$ rpki-client -vvf rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft File: 1Siei3312SAW7HmO7v8FvHPoVYA.mft (raw, json) Hash identifier: WibVezjhcD3huuFFKGKJX1WMY9mJHaGB3p+uy40yPNY= Subject key identifier: 1C:89:B5:EE:01:6D:D6:5C:5E:48:ED:A3:AA:6A:BE:4A:CE:C7:9B:01 Authority key identifier: D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 Certificate issuer: /CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft Manifest number: DA Signing time: Sat 09 Aug 2025 05:56:38 +0000 Manifest this update: Sat 09 Aug 2025 05:56:38 +0000 Manifest next update: Sat 16 Aug 2025 05:56:38 +0000 Files and hashes: 1: 1Siei3312SAW7HmO7v8FvHPoVYA.crl (hash: cFSgJhkHSEt/MZfgg5zvvnEwV4uFAv2SQem6G+XmjQA=) 2: B4684D8A288D11EF96BC5135C4F9AE02.roa (hash: LuOXDNonR3GEQAX6Ae//YPTmZrxLa+xdQ9eXFVMZLeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137722, serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Validity Not Before: Aug 9 05:56:38 2025 GMT Not After : Aug 16 05:56:38 2025 GMT Subject: CN=6896e316-eefc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a4:e3:47:bb:a9:85:1e:29:03:82:99:31:b1: ef:fa:d0:b1:e6:f3:9e:cb:e0:f6:fd:b7:37:59:3e: 34:5f:d7:78:d9:fd:4d:fc:f2:2d:5f:b5:58:c6:4d: bb:de:0e:a2:d9:89:0c:c5:38:fc:63:29:da:7c:01: be:0a:96:f2:1d:03:41:c5:76:f0:13:d3:f8:41:3c: d5:9e:c9:d3:14:95:05:d8:47:5a:7e:0d:c6:17:b6: 73:47:f7:93:a6:fe:5e:0c:e5:b1:34:f0:d1:c6:f4: 1d:e2:7c:c5:ea:31:76:0b:43:8e:14:b2:f4:04:d1: dc:46:eb:30:fb:a0:5c:53:3a:d4:74:0d:31:3b:76: 0d:e5:5a:1c:a1:5b:42:82:d0:6d:62:1b:1a:9a:29: 9b:40:4c:54:c6:51:30:b7:e9:6b:80:58:4d:0a:d2: d3:a3:7a:47:2c:75:bd:56:af:ba:4e:5b:35:2c:d6: e5:74:63:15:23:db:04:b6:44:22:1e:72:81:98:9b: 18:1f:72:45:0b:94:05:64:f9:49:10:0a:5b:ed:79: 47:97:ff:27:3b:71:a9:de:6d:5e:eb:7d:a3:88:86: a8:17:3a:ff:4c:fb:ca:bd:36:e6:d6:dc:9a:fd:34: 20:53:02:30:85:07:91:43:65:cc:ea:19:a7:64:0a: f4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:89:B5:EE:01:6D:D6:5C:5E:48:ED:A3:AA:6A:BE:4A:CE:C7:9B:01 X509v3 Authority Key Identifier: keyid:D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:0d:c9:48:44:c7:f8:c9:04:c6:a9:4b:04:d9:8b:c7:d6:06: c5:17:9d:79:52:bd:3f:00:90:38:0d:c2:69:19:4f:68:d9:38: 2a:f0:92:7c:22:2a:cb:7b:b5:5d:4b:95:df:67:66:10:16:17: 9e:b3:f4:6b:20:b7:94:52:fd:c5:9f:6e:9c:77:f1:75:a5:2c: 28:66:2d:1f:1c:52:74:a5:76:f4:0b:ad:f9:1b:60:1a:c3:17: a8:29:9d:89:b8:4e:2d:1a:25:ca:ca:e9:cf:cc:59:8d:de:47: dd:e7:dd:84:f9:86:46:e1:a6:1a:78:a6:02:db:1e:4f:d5:44: 64:45:d0:86:8a:ba:a0:fa:a9:a3:14:0e:03:93:39:05:db:ea: 22:7c:a9:68:6a:81:0c:99:04:1b:e1:d3:f0:76:8b:23:2e:8c: 13:88:4c:22:9a:14:1b:9d:21:03:b8:af:b7:80:59:ba:23:13: fe:4e:d7:17:8c:4e:82:f0:f6:b2:f6:98:87:f1:78:9d:30:52: da:22:c8:3d:59:86:69:52:e1:ae:ff:dd:ac:3c:b2:56:04:20: 6f:6f:61:32:af:21:cc:96:41:07:18:36:d5:e1:63:53:40:22: bd:fc:3c:96:81:78:88:37:cb:d7:5f:27:ae:e2:ab:0b:91:a8: b9:f9:06:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc3MjIxMTAvBgNVBAUTKEQ1Mjg5RThCN0RGNUQ5MjAxNkVDNzk4RUVFRkYwNUJD NzNFODU1ODAwHhcNMjUwODA5MDU1NjM4WhcNMjUwODE2MDU1NjM4WjAYMRYwFAYD VQQDEw02ODk2ZTMxNi1lZWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKTjR7uphR4pA4KZMbHv+tCx5vOey+D2/bc3WT40X9d42f1N/PItX7VYxk27 3g6i2YkMxTj8YynafAG+CpbyHQNBxXbwE9P4QTzVnsnTFJUF2Edafg3GF7ZzR/eT pv5eDOWxNPDRxvQd4nzF6jF2C0OOFLL0BNHcRusw+6BcUzrUdA0xO3YN5VocoVtC gtBtYhsamimbQExUxlEwt+lrgFhNCtLTo3pHLHW9Vq+6Tls1LNbldGMVI9sEtkQi HnKBmJsYH3JFC5QFZPlJEApb7XlHl/8nO3Gp3m1e632jiIaoFzr/TPvKvTbm1tya /TQgUwIwhQeRQ2XM6hmnZAr0hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByJte4B bdZcXkjto6pqvkrOx5sBMB8GA1UdIwQYMBaAFNUonot99dkgFux5ju7/Bbxz6FWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzcyMi80NkJEREMwMDI4 OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJTQVc3SG1PN3Y4RnZIUG9W WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTaWVpMzMxMlNBVzdIbU83djhGdkhQb1ZZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzcyMi80NkJEREMwMDI4OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJT QVc3SG1PN3Y4RnZIUG9WWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0DclIRMf4yQTGqUsE2YvH1gbFF515Ur0/AJA4DcJpGU9o2Tgq8JJ8 IirLe7VdS5XfZ2YQFhees/RrILeUUv3Fn26cd/F1pSwoZi0fHFJ0pXb0C635G2Aa wxeoKZ2JuE4tGiXKyunPzFmN3kfd592E+YZG4aYaeKYC2x5P1URkRdCGirqg+qmj FA4DkzkF2+oifKloaoEMmQQb4dPwdosjLowTiEwimhQbnSEDuK+3gFm6IxP+TtcX jE6C8Pay9piH8XidMFLaIsg9WYZpUuGu/92sPLJWBCBvb2EyryHMlkEHGDbV4WNT QCK9/DyWgXiIN8vXXyeu4qsLkai5+QZi -----END CERTIFICATE-----Generated at Mon Aug 11 01:47:44 2025 by rpki-client