$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: SBwz7VTKB0583UVPvwfifjPFtMK8Cqcz8WXnx7l/Kww= Subject key identifier: 17:22:AD:0E:F4:A6:0E:9E:D5:83:6A:8A:A6:50:20:31:C4:A3:77:F4 Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 34E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 34BD Signing time: Mon 30 Jun 2025 14:48:19 +0000 Manifest this update: Mon 30 Jun 2025 14:48:18 +0000 Manifest next update: Mon 07 Jul 2025 14:48:18 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: fdb6Cc3ERwfUV2CxFRpEMRPNhDbUM9WPXa4mb3fEvNs=) 2: A5FDB194C68611EFB4077137C4F9AE02.roa (hash: 7I8kXqSxz+6NjutJQZnEdYEeWA6i5ZbGEU7PIpXyo/8=) 3: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: lagg7XqNxsfyb1w3gTP+tCUMQSRTn5F81GdacPwOxBo=) 4: A582509EC68611EFB4077137C4F9AE02.roa (hash: 64CAbdllSyxCx8brqJo5EHBLoAmhatUaDGkIKThzCKI=) 5: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (hash: dC278Jasv16ABeBncckRYaabj45oiL9uCdUDcCgUOqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 14:48:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13543 (0x34e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Jun 30 14:48:18 2025 GMT Not After : Jul 7 14:48:18 2025 GMT Subject: CN=6862a3b3-30f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:86:8d:8a:1d:02:22:fa:c0:b3:d9:b6:4e:3a: e4:0a:ec:3c:da:41:bf:47:8c:a3:46:13:37:20:92: 31:c4:9d:0c:60:17:d2:7d:c5:cc:b9:8e:6f:a8:cc: d4:7e:f2:f5:f8:a0:1e:76:e2:9b:88:66:f7:f7:45: 9a:30:f6:a1:f8:d8:0b:64:7a:9f:a7:4c:49:49:29: 12:be:b8:d5:55:d8:46:a9:ed:b4:6b:ae:56:69:a6: 4c:0b:c7:cc:8f:b7:95:e7:66:5e:cf:f5:30:03:91: 8f:5c:2c:c6:a1:e9:3b:eb:36:a6:06:4a:86:2d:02: 7c:4a:7e:29:ee:a4:e6:56:08:82:93:a6:14:ca:45: d2:8f:12:91:aa:94:62:7b:9f:0a:6f:e6:99:9b:65: db:64:d0:d3:b3:7a:50:c1:61:bc:3b:1b:46:e0:38: ba:aa:26:81:90:29:c2:a9:cc:5c:1f:41:24:58:eb: 9f:a8:48:d9:cd:aa:76:af:3d:04:68:2e:40:a0:c3: 81:02:3a:6e:d3:50:51:c5:45:7d:74:a7:da:a5:ea: 72:3d:fb:37:f8:34:23:16:77:d6:81:f2:bd:80:be: 22:b6:8a:37:5a:3d:fd:eb:7a:53:55:35:c4:e9:cf: 6d:cb:f7:4b:fb:ef:82:94:ff:61:03:64:02:34:95: 82:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:22:AD:0E:F4:A6:0E:9E:D5:83:6A:8A:A6:50:20:31:C4:A3:77:F4 X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:57:82:1b:98:b1:44:ff:ff:a2:c5:28:68:e4:0f:98:42:55: c1:28:47:e3:f1:16:82:f2:21:0d:55:36:5a:43:8b:50:71:b7: 4e:61:4a:75:14:17:4b:44:87:8b:6b:d7:6e:a3:ac:77:8d:d7: 23:06:75:6a:70:7c:15:71:3f:54:f6:b0:33:7d:6e:24:d1:24: 85:0b:1b:1b:b7:6a:3e:c1:d5:ad:85:6c:15:99:86:dd:82:da: 1a:98:4c:bf:80:85:49:83:b3:56:51:f8:76:d4:b1:0c:ce:a8: 8e:af:11:04:9d:26:14:92:f7:66:7c:23:81:ce:bf:b1:bc:4d: dc:c0:bf:4a:74:5c:55:76:8f:5c:e7:22:c8:c5:f7:8e:f8:f5: f9:89:7a:e9:96:4c:0f:2f:ca:53:40:79:60:af:70:d3:8b:7e: b7:1c:0c:a2:5c:5e:ab:b7:80:87:55:63:93:2d:4c:5c:77:95: e1:24:cc:b3:97:a8:f3:7f:6b:36:8a:99:08:cb:84:06:45:cd: ae:8e:45:05:6c:f4:df:44:0e:18:ce:31:14:33:a9:09:f2:c5: 37:fb:6e:6a:9d:f9:2f:7a:42:ac:54:94:98:55:09:3a:f6:99: f1:f0:c3:f9:8c:f3:ad:5b:f8:23:27:3a:23:8e:ee:1c:1a:d8: ff:a7:20:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUwNjMwMTQ0ODE4WhcNMjUwNzA3MTQ0ODE4WjAYMRYwFAYD VQQDEw02ODYyYTNiMy0zMGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIaNih0CIvrAs9m2TjrkCuw82kG/R4yjRhM3IJIxxJ0MYBfSfcXMuY5vqMzU fvL1+KAeduKbiGb390WaMPah+NgLZHqfp0xJSSkSvrjVVdhGqe20a65WaaZMC8fM j7eV52Zez/UwA5GPXCzGoek76zamBkqGLQJ8Sn4p7qTmVgiCk6YUykXSjxKRqpRi e58Kb+aZm2XbZNDTs3pQwWG8OxtG4Di6qiaBkCnCqcxcH0EkWOufqEjZzap2rz0E aC5AoMOBAjpu01BRxUV9dKfapepyPfs3+DQjFnfWgfK9gL4itoo3Wj3963pTVTXE 6c9ty/dL+++ClP9hA2QCNJWCrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcirQ70 pg6e1YNqiqZQIDHEo3f0MB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAV4IbmLFE//+ixSho5A+YQlXBKEfj8RaC8iENVTZaQ4tQcbdOYUp1 FBdLRIeLa9duo6x3jdcjBnVqcHwVcT9U9rAzfW4k0SSFCxsbt2o+wdWthWwVmYbd gtoamEy/gIVJg7NWUfh21LEMzqiOrxEEnSYUkvdmfCOBzr+xvE3cwL9KdFxVdo9c 5yLIxfeO+PX5iXrplkwPL8pTQHlgr3DTi363HAyiXF6rt4CHVWOTLUxcd5XhJMyz l6jzf2s2ipkIy4QGRc2ujkUFbPTfRA4YzjEUM6kJ8sU3+25qnfkvekKsVJSYVQk6 9pnx8MP5jPOtW/gjJzojju4cGtj/pyAr -----END CERTIFICATE-----Generated at Mon Jun 30 17:10:59 2025 by rpki-client