$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft File: SoXPE4hy0-RPkNe28wKPC1BnNMw.mft (raw, json) Hash identifier: QbiZH+55q7Nq3/xMzDv+NGNsaw1WRnONZ250KtKHKRQ= Subject key identifier: 78:55:5D:AA:30:E4:58:94:28:A5:6A:50:7A:79:CF:F7:18:C3:EA:42 Authority key identifier: 4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC Certificate issuer: /CN=A914D0AF/serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Certificate serial: 0432 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft Manifest number: 047A Signing time: Wed 05 Nov 2025 00:28:10 +0000 Manifest this update: Wed 05 Nov 2025 00:28:10 +0000 Manifest next update: Wed 12 Nov 2025 00:28:10 +0000 Files and hashes: 1: SoXPE4hy0-RPkNe28wKPC1BnNMw.crl (hash: mbP1RG325+emfyygJCsfX/tGVpfMLDX3L+UR4eTxedk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1074 (0x432) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0AF, serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Validity Not Before: Nov 5 00:28:10 2025 GMT Not After : Nov 12 00:28:10 2025 GMT Subject: CN=690a9a1a-6c4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:9b:a5:3e:4d:4c:e0:17:10:cb:35:90:91:26: 59:c5:8b:cb:31:b0:d8:1e:51:21:8a:79:87:98:cc: 31:4d:12:97:91:01:c0:34:92:37:73:77:8d:69:ae: 61:d3:f0:0b:34:55:fb:2b:ac:a7:f6:95:f0:a1:01: d7:81:0c:22:fd:a7:09:87:d3:0f:06:77:48:92:3d: 1f:98:86:04:bf:10:3e:46:44:5b:a5:73:1b:1d:97: 1b:c9:8f:ba:ef:2d:5a:71:88:46:b4:fe:0a:bb:64: 0b:d0:3b:df:15:18:d8:b7:88:d3:ef:4a:b5:38:e4: 46:4a:0c:62:e0:10:e2:f5:cd:b6:b0:94:fe:8b:8f: 4a:15:63:c3:fb:f6:21:8a:75:ef:ea:bd:8d:50:79: 06:e7:ad:04:9c:b8:f1:c6:0b:b4:c5:9f:05:60:5e: 6b:4b:17:26:ce:2e:b2:0e:8f:98:0c:b2:07:3d:e2: f4:7c:90:4d:02:a4:69:95:55:3e:fd:b1:c0:40:3f: f3:86:ea:f9:c9:e2:58:19:18:3d:20:34:9f:df:34: 6d:61:bd:64:2a:00:e1:40:28:d2:1c:a1:5c:e2:47: dd:01:b5:dd:af:46:b2:d9:3b:57:7c:7e:e4:af:ca: cd:43:9f:69:7f:8e:2a:0e:e9:85:49:18:f8:11:13: 12:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:55:5D:AA:30:E4:58:94:28:A5:6A:50:7A:79:CF:F7:18:C3:EA:42 X509v3 Authority Key Identifier: keyid:4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:c1:1f:b1:7a:50:81:9d:e3:73:99:c8:50:73:1f:13:cf:88: 08:64:39:59:ea:59:56:90:63:34:9c:3e:40:ba:d8:35:2b:e9: 0b:7d:74:ac:db:84:5b:c4:bf:44:96:86:60:05:87:ca:29:d5: 61:7b:f6:97:ae:2d:21:ab:26:0d:51:cd:31:3d:5a:01:8a:e8: 09:10:99:00:cc:da:63:0f:b4:83:bf:c6:54:cf:1c:7f:ac:53: c5:ad:29:b0:a7:67:41:25:c3:6d:12:9e:f1:ff:9e:bb:af:53: 3c:dd:44:fc:c0:c6:74:f4:33:ae:52:f4:f1:f2:2a:85:65:2d: 1f:6b:78:f9:be:6e:1c:2f:ea:36:1e:c9:d1:19:57:30:ff:a8: 57:97:72:04:ba:46:3c:c1:a1:f3:38:c7:57:f2:fa:60:a1:c6: d9:45:7d:a9:db:6f:4a:4d:af:18:2c:b5:fd:ec:83:92:0c:f1: 85:1f:63:1d:e9:d0:3c:85:d3:56:c4:3a:26:ec:ec:6f:ee:55: d5:d5:ce:10:9c:62:de:96:75:cc:3f:55:9b:8e:46:80:5c:d6: 18:e8:95:92:d3:9a:fd:d4:47:8f:96:bd:b5:06:6b:f3:6c:4d: 94:37:3d:f0:70:7f:a4:60:b5:95:1f:5f:0c:51:c3:b0:57:d9: 29:a9:ae:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwQUYxMTAvBgNVBAUTKDRBODVDRjEzODg3MkQzRTQ0RjkwRDdCNkYzMDI4RjBC NTA2NzM0Q0MwHhcNMjUxMTA1MDAyODEwWhcNMjUxMTEyMDAyODEwWjAYMRYwFAYD VQQDEw02OTBhOWExYS02YzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35ulPk1M4BcQyzWQkSZZxYvLMbDYHlEhinmHmMwxTRKXkQHANJI3c3eNaa5h 0/ALNFX7K6yn9pXwoQHXgQwi/acJh9MPBndIkj0fmIYEvxA+RkRbpXMbHZcbyY+6 7y1acYhGtP4Ku2QL0DvfFRjYt4jT70q1OORGSgxi4BDi9c22sJT+i49KFWPD+/Yh inXv6r2NUHkG560EnLjxxgu0xZ8FYF5rSxcmzi6yDo+YDLIHPeL0fJBNAqRplVU+ /bHAQD/zhur5yeJYGRg9IDSf3zRtYb1kKgDhQCjSHKFc4kfdAbXdr0ay2TtXfH7k r8rNQ59pf44qDumFSRj4ERMScQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhVXaow 5FiUKKVqUHp5z/cYw+pCMB8GA1UdIwQYMBaAFEqFzxOIctPkT5DXtvMCjwtQZzTM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBBRi8xRTMzOUIzNjg4 REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAtUlBrTmUyOHdLUEMxQm5O TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvWFBFNGh5MC1SUGtOZTI4d0tQQzFCbk5Ndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBBRi8xRTMzOUIzNjg4REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAt UlBrTmUyOHdLUEMxQm5OTXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQwR+xelCBneNzmchQcx8Tz4gIZDlZ6llWkGM0nD5Autg1K+kLfXSs 24RbxL9EloZgBYfKKdVhe/aXri0hqyYNUc0xPVoBiugJEJkAzNpjD7SDv8ZUzxx/ rFPFrSmwp2dBJcNtEp7x/567r1M83UT8wMZ09DOuUvTx8iqFZS0fa3j5vm4cL+o2 HsnRGVcw/6hXl3IEukY8waHzOMdX8vpgocbZRX2p229KTa8YLLX97IOSDPGFH2Md 6dA8hdNWxDom7Oxv7lXV1c4QnGLelnXMP1WbjkaAXNYY6JWS05r91EePlr21Bmvz bE2UNz3wcH+kYLWVH18MUcOwV9kpqa7q -----END CERTIFICATE-----Generated at Wed Nov 5 15:33:39 2025 by rpki-client