$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft File: ORjYC8twLsrPhMt6yogPh4oU_kg.mft (raw, json) Hash identifier: XB2am8ovcRuOyh/CPOBCmV8UD4hbPnwE0qyTPd99nvA= Subject key identifier: 05:0A:A7:8B:F9:64:DB:4F:B7:77:85:33:68:74:73:AD:DA:F6:F4:88 Authority key identifier: 39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48 Certificate issuer: /CN=A9146B24/serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft Manifest number: 014D Signing time: Sun 29 Jun 2025 03:46:33 +0000 Manifest this update: Sun 29 Jun 2025 03:46:33 +0000 Manifest next update: Sun 06 Jul 2025 03:46:33 +0000 Files and hashes: 1: ORjYC8twLsrPhMt6yogPh4oU_kg.crl (hash: 2DIEi3D+HdFIsp8rqHHaPxiGYxcyHMKmLe0kdOrIekI=) 2: 0D16F5F4933211EEA5AC155DC4F9AE02.roa (hash: 1LEVeAmiTE8mfugUrgZ7PXJTh3jzct433M4/pCSC1j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 03:46:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B24, serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48 Validity Not Before: Jun 29 03:46:33 2025 GMT Not After : Jul 6 03:46:33 2025 GMT Subject: CN=6860b719-8abd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e0:99:2f:82:a4:e7:47:a7:de:4d:70:15:06: 52:28:17:ad:65:5e:7c:76:e3:7c:27:d2:cc:f6:eb: dc:a5:86:27:e9:8c:1a:89:fb:56:f0:a3:12:8a:d7: b7:4f:8e:24:29:b4:a6:96:26:9f:50:5d:52:cf:3a: 25:e5:41:53:17:76:2b:af:60:b4:29:45:c6:f1:17: 6b:48:2e:da:53:04:f6:88:73:de:ff:87:b2:a1:ff: 1e:c5:9b:fb:4b:6b:8d:19:35:d7:3b:16:0e:29:bf: ab:c5:f3:8b:26:ad:50:29:9e:a6:15:a4:4d:79:04: 53:a6:53:93:ac:93:4d:ea:24:6c:99:5e:97:f0:84: 81:d0:1b:1d:38:9d:7f:40:04:49:25:ed:91:bd:18: 27:43:1d:b2:db:97:48:54:2c:88:82:48:6b:23:7c: 1a:b1:73:23:ca:6a:33:71:a8:e2:83:4a:15:e4:0a: fd:04:94:0d:67:af:b9:b5:01:9d:ad:97:3f:c1:8c: bb:54:73:e9:6b:a4:4a:16:af:51:10:72:f6:13:dd: 80:5b:e3:0d:fb:48:fd:cc:51:03:51:5a:18:f8:0d: 14:88:0f:4b:6c:79:c9:4c:b9:b9:49:6d:1b:50:17: 83:52:92:7c:1a:df:8c:45:8b:74:9d:83:8d:a0:a2: e2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:0A:A7:8B:F9:64:DB:4F:B7:77:85:33:68:74:73:AD:DA:F6:F4:88 X509v3 Authority Key Identifier: keyid:39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:61:d9:4c:0d:f9:5d:c7:a3:eb:5b:10:06:ea:b2:39:cd:49: 89:e7:6f:11:72:f4:17:45:6e:90:ce:c9:f5:60:e5:0a:d2:2f: 9a:7d:7e:7b:ae:58:05:f6:68:22:d5:5e:14:c3:94:20:db:cb: 19:b2:fc:28:d8:bf:e2:c8:5b:8a:ec:51:43:22:a0:96:fa:7b: ce:d3:46:e1:98:60:6d:c9:d8:56:30:3e:d5:da:5f:71:87:47: a3:23:71:e4:ca:4a:ef:de:f7:bb:ea:3b:7e:3c:43:b4:3f:0b: af:40:d5:5b:e1:0d:e2:1a:3e:18:f8:74:55:41:18:85:07:c6: 4a:18:ac:ca:0d:83:da:aa:76:b5:8b:76:92:ed:3b:54:f0:3d: ef:31:e2:4f:88:d4:6f:8e:4d:c0:7b:77:9e:59:a6:18:db:f6: c1:b9:8a:2e:7c:13:b6:8b:49:95:b8:16:88:08:9b:4e:8b:16: cf:61:fd:d4:32:40:c0:7f:fa:50:0b:ee:44:73:69:5e:85:8f: b1:c6:12:e6:5d:94:d7:f5:41:b9:58:46:04:49:80:89:f9:49: 02:5b:37:d9:54:19:b2:00:a7:b9:c1:f8:68:fc:c9:8d:0e:50: 0d:ac:41:aa:de:14:45:03:a7:58:c1:b5:29:04:10:55:b6:0e: c2:51:76:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCMjQxMTAvBgNVBAUTKDM5MThEODBCQ0I3MDJFQ0FDRjg0Q0I3QUNBODgwRjg3 OEExNEZFNDgwHhcNMjUwNjI5MDM0NjMzWhcNMjUwNzA2MDM0NjMzWjAYMRYwFAYD VQQDEw02ODYwYjcxOS04YWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuCZL4Kk50en3k1wFQZSKBetZV58duN8J9LM9uvcpYYn6YwaiftW8KMSite3 T44kKbSmliafUF1Szzol5UFTF3Yrr2C0KUXG8RdrSC7aUwT2iHPe/4eyof8exZv7 S2uNGTXXOxYOKb+rxfOLJq1QKZ6mFaRNeQRTplOTrJNN6iRsmV6X8ISB0BsdOJ1/ QARJJe2RvRgnQx2y25dIVCyIgkhrI3wasXMjymozcajig0oV5Ar9BJQNZ6+5tQGd rZc/wYy7VHPpa6RKFq9REHL2E92AW+MN+0j9zFEDUVoY+A0UiA9LbHnJTLm5SW0b UBeDUpJ8Gt+MRYt0nYONoKLiywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAUKp4v5 ZNtPt3eFM2h0c63a9vSIMB8GA1UdIwQYMBaAFDkY2AvLcC7Kz4TLesqID4eKFP5I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkIyNC9CNDczQzRCRTkz MzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xzclBoTXQ2eW9nUGg0b1Vf a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SallDOHR3THNyUGhNdDZ5b2dQaDRvVV9rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkIyNC9CNDczQzRCRTkzMzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xz clBoTXQ2eW9nUGg0b1Vfa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9YdlMDfldx6PrWxAG6rI5zUmJ528RcvQXRW6Qzsn1YOUK0i+afX57 rlgF9mgi1V4Uw5Qg28sZsvwo2L/iyFuK7FFDIqCW+nvO00bhmGBtydhWMD7V2l9x h0ejI3Hkykrv3ve76jt+PEO0PwuvQNVb4Q3iGj4Y+HRVQRiFB8ZKGKzKDYPaqna1 i3aS7TtU8D3vMeJPiNRvjk3Ae3eeWaYY2/bBuYoufBO2i0mVuBaICJtOixbPYf3U MkDAf/pQC+5Ec2lehY+xxhLmXZTX9UG5WEYESYCJ+UkCWzfZVBmyAKe5wfho/MmN DlANrEGq3hRFA6dYwbUpBBBVtg7CUXaR -----END CERTIFICATE-----Generated at Mon Jun 30 19:21:12 2025 by rpki-client