$ rpki-client -vvf rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft File: SOkLc7Sfo6317JGlzNI9rTXTxI4.mft (raw, json) Hash identifier: 6gTreb4NyG8/njlGNqvYjdasr7ftsezYTQXQiYSuR2s= Subject key identifier: 19:78:EF:32:54:40:F0:FB:57:7B:CB:D9:D5:74:98:09:A7:F8:50:5B Authority key identifier: 48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E Certificate issuer: /CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Certificate serial: 06F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft Manifest number: 06EE Signing time: Wed 02 Jul 2025 22:13:37 +0000 Manifest this update: Wed 02 Jul 2025 22:13:36 +0000 Manifest next update: Wed 09 Jul 2025 22:13:36 +0000 Files and hashes: 1: SOkLc7Sfo6317JGlzNI9rTXTxI4.crl (hash: +R7kP8H6WAnPWJ82ZdnfriaaWQjZKzYUwiSiW+kFfI8=) 2: 8CFEF8EE50AE11EBB71FB743C4F9AE02.roa (hash: xRXc4Qynp20VBH0uvYkKK7b4+52BnXGj7roDL8ZzWEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:13:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1779 (0x6f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D228, serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Validity Not Before: Jul 2 22:13:36 2025 GMT Not After : Jul 9 22:13:36 2025 GMT Subject: CN=6865af10-0fb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:cc:3d:d6:9f:53:4d:0e:92:56:bd:8b:56:96: 97:e9:c9:af:e0:66:c5:40:fe:70:ef:61:4f:af:1f: d2:29:04:74:2f:da:9f:d1:b5:32:31:b8:fa:2e:46: 0f:e0:a1:31:bc:6f:dd:4f:e6:0f:39:0f:14:c0:3d: ed:c2:b6:57:f6:8e:e2:64:11:6b:53:25:ca:78:04: cb:0f:5a:97:df:0e:8a:ab:53:1e:c0:09:a1:03:90: db:99:28:99:d1:e1:12:40:99:46:43:51:75:17:7e: d8:a2:ba:86:5b:08:b7:2f:19:07:20:56:1f:6d:e7: 87:cf:d3:98:66:f3:55:26:03:8b:0e:08:22:2b:64: c3:36:ab:3b:13:4d:a2:a7:4c:01:12:3b:00:75:14: e3:f8:86:2e:45:1e:30:cd:0f:d2:89:64:c3:8d:5d: 57:c3:c2:cd:13:82:b4:2c:b2:9c:98:77:a1:56:79: 45:45:d7:99:73:f7:f3:9c:c1:a0:19:d4:e9:e4:0d: 7e:14:7b:ef:0d:20:28:34:54:9d:df:00:49:35:0d: 16:1c:c5:bf:2d:09:21:f3:fd:cf:63:4c:81:04:98: 1d:69:5d:30:cf:e9:2c:42:f3:d9:14:9d:99:6a:93: c7:b5:18:bf:53:25:14:c8:4f:78:2f:5b:38:8e:55: f7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:78:EF:32:54:40:F0:FB:57:7B:CB:D9:D5:74:98:09:A7:F8:50:5B X509v3 Authority Key Identifier: keyid:48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:2b:e9:53:43:dc:bc:1a:06:90:62:2d:1e:14:35:af:38:3f: 5e:0c:1c:85:ae:05:10:2e:d5:15:68:1f:62:86:5d:85:e2:7b: 24:10:47:4a:c5:3c:4f:19:51:4d:a9:c4:e4:9b:47:4e:cc:5d: 66:d5:0e:50:c3:bc:b0:f8:c3:62:42:4d:f7:f2:71:92:80:35: 38:4a:a0:92:51:f0:2c:3a:8c:70:bf:8c:65:b6:4b:83:0e:c5: 7d:01:ee:c0:31:45:bb:84:19:1d:c6:a0:79:28:21:0c:57:d3: 24:30:ab:13:15:d9:7b:b5:4a:09:98:03:25:33:8c:be:be:df: e6:9e:58:91:43:2c:46:81:1a:3e:ee:0f:03:a6:e1:7e:e5:83: 9e:ed:6b:83:67:49:69:4a:68:38:41:12:8c:9b:92:d7:a4:b0: 4d:d8:0e:3e:cb:fa:b0:a7:57:df:49:ae:a1:d7:30:b2:c3:08: 44:e8:82:c6:f5:66:a3:90:1e:cb:da:21:f2:0a:8a:13:be:fe: 02:e3:41:ae:1d:17:76:af:5b:12:48:62:39:f2:dc:7f:98:ed: 91:0b:c8:61:87:d3:0a:e3:ce:3a:b6:ee:df:2d:7d:c3:b6:d8: 9b:1f:ff:19:9e:fc:a5:b7:1f:7e:bd:cf:4d:92:33:52:47:dd: 06:5f:82:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QyMjgxMTAvBgNVBAUTKDQ4RTkwQjczQjQ5RkEzQURGNUVDOTFBNUNDRDIzREFE MzVEM0M0OEUwHhcNMjUwNzAyMjIxMzM2WhcNMjUwNzA5MjIxMzM2WjAYMRYwFAYD VQQDEw02ODY1YWYxMC0wZmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8w91p9TTQ6SVr2LVpaX6cmv4GbFQP5w72FPrx/SKQR0L9qf0bUyMbj6LkYP 4KExvG/dT+YPOQ8UwD3twrZX9o7iZBFrUyXKeATLD1qX3w6Kq1MewAmhA5DbmSiZ 0eESQJlGQ1F1F37YorqGWwi3LxkHIFYfbeeHz9OYZvNVJgOLDggiK2TDNqs7E02i p0wBEjsAdRTj+IYuRR4wzQ/SiWTDjV1Xw8LNE4K0LLKcmHehVnlFRdeZc/fznMGg GdTp5A1+FHvvDSAoNFSd3wBJNQ0WHMW/LQkh8/3PY0yBBJgdaV0wz+ksQvPZFJ2Z apPHtRi/UyUUyE94L1s4jlX35QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBl47zJU QPD7V3vL2dV0mAmn+FBbMB8GA1UdIwQYMBaAFEjpC3O0n6Ot9eyRpczSPa0108SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDIyOC82QjREMkRBODUw QUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82MzE3Skdsek5JOXJUWFR4 STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPa0xjN1NmbzYzMTdKR2x6Tkk5clRYVHhJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDIyOC82QjREMkRBODUwQUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82 MzE3Skdsek5JOXJUWFR4STQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaK+lTQ9y8GgaQYi0eFDWvOD9eDByFrgUQLtUVaB9ihl2F4nskEEdK xTxPGVFNqcTkm0dOzF1m1Q5Qw7yw+MNiQk338nGSgDU4SqCSUfAsOoxwv4xltkuD DsV9Ae7AMUW7hBkdxqB5KCEMV9MkMKsTFdl7tUoJmAMlM4y+vt/mnliRQyxGgRo+ 7g8DpuF+5YOe7WuDZ0lpSmg4QRKMm5LXpLBN2A4+y/qwp1ffSa6h1zCywwhE6ILG 9WajkB7L2iHyCooTvv4C40GuHRd2r1sSSGI58tx/mO2RC8hhh9MK4846tu7fLX3D ttibH/8Znvyltx9+vc9NkjNSR90GX4L8 -----END CERTIFICATE-----Generated at Thu Jul 3 13:40:09 2025 by rpki-client