$ rpki-client -vvf rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft File: 1Siei3312SAW7HmO7v8FvHPoVYA.mft (raw, json) Hash identifier: 6js0dH0asCKWiBAZIyLbFLDdi5M4mQJUHPKBt6pig6U= Subject key identifier: BF:8D:11:47:54:A2:68:CA:AD:A5:8F:F7:9E:CF:5D:57:12:55:27:9E Authority key identifier: D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 Certificate issuer: /CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft Manifest number: A0 Signing time: Tue 15 Apr 2025 05:02:32 +0000 Manifest this update: Tue 15 Apr 2025 05:02:32 +0000 Manifest next update: Tue 22 Apr 2025 05:02:32 +0000 Files and hashes: 1: 1Siei3312SAW7HmO7v8FvHPoVYA.crl (hash: yX8PQTVCPkSPT1JfCCVnxVdGcKyPCeO2/pYU8ybvJfs=) 2: B4684D8A288D11EF96BC5135C4F9AE02.roa (hash: LuOXDNonR3GEQAX6Ae//YPTmZrxLa+xdQ9eXFVMZLeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 05:02:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137722, serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Validity Not Before: Apr 15 05:02:32 2025 GMT Not After : Apr 22 05:02:32 2025 GMT Subject: CN=67fde868-ba84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d6:29:31:79:0f:41:d0:5f:80:a4:dd:0c:3e: c7:c0:dd:4a:e9:d2:d2:d2:b8:a8:66:f9:a6:30:6e: 2d:5a:22:30:6e:ff:28:ad:d3:3b:ba:db:fd:40:8d: 81:c1:ae:90:ff:03:0e:96:72:e6:ec:ee:4a:28:6d: a6:a1:8d:a5:66:c9:2c:57:63:96:3b:01:38:1f:6a: ab:0a:f0:35:ae:5d:80:cc:e4:df:4f:45:b5:37:16: fe:22:88:1e:b1:c7:d2:52:4e:98:c0:14:60:76:6b: 2c:2e:35:cc:c0:ef:bf:5f:29:28:7a:fc:39:d5:af: b2:f5:d1:24:73:19:f6:ea:8b:55:89:48:72:b1:cf: b5:91:d3:e0:b0:67:d9:da:a3:c8:21:14:a7:12:3c: 77:73:25:8c:cc:0b:ba:c1:d2:c9:66:bf:0a:98:0f: 19:50:89:49:ef:28:c6:15:cd:04:bb:16:9b:ce:9e: a5:5d:b8:e9:e3:ee:05:8d:83:39:e6:c3:d0:7a:a8: 72:86:93:ae:fb:48:89:8e:d5:e1:f9:0f:c9:a8:12: dc:93:84:95:1c:a9:3e:bf:81:75:d9:e0:16:61:7a: 88:2a:df:6d:dc:03:36:04:01:bd:7e:b4:bd:c8:9d: 5e:e7:37:b8:50:a9:a7:85:1a:08:9c:8e:e2:0b:9f: 00:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:8D:11:47:54:A2:68:CA:AD:A5:8F:F7:9E:CF:5D:57:12:55:27:9E X509v3 Authority Key Identifier: keyid:D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:6e:37:fa:d6:f3:36:0d:8b:0d:da:ac:26:be:1a:e8:96:48: 0f:3b:12:bb:39:51:3a:d2:16:81:06:ea:15:bf:f1:be:d9:a5: 9e:2a:99:be:ec:54:f1:f8:e1:11:d2:3f:15:4e:fb:c7:27:ec: 0f:65:98:49:aa:f8:7d:c7:ce:68:f3:57:55:bd:e2:27:57:43: 7a:50:75:44:ae:97:9e:b3:f3:f6:09:73:e6:87:f3:b3:25:c0: d0:bb:d5:51:a0:0f:f8:da:af:17:c1:02:ee:97:85:cd:38:45: 77:78:d5:4b:56:a9:89:ed:e2:50:71:0d:cb:83:f8:87:fd:1d: d9:78:ac:e4:2f:76:92:ed:e9:99:fa:c3:50:7b:59:39:dd:5c: 9b:97:e0:b3:fe:46:79:04:bc:8f:23:79:f4:b0:58:ea:40:55: 08:9f:97:8f:75:48:35:6f:9f:d0:27:7e:c2:46:9a:b7:8f:81: 00:f6:f9:29:46:a1:38:56:73:ed:fc:29:ce:31:a8:56:e5:0c: 36:33:d0:9a:c0:4b:c1:98:6c:20:76:4b:02:45:85:dc:ac:82: 24:4a:a4:77:20:21:19:cc:9f:5d:1f:75:d7:b6:af:9c:bd:fb: d3:06:75:1f:99:7f:29:23:ac:5b:3a:b9:15:3e:9b:5e:f0:5d: 08:cc:d0:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc3MjIxMTAvBgNVBAUTKEQ1Mjg5RThCN0RGNUQ5MjAxNkVDNzk4RUVFRkYwNUJD NzNFODU1ODAwHhcNMjUwNDE1MDUwMjMyWhcNMjUwNDIyMDUwMjMyWjAYMRYwFAYD VQQDEw02N2ZkZTg2OC1iYTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNYpMXkPQdBfgKTdDD7HwN1K6dLS0rioZvmmMG4tWiIwbv8ordM7utv9QI2B wa6Q/wMOlnLm7O5KKG2moY2lZsksV2OWOwE4H2qrCvA1rl2AzOTfT0W1Nxb+Ioge scfSUk6YwBRgdmssLjXMwO+/Xykoevw51a+y9dEkcxn26otViUhysc+1kdPgsGfZ 2qPIIRSnEjx3cyWMzAu6wdLJZr8KmA8ZUIlJ7yjGFc0Euxabzp6lXbjp4+4FjYM5 5sPQeqhyhpOu+0iJjtXh+Q/JqBLck4SVHKk+v4F12eAWYXqIKt9t3AM2BAG9frS9 yJ1e5ze4UKmnhRoInI7iC58AfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+NEUdU omjKraWP957PXVcSVSeeMB8GA1UdIwQYMBaAFNUonot99dkgFux5ju7/Bbxz6FWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzcyMi80NkJEREMwMDI4 OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJTQVc3SG1PN3Y4RnZIUG9W WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTaWVpMzMxMlNBVzdIbU83djhGdkhQb1ZZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzcyMi80NkJEREMwMDI4OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJT QVc3SG1PN3Y4RnZIUG9WWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNbjf61vM2DYsN2qwmvhrolkgPOxK7OVE60haBBuoVv/G+2aWeKpm+ 7FTx+OER0j8VTvvHJ+wPZZhJqvh9x85o81dVveInV0N6UHVErpees/P2CXPmh/Oz JcDQu9VRoA/42q8XwQLul4XNOEV3eNVLVqmJ7eJQcQ3Lg/iH/R3ZeKzkL3aS7emZ +sNQe1k53Vybl+Cz/kZ5BLyPI3n0sFjqQFUIn5ePdUg1b5/QJ37CRpq3j4EA9vkp RqE4VnPt/CnOMahW5Qw2M9CawEvBmGwgdksCRYXcrIIkSqR3ICEZzJ9dH3XXtq+c vfvTBnUfmX8pI6xbOrkVPpte8F0IzNCA -----END CERTIFICATE-----Generated at Tue Apr 15 19:06:46 2025 by rpki-client