$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: QYXBVhbT55nXZ/y7XVdKnp61cCf8Nzk1YKXFsIa26fc= Subject key identifier: 28:5B:41:D6:C2:7A:FA:68:47:0B:38:8B:B9:EA:16:10:04:9B:52:AF Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 34CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 34A2 Signing time: Thu 08 May 2025 14:45:06 +0000 Manifest this update: Thu 08 May 2025 14:45:06 +0000 Manifest next update: Thu 15 May 2025 14:45:06 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: hQA43uC97mOgjvJR3qz9DyDeaGqfkh12gOXytLk2m0c=) 2: A5FDB194C68611EFB4077137C4F9AE02.roa (hash: 7I8kXqSxz+6NjutJQZnEdYEeWA6i5ZbGEU7PIpXyo/8=) 3: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: lagg7XqNxsfyb1w3gTP+tCUMQSRTn5F81GdacPwOxBo=) 4: A582509EC68611EFB4077137C4F9AE02.roa (hash: 64CAbdllSyxCx8brqJo5EHBLoAmhatUaDGkIKThzCKI=) 5: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (hash: dC278Jasv16ABeBncckRYaabj45oiL9uCdUDcCgUOqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 14:45:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13516 (0x34cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: May 8 14:45:06 2025 GMT Not After : May 15 14:45:06 2025 GMT Subject: CN=681cc372-94bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:89:1a:b3:88:f7:4b:90:0a:de:54:f7:1b:1f: ae:9d:8d:b3:ea:8d:2f:cf:27:34:40:57:60:ad:24: 0d:88:2a:00:62:2a:cd:1e:b5:79:9c:27:4a:b7:67: 65:23:65:64:96:62:4c:bb:21:bb:8a:f4:8d:39:87: f1:61:b4:be:76:fb:5d:e8:09:5e:21:15:e0:33:4a: 9e:bf:73:17:64:f1:fc:28:6b:39:fa:0f:c3:7d:fa: 7f:4d:c0:85:c4:7f:87:6b:d4:ff:57:e0:ef:97:9c: 44:68:fe:4d:b7:ba:c1:a7:08:82:99:d7:67:d0:6d: ed:97:0f:6f:a6:df:9c:48:6b:b6:af:c9:4b:4a:2e: 5e:b7:98:6b:52:15:dd:54:ef:7f:87:a9:ed:d3:36: b0:d4:1c:09:1f:9e:85:7f:e1:d1:2e:9e:6a:e5:0f: d5:92:98:34:d5:47:0a:1e:13:d9:e6:35:8c:99:98: a7:12:b1:f1:7a:13:c3:1c:c7:6d:18:a4:2e:4b:83: 4c:74:7d:7e:6a:24:aa:74:69:89:88:1b:34:0c:2e: 74:49:12:eb:96:15:d1:be:b7:79:50:22:68:65:8f: ad:11:13:f9:14:bf:c4:1c:ff:73:37:ee:7b:ce:52: 8f:ad:0e:a9:b9:3c:13:8a:fc:33:d7:9c:b1:8c:9b: a1:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:5B:41:D6:C2:7A:FA:68:47:0B:38:8B:B9:EA:16:10:04:9B:52:AF X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:d6:9d:7f:3b:31:d6:6e:db:92:ae:3d:10:0d:18:6c:88:cc: e6:ae:b2:3e:f3:92:ad:89:dd:36:ff:bb:f6:00:ed:a9:4e:c6: 52:6e:6e:86:69:80:0c:4b:3c:c1:e0:41:44:6e:53:c3:29:e1: 2f:9f:db:4e:85:84:91:e0:31:c9:e7:c2:c3:c0:2b:f8:e0:29: 4b:ab:00:b3:13:5b:fc:42:05:1e:c4:a7:f6:bc:d6:bc:88:b0: b7:4c:5f:f8:e3:5e:3d:47:1c:bd:16:b7:db:12:1c:df:60:74: 62:c1:19:51:62:91:b3:b9:ca:21:2e:24:bb:99:41:5b:43:a3: 12:cb:93:2c:af:0b:5a:c0:7d:1e:7d:8a:01:33:72:83:00:43: 33:45:2a:c0:04:8d:3b:e5:3f:fb:7a:2f:73:16:ab:c0:3e:f6: 36:17:12:16:7a:d6:ab:9f:11:43:76:2e:90:3d:f4:77:1a:9a: 45:d8:17:7e:66:f6:35:5a:36:fe:40:be:84:16:b7:44:5e:d2: d3:0e:b2:8d:bf:e8:95:e8:0f:cc:e4:98:d8:95:b0:69:07:e1: 57:6f:4b:72:3a:9e:64:8e:22:14:a3:f8:20:c9:eb:b6:68:f9: 46:2c:ba:e5:20:92:1b:47:b8:c5:b3:fd:e4:ff:e6:8c:5f:cf: 2c:c6:5c:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUwNTA4MTQ0NTA2WhcNMjUwNTE1MTQ0NTA2WjAYMRYwFAYD VQQDEw02ODFjYzM3Mi05NGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIkas4j3S5AK3lT3Gx+unY2z6o0vzyc0QFdgrSQNiCoAYirNHrV5nCdKt2dl I2VklmJMuyG7ivSNOYfxYbS+dvtd6AleIRXgM0qev3MXZPH8KGs5+g/Dffp/TcCF xH+Ha9T/V+Dvl5xEaP5Nt7rBpwiCmddn0G3tlw9vpt+cSGu2r8lLSi5et5hrUhXd VO9/h6nt0zaw1BwJH56Ff+HRLp5q5Q/Vkpg01UcKHhPZ5jWMmZinErHxehPDHMdt GKQuS4NMdH1+aiSqdGmJiBs0DC50SRLrlhXRvrd5UCJoZY+tERP5FL/EHP9zN+57 zlKPrQ6puTwTivwz15yxjJuhcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChbQdbC evpoRws4i7nqFhAEm1KvMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF1p1/OzHWbtuSrj0QDRhsiMzmrrI+85Ktid02/7v2AO2pTsZSbm6G aYAMSzzB4EFEblPDKeEvn9tOhYSR4DHJ58LDwCv44ClLqwCzE1v8QgUexKf2vNa8 iLC3TF/44149Rxy9FrfbEhzfYHRiwRlRYpGzucohLiS7mUFbQ6MSy5MsrwtawH0e fYoBM3KDAEMzRSrABI075T/7ei9zFqvAPvY2FxIWetarnxFDdi6QPfR3GppF2Bd+ ZvY1Wjb+QL6EFrdEXtLTDrKNv+iV6A/M5JjYlbBpB+FXb0tyOp5kjiIUo/ggyeu2 aPlGLLrlIJIbR7jFs/3k/+aMX88sxlzf -----END CERTIFICATE-----Generated at Sat May 10 07:23:03 2025 by rpki-client