3:bc:03:dc:61:69: 10:2f:bd:6b:63:d6:da:4f:29:27:d3:45:dd:a4:53: 4b:c6:46:3c:af:bc:ae:07:9e:ba:a9:e2:9e:d9:1b: 7d:6e:6c:b5:70:74:8b:63:e9:01:ca:18:46:2f:c8: 46:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:35:43:04:49:E8:64:DC:F1:F5:F3:9F:43:75:12:C4:60:F6:28:4E X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:0b:12:5c:8a:60:e1:89:9d:f3:36:b7:e5:fa:1e:5d:76:0f: e6:9c:48:ba:c4:f4:d0:51:32:43:fc:74:79:77:2f:05:42:9e: a0:b9:70:7d:7c:f0:cd:47:1d:ff:c3:6d:f1:a7:8c:54:99:2c: ec:3e:4e:fb:d8:ae:cb:a9:45:74:0c:3c:f9:73:04:52:31:70: 2d:bc:96:b3:53:ad:14:06:4d:6e:9b:24:b8:06:49:59:58:f8: a7:3e:92:79:4b:4f:c1:47:18:df:bb:6e:e2:fc:e6:b3:c1:34: cd:fa:76:fe:87:e2:f3:87:b9:36:87:e5:1f:32:17:b4:3e:e4: 42:ef:e5:e1:45:b9:7c:2e:83:20:05:bf:61:81:17:89:e3:e7: f5:3f:ef:81:cf:ad:7c:9c:c5:88:09:53:be:e2:14:cc:ea:18: fb:a3:f5:2d:13:e4:3d:68:f2:41:c9:70:e8:4f:94:7e:5d:7e: c6:c2:4b:53:e4:96:a5:83:1b:4c:7c:73:91:e3:8e:e9:03:aa: 6d:e4:9c:46:6c:a0:fa:6b:8f:4d:6e:ac:f3:ec:1e:32:90:05: a2:01:52:ad:3d:8a:c9:5f:9e:34:71:61:3a:82:2e:2c:bb:17: 7e:88:e5:04:4c:61:d7:8f:7a:36:bb:52:ac:c0:bb:9d:6f:d8: 17:6f:ca:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjUwODIzMDExMzE0WhcNMjUwODMwMDExMzE0WjAYMRYwFAYD VQQDEw02OGE5MTVhYS0xYmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAve6M4Qbt2SAA8usZPdMZiprz/dABWS0HTFwfwgFSdHTc2FALVl3okVlg2T8b 5EJisICnBVdPeS9z2g+Oc8wJvxy56r1fMXJ/eYeG+Ta40l5/d0J+Oa/Q/AbyAQtd xr2SwGqilO1HVID/nKpQZmRsa5lhQp8gFkdTUqpBfyFIMyIPAP4nBEBM2phl13da 6Fn8MtfatIB74plITbRXH3tDlAyBYkaVJLh+WhejWbbCN+3VA0+XVtQrgCsvzB0N ez3zYbwlKF+NHpqGwbDjvAPcYWkQL71rY9baTykn00XdpFNLxkY8r7yuB566qeKe 2Rt9bmy1cHSLY+kByhhGL8hGQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEs1QwRJ 6GTc8fXzn0N1EsRg9ihOMB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADCxJcimDhiZ3zNrfl+h5ddg/mnEi6xPTQUTJD/HR5dy8FQp6guXB9 fPDNRx3/w23xp4xUmSzsPk772K7LqUV0DDz5cwRSMXAtvJazU60UBk1umyS4BklZ WPinPpJ5S0/BRxjfu27i/OazwTTN+nb+h+Lzh7k2h+UfMhe0PuRC7+XhRbl8LoMg Bb9hgReJ4+f1P++Bz618nMWICVO+4hTM6hj7o/UtE+Q9aPJByXDoT5R+XX7GwktT 5JalgxtMfHOR447pA6pt5JxGbKD6a49Nbqzz7B4ykAWiAVKtPYrJX540cWE6gi4s uxd+iOUETGHXj3o2u1KswLudb9gXb8q0 -----END CERTIFICATE-----Generated at Sun Aug 24 03:37:52 2025 by rpki-client