$ rpki-client -vvf rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft File: SOkLc7Sfo6317JGlzNI9rTXTxI4.mft (raw, json) Hash identifier: L74l1sq1uHCpP1+okntyT3lNGigr81Q0/20nCaPgraA= Subject key identifier: A8:61:77:C8:07:94:11:AA:B3:29:A7:4D:EF:99:51:6D:1F:06:0F:A8 Authority key identifier: 48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E Certificate issuer: /CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Certificate serial: 06E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft Manifest number: 06DD Signing time: Fri 30 May 2025 22:12:21 +0000 Manifest this update: Fri 30 May 2025 22:12:21 +0000 Manifest next update: Fri 06 Jun 2025 22:12:21 +0000 Files and hashes: 1: SOkLc7Sfo6317JGlzNI9rTXTxI4.crl (hash: eLin5aTSu2NjpMdBdzTR4mokgUmFUCcuOBAC/v2D1s8=) 2: 8CFEF8EE50AE11EBB71FB743C4F9AE02.roa (hash: xRXc4Qynp20VBH0uvYkKK7b4+52BnXGj7roDL8ZzWEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:12:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1762 (0x6e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D228, serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Validity Not Before: May 30 22:12:21 2025 GMT Not After : Jun 6 22:12:21 2025 GMT Subject: CN=683a2d45-3db5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:44:16:06:95:56:e6:46:69:51:20:62:4a:86: de:83:f2:c7:93:9b:b2:8c:c6:b0:b0:e6:6e:5b:c4: 45:54:67:99:4d:f1:a9:4f:e1:9a:0b:be:8e:0e:57: 45:99:c4:c3:d0:ac:c6:cc:2a:2d:94:43:b8:46:f5: de:d2:63:79:99:71:8a:cd:80:47:12:d7:c5:4d:eb: b6:c1:dd:52:f6:bd:45:65:0c:29:3e:e1:20:30:75: 84:5f:bc:6d:1f:0a:55:3c:e9:c5:fd:74:cc:d5:6f: b3:13:9b:f9:d6:ca:1e:1f:af:0a:8d:63:46:da:2c: 20:82:82:a0:fa:68:08:63:c7:6c:77:99:97:ee:92: b8:eb:40:e6:50:85:ad:56:4c:29:5b:7e:73:3d:b6: 1d:0d:ed:3e:fd:4b:0a:e0:31:bf:39:54:c9:0a:e5: 0f:14:db:9b:2b:30:f9:c7:22:9d:16:57:fc:c3:5c: c1:da:1e:d0:98:fa:25:9d:1a:00:32:3f:b6:cc:cf: db:6d:62:ae:84:32:cd:9e:79:a2:f9:55:9f:a9:4a: 39:aa:52:d6:56:d1:c9:07:0a:1d:3c:bc:b0:4a:c1: 79:a8:6b:a0:cb:da:04:3c:f0:f4:b5:9a:cf:2d:9d: ba:57:f1:a8:c1:20:05:ec:f7:bb:c3:a0:27:02:9d: 78:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:61:77:C8:07:94:11:AA:B3:29:A7:4D:EF:99:51:6D:1F:06:0F:A8 X509v3 Authority Key Identifier: keyid:48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:51:7d:fd:91:c1:b6:07:f7:67:9b:49:f6:31:b4:60:a6:d7: 93:3b:c0:0e:cf:7a:cc:b4:25:58:38:22:b7:87:81:d8:ed:82: f6:5e:46:5f:80:3b:d5:5a:fe:ad:9f:a8:9c:72:7e:f6:26:b0: b3:c6:a7:00:4b:9e:d3:f0:6d:1c:8d:be:6a:a7:c4:03:4c:ee: 7d:31:32:fc:57:05:df:2a:c9:8e:94:10:65:75:d7:f8:8e:8f: 2b:89:48:2c:f0:08:09:77:6c:a9:2a:8a:bf:2c:ae:3d:55:93: 03:3f:f1:f1:f4:ff:28:d7:c5:01:84:e3:a5:a3:28:6b:57:42: d6:2e:af:d0:f3:2b:c8:cc:ae:31:19:39:41:c3:1d:33:77:11: e0:42:74:14:7e:a2:78:13:95:14:b7:9b:9d:e9:1b:b0:de:9c: 9c:66:ad:ba:74:46:f8:ba:0f:b5:80:98:55:99:50:ec:93:1a: a5:3b:c9:22:10:9e:d3:f6:d1:8b:21:88:92:c7:ca:37:f2:e4: f3:e6:02:9b:7e:45:c2:46:a2:92:61:63:db:fa:36:71:d5:73: 4c:69:80:db:41:25:fc:82:0f:77:50:08:28:a1:b8:72:fd:8b: 62:5e:bc:6c:50:a9:9a:fa:5a:04:e2:cb:e0:ff:70:16:6a:d1: 9a:2c:fa:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QyMjgxMTAvBgNVBAUTKDQ4RTkwQjczQjQ5RkEzQURGNUVDOTFBNUNDRDIzREFE MzVEM0M0OEUwHhcNMjUwNTMwMjIxMjIxWhcNMjUwNjA2MjIxMjIxWjAYMRYwFAYD VQQDEw02ODNhMmQ0NS0zZGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUQWBpVW5kZpUSBiSobeg/LHk5uyjMawsOZuW8RFVGeZTfGpT+GaC76ODldF mcTD0KzGzCotlEO4RvXe0mN5mXGKzYBHEtfFTeu2wd1S9r1FZQwpPuEgMHWEX7xt HwpVPOnF/XTM1W+zE5v51soeH68KjWNG2iwggoKg+mgIY8dsd5mX7pK460DmUIWt VkwpW35zPbYdDe0+/UsK4DG/OVTJCuUPFNubKzD5xyKdFlf8w1zB2h7QmPolnRoA Mj+2zM/bbWKuhDLNnnmi+VWfqUo5qlLWVtHJBwodPLywSsF5qGugy9oEPPD0tZrP LZ26V/GowSAF7Pe7w6AnAp14QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhhd8gH lBGqsymnTe+ZUW0fBg+oMB8GA1UdIwQYMBaAFEjpC3O0n6Ot9eyRpczSPa0108SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDIyOC82QjREMkRBODUw QUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82MzE3Skdsek5JOXJUWFR4 STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPa0xjN1NmbzYzMTdKR2x6Tkk5clRYVHhJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDIyOC82QjREMkRBODUwQUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82 MzE3Skdsek5JOXJUWFR4STQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMUX39kcG2B/dnm0n2MbRgpteTO8AOz3rMtCVYOCK3h4HY7YL2XkZf gDvVWv6tn6iccn72JrCzxqcAS57T8G0cjb5qp8QDTO59MTL8VwXfKsmOlBBlddf4 jo8riUgs8AgJd2ypKoq/LK49VZMDP/Hx9P8o18UBhOOloyhrV0LWLq/Q8yvIzK4x GTlBwx0zdxHgQnQUfqJ4E5UUt5ud6Ruw3pycZq26dEb4ug+1gJhVmVDskxqlO8ki EJ7T9tGLIYiSx8o38uTz5gKbfkXCRqKSYWPb+jZx1XNMaYDbQSX8gg93UAgoobhy /YtiXrxsUKma+loE4svg/3AWatGaLPps -----END CERTIFICATE-----Generated at Sat May 31 16:57:45 2025 by rpki-client