$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft File: SoXPE4hy0-RPkNe28wKPC1BnNMw.mft (raw, json) Hash identifier: s92WLI977gBB3vsBFLHGOzdXx6DSFGYIdKsmyvsKPIM= Subject key identifier: D3:D4:0D:60:47:EF:7A:5C:5C:09:44:64:EA:3A:04:83:BB:DA:38:DD Authority key identifier: 4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC Certificate issuer: /CN=A914D0AF/serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Certificate serial: 03CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft Manifest number: 03C4 Signing time: Fri 25 Apr 2025 00:27:03 +0000 Manifest this update: Fri 25 Apr 2025 00:27:02 +0000 Manifest next update: Fri 02 May 2025 00:27:02 +0000 Files and hashes: 1: SoXPE4hy0-RPkNe28wKPC1BnNMw.crl (hash: XqoOOb9nvS8PkDVF4FF7mhZi5ywhfmFJDofdPgVovXs=) 2: 259E1BCC09FF11EFB1919C6CC4F9AE02.roa (hash: j+OInKGZZbnrWrTfBBb8ieEw0SxcAbpSQUpdiocMacE=) 3: ECCC589A09FE11EFBEBB616CC4F9AE02.roa (hash: HToMFGJs0PrSzy3dl46ENaQsO9PZvPk8q0J0yzAJKJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 974 (0x3ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0AF, serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Validity Not Before: Apr 25 00:27:02 2025 GMT Not After : May 2 00:27:02 2025 GMT Subject: CN=680ad6d6-d897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e1:e3:b1:ed:5b:9d:9e:70:7e:53:3c:c1:bf: 25:aa:d0:03:e8:a5:32:75:46:58:95:4a:6a:82:6c: e5:53:27:91:80:6b:99:f1:4b:75:51:fd:76:93:e8: 7a:96:67:49:4b:c4:de:a4:5d:5a:e3:ad:68:72:b0: 4e:f7:6f:d9:49:95:87:f2:cc:ff:81:1b:d2:5e:56: f2:41:25:10:2e:3a:05:1d:02:c8:3e:3e:16:f7:18: b6:4c:6d:0b:93:0d:bb:66:5a:8b:60:4f:3d:9e:f8: 6a:21:13:9f:b0:3a:85:d4:54:b5:e1:3e:a5:86:36: d5:08:9e:9f:bc:96:01:fe:60:d3:52:29:70:24:d7: e4:e5:4d:bb:dc:2e:79:9f:2f:f5:2d:d0:ab:77:dd: 91:b5:3c:f9:72:a1:ec:d3:95:70:33:48:76:95:b5: 69:04:eb:72:3e:e2:28:a8:5d:ed:28:50:fa:68:fc: 8c:76:a4:f7:a5:6c:72:bb:08:80:72:dd:cf:8a:e5: d0:f2:af:00:71:03:94:af:08:65:bf:72:72:03:b8: 01:b1:57:0c:88:33:e7:21:c5:20:33:2a:03:74:3f: 03:be:92:d5:ed:d7:d6:ea:cc:07:a4:67:d4:0f:ed: ae:e5:ac:b6:69:40:2a:86:6d:e4:99:83:b7:15:f5: 91:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D4:0D:60:47:EF:7A:5C:5C:09:44:64:EA:3A:04:83:BB:DA:38:DD X509v3 Authority Key Identifier: keyid:4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:20:d2:0a:6a:17:ba:bf:57:cc:30:37:08:ea:ea:e3:de:1f: 87:7c:a8:fe:8a:ee:e7:16:ad:57:10:db:01:df:89:d5:07:78: 6d:e7:ff:a9:87:fd:c2:9b:3f:b9:83:2a:41:9f:ee:b9:e1:7d: fb:ce:b3:1f:e5:90:1d:0f:c7:0b:80:34:78:24:1d:f0:ac:a4: 72:fd:f1:f4:ea:7c:db:89:8b:d3:7a:fb:6c:dc:67:cb:4a:5e: d2:c8:0d:7b:da:44:ab:40:23:9a:9e:42:af:58:65:b7:8e:e7: a6:02:ef:10:2d:a8:71:3a:17:42:18:4a:86:1b:4d:4e:6b:dc: 2e:cf:1c:1c:b5:c2:c6:46:b4:76:f5:fd:08:43:09:89:23:19: 55:cf:45:5b:ed:02:60:f4:1f:1e:e3:ed:ee:ee:44:13:09:9f: d3:e7:9a:65:cb:e8:24:49:61:c2:05:d2:81:11:c5:79:ec:a9: df:2a:4c:d5:77:2f:f8:f3:f4:9d:78:8d:e7:6c:5e:a2:3f:eb: 6d:c9:bb:9a:0d:4b:57:b8:81:66:65:5f:41:a4:4d:9c:cb:24: 08:13:a4:81:c1:4f:bf:eb:73:7b:f4:ad:24:b9:08:ac:07:2b: a2:b9:90:9a:a8:d6:f7:6a:5f:c4:46:85:0c:88:09:58:fd:41: f7:1e:a8:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwQUYxMTAvBgNVBAUTKDRBODVDRjEzODg3MkQzRTQ0RjkwRDdCNkYzMDI4RjBC NTA2NzM0Q0MwHhcNMjUwNDI1MDAyNzAyWhcNMjUwNTAyMDAyNzAyWjAYMRYwFAYD VQQDEw02ODBhZDZkNi1kODk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+Hjse1bnZ5wflM8wb8lqtAD6KUydUZYlUpqgmzlUyeRgGuZ8Ut1Uf12k+h6 lmdJS8TepF1a461ocrBO92/ZSZWH8sz/gRvSXlbyQSUQLjoFHQLIPj4W9xi2TG0L kw27ZlqLYE89nvhqIROfsDqF1FS14T6lhjbVCJ6fvJYB/mDTUilwJNfk5U273C55 ny/1LdCrd92RtTz5cqHs05VwM0h2lbVpBOtyPuIoqF3tKFD6aPyMdqT3pWxyuwiA ct3PiuXQ8q8AcQOUrwhlv3JyA7gBsVcMiDPnIcUgMyoDdD8DvpLV7dfW6swHpGfU D+2u5ay2aUAqhm3kmYO3FfWRawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNPUDWBH 73pcXAlEZOo6BIO72jjdMB8GA1UdIwQYMBaAFEqFzxOIctPkT5DXtvMCjwtQZzTM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBBRi8xRTMzOUIzNjg4 REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAtUlBrTmUyOHdLUEMxQm5O TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvWFBFNGh5MC1SUGtOZTI4d0tQQzFCbk5Ndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBBRi8xRTMzOUIzNjg4REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAt UlBrTmUyOHdLUEMxQm5OTXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEINIKahe6v1fMMDcI6urj3h+HfKj+iu7nFq1XENsB34nVB3ht5/+p h/3Cmz+5gypBn+654X37zrMf5ZAdD8cLgDR4JB3wrKRy/fH06nzbiYvTevts3GfL Sl7SyA172kSrQCOankKvWGW3juemAu8QLahxOhdCGEqGG01Oa9wuzxwctcLGRrR2 9f0IQwmJIxlVz0Vb7QJg9B8e4+3u7kQTCZ/T55ply+gkSWHCBdKBEcV57KnfKkzV dy/48/SdeI3nbF6iP+ttybuaDUtXuIFmZV9BpE2cyyQIE6SBwU+/63N79K0kuQis ByuiuZCaqNb3al/ERoUMiAlY/UH3HqhY -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:38 2025 by rpki-client