$ rpki-client -vvf rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft File: 1Siei3312SAW7HmO7v8FvHPoVYA.mft (raw, json) Hash identifier: eo7lLOXANZaGxSkqdW+/Z13ahui6sP0M1mfRIgbRDPY= Subject key identifier: 02:C0:AD:3D:51:76:EA:57:D1:3B:BD:0F:FD:EC:1D:A7:E3:3A:59:F4 Authority key identifier: D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 Certificate issuer: /CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft Manifest number: 0107 Signing time: Mon 03 Nov 2025 05:00:56 +0000 Manifest this update: Mon 03 Nov 2025 05:00:56 +0000 Manifest next update: Mon 10 Nov 2025 05:00:56 +0000 Files and hashes: 1: 1Siei3312SAW7HmO7v8FvHPoVYA.crl (hash: sp9X4OQ/B+3kVk6ihDsMVbeUARJj6XNPTDxDMUO7K48=) 2: B4684D8A288D11EF96BC5135C4F9AE02.roa (hash: b6ERigxsXjUyaKMbJy8+YRLovoMIY+E6IWTJv3Q8jfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137722, serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Validity Not Before: Nov 3 05:00:56 2025 GMT Not After : Nov 10 05:00:56 2025 GMT Subject: CN=69083708-59f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:de:e0:36:40:d0:81:53:52:85:a3:ce:e7:9a: 51:f1:c7:30:37:74:51:61:33:b9:d2:72:3f:c5:ae: 77:95:13:2a:a1:dd:a9:d3:7c:cd:9a:da:a9:03:75: 12:84:5c:cf:85:a7:68:6d:25:10:e1:0f:9c:b0:2d: e2:40:ac:1f:3d:38:06:0e:73:a2:28:a5:e6:42:aa: e1:35:91:56:4d:a9:96:58:4b:28:33:de:d4:17:75: d2:18:bd:32:30:c9:27:04:f9:74:ca:69:5f:59:56: 7d:85:c4:6d:b9:f7:90:a3:35:1c:e2:f0:44:d1:49: 78:f6:21:62:8d:2f:86:25:9d:cc:ef:5b:36:02:ea: 9b:91:3d:68:4f:53:b4:41:e2:56:1c:3e:6e:c0:3d: a5:ac:f8:ff:74:59:88:cb:c5:69:97:b6:05:e4:bd: 55:62:cd:71:b3:ea:a4:2e:bb:4e:06:4b:be:15:df: 54:d3:09:2a:3c:66:86:7c:e0:5e:4d:c5:97:67:53: da:71:62:3e:28:73:ad:1a:18:d5:85:5d:09:94:e8: 12:f7:7e:fe:bb:95:ac:fd:90:c0:de:70:cc:be:d3: 5b:06:2e:0f:0c:07:49:18:e2:4e:7f:2a:24:16:40: 2e:bb:2e:f7:18:4e:09:07:48:19:fb:4d:b2:df:d5: bb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:C0:AD:3D:51:76:EA:57:D1:3B:BD:0F:FD:EC:1D:A7:E3:3A:59:F4 X509v3 Authority Key Identifier: keyid:D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:1b:f9:ab:2a:03:35:45:0f:9b:62:77:59:01:f0:80:8a:14: 92:59:40:62:4e:7e:96:1f:87:46:c3:ee:71:c5:3a:99:74:07: 54:bf:69:43:cb:73:14:b7:b2:13:85:12:db:92:0d:a1:43:0b: 8a:3f:cb:69:4d:27:1c:7b:a8:03:d2:ba:2e:4c:aa:aa:79:42: 48:c5:ff:8f:27:7e:33:7d:9c:f0:3c:84:65:c2:4c:e0:36:f3: c6:fa:d8:1d:c6:48:63:61:91:5b:37:af:cf:ca:1b:4b:81:8a: 50:3d:d8:1b:0e:0e:db:c4:11:79:1b:4b:29:3e:d3:53:0e:54: d8:df:55:3f:99:aa:08:70:02:58:31:94:15:47:a8:9f:f2:33: 83:5b:67:3e:3f:c7:de:af:eb:76:e1:db:72:30:3d:37:ac:4b: f9:e2:56:10:b5:bf:97:37:29:f5:a9:f3:df:97:92:4e:88:50: 60:69:15:39:fa:08:15:3d:55:6b:86:b0:f7:98:ea:a4:e3:bd: 5a:e9:cd:2d:c8:7f:02:0c:2f:18:51:df:f3:90:04:9d:ed:0d: ca:f4:12:b1:42:3a:92:7f:22:fc:40:62:a9:24:cd:86:50:e2: 08:61:85:0f:09:04:65:b0:a4:16:bb:98:3e:0d:b1:c9:1c:87: 53:44:cb:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc3MjIxMTAvBgNVBAUTKEQ1Mjg5RThCN0RGNUQ5MjAxNkVDNzk4RUVFRkYwNUJD NzNFODU1ODAwHhcNMjUxMTAzMDUwMDU2WhcNMjUxMTEwMDUwMDU2WjAYMRYwFAYD VQQDEw02OTA4MzcwOC01OWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApd7gNkDQgVNShaPO55pR8ccwN3RRYTO50nI/xa53lRMqod2p03zNmtqpA3US hFzPhadobSUQ4Q+csC3iQKwfPTgGDnOiKKXmQqrhNZFWTamWWEsoM97UF3XSGL0y MMknBPl0ymlfWVZ9hcRtufeQozUc4vBE0Ul49iFijS+GJZ3M71s2AuqbkT1oT1O0 QeJWHD5uwD2lrPj/dFmIy8Vpl7YF5L1VYs1xs+qkLrtOBku+Fd9U0wkqPGaGfOBe TcWXZ1PacWI+KHOtGhjVhV0JlOgS937+u5Ws/ZDA3nDMvtNbBi4PDAdJGOJOfyok FkAuuy73GE4JB0gZ+02y39W78wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALArT1R dupX0Tu9D/3sHafjOln0MB8GA1UdIwQYMBaAFNUonot99dkgFux5ju7/Bbxz6FWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzcyMi80NkJEREMwMDI4 OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJTQVc3SG1PN3Y4RnZIUG9W WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTaWVpMzMxMlNBVzdIbU83djhGdkhQb1ZZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzcyMi80NkJEREMwMDI4OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJT QVc3SG1PN3Y4RnZIUG9WWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASG/mrKgM1RQ+bYndZAfCAihSSWUBiTn6WH4dGw+5xxTqZdAdUv2lD y3MUt7IThRLbkg2hQwuKP8tpTScce6gD0rouTKqqeUJIxf+PJ34zfZzwPIRlwkzg NvPG+tgdxkhjYZFbN6/PyhtLgYpQPdgbDg7bxBF5G0spPtNTDlTY31U/maoIcAJY MZQVR6if8jODW2c+P8fer+t24dtyMD03rEv54lYQtb+XNyn1qfPfl5JOiFBgaRU5 +ggVPVVrhrD3mOqk471a6c0tyH8CDC8YUd/zkASd7Q3K9BKxQjqSfyL8QGKpJM2G UOIIYYUPCQRlsKQWu5g+DbHJHIdTRMs9 -----END CERTIFICATE-----Generated at Tue Nov 4 08:33:08 2025 by rpki-client