$ rpki-client -vvf rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft File: SOkLc7Sfo6317JGlzNI9rTXTxI4.mft (raw, json) Hash identifier: mgRDWAk6GzzsYuyZcSQE6lhNUcWGZD0294GQTRnvMhw= Subject key identifier: 4B:97:F2:97:95:F9:2D:51:C5:F3:52:DF:A3:39:48:8E:CB:D3:4E:8B Authority key identifier: 48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E Certificate issuer: /CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Certificate serial: 070D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft Manifest number: 0708 Signing time: Fri 22 Aug 2025 22:01:08 +0000 Manifest this update: Fri 22 Aug 2025 22:01:07 +0000 Manifest next update: Fri 29 Aug 2025 22:01:07 +0000 Files and hashes: 1: SOkLc7Sfo6317JGlzNI9rTXTxI4.crl (hash: hk7OHEnpunQ5kvZejlCmFMEhP+/jK1USx2YmvMfSNyA=) 2: 8CFEF8EE50AE11EBB71FB743C4F9AE02.roa (hash: xRXc4Qynp20VBH0uvYkKK7b4+52BnXGj7roDL8ZzWEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1805 (0x70d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D228, serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Validity Not Before: Aug 22 22:01:07 2025 GMT Not After : Aug 29 22:01:07 2025 GMT Subject: CN=68a8e8a4-f375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:47:a3:d4:95:35:27:26:50:50:94:04:97:cc: 74:93:4a:c0:4c:35:41:66:4d:86:68:cc:8e:67:7e: 62:ca:28:08:15:ad:b2:1a:d9:7a:7e:f8:c8:21:7b: 2c:3b:05:de:d1:da:36:26:b2:1c:99:d2:9b:40:c8: 67:a9:ee:f5:4f:b8:b2:98:4d:9a:be:32:2f:22:bc: 1d:58:fb:46:aa:e2:ac:78:f2:11:cf:b7:fa:ca:38: 1d:cc:60:74:dd:14:6c:e8:1f:6d:a6:d4:f2:04:d3: 64:99:4a:72:a1:f3:78:f5:c7:25:f9:52:3f:4e:f3: f4:67:55:fd:5a:4b:32:68:b5:60:f3:33:8a:2f:7a: c6:2b:6e:e5:c2:84:92:d7:f8:6c:90:b1:68:55:46: 18:b9:65:96:fc:d5:02:02:90:16:32:c1:02:c9:c1: 7c:98:0a:ad:97:86:50:18:e3:44:34:b4:fe:d1:f1: 1f:66:1a:89:c2:99:ec:99:81:93:0d:5c:e5:ab:90: 90:64:f9:94:a9:6b:33:c2:d2:35:fa:49:a3:da:4c: de:a5:06:d0:16:0a:30:e4:3a:46:e1:7b:87:02:1d: 6b:55:32:da:91:c1:55:36:bc:42:31:98:7c:02:fb: b7:e9:f5:6d:51:d0:53:66:bb:11:0d:0b:be:1d:23: aa:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:97:F2:97:95:F9:2D:51:C5:F3:52:DF:A3:39:48:8E:CB:D3:4E:8B X509v3 Authority Key Identifier: keyid:48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:06:a9:77:d7:6a:66:f7:53:ad:10:c1:84:dd:5b:49:5e:7d: c0:d5:66:a9:22:6a:6b:6b:fa:cf:64:74:ed:e7:5d:37:ff:c1: 71:07:0e:c0:73:86:a8:2e:4f:bc:90:e3:24:1c:ad:65:91:a8: 15:78:37:a2:74:fa:a2:2e:8e:e9:91:73:49:d3:4c:4f:29:a6: c9:f6:63:f9:8c:5a:28:d8:02:38:c1:4c:3c:d5:d3:6c:4d:5f: bb:79:8d:17:88:3b:91:a0:ae:26:fd:95:e4:00:98:e2:11:ff: 37:55:b5:c8:4b:3b:e9:1f:71:0e:bd:29:bb:ca:bc:70:5c:2d: 38:21:72:1f:80:ab:58:9c:f9:72:e3:7d:a8:d7:96:e9:50:65: 5c:a6:00:b7:1d:02:97:0f:c5:97:2e:3e:79:d3:cc:e3:d6:3f: 7f:83:c5:64:36:f5:63:75:29:37:e0:04:8a:35:c3:e2:bf:a0: 00:66:a1:2c:99:40:ce:6a:94:08:d3:b6:e4:8d:23:e4:20:86: d8:12:3d:98:1a:6d:22:cf:a9:a0:1f:1a:7a:24:36:0a:cd:17: 57:dd:17:f6:25:ec:55:b8:3b:66:95:13:bb:77:b1:b0:a1:2f: 29:4b:48:7e:4f:dd:d8:9e:a8:32:c6:7a:82:2c:f7:af:78:92: c8:b5:28:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QyMjgxMTAvBgNVBAUTKDQ4RTkwQjczQjQ5RkEzQURGNUVDOTFBNUNDRDIzREFE MzVEM0M0OEUwHhcNMjUwODIyMjIwMTA3WhcNMjUwODI5MjIwMTA3WjAYMRYwFAYD VQQDEw02OGE4ZThhNC1mMzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0ej1JU1JyZQUJQEl8x0k0rATDVBZk2GaMyOZ35iyigIFa2yGtl6fvjIIXss OwXe0do2JrIcmdKbQMhnqe71T7iymE2avjIvIrwdWPtGquKsePIRz7f6yjgdzGB0 3RRs6B9tptTyBNNkmUpyofN49ccl+VI/TvP0Z1X9WksyaLVg8zOKL3rGK27lwoSS 1/hskLFoVUYYuWWW/NUCApAWMsECycF8mAqtl4ZQGONENLT+0fEfZhqJwpnsmYGT DVzlq5CQZPmUqWszwtI1+kmj2kzepQbQFgow5DpG4XuHAh1rVTLakcFVNrxCMZh8 Avu36fVtUdBTZrsRDQu+HSOq7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuX8peV +S1RxfNS36M5SI7L006LMB8GA1UdIwQYMBaAFEjpC3O0n6Ot9eyRpczSPa0108SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDIyOC82QjREMkRBODUw QUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82MzE3Skdsek5JOXJUWFR4 STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPa0xjN1NmbzYzMTdKR2x6Tkk5clRYVHhJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDIyOC82QjREMkRBODUwQUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82 MzE3Skdsek5JOXJUWFR4STQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaBql312pm91OtEMGE3VtJXn3A1WapImpra/rPZHTt5103/8FxBw7A c4aoLk+8kOMkHK1lkagVeDeidPqiLo7pkXNJ00xPKabJ9mP5jFoo2AI4wUw81dNs TV+7eY0XiDuRoK4m/ZXkAJjiEf83VbXISzvpH3EOvSm7yrxwXC04IXIfgKtYnPly 432o15bpUGVcpgC3HQKXD8WXLj5508zj1j9/g8VkNvVjdSk34ASKNcPiv6AAZqEs mUDOapQI07bkjSPkIIbYEj2YGm0iz6mgHxp6JDYKzRdX3Rf2JexVuDtmlRO7d7Gw oS8pS0h+T93YnqgyxnqCLPeveJLItSh0 -----END CERTIFICATE-----Generated at Sun Aug 24 03:05:55 2025 by rpki-client