$ rpki-client -vvf rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft File: SOkLc7Sfo6317JGlzNI9rTXTxI4.mft (raw, json) Hash identifier: /POuMi6unlPMDjHhATtgwgu8FHCl5KsPCPLvfjVvOt0= Subject key identifier: BE:84:62:1D:FC:4E:9B:1E:75:32:5F:09:12:4B:D1:26:16:7E:ED:E1 Authority key identifier: 48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E Certificate issuer: /CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Certificate serial: 06FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft Manifest number: 06F6 Signing time: Fri 18 Jul 2025 22:11:50 +0000 Manifest this update: Fri 18 Jul 2025 22:11:50 +0000 Manifest next update: Fri 25 Jul 2025 22:11:50 +0000 Files and hashes: 1: SOkLc7Sfo6317JGlzNI9rTXTxI4.crl (hash: O2aHoPgQxnf+L6F62DT/tjpD3r8pd8F+6zm/dIrjoaU=) 2: 8CFEF8EE50AE11EBB71FB743C4F9AE02.roa (hash: xRXc4Qynp20VBH0uvYkKK7b4+52BnXGj7roDL8ZzWEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1787 (0x6fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D228, serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Validity Not Before: Jul 18 22:11:50 2025 GMT Not After : Jul 25 22:11:50 2025 GMT Subject: CN=687ac6a6-318e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:90:a8:75:63:4e:aa:25:b4:bb:b8:77:20:0f: 8e:db:c8:45:a3:3e:64:c7:f0:f0:ae:5a:da:63:74: 52:2a:9c:a8:63:dc:85:a5:14:c3:78:fb:28:cc:0f: fa:5a:f0:21:6e:81:2b:31:c3:e0:f3:cf:22:67:92: 82:a1:ab:a3:2f:c3:dd:15:be:1f:fb:3d:0c:2f:5c: 7e:7e:0d:dc:53:4b:71:8a:8e:9c:9b:c0:cc:97:22: a1:83:fd:5e:40:43:36:ea:2f:90:53:95:93:b8:6c: 93:c2:ff:fb:d6:22:84:7b:56:ac:57:6c:4c:d6:15: 9a:7d:8d:96:72:d5:f7:ed:92:65:7c:d9:9f:f6:93: b7:8e:9c:97:b9:8c:af:9f:bd:18:b2:93:ed:47:06: f9:94:ac:03:78:4b:3b:75:d3:63:7a:8a:f0:c0:5e: c6:24:09:1a:28:81:76:c8:4d:d8:55:9e:31:d7:eb: 39:c2:66:0b:4f:c0:c3:e8:7d:bf:87:13:9f:5e:bb: 61:7c:c0:f6:bc:aa:08:26:f0:07:c4:c6:b6:d7:e3: a9:cb:c5:21:7e:20:94:4c:37:96:dd:a2:7c:be:dd: 52:ad:c0:a1:0b:3b:c2:9b:6a:53:22:b4:05:a0:3b: 66:0c:21:af:28:f1:f4:6c:9a:79:39:80:f5:d2:f2: fa:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:84:62:1D:FC:4E:9B:1E:75:32:5F:09:12:4B:D1:26:16:7E:ED:E1 X509v3 Authority Key Identifier: keyid:48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:f6:8a:d8:99:9d:3d:b8:48:fd:f2:6d:58:22:1e:d9:46:44: 87:e8:8c:7f:88:51:9d:a0:00:a9:fd:52:d2:d9:f6:42:cc:79: c5:9e:d2:7d:dd:e4:20:2b:00:be:2f:21:e3:e5:47:c8:54:ea: 44:6c:ca:f2:28:23:1e:e5:eb:ca:f5:ab:33:e3:53:14:67:4b: 0c:28:66:bd:be:17:e5:7f:7f:30:36:a4:00:2a:0e:ae:c5:b8: 12:eb:ce:89:c4:67:ce:7c:34:b0:68:96:ad:d0:b2:73:4d:f5: fd:8c:58:04:c4:7c:32:e7:d8:49:d1:f8:38:c3:92:b3:35:9b: de:c9:f9:ce:b8:9c:0b:d4:23:fe:1f:93:ee:03:85:32:10:b4: 19:83:1d:0e:75:5b:24:ec:d3:de:1d:e6:41:5a:c1:5f:ee:2e: 39:38:2e:b8:5e:8a:16:c9:9f:6b:fc:95:66:65:27:96:8e:3d: fb:9e:a5:41:a3:6a:7c:78:fc:92:d9:d3:f4:6f:83:f5:16:6a: ff:80:3a:b6:2e:ae:86:9a:7c:35:e2:86:4e:26:85:99:7f:4a: d5:18:b6:de:53:e8:ac:37:fd:a0:7f:89:ec:43:8d:4c:f6:3c: 22:8e:26:4a:38:1f:9a:18:dc:c9:e5:5d:f3:17:7b:55:97:30: da:de:1f:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QyMjgxMTAvBgNVBAUTKDQ4RTkwQjczQjQ5RkEzQURGNUVDOTFBNUNDRDIzREFE MzVEM0M0OEUwHhcNMjUwNzE4MjIxMTUwWhcNMjUwNzI1MjIxMTUwWjAYMRYwFAYD VQQDEw02ODdhYzZhNi0zMThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5CodWNOqiW0u7h3IA+O28hFoz5kx/DwrlraY3RSKpyoY9yFpRTDePsozA/6 WvAhboErMcPg888iZ5KCoaujL8PdFb4f+z0ML1x+fg3cU0txio6cm8DMlyKhg/1e QEM26i+QU5WTuGyTwv/71iKEe1asV2xM1hWafY2WctX37ZJlfNmf9pO3jpyXuYyv n70YspPtRwb5lKwDeEs7ddNjeorwwF7GJAkaKIF2yE3YVZ4x1+s5wmYLT8DD6H2/ hxOfXrthfMD2vKoIJvAHxMa21+Opy8UhfiCUTDeW3aJ8vt1SrcChCzvCm2pTIrQF oDtmDCGvKPH0bJp5OYD10vL6RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6EYh38 TpsedTJfCRJL0SYWfu3hMB8GA1UdIwQYMBaAFEjpC3O0n6Ot9eyRpczSPa0108SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDIyOC82QjREMkRBODUw QUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82MzE3Skdsek5JOXJUWFR4 STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPa0xjN1NmbzYzMTdKR2x6Tkk5clRYVHhJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDIyOC82QjREMkRBODUwQUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82 MzE3Skdsek5JOXJUWFR4STQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA69orYmZ09uEj98m1YIh7ZRkSH6Ix/iFGdoACp/VLS2fZCzHnFntJ9 3eQgKwC+LyHj5UfIVOpEbMryKCMe5evK9asz41MUZ0sMKGa9vhflf38wNqQAKg6u xbgS686JxGfOfDSwaJat0LJzTfX9jFgExHwy59hJ0fg4w5KzNZveyfnOuJwL1CP+ H5PuA4UyELQZgx0OdVsk7NPeHeZBWsFf7i45OC64XooWyZ9r/JVmZSeWjj37nqVB o2p8ePyS2dP0b4P1Fmr/gDq2Lq6Gmnw14oZOJoWZf0rVGLbeU+isN/2gf4nsQ41M 9jwijiZKOB+aGNzJ5V3zF3tVlzDa3h8k -----END CERTIFICATE-----Generated at Sun Jul 20 06:27:21 2025 by rpki-client