$ rpki-client -vvf rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft File: 1Siei3312SAW7HmO7v8FvHPoVYA.mft (raw, json) Hash identifier: Za7K9hPv59bkFdVxnSDlKY6ptmIK3cBxWbv4Zk/rnS0= Subject key identifier: ED:9A:97:37:AA:3D:C7:F7:A4:A0:1E:7E:1B:2C:E1:1F:55:78:E3:4B Authority key identifier: D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 Certificate issuer: /CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft Manifest number: AE Signing time: Tue 13 May 2025 05:14:57 +0000 Manifest this update: Tue 13 May 2025 05:14:57 +0000 Manifest next update: Tue 20 May 2025 05:14:57 +0000 Files and hashes: 1: 1Siei3312SAW7HmO7v8FvHPoVYA.crl (hash: /bhGtq8c3Z4lQrCjrHNnihQMHBqklhrqNRKhnsF0wmE=) 2: B4684D8A288D11EF96BC5135C4F9AE02.roa (hash: LuOXDNonR3GEQAX6Ae//YPTmZrxLa+xdQ9eXFVMZLeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137722, serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Validity Not Before: May 13 05:14:57 2025 GMT Not After : May 20 05:14:57 2025 GMT Subject: CN=6822d551-e27c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f6:af:0b:4f:24:bc:95:14:22:2d:7e:dd:83: 7e:02:cd:10:d0:80:79:2b:c6:6e:91:74:13:dc:9f: 55:73:d2:f4:6a:65:b5:af:b0:5a:42:28:8d:21:12: 60:8d:b5:06:0f:45:2c:b8:55:db:0f:9b:a7:4c:0a: 6f:04:58:99:2c:d4:a8:5a:e2:49:48:1b:7c:dc:4b: bd:95:27:68:60:93:df:3d:ee:d7:16:f1:c9:c9:66: bf:b4:10:c7:bb:d6:1a:75:37:8a:b3:fb:6c:40:0a: 52:e4:96:d0:ac:77:b5:05:c3:ea:73:27:04:6e:75: 45:48:b3:ef:4f:d7:3a:1d:4f:ca:43:0b:58:91:26: a8:5a:de:3b:30:91:be:02:6e:47:76:13:c0:61:cb: f2:45:d2:fa:2b:ad:45:d6:f0:8e:24:01:25:61:47: 24:b5:0f:4f:6b:e4:b0:04:7f:96:39:5d:e3:4b:6a: ef:c5:aa:ee:7d:5d:d0:99:0e:40:bc:69:9e:f1:63: 89:e3:0d:5c:3d:c0:b0:b1:4b:f2:a0:6f:e0:95:10: 44:1d:0c:6e:7c:03:19:e5:3a:15:19:f3:5f:b5:88: 60:d4:14:99:ed:90:8d:e2:04:e0:37:18:09:08:c6: c9:bb:5a:c0:5f:cd:39:61:10:98:c1:3d:a5:bd:9f: 73:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:9A:97:37:AA:3D:C7:F7:A4:A0:1E:7E:1B:2C:E1:1F:55:78:E3:4B X509v3 Authority Key Identifier: keyid:D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:c0:77:e8:29:cd:58:87:a2:be:8e:07:e6:73:8b:80:af:f1: 66:f2:94:96:d3:43:f7:4d:d3:48:79:1e:89:e9:58:48:30:c6: f6:3e:e1:36:dc:d8:0c:63:3a:07:1a:b7:9f:79:2a:d1:da:56: 37:f8:4b:72:ca:ae:8b:f5:2c:15:77:02:cb:21:06:97:9d:92: 9d:a9:ce:54:58:f9:28:82:fb:f2:5c:a7:5d:66:74:ff:30:89: 70:79:8b:4f:39:fe:de:8b:f5:1e:16:41:21:24:b2:60:88:e4: 66:2b:7c:a7:ad:4e:dc:2b:d4:6b:07:47:fe:8c:aa:2c:d0:92: 19:4f:4f:be:89:7a:89:79:17:05:5b:4d:55:b5:91:64:75:e2: d7:72:3a:85:93:17:74:8d:ab:fa:17:13:39:e0:4f:f1:b1:dc: 55:b6:c3:82:17:1c:bf:bb:51:ef:3f:d8:7d:18:32:ce:3d:9c: 9d:fc:22:8f:9b:e2:53:c4:76:8e:d8:32:3f:93:63:20:28:de: 56:9e:74:ed:4e:a6:f4:23:f5:9e:00:84:f9:56:7a:c9:f2:9d: 35:70:8a:22:4e:65:53:d4:a0:02:07:0d:92:5b:44:e3:e0:b1: 08:de:30:fc:02:a7:a8:60:6e:07:fc:d3:b6:32:2f:ca:0b:83: 6d:80:c5:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc3MjIxMTAvBgNVBAUTKEQ1Mjg5RThCN0RGNUQ5MjAxNkVDNzk4RUVFRkYwNUJD NzNFODU1ODAwHhcNMjUwNTEzMDUxNDU3WhcNMjUwNTIwMDUxNDU3WjAYMRYwFAYD VQQDEw02ODIyZDU1MS1lMjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/avC08kvJUUIi1+3YN+As0Q0IB5K8ZukXQT3J9Vc9L0amW1r7BaQiiNIRJg jbUGD0UsuFXbD5unTApvBFiZLNSoWuJJSBt83Eu9lSdoYJPfPe7XFvHJyWa/tBDH u9YadTeKs/tsQApS5JbQrHe1BcPqcycEbnVFSLPvT9c6HU/KQwtYkSaoWt47MJG+ Am5HdhPAYcvyRdL6K61F1vCOJAElYUcktQ9Pa+SwBH+WOV3jS2rvxarufV3QmQ5A vGme8WOJ4w1cPcCwsUvyoG/glRBEHQxufAMZ5ToVGfNftYhg1BSZ7ZCN4gTgNxgJ CMbJu1rAX805YRCYwT2lvZ9zSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2alzeq Pcf3pKAefhss4R9VeONLMB8GA1UdIwQYMBaAFNUonot99dkgFux5ju7/Bbxz6FWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzcyMi80NkJEREMwMDI4 OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJTQVc3SG1PN3Y4RnZIUG9W WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTaWVpMzMxMlNBVzdIbU83djhGdkhQb1ZZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzcyMi80NkJEREMwMDI4OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJT QVc3SG1PN3Y4RnZIUG9WWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxwHfoKc1Yh6K+jgfmc4uAr/Fm8pSW00P3TdNIeR6J6VhIMMb2PuE2 3NgMYzoHGrefeSrR2lY3+Etyyq6L9SwVdwLLIQaXnZKdqc5UWPkogvvyXKddZnT/ MIlweYtPOf7ei/UeFkEhJLJgiORmK3ynrU7cK9RrB0f+jKos0JIZT0++iXqJeRcF W01VtZFkdeLXcjqFkxd0jav6FxM54E/xsdxVtsOCFxy/u1HvP9h9GDLOPZyd/CKP m+JTxHaO2DI/k2MgKN5WnnTtTqb0I/WeAIT5VnrJ8p01cIoiTmVT1KACBw2SW0Tj 4LEI3jD8AqeoYG4H/NO2Mi/KC4NtgMUb -----END CERTIFICATE-----Generated at Wed May 14 20:04:01 2025 by rpki-client