$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft File: SoXPE4hy0-RPkNe28wKPC1BnNMw.mft (raw, json) Hash identifier: lAAsO38n5lf7tUf1AC1E4scGVsgIIl2O7PUvRXNQlCc= Subject key identifier: 6E:4F:95:2D:EC:A8:D1:9A:FD:D7:FD:BE:1D:C9:21:73:CE:48:2A:EA Authority key identifier: 4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC Certificate issuer: /CN=A914D0AF/serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Certificate serial: 040D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft Manifest number: 0430 Signing time: Sat 23 Aug 2025 00:43:53 +0000 Manifest this update: Sat 23 Aug 2025 00:43:53 +0000 Manifest next update: Sat 30 Aug 2025 00:43:53 +0000 Files and hashes: 1: SoXPE4hy0-RPkNe28wKPC1BnNMw.crl (hash: FaBdljoeTFX9OjPVFeSHcczDKIpSHI0BSukwkM3hGPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:43:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1037 (0x40d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0AF, serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Validity Not Before: Aug 23 00:43:53 2025 GMT Not After : Aug 30 00:43:53 2025 GMT Subject: CN=68a90ec9-5b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:33:0e:ad:12:58:4c:c8:f0:30:9b:8d:3f:66: 61:e7:f3:dc:82:4c:b9:e5:4c:b2:de:dd:50:4f:a3: 91:34:4d:d8:91:f3:0b:e7:99:6c:4a:1a:39:ec:a7: c7:3d:d3:b5:a6:17:54:24:4f:3b:6b:d6:be:7e:78: 01:e0:58:3b:3e:a7:1e:1c:c2:4e:15:96:4e:bd:28: cf:30:c4:87:97:45:50:37:7a:af:af:09:aa:a6:01: 31:18:e4:40:bc:b8:04:e8:f7:18:01:73:34:f4:e8: 63:1e:08:ea:1d:12:d0:d8:4d:b5:cb:d0:c2:67:e9: 9d:59:ba:09:f4:c6:b4:37:05:9a:9b:af:21:ed:eb: 10:82:cb:cb:0d:1f:73:cb:28:eb:0f:d2:1f:82:71: a7:b1:e5:f0:44:97:6e:88:95:8e:49:09:01:df:6e: 72:42:67:de:e6:72:0a:77:21:70:64:a1:4a:5b:3d: 9c:07:da:86:80:fd:7b:80:60:ce:f1:31:0d:11:d5: b3:87:37:a7:9c:d4:1b:bb:46:7a:0c:9a:7a:e6:c4: ed:61:ef:b4:42:4e:7d:6f:e2:ab:15:00:55:1f:04: 46:09:76:31:37:94:e7:be:e6:5e:5b:94:6a:5d:cc: 76:a7:83:9a:d7:43:c5:4e:cb:0a:7a:de:9d:53:98: 1b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:4F:95:2D:EC:A8:D1:9A:FD:D7:FD:BE:1D:C9:21:73:CE:48:2A:EA X509v3 Authority Key Identifier: keyid:4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:83:36:2e:1e:e2:f0:44:36:87:52:6a:46:28:ef:35:30:a6: f4:46:72:66:4f:31:18:91:c6:77:61:1c:03:b0:9e:76:0d:e7: eb:09:c3:04:64:61:0a:c0:10:17:96:bc:da:f9:fa:dc:d4:38: 4a:9b:35:3d:2c:d4:9d:e9:99:14:14:1c:88:c2:80:59:ec:9b: 03:f5:67:cc:87:59:9c:af:20:5e:5f:77:9f:21:60:27:42:99: c4:93:6a:60:8c:97:ad:d1:ff:3c:be:60:d6:0d:89:ea:f7:7a: 4b:42:88:5f:bf:30:40:d7:79:94:89:40:75:72:93:8f:e1:cc: fa:2e:f5:c0:27:17:34:1b:9c:79:91:3f:b8:20:11:ee:67:c9: c3:bb:e8:08:83:83:2b:9f:36:64:a7:8c:e4:33:b1:df:c3:90: b3:2d:0d:aa:88:be:4a:48:ca:9e:57:83:d4:ee:1f:41:ba:68: 0e:eb:35:7b:f9:96:02:f9:fc:da:bb:e5:bc:ca:8e:ed:11:b8: f7:75:4f:a3:80:59:85:2a:8e:1e:9d:c3:37:22:0d:cd:81:bc: ed:7e:90:42:65:47:b1:34:3f:03:7c:3f:67:3a:f9:13:00:88: 01:8a:1b:a1:ce:be:56:32:3e:0e:22:5f:e2:40:8a:82:93:e0: ab:2a:f7:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwQUYxMTAvBgNVBAUTKDRBODVDRjEzODg3MkQzRTQ0RjkwRDdCNkYzMDI4RjBC NTA2NzM0Q0MwHhcNMjUwODIzMDA0MzUzWhcNMjUwODMwMDA0MzUzWjAYMRYwFAYD VQQDEw02OGE5MGVjOS01YjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszMOrRJYTMjwMJuNP2Zh5/Pcgky55Uyy3t1QT6ORNE3YkfML55lsSho57KfH PdO1phdUJE87a9a+fngB4Fg7PqceHMJOFZZOvSjPMMSHl0VQN3qvrwmqpgExGORA vLgE6PcYAXM09OhjHgjqHRLQ2E21y9DCZ+mdWboJ9Ma0NwWam68h7esQgsvLDR9z yyjrD9IfgnGnseXwRJduiJWOSQkB325yQmfe5nIKdyFwZKFKWz2cB9qGgP17gGDO 8TENEdWzhzennNQbu0Z6DJp65sTtYe+0Qk59b+KrFQBVHwRGCXYxN5TnvuZeW5Rq Xcx2p4Oa10PFTssKet6dU5gbfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5PlS3s qNGa/df9vh3JIXPOSCrqMB8GA1UdIwQYMBaAFEqFzxOIctPkT5DXtvMCjwtQZzTM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBBRi8xRTMzOUIzNjg4 REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAtUlBrTmUyOHdLUEMxQm5O TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvWFBFNGh5MC1SUGtOZTI4d0tQQzFCbk5Ndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBBRi8xRTMzOUIzNjg4REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAt UlBrTmUyOHdLUEMxQm5OTXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8gzYuHuLwRDaHUmpGKO81MKb0RnJmTzEYkcZ3YRwDsJ52DefrCcME ZGEKwBAXlrza+frc1DhKmzU9LNSd6ZkUFByIwoBZ7JsD9WfMh1mcryBeX3efIWAn QpnEk2pgjJet0f88vmDWDYnq93pLQohfvzBA13mUiUB1cpOP4cz6LvXAJxc0G5x5 kT+4IBHuZ8nDu+gIg4MrnzZkp4zkM7Hfw5CzLQ2qiL5KSMqeV4PU7h9BumgO6zV7 +ZYC+fzau+W8yo7tEbj3dU+jgFmFKo4encM3Ig3NgbztfpBCZUexND8DfD9nOvkT AIgBihuhzr5WMj4OIl/iQIqCk+CrKvc5 -----END CERTIFICATE-----Generated at Sat Aug 23 19:07:23 2025 by rpki-client