$ rpki-client -vvf rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft File: SOkLc7Sfo6317JGlzNI9rTXTxI4.mft (raw, json) Hash identifier: v962Y20qAaVMm1RZEEAd/gJp2UkcVQ0Qc7N5KIlv21A= Subject key identifier: 4C:F7:DC:A3:7E:88:3B:1F:43:D1:50:B6:F6:82:46:BE:E2:58:58:74 Authority key identifier: 48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E Certificate issuer: /CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Certificate serial: 0731 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft Manifest number: 072C Signing time: Sun 02 Nov 2025 21:44:27 +0000 Manifest this update: Sun 02 Nov 2025 21:44:27 +0000 Manifest next update: Sun 09 Nov 2025 21:44:27 +0000 Files and hashes: 1: SOkLc7Sfo6317JGlzNI9rTXTxI4.crl (hash: y2rUgN1RhyZy6WdcgR166SyAzaP0TvPFQ6H+TdxSUeY=) 2: 8CFEF8EE50AE11EBB71FB743C4F9AE02.roa (hash: xRXc4Qynp20VBH0uvYkKK7b4+52BnXGj7roDL8ZzWEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:44:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1841 (0x731) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D228, serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Validity Not Before: Nov 2 21:44:27 2025 GMT Not After : Nov 9 21:44:27 2025 GMT Subject: CN=6907d0bb-7f28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5c:a2:c0:a3:7a:52:c2:d9:0a:75:0b:b8:03: 62:a2:61:7b:e9:95:a1:b7:0b:dc:56:00:18:d8:76: d7:f8:84:1e:ee:c9:53:aa:64:3c:2a:d0:03:0b:b6: c5:53:31:91:6c:70:a8:9e:2e:4f:a4:f6:e6:1a:42: 35:8a:f8:ef:ff:d0:2e:5f:4e:40:12:5c:91:59:ba: c4:dc:e5:53:a3:0b:b3:37:e6:f7:13:4d:a6:6a:6d: 81:a2:f3:b6:a3:65:3e:d6:ed:f7:ab:fa:8a:62:12: 37:39:e5:aa:1b:b0:c7:b1:76:5e:7a:62:62:49:5e: 7a:7e:6c:c3:87:87:70:d9:e7:2c:19:a7:54:ab:97: a3:3b:e2:ea:3e:2e:81:1b:8c:ee:fc:5d:fa:17:b2: 8c:f6:68:6c:54:fa:ea:67:74:d5:ab:3e:c4:c7:76: 14:06:75:6e:8e:62:4c:57:ac:4e:52:07:9e:56:92: 9e:c6:f6:ef:f3:c6:e9:0a:1a:b5:c3:39:06:ad:ed: c7:d0:3b:6b:35:9f:c0:6d:45:7b:5c:cc:2b:7f:b1: 77:75:cd:d6:45:b7:81:8f:96:7d:5a:30:aa:2b:0e: dd:68:20:a2:96:17:d0:4e:c4:39:b7:92:29:27:41: d7:4d:4d:c3:55:9b:f7:d9:cc:0b:25:3c:f2:5a:4e: c0:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:F7:DC:A3:7E:88:3B:1F:43:D1:50:B6:F6:82:46:BE:E2:58:58:74 X509v3 Authority Key Identifier: keyid:48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:a6:b3:cd:48:c0:8a:e8:03:24:95:5d:00:06:ad:a3:e1:57: 3b:de:8a:74:38:91:b0:9e:e8:12:bf:bb:b9:81:4a:33:d4:a1: e5:76:8a:ca:9a:db:52:db:a7:63:ac:99:dd:08:ae:da:64:cd: 35:ba:d7:02:0b:03:47:26:15:62:1c:f7:e2:aa:5e:d5:d0:36: 70:84:20:e7:4a:86:8c:2b:73:64:67:47:80:88:ba:4d:b1:8b: 84:d6:58:16:cf:8f:42:e8:e7:74:87:dc:f6:3f:88:49:f3:a9: 53:03:44:8b:4f:26:24:48:b7:de:ee:ab:34:3c:ad:c3:92:75: 64:d8:ba:cc:9a:62:a3:60:48:03:82:43:99:3d:3a:6e:1d:44: 0f:bc:6e:45:c9:1a:5e:58:3b:1f:a8:6f:a8:ea:a4:cb:09:73: 95:5f:79:99:0e:62:92:aa:8f:d9:5d:fc:65:a0:d0:15:4c:88: db:e6:7a:23:67:86:78:01:57:47:9d:9d:b2:21:b5:0d:1a:00: 20:26:15:a6:91:9d:3a:ab:1a:88:ef:71:31:75:6e:8a:7d:db: f6:fd:6f:a6:93:17:42:03:93:f5:d8:de:83:16:3b:d3:1e:0a: 5c:b5:1f:a5:3b:e5:d2:22:a6:e1:72:60:65:33:e8:4c:63:28: 9c:93:1c:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QyMjgxMTAvBgNVBAUTKDQ4RTkwQjczQjQ5RkEzQURGNUVDOTFBNUNDRDIzREFE MzVEM0M0OEUwHhcNMjUxMTAyMjE0NDI3WhcNMjUxMTA5MjE0NDI3WjAYMRYwFAYD VQQDEw02OTA3ZDBiYi03ZjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulyiwKN6UsLZCnULuANiomF76ZWhtwvcVgAY2HbX+IQe7slTqmQ8KtADC7bF UzGRbHConi5PpPbmGkI1ivjv/9AuX05AElyRWbrE3OVTowuzN+b3E02mam2BovO2 o2U+1u33q/qKYhI3OeWqG7DHsXZeemJiSV56fmzDh4dw2ecsGadUq5ejO+LqPi6B G4zu/F36F7KM9mhsVPrqZ3TVqz7Ex3YUBnVujmJMV6xOUgeeVpKexvbv88bpChq1 wzkGre3H0DtrNZ/AbUV7XMwrf7F3dc3WRbeBj5Z9WjCqKw7daCCilhfQTsQ5t5Ip J0HXTU3DVZv32cwLJTzyWk7AlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEz33KN+ iDsfQ9FQtvaCRr7iWFh0MB8GA1UdIwQYMBaAFEjpC3O0n6Ot9eyRpczSPa0108SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDIyOC82QjREMkRBODUw QUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82MzE3Skdsek5JOXJUWFR4 STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPa0xjN1NmbzYzMTdKR2x6Tkk5clRYVHhJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDIyOC82QjREMkRBODUwQUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82 MzE3Skdsek5JOXJUWFR4STQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5prPNSMCK6AMklV0ABq2j4Vc73op0OJGwnugSv7u5gUoz1KHldorK mttS26djrJndCK7aZM01utcCCwNHJhViHPfiql7V0DZwhCDnSoaMK3NkZ0eAiLpN sYuE1lgWz49C6Od0h9z2P4hJ86lTA0SLTyYkSLfe7qs0PK3DknVk2LrMmmKjYEgD gkOZPTpuHUQPvG5FyRpeWDsfqG+o6qTLCXOVX3mZDmKSqo/ZXfxloNAVTIjb5noj Z4Z4AVdHnZ2yIbUNGgAgJhWmkZ06qxqI73ExdW6Kfdv2/W+mkxdCA5P12N6DFjvT HgpctR+lO+XSIqbhcmBlM+hMYyickxz0 -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:06 2025 by rpki-client