$ rpki-client -vvf rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft File: 1Siei3312SAW7HmO7v8FvHPoVYA.mft (raw, json) Hash identifier: XSm6AS9U6vvcteXWmvz6Eyx7M9DH7f64rfab+ki8KNg= Subject key identifier: 70:3A:FD:6E:F2:A0:87:02:82:8E:26:11:C1:5C:B9:5B:9D:A1:EF:12 Authority key identifier: D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 Certificate issuer: /CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft Manifest number: B6 Signing time: Sat 31 May 2025 05:32:54 +0000 Manifest this update: Sat 31 May 2025 05:32:53 +0000 Manifest next update: Sat 07 Jun 2025 05:32:53 +0000 Files and hashes: 1: 1Siei3312SAW7HmO7v8FvHPoVYA.crl (hash: ZOPovysSg0V2xbo6LWKcxnL9pt+uPvHw9LTKfWNp8Kc=) 2: B4684D8A288D11EF96BC5135C4F9AE02.roa (hash: LuOXDNonR3GEQAX6Ae//YPTmZrxLa+xdQ9eXFVMZLeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137722, serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Validity Not Before: May 31 05:32:53 2025 GMT Not After : Jun 7 05:32:53 2025 GMT Subject: CN=683a9485-05bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4a:d1:73:e4:40:e9:8c:60:e1:fd:42:12:5c: 9f:d5:90:6e:8d:f1:b7:7c:44:50:58:90:8c:96:8a: 56:83:b7:5d:9c:b1:a0:99:a2:55:b9:20:b2:33:32: f0:fe:b8:6e:86:9b:e5:c0:ce:59:50:c4:6f:91:dd: c0:65:6b:69:3d:5c:c1:39:9c:d5:76:c1:c7:14:8d: 1c:64:88:f6:00:fb:09:b6:84:63:93:e7:96:f1:d2: 98:50:f7:aa:31:8a:e1:35:ce:a0:25:c8:77:a8:4d: 8b:23:c2:41:a9:43:ae:5a:a9:f8:61:d7:e3:a2:a8: fd:cd:ca:a5:39:4c:9b:49:a1:73:1e:e7:b6:6b:49: b0:00:d2:61:e9:3f:70:0f:88:d4:e3:fd:99:ac:af: 20:ca:18:f5:c5:e8:c5:d3:33:02:39:f5:61:59:c3: 65:02:48:0d:83:69:2c:d5:45:ea:4c:b4:8c:95:db: 4b:05:19:a4:d1:33:40:70:19:c4:5c:9f:f5:88:8d: 10:53:06:54:5c:6c:52:c8:7d:f5:a9:7b:2d:8d:a9: 32:86:5c:2f:96:0b:7c:94:df:58:65:f4:c0:c3:68: 68:b8:09:a3:4d:59:44:27:5e:ca:69:6d:5e:60:7a: bd:cd:cf:cf:af:33:ab:e3:a2:5b:ca:56:64:e3:4d: 3b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:3A:FD:6E:F2:A0:87:02:82:8E:26:11:C1:5C:B9:5B:9D:A1:EF:12 X509v3 Authority Key Identifier: keyid:D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:2c:57:e0:a4:33:51:80:ca:9f:e6:d1:30:f0:89:da:ad:63: 96:c8:7c:cc:14:c0:1e:f6:f0:fb:07:af:20:68:e6:c3:67:92: 75:15:c2:c5:ca:45:dc:6b:6f:99:9b:1d:0f:d3:39:19:75:ea: 75:30:4c:6b:7c:f7:6c:86:8d:ad:75:45:d8:cc:b6:b8:81:7c: 7a:d3:09:f6:f2:2a:5b:ad:34:9b:88:2e:cf:7b:d9:26:f4:81: 80:7f:47:77:61:c3:d7:96:58:c9:4a:3a:b2:91:f8:9e:7d:ad: 97:ad:73:02:67:fe:43:31:94:96:05:03:d1:e8:3f:6f:30:8f: d1:42:68:d1:d1:75:63:11:7c:8c:b6:27:52:8e:79:14:41:3c: 29:b0:58:4e:0a:c7:5c:d5:1a:87:81:0f:23:53:1f:2b:98:aa: bf:93:88:f8:ad:b5:f0:9c:ba:3a:9e:ad:07:02:20:8c:6b:34: d2:3f:40:8c:e9:a2:f9:ef:8c:d7:7c:cc:f7:36:d6:d4:d5:27: ab:a4:db:f5:da:6b:23:45:3d:ff:0d:ac:e7:35:aa:e6:ef:f1: d1:d6:23:96:6b:81:90:1f:66:c6:84:a4:0e:d3:18:9c:73:b1: f3:ae:91:60:a9:60:57:1b:a9:7b:b4:4f:66:18:06:d4:ce:a4: f0:b7:cc:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc3MjIxMTAvBgNVBAUTKEQ1Mjg5RThCN0RGNUQ5MjAxNkVDNzk4RUVFRkYwNUJD NzNFODU1ODAwHhcNMjUwNTMxMDUzMjUzWhcNMjUwNjA3MDUzMjUzWjAYMRYwFAYD VQQDEw02ODNhOTQ4NS0wNWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl0rRc+RA6Yxg4f1CElyf1ZBujfG3fERQWJCMlopWg7ddnLGgmaJVuSCyMzLw /rhuhpvlwM5ZUMRvkd3AZWtpPVzBOZzVdsHHFI0cZIj2APsJtoRjk+eW8dKYUPeq MYrhNc6gJch3qE2LI8JBqUOuWqn4Ydfjoqj9zcqlOUybSaFzHue2a0mwANJh6T9w D4jU4/2ZrK8gyhj1xejF0zMCOfVhWcNlAkgNg2ks1UXqTLSMldtLBRmk0TNAcBnE XJ/1iI0QUwZUXGxSyH31qXstjakyhlwvlgt8lN9YZfTAw2houAmjTVlEJ17KaW1e YHq9zc/PrzOr46JbylZk40070QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHA6/W7y oIcCgo4mEcFcuVudoe8SMB8GA1UdIwQYMBaAFNUonot99dkgFux5ju7/Bbxz6FWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzcyMi80NkJEREMwMDI4 OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJTQVc3SG1PN3Y4RnZIUG9W WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTaWVpMzMxMlNBVzdIbU83djhGdkhQb1ZZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzcyMi80NkJEREMwMDI4OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJT QVc3SG1PN3Y4RnZIUG9WWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDELFfgpDNRgMqf5tEw8InarWOWyHzMFMAe9vD7B68gaObDZ5J1FcLF ykXca2+Zmx0P0zkZdep1MExrfPdsho2tdUXYzLa4gXx60wn28ipbrTSbiC7Pe9km 9IGAf0d3YcPXlljJSjqykfiefa2XrXMCZ/5DMZSWBQPR6D9vMI/RQmjR0XVjEXyM tidSjnkUQTwpsFhOCsdc1RqHgQ8jUx8rmKq/k4j4rbXwnLo6nq0HAiCMazTSP0CM 6aL574zXfMz3NtbU1SerpNv12msjRT3/DaznNarm7/HR1iOWa4GQH2bGhKQO0xic c7HzrpFgqWBXG6l7tE9mGAbUzqTwt8z4 -----END CERTIFICATE-----Generated at Sat May 31 16:03:36 2025 by rpki-client