$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: cmQfzMWQCqJRFg0qVeABjDoUjPCzuQlIyOzeBNqwT8s= Subject key identifier: 5E:7E:3B:09:E0:C8:0B:6F:DD:18:58:0F:67:EE:DD:EB:F5:4A:81:7D Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 3525 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 34F7 Signing time: Sat 18 Oct 2025 14:48:44 +0000 Manifest this update: Sat 18 Oct 2025 14:48:44 +0000 Manifest next update: Sat 25 Oct 2025 14:48:44 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: AaH22tSfYuusRCSDlqt5zxk+3/pMKbqgNvRUVk9qnyc=) 2: A5FDB194C68611EFB4077137C4F9AE02.roa (hash: 20d7zSG28KO67SoUKSTv5DsgPDhDa3AEuM/R+x5ywro=) 3: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: Npaiqv8wx3x0juj2XPFP6NT15iQeinsY3d+rnK9Ipa8=) 4: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (hash: t8ZApbp8ZgdmZpVbm08QjAGg0vnpe//NggnR/4OMSk8=) 5: A582509EC68611EFB4077137C4F9AE02.roa (hash: htBdLlmm2i58ANdYRz6MXQaGCSG7yL+kzZ3EQqldEig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13605 (0x3525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Oct 18 14:48:44 2025 GMT Not After : Oct 25 14:48:44 2025 GMT Subject: CN=68f3a8cc-b87a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e3:de:0b:9a:cd:44:5c:28:49:48:2e:fa:85: 8b:cf:6f:65:dd:ee:19:a0:74:47:4b:fe:00:46:17: 75:f2:93:d9:9e:8a:f2:9b:0f:0c:67:06:fa:25:ed: b0:4a:87:50:ea:3a:17:4e:66:1f:34:cd:ea:3b:09: 47:bb:eb:db:e9:9c:f6:ef:a3:9b:80:4e:03:8f:6e: 2e:48:f8:b5:2b:58:89:43:23:97:ef:dd:b3:32:11: 51:59:bf:b8:41:e0:07:40:2b:8e:66:cd:99:ab:5e: 38:ce:12:66:7e:85:d5:ab:54:ad:d1:78:b6:f7:b8: f0:3d:95:ed:9c:94:f6:c5:c5:65:da:b1:e5:b1:01: 1b:c5:55:4e:9d:c2:08:bf:1b:51:ff:30:8e:33:ad: 21:6c:7f:e9:0f:a5:6c:08:1b:d7:fa:ac:ee:1a:32: 59:aa:1c:ff:f2:6f:9f:c1:02:3b:aa:06:11:94:4f: b6:19:07:bf:88:9d:b5:4d:93:85:3c:bd:37:e5:70: 7e:1d:9d:b4:e5:cb:d5:df:40:c4:ce:d3:7e:37:55: 35:ef:5c:ae:fc:33:a8:81:e5:12:c9:65:58:0f:40: e0:00:6b:88:c4:a0:cb:de:e1:07:7c:1d:98:30:6e: 80:92:22:f7:44:f1:b7:36:ef:e7:6d:64:18:c1:8d: 63:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:7E:3B:09:E0:C8:0B:6F:DD:18:58:0F:67:EE:DD:EB:F5:4A:81:7D X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:12:ee:9c:66:c8:9c:ea:d9:d5:db:c6:a4:e9:f6:a2:26:91: 02:37:21:20:c8:e3:4d:8f:40:20:65:47:14:8d:ff:60:c3:b1: c4:0a:35:df:e9:bd:8c:cf:97:bc:9d:f8:ef:3e:ee:5f:4f:6e: 9c:7e:c2:57:52:9e:d1:38:c6:8b:22:36:ab:b9:0a:92:47:98: 19:5f:c6:07:8a:39:1f:6b:47:51:18:f2:10:b8:8b:c7:e3:91: ed:ee:bd:14:19:d9:ae:a7:ee:22:d5:d2:40:75:70:2a:64:8b: 11:7b:43:75:be:5a:12:dc:e7:27:09:52:12:73:76:87:79:8f: 7c:6f:84:e4:65:a4:d8:34:67:37:34:24:74:06:39:df:3e:d8: 96:aa:37:b5:da:aa:a5:3e:49:ab:34:07:dc:a1:50:dd:84:a1: 79:4a:3d:ce:60:ed:26:1a:01:1f:9a:72:fd:a7:df:53:98:31: e0:52:4f:95:8a:2d:bc:aa:04:10:3e:98:b8:7b:ee:aa:c2:95: fc:cc:9d:b0:fb:3c:54:db:67:03:18:01:f0:b6:fb:5d:2a:d5: 68:6c:17:76:5c:be:4d:6f:36:03:0c:a1:54:54:1d:f3:bd:93: 80:5f:a0:1b:ac:e8:d4:d8:61:57:b6:e7:a8:87:c7:70:52:11: ef:d5:38:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUxMDE4MTQ0ODQ0WhcNMjUxMDI1MTQ0ODQ0WjAYMRYwFAYD VQQDEw02OGYzYThjYy1iODdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApuPeC5rNRFwoSUgu+oWLz29l3e4ZoHRHS/4ARhd18pPZnorymw8MZwb6Je2w SodQ6joXTmYfNM3qOwlHu+vb6Zz276ObgE4Dj24uSPi1K1iJQyOX792zMhFRWb+4 QeAHQCuOZs2Zq144zhJmfoXVq1St0Xi297jwPZXtnJT2xcVl2rHlsQEbxVVOncII vxtR/zCOM60hbH/pD6VsCBvX+qzuGjJZqhz/8m+fwQI7qgYRlE+2GQe/iJ21TZOF PL035XB+HZ205cvV30DEztN+N1U171yu/DOogeUSyWVYD0DgAGuIxKDL3uEHfB2Y MG6AkiL3RPG3Nu/nbWQYwY1jCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5+Owng yAtv3RhYD2fu3ev1SoF9MB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxEu6cZsic6tnV28ak6faiJpECNyEgyONNj0AgZUcUjf9gw7HECjXf 6b2Mz5e8nfjvPu5fT26cfsJXUp7ROMaLIjaruQqSR5gZX8YHijkfa0dRGPIQuIvH 45Ht7r0UGdmup+4i1dJAdXAqZIsRe0N1vloS3OcnCVISc3aHeY98b4TkZaTYNGc3 NCR0BjnfPtiWqje12qqlPkmrNAfcoVDdhKF5Sj3OYO0mGgEfmnL9p99TmDHgUk+V ii28qgQQPpi4e+6qwpX8zJ2w+zxU22cDGAHwtvtdKtVobBd2XL5NbzYDDKFUVB3z vZOAX6AbrOjU2GFXtueoh8dwUhHv1TjQ -----END CERTIFICATE-----Generated at Mon Oct 20 00:18:08 2025 by rpki-client