$ rpki-client -vvf rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft File: 1Siei3312SAW7HmO7v8FvHPoVYA.mft (raw, json) Hash identifier: H+oAFDd5e+b5kkkIPGjT5euvLojZCmJsi+/hWTUz6rk= Subject key identifier: BF:D3:62:45:56:96:1D:3E:85:AF:6A:3A:16:73:A7:70:7F:10:1D:5C Authority key identifier: D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 Certificate issuer: /CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft Manifest number: 0108 Signing time: Wed 05 Nov 2025 05:09:43 +0000 Manifest this update: Wed 05 Nov 2025 05:09:43 +0000 Manifest next update: Wed 12 Nov 2025 05:09:43 +0000 Files and hashes: 1: 1Siei3312SAW7HmO7v8FvHPoVYA.crl (hash: Vl7Gcp9NIfoRblScOmmVnfApvYxvwGQY2+U+AcuUQnc=) 2: B4684D8A288D11EF96BC5135C4F9AE02.roa (hash: b6ERigxsXjUyaKMbJy8+YRLovoMIY+E6IWTJv3Q8jfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137722, serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Validity Not Before: Nov 5 05:09:43 2025 GMT Not After : Nov 12 05:09:43 2025 GMT Subject: CN=690adc17-f378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ae:ef:81:11:bb:74:ab:1c:ba:7e:cf:80:1d: ff:8a:15:81:6a:d4:65:50:16:c8:d1:5f:77:63:fe: 35:b3:04:c3:95:7d:27:f3:49:40:b0:e5:9e:27:9e: 14:20:f0:0b:8f:f2:f0:5b:c3:c5:a6:b2:8e:dc:32: 7c:80:78:c3:67:82:32:25:93:12:d5:32:ae:a9:7c: b2:c6:a1:20:f9:c3:6a:f1:30:c0:f6:81:ac:f6:6c: d9:73:fd:9a:38:21:21:3e:f7:0c:08:72:c6:1d:9a: c7:f2:9e:7a:1f:d9:ce:9b:bf:29:63:e3:cc:0e:84: 38:46:e9:62:a1:d2:45:c7:39:0a:c0:fe:69:63:3e: ed:4a:01:83:7f:46:5f:8b:bf:8b:c8:87:6a:d4:ee: 61:db:f5:d3:68:1a:fa:00:b4:ba:48:24:ec:a1:4e: 70:39:cf:f8:15:89:f4:35:31:9c:6c:e2:bf:2d:32: 0b:4c:1b:61:32:7a:e0:15:a6:a3:c1:67:9d:55:16: c8:83:b5:26:29:81:69:67:72:04:d5:0d:90:a7:3f: a3:74:24:e3:82:26:dd:6e:05:36:07:8b:fc:bf:e9: 93:08:76:87:b3:28:af:c7:0c:5c:3f:6f:a3:77:bf: f9:b7:e2:2a:11:68:ca:19:2a:eb:24:79:ee:95:0c: 01:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D3:62:45:56:96:1D:3E:85:AF:6A:3A:16:73:A7:70:7F:10:1D:5C X509v3 Authority Key Identifier: keyid:D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:3a:1c:e4:7d:43:a3:fb:5a:75:95:fe:35:12:b6:db:16:99: 2e:35:25:81:79:11:20:88:f1:6c:ef:d4:56:13:88:99:52:fb: c7:88:98:3a:a1:36:ea:91:91:43:fd:b8:62:52:95:8d:7f:12: 53:97:34:87:d0:85:68:3b:c4:af:c9:d5:ab:70:8a:82:72:af: 2f:04:b1:e0:d4:5f:54:09:1e:9e:99:5b:a9:51:98:f6:b9:15: f8:3b:81:23:ae:58:2e:4c:ad:ce:7f:88:b1:a1:c2:8a:97:71: 3a:fe:16:4d:50:fe:2d:e9:19:21:32:e0:2e:83:4f:6a:10:74: 59:18:3f:8e:fe:cd:27:18:2d:e5:e1:24:50:86:1c:0c:a9:0e: ba:98:8f:2f:e1:60:e6:4d:db:63:56:b4:66:c4:b2:72:78:5e: d8:28:91:8f:38:55:dd:6e:78:31:24:56:54:10:41:3c:1b:51: 2e:93:be:c1:53:9e:08:ef:ef:f7:a8:a4:9d:99:c5:16:57:79: 6b:fc:4a:f2:00:40:94:1c:19:7a:b2:91:3a:ea:8e:af:27:20: 6b:78:b5:f2:66:da:a5:e8:7a:6f:8d:d1:39:a5:63:29:67:e7: c5:02:b1:69:8a:66:ab:ba:74:02:4a:38:1e:84:60:78:a5:83: dd:e7:ac:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc3MjIxMTAvBgNVBAUTKEQ1Mjg5RThCN0RGNUQ5MjAxNkVDNzk4RUVFRkYwNUJD NzNFODU1ODAwHhcNMjUxMTA1MDUwOTQzWhcNMjUxMTEyMDUwOTQzWjAYMRYwFAYD VQQDEw02OTBhZGMxNy1mMzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyq7vgRG7dKscun7PgB3/ihWBatRlUBbI0V93Y/41swTDlX0n80lAsOWeJ54U IPALj/LwW8PFprKO3DJ8gHjDZ4IyJZMS1TKuqXyyxqEg+cNq8TDA9oGs9mzZc/2a OCEhPvcMCHLGHZrH8p56H9nOm78pY+PMDoQ4RuliodJFxzkKwP5pYz7tSgGDf0Zf i7+LyIdq1O5h2/XTaBr6ALS6SCTsoU5wOc/4FYn0NTGcbOK/LTILTBthMnrgFaaj wWedVRbIg7UmKYFpZ3IE1Q2Qpz+jdCTjgibdbgU2B4v8v+mTCHaHsyivxwxcP2+j d7/5t+IqEWjKGSrrJHnulQwBRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/TYkVW lh0+ha9qOhZzp3B/EB1cMB8GA1UdIwQYMBaAFNUonot99dkgFux5ju7/Bbxz6FWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzcyMi80NkJEREMwMDI4 OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJTQVc3SG1PN3Y4RnZIUG9W WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTaWVpMzMxMlNBVzdIbU83djhGdkhQb1ZZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzcyMi80NkJEREMwMDI4OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJT QVc3SG1PN3Y4RnZIUG9WWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwOhzkfUOj+1p1lf41ErbbFpkuNSWBeREgiPFs79RWE4iZUvvHiJg6 oTbqkZFD/bhiUpWNfxJTlzSH0IVoO8SvydWrcIqCcq8vBLHg1F9UCR6emVupUZj2 uRX4O4EjrlguTK3Of4ixocKKl3E6/hZNUP4t6RkhMuAug09qEHRZGD+O/s0nGC3l 4SRQhhwMqQ66mI8v4WDmTdtjVrRmxLJyeF7YKJGPOFXdbngxJFZUEEE8G1Euk77B U54I7+/3qKSdmcUWV3lr/EryAECUHBl6spE66o6vJyBreLXyZtql6HpvjdE5pWMp Z+fFArFpimarunQCSjgehGB4pYPd56wg -----END CERTIFICATE-----Generated at Wed Nov 5 23:05:20 2025 by rpki-client