$ rpki-client -vvf rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft File: 1Siei3312SAW7HmO7v8FvHPoVYA.mft (raw, json) Hash identifier: 9H4KsCGDe4oFXkpmXrk42fOxza6EdVdg7FJRwwy3zCg= Subject key identifier: FA:79:C3:B2:7F:37:84:36:E7:EC:99:94:D2:31:B3:2A:14:FA:F8:A1 Authority key identifier: D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 Certificate issuer: /CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft Manifest number: A5 Signing time: Fri 25 Apr 2025 05:11:19 +0000 Manifest this update: Fri 25 Apr 2025 05:11:18 +0000 Manifest next update: Fri 02 May 2025 05:11:18 +0000 Files and hashes: 1: 1Siei3312SAW7HmO7v8FvHPoVYA.crl (hash: DyjZSLyQvYMw5jJP77VUyWkgiCTSNhuP1Xf1jmevRBA=) 2: B4684D8A288D11EF96BC5135C4F9AE02.roa (hash: LuOXDNonR3GEQAX6Ae//YPTmZrxLa+xdQ9eXFVMZLeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:11:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137722, serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Validity Not Before: Apr 25 05:11:18 2025 GMT Not After : May 2 05:11:18 2025 GMT Subject: CN=680b1977-fe03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c0:95:b9:33:fc:6a:6f:30:59:ad:12:bb:62: 46:73:c7:4e:9b:fc:03:6b:50:85:26:69:39:5c:96: 12:a1:21:19:1a:d8:d4:55:86:22:a0:ff:4d:48:44: 42:56:e0:a4:74:be:70:fc:eb:6f:57:db:1e:5a:c6: 42:66:e6:dc:63:99:5e:cf:cf:d4:01:dc:d2:93:65: 7e:5a:3c:9a:38:e0:54:6a:b7:c0:9c:5a:70:0a:79: 56:ea:de:7c:fc:48:4e:9c:9f:a2:66:b7:b7:a8:51: 82:3c:71:e6:53:f6:cd:6f:e1:0e:13:d5:79:e5:4b: 07:c4:ad:99:ee:1c:00:3b:89:0f:a1:9f:db:c9:35: 3d:43:db:d8:f8:35:62:fa:56:ed:3f:7d:c7:6c:b3: 59:e2:06:c4:04:5b:69:8c:4d:5a:1b:d9:d4:16:30: 36:91:5a:84:b8:f6:80:2e:35:44:cb:00:e2:20:fd: 29:cd:4e:2e:c4:36:c7:16:f4:73:38:bc:0b:7d:0b: 61:38:04:0f:1e:dd:16:bc:2a:eb:00:bf:5a:6a:ee: b8:03:59:5a:3a:2b:bc:46:8c:58:f2:a2:89:49:84: 25:ba:8e:4d:f7:5d:22:ac:eb:e7:b5:21:b2:ea:a9: f2:ae:04:46:e2:ec:3f:6a:65:95:83:04:36:94:d1: a6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:79:C3:B2:7F:37:84:36:E7:EC:99:94:D2:31:B3:2A:14:FA:F8:A1 X509v3 Authority Key Identifier: keyid:D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:38:65:eb:d1:6f:c0:ca:41:7a:8a:6d:9a:e8:71:7b:7b:00: 31:d6:23:53:f7:de:c5:84:e8:3b:9d:ba:90:ca:b8:77:64:48: 37:ca:60:c0:f4:1a:16:84:0d:40:38:eb:c9:7c:bb:4b:b1:1b: 7c:c4:b5:f8:dd:a1:c4:55:42:cc:e8:71:5f:c0:f9:7f:8b:43: 50:31:df:85:c7:db:0b:75:2a:52:0a:4f:89:16:63:7a:97:05: b2:6c:e6:5e:2e:01:9b:e6:21:0b:74:44:34:8a:ea:d1:87:85: 19:af:96:f4:94:b9:c9:6f:33:c9:bc:bf:ab:b5:72:76:10:8e: 7f:e1:a1:dc:94:3f:19:18:0d:9c:aa:c0:ef:b8:e9:fb:fb:a5: 9a:86:75:de:01:c5:01:0b:ea:e3:1d:06:c1:05:cc:68:0d:37: b1:0f:78:04:57:f5:e3:80:7b:e5:9d:c4:20:ba:da:13:e4:7f: 4e:43:db:5b:79:43:a1:31:4a:df:a1:9c:74:4b:d7:6d:a5:16: 12:61:93:e7:91:d1:c7:07:79:fe:cd:e1:7b:2d:b8:c8:27:a3: 8e:5d:06:1b:6c:07:0f:dc:f3:11:04:07:08:8b:d7:59:6d:34: b3:7e:2c:f0:7a:00:5d:31:30:f1:44:41:c2:47:53:72:1b:c3: 3b:01:25:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc3MjIxMTAvBgNVBAUTKEQ1Mjg5RThCN0RGNUQ5MjAxNkVDNzk4RUVFRkYwNUJD NzNFODU1ODAwHhcNMjUwNDI1MDUxMTE4WhcNMjUwNTAyMDUxMTE4WjAYMRYwFAYD VQQDEw02ODBiMTk3Ny1mZTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscCVuTP8am8wWa0Su2JGc8dOm/wDa1CFJmk5XJYSoSEZGtjUVYYioP9NSERC VuCkdL5w/OtvV9seWsZCZubcY5lez8/UAdzSk2V+WjyaOOBUarfAnFpwCnlW6t58 /EhOnJ+iZre3qFGCPHHmU/bNb+EOE9V55UsHxK2Z7hwAO4kPoZ/byTU9Q9vY+DVi +lbtP33HbLNZ4gbEBFtpjE1aG9nUFjA2kVqEuPaALjVEywDiIP0pzU4uxDbHFvRz OLwLfQthOAQPHt0WvCrrAL9aau64A1laOiu8RoxY8qKJSYQluo5N910irOvntSGy 6qnyrgRG4uw/amWVgwQ2lNGmsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPp5w7J/ N4Q25+yZlNIxsyoU+vihMB8GA1UdIwQYMBaAFNUonot99dkgFux5ju7/Bbxz6FWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzcyMi80NkJEREMwMDI4 OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJTQVc3SG1PN3Y4RnZIUG9W WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTaWVpMzMxMlNBVzdIbU83djhGdkhQb1ZZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzcyMi80NkJEREMwMDI4OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJT QVc3SG1PN3Y4RnZIUG9WWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtOGXr0W/AykF6im2a6HF7ewAx1iNT997FhOg7nbqQyrh3ZEg3ymDA 9BoWhA1AOOvJfLtLsRt8xLX43aHEVULM6HFfwPl/i0NQMd+Fx9sLdSpSCk+JFmN6 lwWybOZeLgGb5iELdEQ0iurRh4UZr5b0lLnJbzPJvL+rtXJ2EI5/4aHclD8ZGA2c qsDvuOn7+6WahnXeAcUBC+rjHQbBBcxoDTexD3gEV/XjgHvlncQgutoT5H9OQ9tb eUOhMUrfoZx0S9dtpRYSYZPnkdHHB3n+zeF7LbjIJ6OOXQYbbAcP3PMRBAcIi9dZ bTSzfizwegBdMTDxREHCR1NyG8M7ASV5 -----END CERTIFICATE-----Generated at Sat Apr 26 05:06:45 2025 by rpki-client