$ rpki-client -vvf rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft File: SOkLc7Sfo6317JGlzNI9rTXTxI4.mft (raw, json) Hash identifier: lC0tNW329AebI0Ss8MD/p6SqdqbRB6DMKLZSR1+fM/E= Subject key identifier: 53:BF:7E:1D:5E:C9:CF:D9:63:EC:0E:C5:A3:A9:41:44:3C:7E:87:07 Authority key identifier: 48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E Certificate issuer: /CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Certificate serial: 0714 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft Manifest number: 070F Signing time: Thu 04 Sep 2025 22:06:50 +0000 Manifest this update: Thu 04 Sep 2025 22:06:49 +0000 Manifest next update: Thu 11 Sep 2025 22:06:49 +0000 Files and hashes: 1: SOkLc7Sfo6317JGlzNI9rTXTxI4.crl (hash: JHY5xGiPpXUDyHHYxTo2O90Zum5AV28Kud3m1njbDSU=) 2: 8CFEF8EE50AE11EBB71FB743C4F9AE02.roa (hash: xRXc4Qynp20VBH0uvYkKK7b4+52BnXGj7roDL8ZzWEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1812 (0x714) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D228, serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Validity Not Before: Sep 4 22:06:49 2025 GMT Not After : Sep 11 22:06:49 2025 GMT Subject: CN=68ba0d7a-fadc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9f:d1:37:e9:a6:af:d8:11:83:8f:b6:d2:65: da:f9:6a:e3:5b:b5:4d:3e:1c:bb:a5:49:d7:33:40: 44:f8:b8:b7:28:07:c9:56:4f:c9:03:e7:05:6a:cc: 3d:e2:cc:0d:50:d6:12:ed:1b:96:6f:9c:14:48:1a: 97:02:2d:9d:a5:1b:5a:9d:20:fa:21:00:20:b9:39: ea:27:ed:c2:c2:51:7b:6c:71:f8:9d:cf:8e:27:05: 56:e1:ac:b7:ee:69:a1:69:38:79:cc:99:d4:dd:fe: 8a:b5:e6:a8:92:73:84:90:03:cb:ef:39:e0:ac:e7: ba:5d:ea:3a:bf:de:70:a5:ca:0f:00:51:9c:66:ff: 3b:97:d0:19:ad:93:dd:be:0e:11:24:91:08:d1:84: 48:ee:f1:0c:be:e5:05:49:0a:b1:95:60:07:da:a2: 7a:6e:8d:31:63:91:8d:c3:c2:ae:e3:80:59:79:8f: bb:e3:5d:f6:cd:ce:d5:63:c5:f3:7e:04:6f:f3:b9: a3:89:b4:53:60:f4:8e:8b:90:41:11:77:a5:bd:a1: 36:c3:f5:3b:76:b8:6c:5f:1d:5d:73:a4:43:9b:c8: c1:5c:ce:98:46:ce:57:bf:d4:c3:e8:70:b9:0b:41: c3:89:80:8d:b2:f7:cc:1e:32:36:26:bd:92:52:1f: c6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:BF:7E:1D:5E:C9:CF:D9:63:EC:0E:C5:A3:A9:41:44:3C:7E:87:07 X509v3 Authority Key Identifier: keyid:48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:04:2b:14:a7:a4:8c:71:6a:fe:6c:97:86:36:e7:3e:9c:1f: 3a:78:69:02:c8:89:04:4c:76:03:7f:90:75:38:30:32:56:df: 85:3e:1c:d7:ea:a4:d3:fe:7e:cc:07:18:07:e9:30:a2:d1:ef: 16:ca:86:e1:e9:18:9f:5c:95:85:00:cf:84:43:8c:8c:53:3f: 2d:b5:8d:b9:72:37:ce:9c:6d:15:47:11:80:7e:70:2e:eb:8a: 5c:52:a1:d9:f2:2a:75:6d:47:bc:65:02:58:51:a6:c4:7c:98: 9c:68:b3:cf:35:55:9e:91:b0:85:96:30:72:80:28:ca:79:ad: f6:85:90:e6:46:67:5e:20:a9:d8:bc:4f:e6:32:fc:3e:d0:e2: ab:c4:2a:e0:c5:3a:c7:4c:1d:96:17:14:e0:2f:b7:a7:d8:5e: 39:be:2f:ab:d9:29:a1:47:7d:85:dc:6f:68:aa:0c:bb:3c:83: db:ff:d3:75:1c:40:a4:97:e1:8a:63:49:3f:d8:13:ed:4b:45: 97:27:7c:a5:89:75:aa:a6:c2:e2:95:d5:9b:2a:ce:04:ff:d5: c8:db:d1:4b:c0:4e:ff:de:1a:cf:95:aa:d9:f5:28:14:b6:a7: 1e:8f:0c:20:d7:20:86:8f:ec:35:3e:4d:62:21:e9:61:ee:8d: 09:59:67:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QyMjgxMTAvBgNVBAUTKDQ4RTkwQjczQjQ5RkEzQURGNUVDOTFBNUNDRDIzREFE MzVEM0M0OEUwHhcNMjUwOTA0MjIwNjQ5WhcNMjUwOTExMjIwNjQ5WjAYMRYwFAYD VQQDEw02OGJhMGQ3YS1mYWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJ/RN+mmr9gRg4+20mXa+WrjW7VNPhy7pUnXM0BE+Li3KAfJVk/JA+cFasw9 4swNUNYS7RuWb5wUSBqXAi2dpRtanSD6IQAguTnqJ+3CwlF7bHH4nc+OJwVW4ay3 7mmhaTh5zJnU3f6KteaoknOEkAPL7zngrOe6Xeo6v95wpcoPAFGcZv87l9AZrZPd vg4RJJEI0YRI7vEMvuUFSQqxlWAH2qJ6bo0xY5GNw8Ku44BZeY+74132zc7VY8Xz fgRv87mjibRTYPSOi5BBEXelvaE2w/U7drhsXx1dc6RDm8jBXM6YRs5Xv9TD6HC5 C0HDiYCNsvfMHjI2Jr2SUh/GBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFO/fh1e yc/ZY+wOxaOpQUQ8focHMB8GA1UdIwQYMBaAFEjpC3O0n6Ot9eyRpczSPa0108SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDIyOC82QjREMkRBODUw QUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82MzE3Skdsek5JOXJUWFR4 STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPa0xjN1NmbzYzMTdKR2x6Tkk5clRYVHhJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDIyOC82QjREMkRBODUwQUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82 MzE3Skdsek5JOXJUWFR4STQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1BCsUp6SMcWr+bJeGNuc+nB86eGkCyIkETHYDf5B1ODAyVt+FPhzX 6qTT/n7MBxgH6TCi0e8Wyobh6RifXJWFAM+EQ4yMUz8ttY25cjfOnG0VRxGAfnAu 64pcUqHZ8ip1bUe8ZQJYUabEfJicaLPPNVWekbCFljBygCjKea32hZDmRmdeIKnY vE/mMvw+0OKrxCrgxTrHTB2WFxTgL7en2F45vi+r2SmhR32F3G9oqgy7PIPb/9N1 HECkl+GKY0k/2BPtS0WXJ3yliXWqpsLildWbKs4E/9XI29FLwE7/3hrPlarZ9SgU tqcejwwg1yCGj+w1Pk1iIelh7o0JWWe3 -----END CERTIFICATE-----Generated at Sat Sep 6 13:26:45 2025 by rpki-client