$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: YJNtP/6dLMXKJMbs6MY6AKp0XOesEuE22aNNRg77QUw= Subject key identifier: C8:DF:00:17:BF:23:BD:76:7A:80:45:E6:C4:09:9F:06:34:2C:08:56 Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 037D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 0377 Signing time: Sun 19 Oct 2025 02:53:41 +0000 Manifest this update: Sun 19 Oct 2025 02:53:40 +0000 Manifest next update: Sun 26 Oct 2025 02:53:40 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: QGVmEpHx34QqUDtaLRcbx2bngDkVOrc6WynnnISiDEU=) 2: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: hQOYHlCjx2ScuN+oMwFJ/ejTbPq4orU4F7qi3kUTHdM=) 3: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: 7Gmx6aG6mVa6tW4ZmRdx25+Dm056uxm4nK4BIHzJbm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 893 (0x37d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71, serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: Oct 19 02:53:40 2025 GMT Not After : Oct 26 02:53:40 2025 GMT Subject: CN=68f452b4-ad95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:60:92:62:aa:9a:e5:ed:f9:e1:19:1a:d1:c0: a4:b4:43:86:77:d0:b7:ab:0a:39:bd:59:a8:e4:5a: e5:09:7d:de:b3:87:ec:f4:9a:14:c8:00:4b:4f:89: 89:ea:f5:e8:bc:8c:ec:0b:ca:38:3e:20:1f:bc:08: 68:0b:c3:d7:42:4d:d5:1f:21:83:8e:d3:ad:1e:34: f6:27:79:f2:b8:01:88:47:84:48:77:d1:ee:06:a7: 1a:e2:f9:99:27:48:30:a9:6f:c7:9c:3d:0c:c1:f7: 9c:99:f4:6f:9e:db:ab:42:f1:fe:69:6c:fa:2f:52: a9:c3:be:b8:0d:b1:14:ab:c4:b1:26:50:19:dc:56: 41:bd:38:f5:7a:cb:f3:62:af:0a:47:9b:f7:c5:9d: 5c:21:57:4f:4d:19:ac:1f:c9:d0:81:d4:75:7f:d6: 70:10:7b:ac:c1:81:b0:ca:ea:26:6a:6b:c8:a7:f3: d8:41:31:47:db:f2:84:4c:7b:7d:33:ec:b8:55:3f: 0c:b0:22:c2:f7:d4:39:e6:48:ae:a2:bc:56:4e:78: 67:8a:19:d1:f9:51:f4:a0:6d:94:c0:19:a7:63:90: 44:f3:a3:66:dd:da:34:99:06:e1:45:d8:ab:6e:f1: 24:6b:b9:3a:1f:b2:2f:15:67:39:c4:0c:09:20:04: 5f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:DF:00:17:BF:23:BD:76:7A:80:45:E6:C4:09:9F:06:34:2C:08:56 X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:3c:9c:79:42:65:f4:c3:5b:f2:fe:5b:6a:30:e2:bd:14:7f: 9d:84:42:8f:bc:e7:7d:3d:92:f4:30:cb:28:fc:41:ab:6f:9a: bf:c7:2e:d6:0c:35:98:0f:35:16:72:f3:0d:ef:6c:52:1d:a7: 25:01:12:0b:7b:09:ff:80:38:4c:55:c9:41:8d:26:63:a1:9a: 95:a1:cb:e1:8d:19:f0:7e:88:70:49:83:3e:d7:65:12:63:cc: 48:c4:a1:31:de:dc:5e:69:7c:d5:b8:04:01:ee:62:dd:f9:bd: 11:c0:24:86:34:51:4b:d9:37:d1:01:89:bb:90:08:30:3b:bb: b2:df:cd:d7:bc:31:81:4e:c4:95:22:13:98:f5:5d:56:7d:5a: 5e:d7:70:ac:87:7a:32:ac:7f:64:a7:bf:ec:52:cb:2c:58:88: 1e:25:3d:a9:54:c9:0e:73:8f:e0:75:a3:b8:1b:88:e1:30:f4: f8:ec:94:1e:88:0d:d6:8f:e4:40:55:cb:69:40:ac:d7:8d:36: 6d:91:1b:b6:61:04:23:32:d4:aa:47:4f:20:c2:c3:95:92:88: ec:ed:7f:69:2a:ca:12:f7:ba:ef:ca:83:14:5c:76:47:e8:0e: 0b:31:47:2a:c3:91:a8:44:bc:48:5a:2d:3e:f3:e9:e9:33:9c: de:95:af:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjUxMDE5MDI1MzQwWhcNMjUxMDI2MDI1MzQwWjAYMRYwFAYD VQQDEw02OGY0NTJiNC1hZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWCSYqqa5e354Rka0cCktEOGd9C3qwo5vVmo5FrlCX3es4fs9JoUyABLT4mJ 6vXovIzsC8o4PiAfvAhoC8PXQk3VHyGDjtOtHjT2J3nyuAGIR4RId9HuBqca4vmZ J0gwqW/HnD0MwfecmfRvnturQvH+aWz6L1Kpw764DbEUq8SxJlAZ3FZBvTj1esvz Yq8KR5v3xZ1cIVdPTRmsH8nQgdR1f9ZwEHuswYGwyuomamvIp/PYQTFH2/KETHt9 M+y4VT8MsCLC99Q55kiuorxWTnhnihnR+VH0oG2UwBmnY5BE86Nm3do0mQbhRdir bvEka7k6H7IvFWc5xAwJIARf4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjfABe/ I712eoBF5sQJnwY0LAhWMB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpPJx5QmX0w1vy/ltqMOK9FH+dhEKPvOd9PZL0MMso/EGrb5q/xy7W DDWYDzUWcvMN72xSHaclARILewn/gDhMVclBjSZjoZqVocvhjRnwfohwSYM+12US Y8xIxKEx3txeaXzVuAQB7mLd+b0RwCSGNFFL2TfRAYm7kAgwO7uy383XvDGBTsSV IhOY9V1WfVpe13Csh3oyrH9kp7/sUsssWIgeJT2pVMkOc4/gdaO4G4jhMPT47JQe iA3Wj+RAVctpQKzXjTZtkRu2YQQjMtSqR08gwsOVkojs7X9pKsoS97rvyoMUXHZH 6A4LMUcqw5GoRLxIWi0+8+npM5zela+6 -----END CERTIFICATE-----Generated at Mon Oct 20 17:49:37 2025 by rpki-client