$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft File: SoXPE4hy0-RPkNe28wKPC1BnNMw.mft (raw, json) Hash identifier: wehz3bmdgT9EPTyAirxeVg4vxTG92Uznm6t8gYMOLpI= Subject key identifier: 61:6F:E7:B3:69:AF:D9:53:64:AE:1E:02:F3:A7:B4:06:05:CD:3F:18 Authority key identifier: 4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC Certificate issuer: /CN=A914D0AF/serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Certificate serial: 03D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft Manifest number: 03CD Signing time: Tue 13 May 2025 00:27:25 +0000 Manifest this update: Tue 13 May 2025 00:27:24 +0000 Manifest next update: Tue 20 May 2025 00:27:24 +0000 Files and hashes: 1: SoXPE4hy0-RPkNe28wKPC1BnNMw.crl (hash: Co5VXmbTzCoM6lHZzt3BsKE6/ppxWMvUvFcD6rYo4XM=) 2: 259E1BCC09FF11EFB1919C6CC4F9AE02.roa (hash: j+OInKGZZbnrWrTfBBb8ieEw0SxcAbpSQUpdiocMacE=) 3: ECCC589A09FE11EFBEBB616CC4F9AE02.roa (hash: HToMFGJs0PrSzy3dl46ENaQsO9PZvPk8q0J0yzAJKJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 983 (0x3d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0AF, serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Validity Not Before: May 13 00:27:24 2025 GMT Not After : May 20 00:27:24 2025 GMT Subject: CN=682291ec-2757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0b:83:4a:2e:34:9f:76:cd:81:e6:e6:26:a5: 2a:10:c3:09:a2:a0:06:a0:0c:5e:b7:f6:28:2e:c0: d9:50:63:e1:37:f8:9e:8f:6e:a9:98:8e:62:e2:db: 65:4c:79:63:89:19:77:79:de:a9:a5:c9:9f:75:bd: 23:2c:af:8f:57:6a:d3:31:4f:12:c4:f0:e2:f1:06: 34:00:4a:92:7c:d9:c3:c5:fc:e8:1f:d8:ef:ca:d5: ae:40:8a:90:20:72:7e:c7:f6:a3:71:70:91:88:7c: 7d:a4:f6:e2:36:a0:fa:2e:52:07:24:d3:b8:3e:26: bf:a6:10:1e:40:c3:50:af:27:0f:6b:8a:6e:05:da: 30:75:32:80:2a:0c:e4:1c:00:3e:6e:eb:dc:50:27: 2f:53:62:ae:d1:85:ea:ed:6c:93:95:34:9c:d1:99: 15:f2:6f:6d:38:91:76:68:f1:16:c6:32:70:c2:3e: f5:b9:be:a6:b5:9f:97:ad:7a:49:27:7b:87:94:2e: 08:95:9f:b4:39:10:ad:23:27:ba:36:f5:21:c7:04: 73:35:c0:18:cf:9d:ce:da:a5:0e:fe:78:77:75:18: 25:8a:84:6c:d2:58:b3:56:22:db:c1:60:33:7d:57: 0c:cf:b7:5d:6d:7b:24:b9:8d:de:61:04:30:16:27: 4a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:6F:E7:B3:69:AF:D9:53:64:AE:1E:02:F3:A7:B4:06:05:CD:3F:18 X509v3 Authority Key Identifier: keyid:4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:78:19:f2:b8:0e:86:97:e2:53:d5:bb:d5:11:41:0a:4f:3d: 47:35:46:4e:34:8e:c9:81:62:df:13:99:ca:71:75:d8:70:bc: 15:7e:28:30:77:3e:ab:18:0f:61:e5:be:c1:95:7e:84:e7:0d: ff:1f:8c:db:9f:69:36:dd:36:1d:dd:0a:f1:22:b8:78:59:5c: 53:6f:ae:31:2c:4e:8a:fa:d3:76:49:e9:06:1e:3a:1e:37:91: 7f:80:7c:9f:11:52:4f:bd:28:ba:0b:34:5e:1e:b9:45:fa:3e: 8d:16:01:63:3f:48:1c:c2:34:1c:d7:f7:08:83:35:13:10:c5: 4e:e9:3f:2b:cc:95:8e:09:f6:e5:c6:f2:4a:d5:dd:54:45:c7: 75:b5:58:69:f7:29:20:65:42:64:53:ff:b1:41:d8:2d:2a:a6: 88:38:7a:64:cf:c7:86:62:22:ed:5c:75:65:e6:d0:fa:66:eb: e4:83:d6:c0:af:57:de:b1:5c:8a:68:05:0b:fa:17:94:c2:55: 2a:d9:47:da:c8:88:4c:34:81:e3:2b:e2:33:58:7c:7e:76:ea: b0:00:2a:16:2a:ac:7b:88:56:1d:4a:0a:40:8a:95:58:01:32: bf:49:33:00:6f:57:d5:c2:33:b3:99:53:31:bb:40:57:ff:fc: 07:0e:36:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwQUYxMTAvBgNVBAUTKDRBODVDRjEzODg3MkQzRTQ0RjkwRDdCNkYzMDI4RjBC NTA2NzM0Q0MwHhcNMjUwNTEzMDAyNzI0WhcNMjUwNTIwMDAyNzI0WjAYMRYwFAYD VQQDEw02ODIyOTFlYy0yNzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAuDSi40n3bNgebmJqUqEMMJoqAGoAxet/YoLsDZUGPhN/iej26pmI5i4ttl THljiRl3ed6ppcmfdb0jLK+PV2rTMU8SxPDi8QY0AEqSfNnDxfzoH9jvytWuQIqQ IHJ+x/ajcXCRiHx9pPbiNqD6LlIHJNO4Pia/phAeQMNQrycPa4puBdowdTKAKgzk HAA+buvcUCcvU2Ku0YXq7WyTlTSc0ZkV8m9tOJF2aPEWxjJwwj71ub6mtZ+XrXpJ J3uHlC4IlZ+0ORCtIye6NvUhxwRzNcAYz53O2qUO/nh3dRglioRs0lizViLbwWAz fVcMz7ddbXskuY3eYQQwFidK3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFv57Np r9lTZK4eAvOntAYFzT8YMB8GA1UdIwQYMBaAFEqFzxOIctPkT5DXtvMCjwtQZzTM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBBRi8xRTMzOUIzNjg4 REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAtUlBrTmUyOHdLUEMxQm5O TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvWFBFNGh5MC1SUGtOZTI4d0tQQzFCbk5Ndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBBRi8xRTMzOUIzNjg4REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAt UlBrTmUyOHdLUEMxQm5OTXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFeBnyuA6Gl+JT1bvVEUEKTz1HNUZONI7JgWLfE5nKcXXYcLwVfigw dz6rGA9h5b7BlX6E5w3/H4zbn2k23TYd3QrxIrh4WVxTb64xLE6K+tN2SekGHjoe N5F/gHyfEVJPvSi6CzReHrlF+j6NFgFjP0gcwjQc1/cIgzUTEMVO6T8rzJWOCfbl xvJK1d1URcd1tVhp9ykgZUJkU/+xQdgtKqaIOHpkz8eGYiLtXHVl5tD6Zuvkg9bA r1fesVyKaAUL+heUwlUq2UfayIhMNIHjK+IzWHx+duqwACoWKqx7iFYdSgpAipVY ATK/STMAb1fVwjOzmVMxu0BX//wHDjZ1 -----END CERTIFICATE-----Generated at Tue May 13 11:22:04 2025 by rpki-client