$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: ss1WGn8ddQcglJXwIdtdV5K5TiAY/GEkCPmMkNF4z9U= Subject key identifier: 1A:52:41:AC:03:DF:F5:63:F7:AF:1B:B4:2A:D1:2E:1A:D7:B0:22:28 Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 0346 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 0340 Signing time: Thu 03 Jul 2025 01:24:37 +0000 Manifest this update: Thu 03 Jul 2025 01:24:36 +0000 Manifest next update: Thu 10 Jul 2025 01:24:36 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: gAKT7l55EDtiv1/nB86R6be3wsj19Ru4UWe7HVC4iao=) 2: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: hQOYHlCjx2ScuN+oMwFJ/ejTbPq4orU4F7qi3kUTHdM=) 3: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: 7Gmx6aG6mVa6tW4ZmRdx25+Dm056uxm4nK4BIHzJbm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 838 (0x346) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71, serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: Jul 3 01:24:36 2025 GMT Not After : Jul 10 01:24:36 2025 GMT Subject: CN=6865dbd5-bbf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:44:f4:93:1f:07:ab:2e:02:11:48:74:37:85: c5:68:5c:90:7e:da:17:54:8c:9d:31:55:61:ae:6b: e8:0b:7a:05:f2:f4:bb:e5:5b:05:92:14:22:d7:56: 80:02:1e:41:cc:06:f7:44:28:0a:3b:52:c5:b4:7c: c9:96:4b:fa:03:e5:de:d6:9f:89:86:71:d8:26:dd: 3f:55:37:eb:50:f0:be:33:96:84:31:17:fc:5b:73: a4:3d:27:57:6c:43:b7:1c:24:ba:21:f8:17:fe:3e: f9:4a:5f:ec:56:69:0d:d0:0d:35:84:0f:5a:69:3b: ad:dc:f6:a2:11:cb:d8:80:7f:ea:03:b1:60:ed:5e: 36:a4:12:88:fd:53:c0:68:2e:40:80:44:13:ab:45: fc:6d:2c:30:73:c4:94:19:62:e1:4e:3c:af:a6:14: db:81:9b:ed:46:a2:20:fa:ef:6c:58:b8:1b:94:3d: 3a:2b:dc:69:27:3e:14:0f:f7:9d:1d:bb:54:e9:69: 43:65:f2:95:2d:5d:61:70:ad:5c:05:32:bf:be:43: 93:a8:3a:b5:fe:db:d1:53:e0:0b:95:85:5c:46:be: dc:d3:a0:4e:76:65:3f:43:04:01:9a:06:9b:42:e5: df:af:fe:62:0d:15:36:51:db:c0:a1:a8:37:f5:1e: a5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:52:41:AC:03:DF:F5:63:F7:AF:1B:B4:2A:D1:2E:1A:D7:B0:22:28 X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:56:a6:e0:c8:08:c8:53:98:c9:f0:82:61:4d:0e:ea:f9:5b: 1b:a8:db:a9:c9:58:80:f9:ea:7c:1b:ac:26:c9:f8:63:4c:cf: 74:64:ed:c6:70:e2:d2:44:ce:dc:a2:ab:0a:f5:34:95:46:de: dc:29:37:85:a8:4e:2e:cc:8e:ed:8a:bb:79:2b:32:38:93:4e: 8a:4c:8f:6e:09:3e:2b:bd:4e:f5:24:06:6f:15:29:ab:3b:16: 7e:5d:67:4a:44:b2:ab:f4:e6:0f:a6:45:be:2c:66:f9:bf:59: 7c:10:9a:35:de:2f:d1:f3:f5:f9:9a:3d:59:6b:7d:49:7f:e7: 59:73:2e:4c:07:4f:c1:ed:f7:1b:f7:30:69:87:56:e2:ae:47: 52:63:9e:65:ff:7e:ea:bb:e7:6a:ef:13:05:7e:2a:ee:c7:4f: 98:f6:12:ae:c0:73:dc:86:cd:a4:87:03:94:56:96:19:11:4b: b7:63:c7:d3:b6:db:b8:0b:ce:79:02:7c:2f:b9:4d:25:65:db: 50:17:bf:5f:58:b9:d9:d2:63:b9:0d:7a:85:cc:77:32:5c:f2: 4d:2f:e5:51:11:1d:04:9b:6b:ed:3b:9e:a7:d3:c0:65:f4:c3: f1:cd:ba:89:ae:ed:3a:00:1a:f5:ae:e3:7d:10:ae:90:32:10: 93:5d:18:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjUwNzAzMDEyNDM2WhcNMjUwNzEwMDEyNDM2WjAYMRYwFAYD VQQDEw02ODY1ZGJkNS1iYmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3UT0kx8Hqy4CEUh0N4XFaFyQftoXVIydMVVhrmvoC3oF8vS75VsFkhQi11aA Ah5BzAb3RCgKO1LFtHzJlkv6A+Xe1p+JhnHYJt0/VTfrUPC+M5aEMRf8W3OkPSdX bEO3HCS6IfgX/j75Sl/sVmkN0A01hA9aaTut3PaiEcvYgH/qA7Fg7V42pBKI/VPA aC5AgEQTq0X8bSwwc8SUGWLhTjyvphTbgZvtRqIg+u9sWLgblD06K9xpJz4UD/ed HbtU6WlDZfKVLV1hcK1cBTK/vkOTqDq1/tvRU+ALlYVcRr7c06BOdmU/QwQBmgab QuXfr/5iDRU2UdvAoag39R6lrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpSQawD 3/Vj968btCrRLhrXsCIoMB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtVqbgyAjIU5jJ8IJhTQ7q+VsbqNupyViA+ep8G6wmyfhjTM90ZO3G cOLSRM7coqsK9TSVRt7cKTeFqE4uzI7tirt5KzI4k06KTI9uCT4rvU71JAZvFSmr OxZ+XWdKRLKr9OYPpkW+LGb5v1l8EJo13i/R8/X5mj1Za31Jf+dZcy5MB0/B7fcb 9zBph1birkdSY55l/37qu+dq7xMFfirux0+Y9hKuwHPchs2khwOUVpYZEUu3Y8fT ttu4C855AnwvuU0lZdtQF79fWLnZ0mO5DXqFzHcyXPJNL+VRER0Em2vtO56n08Bl 9MPxzbqJru06ABr1ruN9EK6QMhCTXRhx -----END CERTIFICATE-----Generated at Thu Jul 3 08:52:24 2025 by rpki-client