$ rpki-client -vvf rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft File: SOkLc7Sfo6317JGlzNI9rTXTxI4.mft (raw, json) Hash identifier: 9XR/IStXTNlEM1i4z9J7hm/qCeEkW6d4q54ZsSYwYTE= Subject key identifier: 0E:D4:03:09:25:4A:26:EE:26:C4:DC:B6:B7:CE:25:3D:38:6C:F4:DB Authority key identifier: 48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E Certificate issuer: /CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Certificate serial: 06C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft Manifest number: 06C1 Signing time: Wed 02 Apr 2025 22:04:36 +0000 Manifest this update: Wed 02 Apr 2025 22:04:35 +0000 Manifest next update: Wed 09 Apr 2025 22:04:35 +0000 Files and hashes: 1: SOkLc7Sfo6317JGlzNI9rTXTxI4.crl (hash: 5JGlNBIWLTTmA02Q2ZROfv99X/4Jio6tGANG7xUcQ88=) 2: 8CFEF8EE50AE11EBB71FB743C4F9AE02.roa (hash: xRXc4Qynp20VBH0uvYkKK7b4+52BnXGj7roDL8ZzWEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1734 (0x6c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D228 Validity Not Before: Apr 2 22:04:35 2025 GMT Not After : Apr 9 22:04:35 2025 GMT Subject: CN=67edb473-0741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:88:88:d8:96:c8:55:ad:5a:b0:35:07:d1:28: 35:82:e0:f5:f6:64:2a:50:33:28:af:77:e6:aa:55: 1f:8d:ac:18:6c:74:95:60:00:05:5f:b3:09:86:33: 37:e5:2a:43:a2:c8:0b:77:14:4a:00:4e:60:7b:54: 9b:1c:26:e1:c3:50:1a:76:1b:da:38:a5:02:21:6b: 3f:1c:11:c3:ce:c0:4e:fc:b6:19:de:c7:09:6e:45: 7f:1e:9f:7e:82:e0:0a:be:e5:2a:4e:4f:d5:c6:4c: 0e:8a:39:e0:60:26:32:c5:f5:37:44:5e:48:c5:5f: 11:00:30:05:03:2c:d5:c9:ef:e5:d8:59:30:c1:9b: af:f8:c2:1d:19:40:49:15:d8:f4:fb:d7:16:ad:2b: 05:d9:70:c0:74:66:0e:6e:6b:aa:60:ba:4d:bb:94: 5a:04:98:0b:ee:70:cf:0c:df:4f:a4:c9:17:79:a6: c5:97:20:b6:65:c6:df:ec:53:06:81:0b:d7:08:8f: 5f:50:b7:8a:85:e4:92:fa:d4:e5:47:dc:b1:c2:06: 13:51:0b:39:0a:21:f6:96:3f:57:ab:c8:ee:8e:46: 2a:6d:a4:82:e9:77:19:76:7d:a9:35:ef:bb:37:70: 03:71:bd:ba:1e:a7:8d:61:b2:3f:81:bb:92:aa:62: 0b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D4:03:09:25:4A:26:EE:26:C4:DC:B6:B7:CE:25:3D:38:6C:F4:DB X509v3 Authority Key Identifier: keyid:48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:ac:86:28:c3:69:09:42:17:ac:1f:46:98:8d:7d:07:3b:45: 43:56:19:e7:a6:40:aa:d2:5f:ff:17:96:b1:ee:e7:d6:96:d1: 9b:c6:cb:8c:57:60:68:82:b3:27:03:14:0d:a5:c0:b4:08:65: 27:74:c8:a7:ad:b3:21:c8:8c:f8:50:60:27:6a:aa:d1:f2:c2: ec:83:29:7f:b4:12:d1:5e:00:57:c5:9f:65:59:e0:81:73:fb: 1f:20:9e:b1:24:86:1e:7a:9c:8a:12:f9:bb:f8:ff:85:94:d5: 62:b8:3b:8c:fc:e7:37:48:dd:6e:c3:63:f3:7a:bf:b3:91:a3: 7e:b4:f9:5e:35:4d:18:3e:29:a4:a0:a4:b4:2e:f4:7a:1e:f1: bf:27:06:2c:d5:4e:be:c2:4f:b8:0b:ac:1d:5d:16:24:91:59: ca:72:12:00:52:a0:60:49:1e:7a:41:db:38:42:d8:5c:83:7f: 63:b7:db:ec:01:7b:bd:dc:82:57:70:d2:e8:87:9b:98:66:b2: b7:a0:64:95:4d:9b:82:ee:cf:0f:6c:e2:c4:9b:46:92:ae:b4: 66:f1:6c:73:a4:01:97:1a:c2:63:56:d8:1c:c0:d0:48:31:0b: ef:75:14:0d:6b:5e:99:dd:c4:c5:9d:0b:a9:81:f3:aa:dc:17: 52:8d:f5:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QyMjgxMTAvBgNVBAUTKDQ4RTkwQjczQjQ5RkEzQURGNUVDOTFBNUNDRDIzREFE MzVEM0M0OEUwHhcNMjUwNDAyMjIwNDM1WhcNMjUwNDA5MjIwNDM1WjAYMRYwFAYD VQQDEw02N2VkYjQ3My0wNzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA94iI2JbIVa1asDUH0Sg1guD19mQqUDMor3fmqlUfjawYbHSVYAAFX7MJhjM3 5SpDosgLdxRKAE5ge1SbHCbhw1AadhvaOKUCIWs/HBHDzsBO/LYZ3scJbkV/Hp9+ guAKvuUqTk/VxkwOijngYCYyxfU3RF5IxV8RADAFAyzVye/l2FkwwZuv+MIdGUBJ Fdj0+9cWrSsF2XDAdGYObmuqYLpNu5RaBJgL7nDPDN9PpMkXeabFlyC2Zcbf7FMG gQvXCI9fULeKheSS+tTlR9yxwgYTUQs5CiH2lj9Xq8jujkYqbaSC6XcZdn2pNe+7 N3ADcb26HqeNYbI/gbuSqmILsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7UAwkl SibuJsTctrfOJT04bPTbMB8GA1UdIwQYMBaAFEjpC3O0n6Ot9eyRpczSPa0108SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDIyOC82QjREMkRBODUw QUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82MzE3Skdsek5JOXJUWFR4 STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPa0xjN1NmbzYzMTdKR2x6Tkk5clRYVHhJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDIyOC82QjREMkRBODUwQUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82 MzE3Skdsek5JOXJUWFR4STQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRrIYow2kJQhesH0aYjX0HO0VDVhnnpkCq0l//F5ax7ufWltGbxsuM V2BogrMnAxQNpcC0CGUndMinrbMhyIz4UGAnaqrR8sLsgyl/tBLRXgBXxZ9lWeCB c/sfIJ6xJIYeepyKEvm7+P+FlNViuDuM/Oc3SN1uw2Pzer+zkaN+tPleNU0YPimk oKS0LvR6HvG/JwYs1U6+wk+4C6wdXRYkkVnKchIAUqBgSR56Qds4Qthcg39jt9vs AXu93IJXcNLoh5uYZrK3oGSVTZuC7s8PbOLEm0aSrrRm8WxzpAGXGsJjVtgcwNBI MQvvdRQNa16Z3cTFnQupgfOq3BdSjfUt -----END CERTIFICATE-----Generated at Fri Apr 4 18:16:40 2025 by rpki-client