$ rpki-client -vvf rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft File: 1Siei3312SAW7HmO7v8FvHPoVYA.mft (raw, json) Hash identifier: gR3vxxlU/SgrYnvW2H2jsjwRQTNBE+EZiE6RJC15aQA= Subject key identifier: D8:4D:64:43:FD:9B:F6:D8:DA:F5:50:2F:B4:84:F8:1E:D3:D5:6C:33 Authority key identifier: D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 Certificate issuer: /CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft Manifest number: BE Signing time: Sun 15 Jun 2025 04:59:27 +0000 Manifest this update: Sun 15 Jun 2025 04:59:27 +0000 Manifest next update: Sun 22 Jun 2025 04:59:27 +0000 Files and hashes: 1: 1Siei3312SAW7HmO7v8FvHPoVYA.crl (hash: kSk1X2nqE+a4E6w9XRKQvQJyP7EATBIl/fjlnN9wpco=) 2: B4684D8A288D11EF96BC5135C4F9AE02.roa (hash: LuOXDNonR3GEQAX6Ae//YPTmZrxLa+xdQ9eXFVMZLeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137722, serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Validity Not Before: Jun 15 04:59:27 2025 GMT Not After : Jun 22 04:59:27 2025 GMT Subject: CN=684e532f-2c8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d6:b3:bc:2c:d4:69:98:92:60:b5:01:fe:42: 47:c4:54:9c:64:93:b9:83:77:94:9d:78:60:03:df: e2:77:ac:af:43:62:eb:dd:19:00:88:93:92:22:2e: 11:5d:12:c7:f0:8c:ff:12:fe:dd:64:10:ba:fa:42: b5:e6:0b:d1:cf:e8:cd:07:7e:56:f4:d2:7c:68:57: 6c:94:3d:6e:b8:95:04:67:58:f7:3f:2b:ab:1f:1a: de:53:01:c6:51:f2:89:94:20:35:52:9c:93:ac:97: 03:ce:09:0c:3c:84:cd:9d:08:2c:fc:36:82:b3:bf: 5f:44:7e:d9:11:d1:3e:71:57:f9:56:f2:ea:42:1d: 32:13:35:f5:aa:a1:68:cd:8c:45:e2:9f:09:4e:00: 50:c6:8a:25:8c:dc:c1:64:da:d1:7b:0a:b4:c0:2b: 03:ef:82:81:b4:d5:d1:d0:3a:d9:4e:ab:42:d9:56: ed:32:ee:64:b1:07:f9:2e:97:19:7d:5b:c1:3d:b5: 31:cc:76:fe:0d:c1:c2:9f:4c:06:7b:56:d5:21:13: 36:b3:90:be:82:6f:45:fe:74:52:94:c6:a8:6d:7a: 3c:85:9f:8b:0d:fb:32:0c:65:8e:77:3f:37:34:97: a9:ca:bb:6e:24:31:3f:6a:fe:0e:b9:41:a6:84:fb: f1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:4D:64:43:FD:9B:F6:D8:DA:F5:50:2F:B4:84:F8:1E:D3:D5:6C:33 X509v3 Authority Key Identifier: keyid:D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:16:56:9b:13:8d:f2:40:e9:b9:59:1b:00:63:86:88:84:69: a3:56:00:0c:21:c2:2f:1a:3a:46:a7:cf:7b:b6:3a:97:d3:51: cf:3e:ba:c9:67:3d:63:2a:60:a2:29:73:bc:11:27:64:c8:53: 73:23:59:79:26:bf:48:a1:53:77:2c:ab:35:19:3f:29:6e:ab: 5d:3b:4b:7a:88:0b:0e:67:fa:4a:83:14:e3:a4:d0:a8:cf:cf: 2d:fc:0c:ae:23:9b:cb:ac:b5:a5:ca:6e:45:2c:0c:49:88:d1: 90:8d:59:2a:15:a0:1e:d2:ef:fc:c1:26:36:b9:a3:01:5f:f8: dd:15:9f:a3:ec:77:87:9c:9c:02:da:03:ba:6e:e8:80:16:1d: 76:44:85:75:35:c5:5d:7c:1e:13:dd:28:d0:3d:bf:01:5b:4e: ec:4b:88:03:a1:ff:47:ad:9e:7b:07:5a:87:b7:45:e9:4a:94: f3:11:be:65:83:30:96:8f:01:45:1f:8b:d2:99:ec:7d:25:53: 19:57:94:e2:49:d9:6a:45:45:67:61:29:80:43:1f:56:0a:50: bf:91:b9:1b:e9:96:f3:bd:be:91:4a:fd:13:bb:a6:fb:e4:81: 3c:07:46:ec:6a:69:21:56:6c:f7:4b:5e:d7:ab:1c:ae:b5:14: 33:1c:9a:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc3MjIxMTAvBgNVBAUTKEQ1Mjg5RThCN0RGNUQ5MjAxNkVDNzk4RUVFRkYwNUJD NzNFODU1ODAwHhcNMjUwNjE1MDQ1OTI3WhcNMjUwNjIyMDQ1OTI3WjAYMRYwFAYD VQQDEw02ODRlNTMyZi0yYzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtazvCzUaZiSYLUB/kJHxFScZJO5g3eUnXhgA9/id6yvQ2Lr3RkAiJOSIi4R XRLH8Iz/Ev7dZBC6+kK15gvRz+jNB35W9NJ8aFdslD1uuJUEZ1j3PyurHxreUwHG UfKJlCA1UpyTrJcDzgkMPITNnQgs/DaCs79fRH7ZEdE+cVf5VvLqQh0yEzX1qqFo zYxF4p8JTgBQxooljNzBZNrRewq0wCsD74KBtNXR0DrZTqtC2VbtMu5ksQf5LpcZ fVvBPbUxzHb+DcHCn0wGe1bVIRM2s5C+gm9F/nRSlMaobXo8hZ+LDfsyDGWOdz83 NJepyrtuJDE/av4OuUGmhPvxAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhNZEP9 m/bY2vVQL7SE+B7T1WwzMB8GA1UdIwQYMBaAFNUonot99dkgFux5ju7/Bbxz6FWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzcyMi80NkJEREMwMDI4 OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJTQVc3SG1PN3Y4RnZIUG9W WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTaWVpMzMxMlNBVzdIbU83djhGdkhQb1ZZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzcyMi80NkJEREMwMDI4OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJT QVc3SG1PN3Y4RnZIUG9WWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPFlabE43yQOm5WRsAY4aIhGmjVgAMIcIvGjpGp897tjqX01HPPrrJ Zz1jKmCiKXO8ESdkyFNzI1l5Jr9IoVN3LKs1GT8pbqtdO0t6iAsOZ/pKgxTjpNCo z88t/AyuI5vLrLWlym5FLAxJiNGQjVkqFaAe0u/8wSY2uaMBX/jdFZ+j7HeHnJwC 2gO6buiAFh12RIV1NcVdfB4T3SjQPb8BW07sS4gDof9HrZ57B1qHt0XpSpTzEb5l gzCWjwFFH4vSmex9JVMZV5TiSdlqRUVnYSmAQx9WClC/kbkb6Zbzvb6RSv0Tu6b7 5IE8B0bsamkhVmz3S17XqxyutRQzHJoc -----END CERTIFICATE-----Generated at Sun Jun 15 10:01:47 2025 by rpki-client