$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft File: ORjYC8twLsrPhMt6yogPh4oU_kg.mft (raw, json) Hash identifier: XsjF/YxffaZNKmwJ/fkA8VFrHVkI+vjsmGjDPEwHtns= Subject key identifier: 8F:A2:48:D3:1F:17:42:2D:8E:60:5D:82:89:0E:B5:C4:27:85:3F:04 Authority key identifier: 39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48 Certificate issuer: /CN=A9146B24/serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48 Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft Manifest number: 0169 Signing time: Sat 23 Aug 2025 04:30:27 +0000 Manifest this update: Sat 23 Aug 2025 04:30:27 +0000 Manifest next update: Sat 30 Aug 2025 04:30:27 +0000 Files and hashes: 1: ORjYC8twLsrPhMt6yogPh4oU_kg.crl (hash: iZwY7cLt/uytIuHrmN8xXcYzYphOcIpMvkMRs+Vu/o4=) 2: 0D16F5F4933211EEA5AC155DC4F9AE02.roa (hash: 1LEVeAmiTE8mfugUrgZ7PXJTh3jzct433M4/pCSC1j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:30:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B24, serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48 Validity Not Before: Aug 23 04:30:27 2025 GMT Not After : Aug 30 04:30:27 2025 GMT Subject: CN=68a943e3-51d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:65:8c:54:4c:79:c6:8f:94:0f:18:b2:f6:c4: 3c:82:3f:df:37:21:28:32:4b:43:4c:24:47:5e:8b: 47:11:80:cd:a0:e8:0d:b4:ba:b1:f4:34:b0:51:45: 04:ac:17:19:d5:bc:22:ed:ff:39:66:75:d7:fb:d3: a3:dd:df:dd:06:9f:f8:cb:f5:0d:eb:31:3d:57:ee: e9:62:72:eb:9c:ef:45:c2:29:ee:11:b0:9d:f8:51: d1:f2:4d:f7:59:34:1d:9b:da:ed:e8:07:64:86:79: c1:ef:be:26:81:9c:61:88:9d:82:73:75:2e:60:20: 6e:81:7c:b7:24:50:b0:e9:bd:96:59:79:12:d9:66: 6c:0f:92:51:37:ec:26:d9:cc:0a:72:46:7e:37:d9: 84:cd:79:c1:44:cd:12:07:6e:fd:64:15:b0:9c:8e: de:cb:49:66:c0:eb:1f:b2:cb:e8:12:fc:42:71:79: 5a:bf:27:fb:1c:2b:05:b5:95:1f:4c:98:85:26:4a: ce:dc:7e:35:d8:8f:19:f5:5b:4d:0a:ca:8d:25:61: 06:10:2e:71:38:99:59:5e:8e:1a:95:37:8b:dc:6f: 87:cd:65:e3:99:a5:59:67:d7:b7:be:77:47:b2:08: 20:36:71:c4:2c:7b:5d:14:d2:95:d5:a4:d0:b6:6c: 06:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:A2:48:D3:1F:17:42:2D:8E:60:5D:82:89:0E:B5:C4:27:85:3F:04 X509v3 Authority Key Identifier: keyid:39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:35:2f:b8:70:cb:eb:58:9a:0c:f0:f1:62:e5:d2:0e:bb:43: a1:fe:3f:9c:e2:86:9e:f0:24:95:f4:cf:b4:32:4d:b8:df:bf: 6b:c4:a7:16:58:b1:c7:d8:48:b6:43:43:44:e8:e0:75:03:a4: 51:d4:b1:cd:54:46:d3:ab:47:cb:cf:49:f6:4b:bc:32:0f:18: 56:fc:fb:a2:05:89:91:f3:e5:57:97:43:a1:85:d7:df:76:2c: 3d:82:12:5e:eb:21:40:1d:46:93:54:0d:b8:42:38:16:12:1d: 7e:5d:40:44:d1:cf:ab:db:7e:d0:52:51:dc:19:49:cc:1c:93: fd:29:52:3a:82:ed:22:ea:ba:18:b0:94:b1:c5:b8:5a:2a:14: 76:d8:db:a7:1e:f7:a6:e4:b8:22:6c:d5:e3:dc:5e:8e:a4:ee: b9:47:02:eb:02:ec:fe:3d:c5:f6:da:fb:af:02:70:a0:29:9d: 48:9c:9e:20:04:f5:b9:38:8b:49:72:56:e8:6d:9b:c7:f1:48: ba:cf:dc:9e:6b:c6:36:d8:88:45:b3:8d:b4:94:72:9c:3d:8f: 58:ff:28:bc:b4:ca:02:c2:0c:53:b7:cf:f9:ae:02:ab:4e:9b: 49:6a:e0:0f:fc:b7:0b:4f:fd:ce:b5:63:ca:b7:f6:1f:b3:e5: 8e:3f:11:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCMjQxMTAvBgNVBAUTKDM5MThEODBCQ0I3MDJFQ0FDRjg0Q0I3QUNBODgwRjg3 OEExNEZFNDgwHhcNMjUwODIzMDQzMDI3WhcNMjUwODMwMDQzMDI3WjAYMRYwFAYD VQQDEw02OGE5NDNlMy01MWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGWMVEx5xo+UDxiy9sQ8gj/fNyEoMktDTCRHXotHEYDNoOgNtLqx9DSwUUUE rBcZ1bwi7f85ZnXX+9Oj3d/dBp/4y/UN6zE9V+7pYnLrnO9FwinuEbCd+FHR8k33 WTQdm9rt6AdkhnnB774mgZxhiJ2Cc3UuYCBugXy3JFCw6b2WWXkS2WZsD5JRN+wm 2cwKckZ+N9mEzXnBRM0SB279ZBWwnI7ey0lmwOsfssvoEvxCcXlavyf7HCsFtZUf TJiFJkrO3H412I8Z9VtNCsqNJWEGEC5xOJlZXo4alTeL3G+HzWXjmaVZZ9e3vndH sgggNnHELHtdFNKV1aTQtmwGgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+iSNMf F0ItjmBdgokOtcQnhT8EMB8GA1UdIwQYMBaAFDkY2AvLcC7Kz4TLesqID4eKFP5I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkIyNC9CNDczQzRCRTkz MzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xzclBoTXQ2eW9nUGg0b1Vf a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SallDOHR3THNyUGhNdDZ5b2dQaDRvVV9rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkIyNC9CNDczQzRCRTkzMzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xz clBoTXQ2eW9nUGg0b1Vfa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJNS+4cMvrWJoM8PFi5dIOu0Oh/j+c4oae8CSV9M+0Mk24379rxKcW WLHH2Ei2Q0NE6OB1A6RR1LHNVEbTq0fLz0n2S7wyDxhW/PuiBYmR8+VXl0Ohhdff diw9ghJe6yFAHUaTVA24QjgWEh1+XUBE0c+r237QUlHcGUnMHJP9KVI6gu0i6roY sJSxxbhaKhR22NunHvem5LgibNXj3F6OpO65RwLrAuz+PcX22vuvAnCgKZ1InJ4g BPW5OItJclbobZvH8Ui6z9yea8Y22IhFs420lHKcPY9Y/yi8tMoCwgxTt8/5rgKr TptJauAP/LcLT/3OtWPKt/Yfs+WOPxEH -----END CERTIFICATE-----Generated at Sat Aug 23 18:40:43 2025 by rpki-client