$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft File: SoXPE4hy0-RPkNe28wKPC1BnNMw.mft (raw, json) Hash identifier: b4gOhMOrp7iqPgOBqq450BH8oxBrOtD6JJ7QlfGp+oc= Subject key identifier: 81:BF:F9:3A:8B:8F:64:0D:97:19:E9:2A:7C:5F:7B:A1:A0:39:BC:C7 Authority key identifier: 4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC Certificate issuer: /CN=A914D0AF/serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Certificate serial: 03F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft Manifest number: 03FC Signing time: Thu 03 Jul 2025 00:55:52 +0000 Manifest this update: Thu 03 Jul 2025 00:55:52 +0000 Manifest next update: Thu 10 Jul 2025 00:55:52 +0000 Files and hashes: 1: SoXPE4hy0-RPkNe28wKPC1BnNMw.crl (hash: qUdM+CImJeL/CPMUqX288n7PPqtL7CvK+Pc231lwiSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0AF, serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Validity Not Before: Jul 3 00:55:52 2025 GMT Not After : Jul 10 00:55:52 2025 GMT Subject: CN=6865d518-df1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:15:7b:1a:2e:57:07:f3:c0:b4:e5:2e:86:c9: 10:f2:d9:7f:42:93:c4:af:ae:6f:c6:51:dd:35:ea: 6e:cb:27:64:a4:52:fa:d5:75:c0:11:3b:1b:15:c5: 37:98:7a:e4:6d:fb:20:1d:4a:70:c5:33:e4:7f:b1: 3e:2d:26:6f:15:24:71:19:ca:52:08:d6:43:e5:e0: 8e:7a:0f:c7:66:8c:33:7b:8c:a8:aa:d4:40:6e:0f: 72:5c:b0:9b:27:c6:8a:69:70:78:a3:b8:e7:72:83: aa:ab:cb:65:7e:1d:20:42:b8:d7:ae:52:09:5a:49: fa:b1:19:e3:cd:69:d6:0d:c6:ab:85:0f:27:70:7b: 7d:8c:8c:57:a6:a0:12:d8:fa:a6:62:d4:28:6d:b5: be:70:36:e4:4b:a2:5e:db:39:df:fb:7a:12:f2:3a: 14:2d:ef:5d:5a:35:19:a8:14:7a:2c:20:9f:9b:51: 6c:83:61:4c:78:b5:e3:74:36:92:77:8e:3e:8c:4c: 05:e2:7c:8e:ec:e7:0d:6d:70:2e:60:5d:02:b0:2f: a1:14:54:6e:18:bd:3c:06:29:6f:36:e4:9a:10:b2: e4:40:e5:eb:d5:20:8a:9a:1a:de:41:fa:90:ce:fb: d7:68:f8:54:14:06:61:f2:0f:53:8d:5d:cb:4f:ef: 16:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:BF:F9:3A:8B:8F:64:0D:97:19:E9:2A:7C:5F:7B:A1:A0:39:BC:C7 X509v3 Authority Key Identifier: keyid:4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:32:e0:6a:c8:84:bf:3c:0c:5d:94:df:92:55:a1:43:71:99: 83:4c:64:50:b4:e5:ff:26:61:f2:12:37:17:97:fd:c3:be:4d: c1:f9:0c:2d:3b:c0:ab:5a:4b:e2:b4:21:1f:74:ff:76:d8:4e: 62:9b:8f:e2:68:e5:45:03:5e:bb:0b:45:39:15:9d:5b:5c:a6: ec:6c:03:db:4f:71:0d:b2:12:49:e5:8e:ec:ad:38:49:7f:26: 38:72:29:aa:41:4b:0e:ab:67:cc:47:2f:fd:61:db:0d:01:e6: 49:e4:e5:17:a2:21:8f:bb:8a:47:eb:21:5f:db:db:43:c1:c3: ea:79:21:ab:49:31:d6:e8:67:be:2a:0d:0f:05:87:79:06:e7: e1:9e:fe:4d:75:2f:19:09:88:4d:ab:5e:50:ad:1b:1b:df:dc: ed:1d:89:b3:ea:d8:fe:a6:ff:15:76:e1:68:68:ae:9a:76:be: 63:ea:fd:12:7b:c2:56:54:77:18:7d:90:54:7a:c3:c5:d3:65: 1d:6f:b3:c7:43:2a:25:ac:32:69:07:15:65:ed:5d:5e:d6:2b: 6e:3b:aa:9a:54:d1:64:3c:07:80:1c:7a:78:dc:37:05:b8:db: 7b:35:3b:fe:84:8e:44:66:07:20:91:b7:a8:0f:39:ea:fa:37: 2d:a1:8d:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwQUYxMTAvBgNVBAUTKDRBODVDRjEzODg3MkQzRTQ0RjkwRDdCNkYzMDI4RjBC NTA2NzM0Q0MwHhcNMjUwNzAzMDA1NTUyWhcNMjUwNzEwMDA1NTUyWjAYMRYwFAYD VQQDEw02ODY1ZDUxOC1kZjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hV7Gi5XB/PAtOUuhskQ8tl/QpPEr65vxlHdNepuyydkpFL61XXAETsbFcU3 mHrkbfsgHUpwxTPkf7E+LSZvFSRxGcpSCNZD5eCOeg/HZowze4yoqtRAbg9yXLCb J8aKaXB4o7jncoOqq8tlfh0gQrjXrlIJWkn6sRnjzWnWDcarhQ8ncHt9jIxXpqAS 2PqmYtQobbW+cDbkS6Je2znf+3oS8joULe9dWjUZqBR6LCCfm1Fsg2FMeLXjdDaS d44+jEwF4nyO7OcNbXAuYF0CsC+hFFRuGL08BilvNuSaELLkQOXr1SCKmhreQfqQ zvvXaPhUFAZh8g9TjV3LT+8WIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIG/+TqL j2QNlxnpKnxfe6GgObzHMB8GA1UdIwQYMBaAFEqFzxOIctPkT5DXtvMCjwtQZzTM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBBRi8xRTMzOUIzNjg4 REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAtUlBrTmUyOHdLUEMxQm5O TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvWFBFNGh5MC1SUGtOZTI4d0tQQzFCbk5Ndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBBRi8xRTMzOUIzNjg4REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAt UlBrTmUyOHdLUEMxQm5OTXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+MuBqyIS/PAxdlN+SVaFDcZmDTGRQtOX/JmHyEjcXl/3Dvk3B+Qwt O8CrWkvitCEfdP922E5im4/iaOVFA167C0U5FZ1bXKbsbAPbT3ENshJJ5Y7srThJ fyY4cimqQUsOq2fMRy/9YdsNAeZJ5OUXoiGPu4pH6yFf29tDwcPqeSGrSTHW6Ge+ Kg0PBYd5Bufhnv5NdS8ZCYhNq15QrRsb39ztHYmz6tj+pv8VduFoaK6adr5j6v0S e8JWVHcYfZBUesPF02Udb7PHQyolrDJpBxVl7V1e1ituO6qaVNFkPAeAHHp43DcF uNt7NTv+hI5EZgcgkbeoDznq+jctoY3L -----END CERTIFICATE-----Generated at Fri Jul 4 18:19:17 2025 by rpki-client