$ rpki-client -vvf rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft File: SOkLc7Sfo6317JGlzNI9rTXTxI4.mft (raw, json) Hash identifier: RCW8E5eccnIHV+OL9LISRj+5qb+GtRuCgulYBNMvbCE= Subject key identifier: 83:DF:09:5D:14:4D:47:77:3A:BE:60:F4:D4:D8:C0:38:63:9E:08:79 Authority key identifier: 48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E Certificate issuer: /CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Certificate serial: 072A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft Manifest number: 0725 Signing time: Sat 18 Oct 2025 23:10:46 +0000 Manifest this update: Sat 18 Oct 2025 23:10:46 +0000 Manifest next update: Sat 25 Oct 2025 23:10:46 +0000 Files and hashes: 1: SOkLc7Sfo6317JGlzNI9rTXTxI4.crl (hash: 9bNRiCbYwf15D8Ge7bl4YMR9FI/i0JymD0iRsZQkb90=) 2: 8CFEF8EE50AE11EBB71FB743C4F9AE02.roa (hash: xRXc4Qynp20VBH0uvYkKK7b4+52BnXGj7roDL8ZzWEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:10:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1834 (0x72a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D228, serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Validity Not Before: Oct 18 23:10:46 2025 GMT Not After : Oct 25 23:10:46 2025 GMT Subject: CN=68f41e76-925e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d7:df:db:a5:fb:79:c0:8a:2f:8d:3c:66:e9: 99:fd:cf:c7:85:a0:f2:03:d4:5f:67:65:14:b3:0b: 40:0b:3b:92:82:7f:25:05:f3:ab:fc:df:b5:25:0c: 6c:49:45:b8:b3:5b:31:c7:38:0f:91:42:a1:6e:a7: d7:92:24:17:e0:e9:20:80:4a:84:47:ea:fd:95:ba: 83:fb:5e:45:84:93:ea:83:8c:16:25:76:51:7e:32: 17:17:a4:90:f1:e4:a4:f7:73:c3:50:f6:87:df:ee: 10:5e:7a:67:9d:9a:76:d0:60:0f:7a:65:cb:7b:91: 1c:86:f8:27:af:07:7b:18:c4:7f:4b:26:45:6c:ef: db:eb:41:61:17:a1:84:60:44:32:81:06:b2:57:76: 5f:39:eb:43:b1:84:dd:c0:09:9e:8c:4c:27:84:cc: 87:6d:22:77:07:e7:20:e7:4f:d1:31:e5:6e:a0:b7: 23:0a:c3:10:7a:5a:c7:6b:a5:e6:e1:51:ca:9d:33: a2:8f:a7:60:40:dc:cc:f1:fd:03:d3:6c:d6:27:44: ac:f2:0a:32:29:b0:a8:8b:d8:de:5a:d0:34:90:87: 91:7e:06:10:18:9a:e5:0d:5d:65:e6:74:1e:a4:ed: 6e:dc:9e:25:60:f0:ed:b8:2e:cf:64:7e:60:78:12: e6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:DF:09:5D:14:4D:47:77:3A:BE:60:F4:D4:D8:C0:38:63:9E:08:79 X509v3 Authority Key Identifier: keyid:48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:bb:9a:07:c2:88:24:00:62:9b:7a:f3:4a:9b:21:75:bf:a1: c4:8a:0e:f5:db:2c:c7:8a:66:d1:aa:dc:e0:b7:bd:36:fe:e1: 0f:be:82:7f:4b:40:6b:bf:74:c3:42:63:81:8c:43:47:e0:df: 10:52:51:cf:02:cd:0c:f6:8f:c4:66:e6:e7:74:cd:17:c0:78: 06:4f:2e:ad:2f:2f:d6:e9:df:78:63:6c:c9:17:69:22:fd:5a: 5b:6f:59:9f:72:a4:dc:59:df:ff:bd:f6:f4:2a:03:9c:83:1b: 93:0a:43:4f:1f:58:7c:23:66:70:18:2f:fe:4a:08:01:89:31: 1a:fe:73:f5:87:89:ab:6e:5d:6a:45:56:73:5e:5f:e3:c2:34: 74:a4:68:c7:33:6b:a6:83:bb:46:f2:2f:cd:60:c8:07:69:49: 5e:6a:35:5e:8a:c4:ee:99:4c:a3:14:6c:a1:85:19:09:9a:26: f5:12:83:c5:52:5a:74:25:e2:5c:50:50:c9:97:11:e1:0f:3d: 6d:ee:34:04:c4:f7:76:a7:75:ad:67:a2:26:24:88:92:c5:16: 47:7d:e1:f4:a1:d2:86:6d:6f:ba:18:50:7e:f0:26:e6:b0:1a: 90:46:b7:dd:55:bf:65:fe:aa:5f:e2:86:06:e0:07:a4:2d:52: 18:48:f6:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QyMjgxMTAvBgNVBAUTKDQ4RTkwQjczQjQ5RkEzQURGNUVDOTFBNUNDRDIzREFE MzVEM0M0OEUwHhcNMjUxMDE4MjMxMDQ2WhcNMjUxMDI1MjMxMDQ2WjAYMRYwFAYD VQQDEw02OGY0MWU3Ni05MjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA69ff26X7ecCKL408ZumZ/c/HhaDyA9RfZ2UUswtACzuSgn8lBfOr/N+1JQxs SUW4s1sxxzgPkUKhbqfXkiQX4OkggEqER+r9lbqD+15FhJPqg4wWJXZRfjIXF6SQ 8eSk93PDUPaH3+4QXnpnnZp20GAPemXLe5Echvgnrwd7GMR/SyZFbO/b60FhF6GE YEQygQayV3ZfOetDsYTdwAmejEwnhMyHbSJ3B+cg50/RMeVuoLcjCsMQelrHa6Xm 4VHKnTOij6dgQNzM8f0D02zWJ0Ss8goyKbCoi9jeWtA0kIeRfgYQGJrlDV1l5nQe pO1u3J4lYPDtuC7PZH5geBLmLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPfCV0U TUd3Or5g9NTYwDhjngh5MB8GA1UdIwQYMBaAFEjpC3O0n6Ot9eyRpczSPa0108SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDIyOC82QjREMkRBODUw QUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82MzE3Skdsek5JOXJUWFR4 STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPa0xjN1NmbzYzMTdKR2x6Tkk5clRYVHhJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDIyOC82QjREMkRBODUwQUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82 MzE3Skdsek5JOXJUWFR4STQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBju5oHwogkAGKbevNKmyF1v6HEig712yzHimbRqtzgt702/uEPvoJ/ S0Brv3TDQmOBjENH4N8QUlHPAs0M9o/EZubndM0XwHgGTy6tLy/W6d94Y2zJF2ki /Vpbb1mfcqTcWd//vfb0KgOcgxuTCkNPH1h8I2ZwGC/+SggBiTEa/nP1h4mrbl1q RVZzXl/jwjR0pGjHM2umg7tG8i/NYMgHaUleajVeisTumUyjFGyhhRkJmib1EoPF Ulp0JeJcUFDJlxHhDz1t7jQExPd2p3WtZ6ImJIiSxRZHfeH0odKGbW+6GFB+8Cbm sBqQRrfdVb9l/qpf4oYG4AekLVIYSPbp -----END CERTIFICATE-----Generated at Mon Oct 20 11:17:02 2025 by rpki-client