$ rpki-client -vvf rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft File: 1Siei3312SAW7HmO7v8FvHPoVYA.mft (raw, json) Hash identifier: PGpPdTDYL6/e+3u/QbjdYXOoQCnle1mbrF/CRWYGL9Y= Subject key identifier: 1D:B0:23:FF:53:F9:DB:12:B5:0B:AA:80:AE:71:97:63:D6:B5:96:A1 Authority key identifier: D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 Certificate issuer: /CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft Manifest number: 8F Signing time: Thu 13 Mar 2025 04:31:51 +0000 Manifest this update: Thu 13 Mar 2025 04:31:50 +0000 Manifest next update: Thu 20 Mar 2025 04:31:50 +0000 Files and hashes: 1: 1Siei3312SAW7HmO7v8FvHPoVYA.crl (hash: USpYY99ZWG01s9XIlyrx34Qzsa8fLVe8Ec9eUjvxxgQ=) 2: B4684D8A288D11EF96BC5135C4F9AE02.roa (hash: LuOXDNonR3GEQAX6Ae//YPTmZrxLa+xdQ9eXFVMZLeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137722 Validity Not Before: Mar 13 04:31:50 2025 GMT Not After : Mar 20 04:31:50 2025 GMT Subject: CN=67d25fb6-b764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:22:fb:55:da:3c:23:b5:5a:b3:18:15:45:45: 8b:60:ec:13:15:3b:21:f5:71:50:66:91:4a:fe:e8: 26:81:2b:cd:39:fb:69:d5:78:95:f7:09:55:1e:0c: ac:d7:14:9b:3b:09:e2:ff:39:b0:bb:85:0d:40:67: 62:39:a2:a1:5a:48:71:0d:24:d7:36:95:7d:68:0d: bc:dd:29:ce:91:04:a5:6b:d0:81:d5:22:39:63:be: ef:a0:2d:26:7a:81:51:73:13:60:a0:f7:73:d8:7f: 80:56:31:a2:3e:f3:2c:73:e0:48:fe:05:c7:44:72: 7d:bf:f0:35:ed:8d:21:78:e5:15:27:9f:67:34:d7: 53:d4:1c:31:d1:c3:e5:cb:5f:8c:93:e9:3e:74:d4: cd:02:6c:ee:b9:f4:26:d7:97:58:69:40:e2:ef:4d: dd:45:2f:cd:51:69:2c:b4:9e:77:76:e9:5b:7d:77: 6e:d4:00:30:e0:d0:a2:36:04:cc:11:fb:ce:d7:a7: d6:d4:cf:3e:78:20:15:b8:6f:3b:34:a2:00:db:9a: 26:86:7f:41:59:57:e8:4e:fb:6c:b7:51:1c:99:b4: 43:f2:1a:e8:6a:46:23:9f:af:b7:a3:d5:6d:82:20: 8f:d3:e4:f0:27:6a:c0:be:a3:d1:f3:e8:ed:d7:95: f4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:B0:23:FF:53:F9:DB:12:B5:0B:AA:80:AE:71:97:63:D6:B5:96:A1 X509v3 Authority Key Identifier: keyid:D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:c6:63:3e:de:9e:71:d7:aa:ca:70:61:1d:8e:80:58:62:bc: 9e:97:0a:89:78:27:13:50:5e:ce:39:93:6d:ce:be:7a:9d:03: 20:f0:80:8c:7b:11:e9:d7:51:50:9a:30:d7:d3:ff:13:1f:d3: d3:53:eb:cc:23:e5:34:d8:d1:75:7d:d7:6e:25:64:98:ef:2e: c7:ac:ca:8d:8f:68:52:c2:5e:e0:53:9c:59:8c:7d:b6:03:02: 31:3d:e8:57:73:04:04:c4:45:1a:be:83:d5:92:94:f3:cb:1b: 84:1f:c7:d0:df:d7:64:a8:09:6d:6f:06:f8:bd:00:cb:db:ac: cb:1a:ce:2d:47:10:35:36:79:ba:35:86:71:de:f3:77:5c:47: 8c:84:d9:17:0c:7f:cc:32:81:f0:f4:89:72:51:18:7f:0b:89: 3a:b0:56:ea:8d:8b:0b:65:bf:c6:79:eb:07:c5:15:03:19:d4: cf:42:e9:95:7d:1e:ff:16:12:3b:ee:54:a8:43:dd:fb:c5:dc: 8b:6e:9c:af:aa:05:2b:78:4a:7e:91:d2:82:28:78:07:bf:5d: 21:a4:19:47:c5:9c:a1:8b:7b:04:11:ad:93:e1:a0:2f:3d:79: a3:5b:54:d1:fe:64:5c:70:f7:85:36:6c:68:99:f9:72:9f:cc: 1a:8b:a2:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc3MjIxMTAvBgNVBAUTKEQ1Mjg5RThCN0RGNUQ5MjAxNkVDNzk4RUVFRkYwNUJD NzNFODU1ODAwHhcNMjUwMzEzMDQzMTUwWhcNMjUwMzIwMDQzMTUwWjAYMRYwFAYD VQQDEw02N2QyNWZiNi1iNzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmCL7Vdo8I7VasxgVRUWLYOwTFTsh9XFQZpFK/ugmgSvNOftp1XiV9wlVHgys 1xSbOwni/zmwu4UNQGdiOaKhWkhxDSTXNpV9aA283SnOkQSla9CB1SI5Y77voC0m eoFRcxNgoPdz2H+AVjGiPvMsc+BI/gXHRHJ9v/A17Y0heOUVJ59nNNdT1Bwx0cPl y1+Mk+k+dNTNAmzuufQm15dYaUDi703dRS/NUWkstJ53dulbfXdu1AAw4NCiNgTM EfvO16fW1M8+eCAVuG87NKIA25omhn9BWVfoTvtst1EcmbRD8hroakYjn6+3o9Vt giCP0+TwJ2rAvqPR8+jt15X0EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2wI/9T +dsStQuqgK5xl2PWtZahMB8GA1UdIwQYMBaAFNUonot99dkgFux5ju7/Bbxz6FWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzcyMi80NkJEREMwMDI4 OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJTQVc3SG1PN3Y4RnZIUG9W WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTaWVpMzMxMlNBVzdIbU83djhGdkhQb1ZZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzcyMi80NkJEREMwMDI4OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJT QVc3SG1PN3Y4RnZIUG9WWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAExmM+3p5x16rKcGEdjoBYYryelwqJeCcTUF7OOZNtzr56nQMg8ICM exHp11FQmjDX0/8TH9PTU+vMI+U02NF1fdduJWSY7y7HrMqNj2hSwl7gU5xZjH22 AwIxPehXcwQExEUavoPVkpTzyxuEH8fQ39dkqAltbwb4vQDL26zLGs4tRxA1Nnm6 NYZx3vN3XEeMhNkXDH/MMoHw9IlyURh/C4k6sFbqjYsLZb/GeesHxRUDGdTPQumV fR7/FhI77lSoQ937xdyLbpyvqgUreEp+kdKCKHgHv10hpBlHxZyhi3sEEa2T4aAv PXmjW1TR/mRccPeFNmxomflyn8wai6Lc -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:58 2025 by rpki-client