$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft File: SoXPE4hy0-RPkNe28wKPC1BnNMw.mft (raw, json) Hash identifier: lU2ee+FRWqtxapMUkomC3W/gGOAjWTgh+Tx8C2jEfI8= Subject key identifier: 48:06:06:A9:56:93:21:96:99:D2:45:69:5E:6A:8A:56:6F:85:42:1A Authority key identifier: 4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC Certificate issuer: /CN=A914D0AF/serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Certificate serial: 0406 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft Manifest number: 0422 Signing time: Sat 09 Aug 2025 01:01:51 +0000 Manifest this update: Sat 09 Aug 2025 01:01:50 +0000 Manifest next update: Sat 16 Aug 2025 01:01:50 +0000 Files and hashes: 1: SoXPE4hy0-RPkNe28wKPC1BnNMw.crl (hash: BxXnaOq+aYV45IlGVD9OedFfI7bnSOqDRav2OzPn/Ik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1030 (0x406) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0AF, serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Validity Not Before: Aug 9 01:01:50 2025 GMT Not After : Aug 16 01:01:50 2025 GMT Subject: CN=68969dff-b9b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ec:c9:1a:be:44:24:66:44:e2:7d:d5:6b:c7: 61:f7:13:c8:60:31:8c:08:9b:b0:6b:a7:02:90:a9: 22:9b:fd:ca:e6:31:52:27:8b:52:00:44:53:f5:e6: 3f:d8:a3:e6:6f:b6:34:44:b4:44:7a:db:49:07:41: 6d:46:b5:e7:50:f3:66:44:2f:ab:11:ec:53:f0:d3: ed:58:50:6f:5e:07:96:52:f5:2c:88:09:43:ad:c2: ad:35:6f:11:42:eb:b6:a8:9e:e2:db:2f:86:0c:0a: 16:e8:64:82:2f:66:5a:57:98:d6:fb:b3:a8:04:81: 24:47:e0:39:c9:9b:a3:c8:f8:e8:2f:b3:82:84:b5: 7e:a1:6d:50:8f:0d:84:2b:17:a1:62:5d:8e:4e:fb: b4:78:08:75:1e:23:73:69:28:02:b9:b0:a6:6d:f5: 98:1f:7c:04:e4:8b:1c:76:a5:b1:94:16:7f:e4:15: b5:02:25:20:e6:15:89:fa:69:bc:bf:3c:e9:d0:a6: 8d:a9:0d:5c:83:70:50:b4:e5:12:38:56:ba:e2:a5: 5e:d9:6d:60:e5:a2:0e:53:c9:df:e2:81:81:d6:b2: ce:94:5d:88:96:b3:97:4c:84:12:e1:d0:84:49:ec: 55:a2:82:38:f3:4e:d6:15:26:c6:a4:7b:1b:4a:0d: 75:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:06:06:A9:56:93:21:96:99:D2:45:69:5E:6A:8A:56:6F:85:42:1A X509v3 Authority Key Identifier: keyid:4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:b8:97:29:c3:fe:d9:2c:88:02:44:bc:4b:0c:1c:d8:5a:10: 4c:7d:67:5c:05:38:76:b8:ab:4a:d0:f5:48:f1:e1:72:62:0b: d0:d1:6d:09:2b:7e:9a:aa:92:be:d9:ff:40:80:0e:30:61:0f: 55:84:85:72:4c:21:2c:34:4a:bf:02:94:5b:4d:59:0b:39:33: 50:a0:bb:49:39:ff:19:94:1c:3d:05:db:41:03:08:ef:46:b3: 62:20:5d:84:f9:bf:4a:0f:30:a8:82:a6:68:8a:fb:6e:cf:05: b0:40:84:ce:c4:32:cc:62:6c:bb:8a:7b:3a:dc:64:a7:40:28: b8:41:ef:76:d6:49:a8:55:1a:8c:f9:b4:9c:4b:53:97:f0:d2: fc:58:35:de:1f:ee:32:5b:20:05:8d:3d:d2:d9:50:4e:b3:78: 19:44:b2:44:a7:3e:ab:ec:22:0c:48:47:63:8d:ad:1c:9b:31: 5d:85:6f:f7:fd:5a:c4:ba:21:8e:6f:1a:cf:e7:50:74:a2:93: ef:0b:5c:7a:ce:c9:4e:4a:db:1c:6e:d3:59:fe:88:ad:bb:fe: 8b:fd:4d:81:cc:68:3f:79:44:e7:e4:37:54:f5:ef:1b:50:0c: 66:0b:2c:ec:ff:b5:7d:3b:59:db:4b:66:b2:b9:fb:4c:d8:8d: de:d4:71:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwQUYxMTAvBgNVBAUTKDRBODVDRjEzODg3MkQzRTQ0RjkwRDdCNkYzMDI4RjBC NTA2NzM0Q0MwHhcNMjUwODA5MDEwMTUwWhcNMjUwODE2MDEwMTUwWjAYMRYwFAYD VQQDEw02ODk2OWRmZi1iOWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoOzJGr5EJGZE4n3Va8dh9xPIYDGMCJuwa6cCkKkim/3K5jFSJ4tSAERT9eY/ 2KPmb7Y0RLREettJB0FtRrXnUPNmRC+rEexT8NPtWFBvXgeWUvUsiAlDrcKtNW8R Quu2qJ7i2y+GDAoW6GSCL2ZaV5jW+7OoBIEkR+A5yZujyPjoL7OChLV+oW1Qjw2E KxehYl2OTvu0eAh1HiNzaSgCubCmbfWYH3wE5IscdqWxlBZ/5BW1AiUg5hWJ+mm8 vzzp0KaNqQ1cg3BQtOUSOFa64qVe2W1g5aIOU8nf4oGB1rLOlF2IlrOXTIQS4dCE SexVooI4807WFSbGpHsbSg11AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgGBqlW kyGWmdJFaV5qilZvhUIaMB8GA1UdIwQYMBaAFEqFzxOIctPkT5DXtvMCjwtQZzTM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBBRi8xRTMzOUIzNjg4 REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAtUlBrTmUyOHdLUEMxQm5O TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvWFBFNGh5MC1SUGtOZTI4d0tQQzFCbk5Ndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBBRi8xRTMzOUIzNjg4REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAt UlBrTmUyOHdLUEMxQm5OTXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYuJcpw/7ZLIgCRLxLDBzYWhBMfWdcBTh2uKtK0PVI8eFyYgvQ0W0J K36aqpK+2f9AgA4wYQ9VhIVyTCEsNEq/ApRbTVkLOTNQoLtJOf8ZlBw9BdtBAwjv RrNiIF2E+b9KDzCogqZoivtuzwWwQITOxDLMYmy7ins63GSnQCi4Qe921kmoVRqM +bScS1OX8NL8WDXeH+4yWyAFjT3S2VBOs3gZRLJEpz6r7CIMSEdjja0cmzFdhW/3 /VrEuiGObxrP51B0opPvC1x6zslOStscbtNZ/oitu/6L/U2BzGg/eUTn5DdU9e8b UAxmCyzs/7V9O1nbS2ayuftM2I3e1HF8 -----END CERTIFICATE-----Generated at Sun Aug 10 16:10:47 2025 by rpki-client