$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft File: ORjYC8twLsrPhMt6yogPh4oU_kg.mft (raw, json) Hash identifier: 4282xcuf1QRUsJkMB0oPCPPUXaVO4GWCaidYedEccfw= Subject key identifier: 27:99:34:2D:79:5F:F3:8E:AB:74:DB:A5:6E:B3:0A:BA:A0:32:A3:E7 Authority key identifier: 39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48 Certificate issuer: /CN=A9146B24/serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48 Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft Manifest number: 0134 Signing time: Fri 09 May 2025 04:02:24 +0000 Manifest this update: Fri 09 May 2025 04:02:24 +0000 Manifest next update: Fri 16 May 2025 04:02:24 +0000 Files and hashes: 1: ORjYC8twLsrPhMt6yogPh4oU_kg.crl (hash: EYx/RlgZKeiFsZQw7L2OsGa7NskCDzV4Wbzo9fbZVG4=) 2: 0D16F5F4933211EEA5AC155DC4F9AE02.roa (hash: 1LEVeAmiTE8mfugUrgZ7PXJTh3jzct433M4/pCSC1j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 04:02:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B24, serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48 Validity Not Before: May 9 04:02:24 2025 GMT Not After : May 16 04:02:24 2025 GMT Subject: CN=681d7e50-b4c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:89:7d:14:7f:3e:b1:a5:49:8a:8e:b8:3b:16: b2:21:f8:8c:ba:7d:05:90:02:f1:c7:e1:3f:b5:9f: 9d:99:cc:45:9d:c7:fa:a5:47:d9:2b:a3:a4:b7:ce: c8:18:f8:cc:af:99:18:c5:df:b4:fb:7d:55:f8:45: a8:f7:07:79:7e:c8:eb:d3:85:78:63:7d:ff:76:87: 1c:2b:48:48:5e:79:99:8d:c3:97:40:36:7e:ee:dd: c1:29:13:b0:be:0f:e5:f2:e9:f5:59:ca:51:06:27: 0b:c1:8c:1e:13:ce:80:58:ae:62:6e:89:1f:c9:ca: f6:6d:aa:7d:af:08:37:ee:ca:37:47:47:17:22:ef: dd:1e:32:76:5e:25:dd:19:75:bc:35:f7:6b:36:a4: 36:38:f8:e5:1b:fc:b4:7a:77:41:ea:93:fc:3a:e2: b5:55:dc:38:40:45:ba:dd:e4:cc:d1:7d:60:03:66: 4c:b2:0d:94:29:87:54:86:69:3f:3c:62:14:b7:c5: 70:b5:4c:80:4a:ac:77:c6:35:6f:a1:9b:4a:88:9d: 17:6a:62:41:ec:0a:0e:58:d8:40:7b:b4:f9:50:1e: 0a:5b:ae:75:13:7e:d8:3c:47:67:b0:dc:ee:ba:85: 34:de:11:22:99:b3:78:18:b9:2e:3e:fd:ca:94:c8: 65:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:99:34:2D:79:5F:F3:8E:AB:74:DB:A5:6E:B3:0A:BA:A0:32:A3:E7 X509v3 Authority Key Identifier: keyid:39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:da:dd:09:22:4b:d9:1d:d4:2f:de:4a:28:45:ed:45:0d:a8: 97:fb:d4:ff:90:5b:e0:61:46:d9:d9:f4:b5:dd:19:0a:b2:ed: bc:7d:75:d7:48:76:b8:f9:9e:6f:a6:74:28:ee:6a:1a:ad:8d: d6:15:91:83:49:ed:b3:9b:52:f8:f8:e2:d1:1f:9b:4d:41:aa: bb:6f:9b:4c:50:65:a5:dc:30:ac:9a:7e:d6:59:ee:cd:d4:bc: 50:aa:0b:66:31:83:28:54:26:7e:1e:bf:da:25:70:a2:5d:52: a7:ef:e0:c5:f4:7e:b6:c9:3b:37:5d:c5:2c:bb:49:d9:21:9b: e2:20:a4:66:14:37:06:1c:9e:0e:42:0e:6d:90:14:a8:58:7e: 03:66:02:f5:0e:c2:f7:01:16:86:63:40:49:30:27:90:dd:34: 49:d2:e0:15:75:e3:b7:0b:a3:e4:aa:5b:b7:9a:ca:35:04:dd: 3e:df:82:7a:2b:09:b2:33:ec:89:9d:02:5d:1b:b1:5d:69:dc: 0e:18:31:1e:24:05:b9:61:8e:78:d0:bc:df:60:2d:50:59:04: 5d:8f:f5:a5:d7:b2:56:d4:ec:6e:88:8e:ec:54:aa:68:95:22: 37:6f:76:fc:7e:17:28:29:d0:f4:7f:99:25:9b:3d:66:58:64: 43:f6:b8:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCMjQxMTAvBgNVBAUTKDM5MThEODBCQ0I3MDJFQ0FDRjg0Q0I3QUNBODgwRjg3 OEExNEZFNDgwHhcNMjUwNTA5MDQwMjI0WhcNMjUwNTE2MDQwMjI0WjAYMRYwFAYD VQQDEw02ODFkN2U1MC1iNGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYl9FH8+saVJio64OxayIfiMun0FkALxx+E/tZ+dmcxFncf6pUfZK6Okt87I GPjMr5kYxd+0+31V+EWo9wd5fsjr04V4Y33/doccK0hIXnmZjcOXQDZ+7t3BKROw vg/l8un1WcpRBicLwYweE86AWK5ibokfycr2bap9rwg37so3R0cXIu/dHjJ2XiXd GXW8NfdrNqQ2OPjlG/y0endB6pP8OuK1Vdw4QEW63eTM0X1gA2ZMsg2UKYdUhmk/ PGIUt8VwtUyASqx3xjVvoZtKiJ0XamJB7AoOWNhAe7T5UB4KW651E37YPEdnsNzu uoU03hEimbN4GLkuPv3KlMhlZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCeZNC15 X/OOq3TbpW6zCrqgMqPnMB8GA1UdIwQYMBaAFDkY2AvLcC7Kz4TLesqID4eKFP5I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkIyNC9CNDczQzRCRTkz MzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xzclBoTXQ2eW9nUGg0b1Vf a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SallDOHR3THNyUGhNdDZ5b2dQaDRvVV9rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkIyNC9CNDczQzRCRTkzMzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xz clBoTXQ2eW9nUGg0b1Vfa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe2t0JIkvZHdQv3kooRe1FDaiX+9T/kFvgYUbZ2fS13RkKsu28fXXX SHa4+Z5vpnQo7moarY3WFZGDSe2zm1L4+OLRH5tNQaq7b5tMUGWl3DCsmn7WWe7N 1LxQqgtmMYMoVCZ+Hr/aJXCiXVKn7+DF9H62yTs3XcUsu0nZIZviIKRmFDcGHJ4O Qg5tkBSoWH4DZgL1DsL3ARaGY0BJMCeQ3TRJ0uAVdeO3C6Pkqlu3mso1BN0+34J6 KwmyM+yJnQJdG7FdadwOGDEeJAW5YY540LzfYC1QWQRdj/Wl17JW1OxuiI7sVKpo lSI3b3b8fhcoKdD0f5klmz1mWGRD9riD -----END CERTIFICATE-----Generated at Sat May 10 09:48:34 2025 by rpki-client