$ rpki-client -vvf rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft File: 1Siei3312SAW7HmO7v8FvHPoVYA.mft (raw, json) Hash identifier: qmOIOkCDImCBzjnfLiUI2vHDTfDXNedCMKnd8A5p3XE= Subject key identifier: 72:64:60:95:37:FF:F8:B9:89:F1:8E:90:8C:70:40:B0:BF:AA:09:52 Authority key identifier: D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 Certificate issuer: /CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft Manifest number: E9 Signing time: Sun 07 Sep 2025 05:47:48 +0000 Manifest this update: Sun 07 Sep 2025 05:47:48 +0000 Manifest next update: Sun 14 Sep 2025 05:47:48 +0000 Files and hashes: 1: 1Siei3312SAW7HmO7v8FvHPoVYA.crl (hash: yqnE/uWREJcwH+Yu3kfJbjd7MMCrOdEvR9Y7m8wmpdI=) 2: B4684D8A288D11EF96BC5135C4F9AE02.roa (hash: LuOXDNonR3GEQAX6Ae//YPTmZrxLa+xdQ9eXFVMZLeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137722, serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Validity Not Before: Sep 7 05:47:48 2025 GMT Not After : Sep 14 05:47:48 2025 GMT Subject: CN=68bd1c84-c676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d1:e5:d1:5c:a8:4b:1e:6d:5e:dc:ae:8f:3c: 65:b0:b7:a7:ce:db:da:a2:06:0c:be:2c:ad:5e:57: 6c:6b:46:4e:0d:80:de:b1:1b:86:b4:22:81:bb:56: 1b:5b:d6:c9:0b:b9:ac:2e:a7:cc:79:d4:65:c4:a2: 4b:2f:c7:11:d6:66:35:3b:05:be:f5:b3:68:98:79: a5:c0:ee:4c:21:91:0a:a1:ab:ed:b3:a9:51:38:2b: 34:83:ca:98:03:e6:ab:84:fc:9b:88:00:da:19:be: 4b:0f:01:0a:db:e3:36:65:48:91:be:9c:45:96:15: 1e:c6:9e:01:27:9f:d1:18:79:8d:97:44:3e:fc:47: 8a:c5:4a:17:c2:04:97:73:5b:30:96:33:81:9f:a4: f1:9d:f9:3f:fb:a3:5c:60:72:b9:14:54:88:0d:f2: ee:c7:92:9b:58:b6:46:9b:a4:ef:3b:11:84:a8:52: f5:4a:d0:87:57:f9:3d:0f:db:f3:73:3e:3a:1b:96: 62:28:cb:b9:9c:98:2c:b9:63:72:8f:18:44:db:2b: d7:ae:91:ca:88:8c:17:c7:4a:9d:75:5c:fe:22:4a: cf:2a:20:93:51:a1:35:50:0d:17:f6:e7:cf:7e:2d: 28:d0:67:fe:df:3c:91:ee:07:15:b5:01:1a:98:53: 92:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:64:60:95:37:FF:F8:B9:89:F1:8E:90:8C:70:40:B0:BF:AA:09:52 X509v3 Authority Key Identifier: keyid:D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b8:50:d5:1f:5d:8e:58:f8:d4:52:98:8e:e3:ea:93:1d:eb: 85:26:e3:34:86:d4:53:34:5d:93:57:52:f1:4e:32:2e:9d:6a: 60:fb:d0:8a:b0:ee:cf:1a:20:1a:e7:cb:1c:65:60:72:c6:75: af:8f:41:f7:02:16:6f:75:1a:41:06:e2:a5:3b:1a:b4:e8:7b: 3f:ec:2e:3f:b0:e2:02:f8:e1:e0:1a:01:2b:9f:81:d2:19:17: 70:b5:03:35:e5:da:2c:50:02:83:84:d2:43:a5:99:d2:b9:99: f0:06:2a:b4:72:77:28:2b:1b:2b:f5:76:29:de:13:5a:40:d2: 5f:02:9e:fa:0c:f0:31:0f:92:a2:89:17:3d:28:9e:65:33:dc: 0d:b3:39:b3:e7:94:c8:dd:44:9d:5a:48:8e:da:61:83:28:f8: 09:3e:3a:2f:6e:d3:c6:f9:f4:23:43:8a:ce:a0:25:0f:fd:24: d2:87:b5:6b:d0:7b:22:93:44:45:22:f3:d2:0d:92:4c:c9:cc: 63:a1:81:ee:01:66:0b:51:c1:f0:f0:2d:87:07:87:9b:22:4b: f5:e6:aa:16:3a:51:70:56:72:74:21:4a:b1:23:6b:b0:a5:71: 4d:82:b6:8a:1f:16:25:d0:e4:8f:5f:70:11:2c:df:10:a5:3b: 6a:e8:7f:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc3MjIxMTAvBgNVBAUTKEQ1Mjg5RThCN0RGNUQ5MjAxNkVDNzk4RUVFRkYwNUJD NzNFODU1ODAwHhcNMjUwOTA3MDU0NzQ4WhcNMjUwOTE0MDU0NzQ4WjAYMRYwFAYD VQQDEw02OGJkMWM4NC1jNjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dHl0VyoSx5tXtyujzxlsLenztvaogYMviytXldsa0ZODYDesRuGtCKBu1Yb W9bJC7msLqfMedRlxKJLL8cR1mY1OwW+9bNomHmlwO5MIZEKoavts6lROCs0g8qY A+arhPybiADaGb5LDwEK2+M2ZUiRvpxFlhUexp4BJ5/RGHmNl0Q+/EeKxUoXwgSX c1swljOBn6Txnfk/+6NcYHK5FFSIDfLux5KbWLZGm6TvOxGEqFL1StCHV/k9D9vz cz46G5ZiKMu5nJgsuWNyjxhE2yvXrpHKiIwXx0qddVz+IkrPKiCTUaE1UA0X9ufP fi0o0Gf+3zyR7gcVtQEamFOS9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJkYJU3 //i5ifGOkIxwQLC/qglSMB8GA1UdIwQYMBaAFNUonot99dkgFux5ju7/Bbxz6FWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzcyMi80NkJEREMwMDI4 OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJTQVc3SG1PN3Y4RnZIUG9W WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTaWVpMzMxMlNBVzdIbU83djhGdkhQb1ZZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzcyMi80NkJEREMwMDI4OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJT QVc3SG1PN3Y4RnZIUG9WWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiuFDVH12OWPjUUpiO4+qTHeuFJuM0htRTNF2TV1LxTjIunWpg+9CK sO7PGiAa58scZWByxnWvj0H3AhZvdRpBBuKlOxq06Hs/7C4/sOIC+OHgGgErn4HS GRdwtQM15dosUAKDhNJDpZnSuZnwBiq0cncoKxsr9XYp3hNaQNJfAp76DPAxD5Ki iRc9KJ5lM9wNszmz55TI3USdWkiO2mGDKPgJPjovbtPG+fQjQ4rOoCUP/STSh7Vr 0Hsik0RFIvPSDZJMycxjoYHuAWYLUcHw8C2HB4ebIkv15qoWOlFwVnJ0IUqxI2uw pXFNgraKHxYl0OSPX3ARLN8QpTtq6H/I -----END CERTIFICATE-----Generated at Sun Sep 7 14:54:09 2025 by rpki-client