$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft File: SoXPE4hy0-RPkNe28wKPC1BnNMw.mft (raw, json) Hash identifier: G+Lz1cD6pyV4mS6e9DL3GQeJaeH7+VbLnJNtURrHFrY= Subject key identifier: 9A:15:5F:D7:81:34:4D:B8:A2:85:82:E7:5B:A7:DD:11:D9:70:1A:54 Authority key identifier: 4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC Certificate issuer: /CN=A914D0AF/serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Certificate serial: 042A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft Manifest number: 046A Signing time: Sun 19 Oct 2025 02:19:46 +0000 Manifest this update: Sun 19 Oct 2025 02:19:45 +0000 Manifest next update: Sun 26 Oct 2025 02:19:45 +0000 Files and hashes: 1: SoXPE4hy0-RPkNe28wKPC1BnNMw.crl (hash: CYbQ8etyWOaSJxPeZEFgFAtlv8g58u0A8yLkenD92Tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:19:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1066 (0x42a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0AF, serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Validity Not Before: Oct 19 02:19:45 2025 GMT Not After : Oct 26 02:19:45 2025 GMT Subject: CN=68f44ac1-284f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ee:5d:ef:b0:62:32:32:61:02:21:15:24:4d: bc:ad:4a:2a:7c:dd:3f:ae:18:2a:3a:ea:67:01:b5: ed:e5:7c:36:cf:5f:21:b6:44:6b:99:33:d0:70:f8: 1e:58:00:81:a2:2b:de:84:27:11:12:8f:b6:e3:e4: f4:ab:c6:b9:67:22:bf:a3:42:52:0f:79:1b:8c:d5: 9e:a2:8f:73:99:cf:f0:8c:a8:c8:7e:65:98:a0:76: 68:64:a0:26:03:c2:2b:94:71:ee:92:27:b6:39:d7: a1:e4:0d:53:a3:45:54:64:8d:23:09:bf:93:5a:0b: f7:34:2a:08:d2:dd:58:71:c8:7d:f7:8d:09:a4:25: c8:b2:9e:5a:27:c9:e7:61:74:85:aa:34:60:db:4f: e3:69:dc:75:ee:7d:79:04:67:ed:5a:70:ee:23:37: 22:4a:0a:70:85:d3:16:92:be:40:05:d1:0f:bd:1e: c0:bf:ce:d6:97:78:8e:b0:b8:3c:03:ef:8b:ee:54: c9:b2:43:13:96:71:d9:9c:4d:35:00:da:ba:a8:1b: d2:d7:12:b5:be:03:21:db:f9:8a:2c:59:fe:f5:9a: 62:24:3c:0a:59:bf:f3:e8:00:cd:e4:0c:fa:21:e7: 04:42:52:66:c0:6d:44:df:db:f1:28:d3:33:4d:01: eb:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:15:5F:D7:81:34:4D:B8:A2:85:82:E7:5B:A7:DD:11:D9:70:1A:54 X509v3 Authority Key Identifier: keyid:4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:da:5b:e4:e5:b0:a9:c2:ef:66:40:cc:2e:bf:60:e6:0b:c7: 3a:a0:69:4d:0f:23:03:f2:f3:66:25:61:bd:5e:bc:da:cb:72: 6f:d5:39:c8:6e:ce:9b:73:de:70:7d:fb:57:2f:de:d3:ea:05: b7:ed:03:38:80:23:40:d1:7c:68:be:f9:30:5b:1e:28:ff:6f: 59:70:7a:3c:27:ee:6b:00:d0:01:e0:16:9b:bc:7e:a5:9f:48: f4:7a:61:02:bc:ea:2b:49:d2:3f:35:dc:6a:70:de:c7:4b:f9: 26:92:f6:e8:d9:63:26:ba:4f:e3:c6:96:72:d1:a7:87:be:16: f6:bb:67:6a:22:bc:1b:a3:9b:c7:4d:2b:66:ec:5b:d9:8d:33: 5c:57:d8:b4:27:48:9f:7a:70:46:0e:8b:f6:c2:94:0e:a8:33: d6:94:ce:0f:87:7e:08:6e:91:ae:64:14:1b:11:b6:42:17:15: 62:f0:7f:1f:93:f8:6a:67:6a:0b:2c:79:f3:32:bd:94:db:61: 82:9c:66:b3:2f:a4:dd:b9:ff:b8:ce:30:ef:45:db:a2:95:60: 66:32:19:3a:8b:d6:41:7a:ed:28:f1:44:a7:cc:79:4d:84:15: bd:b3:68:88:15:66:e8:16:6d:7f:03:b6:be:bf:c4:5f:3f:39: 7f:35:c4:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwQUYxMTAvBgNVBAUTKDRBODVDRjEzODg3MkQzRTQ0RjkwRDdCNkYzMDI4RjBC NTA2NzM0Q0MwHhcNMjUxMDE5MDIxOTQ1WhcNMjUxMDI2MDIxOTQ1WjAYMRYwFAYD VQQDEw02OGY0NGFjMS0yODRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+5d77BiMjJhAiEVJE28rUoqfN0/rhgqOupnAbXt5Xw2z18htkRrmTPQcPge WACBoivehCcREo+24+T0q8a5ZyK/o0JSD3kbjNWeoo9zmc/wjKjIfmWYoHZoZKAm A8IrlHHukie2Odeh5A1To0VUZI0jCb+TWgv3NCoI0t1Ycch9940JpCXIsp5aJ8nn YXSFqjRg20/jadx17n15BGftWnDuIzciSgpwhdMWkr5ABdEPvR7Av87Wl3iOsLg8 A++L7lTJskMTlnHZnE01ANq6qBvS1xK1vgMh2/mKLFn+9ZpiJDwKWb/z6ADN5Az6 IecEQlJmwG1E39vxKNMzTQHrGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoVX9eB NE24ooWC51un3RHZcBpUMB8GA1UdIwQYMBaAFEqFzxOIctPkT5DXtvMCjwtQZzTM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBBRi8xRTMzOUIzNjg4 REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAtUlBrTmUyOHdLUEMxQm5O TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvWFBFNGh5MC1SUGtOZTI4d0tQQzFCbk5Ndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBBRi8xRTMzOUIzNjg4REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAt UlBrTmUyOHdLUEMxQm5OTXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe2lvk5bCpwu9mQMwuv2DmC8c6oGlNDyMD8vNmJWG9Xrzay3Jv1TnI bs6bc95wfftXL97T6gW37QM4gCNA0XxovvkwWx4o/29ZcHo8J+5rANAB4BabvH6l n0j0emECvOorSdI/NdxqcN7HS/kmkvbo2WMmuk/jxpZy0aeHvhb2u2dqIrwbo5vH TStm7FvZjTNcV9i0J0ifenBGDov2wpQOqDPWlM4Ph34IbpGuZBQbEbZCFxVi8H8f k/hqZ2oLLHnzMr2U22GCnGazL6Tduf+4zjDvRduilWBmMhk6i9ZBeu0o8USnzHlN hBW9s2iIFWboFm1/A7a+v8RfPzl/NcRQ -----END CERTIFICATE-----Generated at Tue Oct 21 01:38:18 2025 by rpki-client