$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: KEd+MZTd5N2NcqO8FFkpLW1+LXbpnhcpKy8TBzclA04= Subject key identifier: 6C:96:FB:1A:B1:46:4C:60:80:7B:CE:44:AC:E9:5A:1C:D2:87:63:B9 Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 032E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 0328 Signing time: Thu 15 May 2025 01:08:52 +0000 Manifest this update: Thu 15 May 2025 01:08:51 +0000 Manifest next update: Thu 22 May 2025 01:08:51 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: FxxbhypvfYQcRvyDSpVzH9WOidYVYOSDTMMgrJ5OHNg=) 2: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: hQOYHlCjx2ScuN+oMwFJ/ejTbPq4orU4F7qi3kUTHdM=) 3: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: 7Gmx6aG6mVa6tW4ZmRdx25+Dm056uxm4nK4BIHzJbm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 814 (0x32e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71, serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: May 15 01:08:51 2025 GMT Not After : May 22 01:08:51 2025 GMT Subject: CN=68253ea3-c727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:93:d1:1d:58:ff:44:26:24:fe:e7:6d:9d:31: 50:75:4f:35:46:4f:2a:6d:55:b9:f8:4e:63:2c:09: 5a:58:c6:23:3a:96:4f:1a:36:f8:30:ca:d7:ee:4e: 01:fc:10:69:59:52:68:e3:8d:dc:57:69:8f:39:b5: 59:ed:6a:92:4e:fe:47:04:73:fb:cd:27:f8:62:f6: 71:f4:4e:a2:ef:29:1f:e4:c0:90:25:dd:a9:04:03: 17:21:7a:5c:82:1e:52:99:d5:97:03:14:39:c2:32: 9f:82:e1:f4:43:8d:ee:c5:84:5f:a4:20:58:59:21: 40:8a:ff:01:d8:dc:84:a2:e0:8d:ec:bc:f8:b8:71: 93:44:7d:c4:d0:b0:3c:60:57:f2:55:eb:74:f1:09: b7:bf:07:d4:d0:87:c6:1f:f5:f4:3b:6f:6e:91:fa: 88:72:46:dd:cf:8d:37:b8:34:c3:84:54:dd:74:7a: dc:99:79:2e:44:fe:7c:41:bf:3f:3b:c0:22:9f:8c: 3c:cb:00:ec:d7:6b:ec:0e:65:6f:47:0d:38:fc:cb: 27:01:7a:bd:02:69:5b:e7:1c:e9:7c:24:cb:43:94: 96:3a:6a:b8:0b:cf:0c:bb:f2:84:5b:32:05:ae:db: 1f:f4:18:14:a2:38:5c:22:4d:65:7f:5a:d7:b4:09: 97:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:96:FB:1A:B1:46:4C:60:80:7B:CE:44:AC:E9:5A:1C:D2:87:63:B9 X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:8c:d2:87:36:16:95:5d:e4:b3:0d:2f:37:87:5f:7c:e7:80: 4c:89:20:7d:1e:1d:da:9f:ec:56:97:f0:0d:34:37:9c:d0:af: d7:e8:67:28:84:13:3c:25:0a:c6:85:fb:88:f8:85:c5:60:5f: 5d:85:74:db:a6:74:54:a6:d8:1e:38:af:3b:62:e0:06:e7:fd: 87:3d:c7:a3:40:59:86:cf:85:c6:f9:cd:97:48:d1:10:24:b1: 81:f1:39:6c:41:c8:25:bb:99:b2:6b:c6:fa:aa:d6:f9:f4:95: 34:21:d4:a6:c9:17:88:79:db:9f:b7:0d:4d:56:b7:e7:2d:e0: fe:96:6b:cf:76:7f:db:6a:3e:d1:7d:b8:f5:d6:d6:3a:5d:b0: b2:80:83:f8:ca:4d:47:ea:f9:6c:94:29:b8:64:26:7f:5c:cf: a0:dd:66:23:54:13:56:c7:81:84:f9:0b:a8:24:79:4b:90:dc: ba:27:08:f8:56:a4:11:d5:83:2f:9f:80:24:00:1d:f3:de:1a: d2:69:16:b3:fa:49:b6:6f:3c:0b:d4:fb:fe:17:a5:0b:ed:37: ec:1f:6e:7a:3a:b4:6d:87:ca:46:32:86:f7:e6:92:22:f3:d0: 47:98:e2:c3:b7:7b:33:75:b0:f3:f8:a2:0e:1d:58:06:26:a6: 71:7b:0c:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjUwNTE1MDEwODUxWhcNMjUwNTIyMDEwODUxWjAYMRYwFAYD VQQDEw02ODI1M2VhMy1jNzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZPRHVj/RCYk/udtnTFQdU81Rk8qbVW5+E5jLAlaWMYjOpZPGjb4MMrX7k4B /BBpWVJo443cV2mPObVZ7WqSTv5HBHP7zSf4YvZx9E6i7ykf5MCQJd2pBAMXIXpc gh5SmdWXAxQ5wjKfguH0Q43uxYRfpCBYWSFAiv8B2NyEouCN7Lz4uHGTRH3E0LA8 YFfyVet08Qm3vwfU0IfGH/X0O29ukfqIckbdz403uDTDhFTddHrcmXkuRP58Qb8/ O8Ain4w8ywDs12vsDmVvRw04/MsnAXq9Amlb5xzpfCTLQ5SWOmq4C88Mu/KEWzIF rtsf9BgUojhcIk1lf1rXtAmX2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGyW+xqx RkxggHvORKzpWhzSh2O5MB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsjNKHNhaVXeSzDS83h19854BMiSB9Hh3an+xWl/ANNDec0K/X6Gco hBM8JQrGhfuI+IXFYF9dhXTbpnRUptgeOK87YuAG5/2HPcejQFmGz4XG+c2XSNEQ JLGB8TlsQcglu5mya8b6qtb59JU0IdSmyReIeduftw1NVrfnLeD+lmvPdn/baj7R fbj11tY6XbCygIP4yk1H6vlslCm4ZCZ/XM+g3WYjVBNWx4GE+QuoJHlLkNy6Jwj4 VqQR1YMvn4AkAB3z3hrSaRaz+km2bzwL1Pv+F6UL7TfsH256OrRth8pGMob35pIi 89BHmOLDt3szdbDz+KIOHVgGJqZxewwN -----END CERTIFICATE-----Generated at Fri May 16 07:12:29 2025 by rpki-client