$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft File: ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft (raw, json) Hash identifier: B0fAWvCpPmdQSFyoSy4nZs+eclCzp7v3VaOyXiG3IpE= Subject key identifier: 39:DE:AF:A8:59:9E:E6:7B:9F:3B:0D:07:CD:9F:29:DC:A6:B4:7B:B1 Authority key identifier: 39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 Certificate issuer: /CN=A914CCC5/serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Certificate serial: 0757 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft Manifest number: 074E Signing time: Thu 08 May 2025 21:29:53 +0000 Manifest this update: Thu 08 May 2025 21:29:52 +0000 Manifest next update: Thu 15 May 2025 21:29:52 +0000 Files and hashes: 1: ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl (hash: Fp2LZeghFcJmTRINzCIptEDLNhXVLW9YkqUevuuCLDE=) 2: 94CB63BC241E11EB985FC048C4F9AE02.roa (hash: QadRAteDkMr+/Vf11v/PSiWZ5qLyjgZNySKVRInle2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 21:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1879 (0x757) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCC5, serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Validity Not Before: May 8 21:29:52 2025 GMT Not After : May 15 21:29:52 2025 GMT Subject: CN=681d2251-3f35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:e4:62:ec:70:77:17:83:a0:5a:f7:35:be:ca: b4:76:2d:8c:ee:ee:eb:ac:7d:e7:e8:25:b2:33:50: 61:cc:97:e3:a0:27:b2:f8:0b:07:53:61:52:86:57: 92:88:f1:00:b1:ba:f5:38:ce:03:40:ef:35:5d:9d: 50:b1:57:bf:d1:63:20:02:36:80:cc:3b:ce:91:c9: a9:7d:dc:a9:36:4e:86:7d:43:49:72:69:20:49:02: 86:31:f6:fd:3e:93:ed:c3:79:26:02:2a:33:fd:60: e0:52:1d:5d:e5:21:0d:67:f1:7f:8a:fa:af:6f:f8: b8:66:7f:4e:ef:80:98:4d:93:e3:5a:39:58:ea:fb: d8:2c:bb:af:de:d6:73:75:f9:19:b7:66:0d:b4:b6: e9:19:18:c8:bd:ba:0f:7d:45:c5:5b:a4:8b:db:38: 0d:8e:d9:26:76:81:a3:f0:37:fa:bb:03:19:53:23: 1e:fa:9f:f7:d7:01:96:c9:89:b3:1f:00:84:62:89: 88:7f:75:32:14:29:6a:3b:d2:a6:aa:c0:69:b9:39: 0b:97:55:93:1b:cf:5c:3e:0c:00:38:70:da:bf:a9: 50:67:72:52:18:ec:a5:88:1f:93:7d:cb:5f:30:43: ed:64:89:c8:8a:4b:2e:cd:81:80:07:aa:3c:8d:41: ef:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:DE:AF:A8:59:9E:E6:7B:9F:3B:0D:07:CD:9F:29:DC:A6:B4:7B:B1 X509v3 Authority Key Identifier: keyid:39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:45:a6:8f:8b:ed:64:7b:6e:ec:9c:aa:30:10:b1:f0:95:d8: 71:4e:a6:33:e7:a3:ba:7f:14:8d:7c:7c:aa:46:25:df:dd:8b: 69:41:1c:81:46:0b:25:6b:7a:df:4a:fc:e5:0b:43:f3:c1:b8: 32:2b:58:d0:1a:da:52:8f:43:a2:1f:87:34:57:9d:2f:07:53: 48:73:c4:97:2d:7d:c9:f4:d0:f0:43:ba:f6:64:60:10:db:f0: f8:cf:01:fc:88:ab:96:b6:ef:d3:19:b0:d9:71:25:f9:11:99: 83:af:44:e9:4e:69:e6:24:2e:85:21:08:42:26:06:08:f1:0d: aa:90:95:c2:12:8e:55:75:79:11:38:94:8f:87:f0:4d:7f:31: b1:22:d1:83:e1:a6:ef:00:5a:21:35:84:ef:87:6c:41:37:8e: b0:e6:f3:6c:17:f5:5c:67:73:a6:30:8e:7c:0f:62:fc:af:af: 47:a9:a5:4e:f7:06:da:f0:53:22:a7:85:be:92:ea:9b:ca:64: 1d:55:91:4e:cf:82:02:ce:3d:36:ae:25:81:e2:27:a6:d5:f4: d4:57:10:c2:0e:de:01:e5:53:2f:3b:76:c1:8f:a8:b2:99:e7: 98:7d:8f:f1:4b:c7:62:39:ef:71:e5:87:63:21:33:30:2c:61: 1e:59:e0:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDQzUxMTAvBgNVBAUTKDM5MTFFMUVGQjAyQjAzNkY4MzVCRjY1OEUxMzY2MDFB Njc0MjE2OTMwHhcNMjUwNTA4MjEyOTUyWhcNMjUwNTE1MjEyOTUyWjAYMRYwFAYD VQQDEw02ODFkMjI1MS0zZjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ORi7HB3F4OgWvc1vsq0di2M7u7rrH3n6CWyM1BhzJfjoCey+AsHU2FShleS iPEAsbr1OM4DQO81XZ1QsVe/0WMgAjaAzDvOkcmpfdypNk6GfUNJcmkgSQKGMfb9 PpPtw3kmAioz/WDgUh1d5SENZ/F/ivqvb/i4Zn9O74CYTZPjWjlY6vvYLLuv3tZz dfkZt2YNtLbpGRjIvboPfUXFW6SL2zgNjtkmdoGj8Df6uwMZUyMe+p/31wGWyYmz HwCEYomIf3UyFClqO9KmqsBpuTkLl1WTG89cPgwAOHDav6lQZ3JSGOyliB+Tfctf MEPtZInIiksuzYGAB6o8jUHv7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDner6hZ nuZ7nzsNB82fKdymtHuxMB8GA1UdIwQYMBaAFDkR4e+wKwNvg1v2WOE2YBpnQhaT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NDNS80M0I1RUZEMDI0 MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEyLURXX1pZNFRaZ0dtZENG cE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SSGg3N0FyQTItRFdfWlk0VFpnR21kQ0ZwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NDNS80M0I1RUZEMDI0MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEy LURXX1pZNFRaZ0dtZENGcE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoRaaPi+1ke27snKowELHwldhxTqYz56O6fxSNfHyqRiXf3YtpQRyB Rgsla3rfSvzlC0PzwbgyK1jQGtpSj0OiH4c0V50vB1NIc8SXLX3J9NDwQ7r2ZGAQ 2/D4zwH8iKuWtu/TGbDZcSX5EZmDr0TpTmnmJC6FIQhCJgYI8Q2qkJXCEo5VdXkR OJSPh/BNfzGxItGD4abvAFohNYTvh2xBN46w5vNsF/VcZ3OmMI58D2L8r69HqaVO 9wba8FMip4W+kuqbymQdVZFOz4ICzj02riWB4iem1fTUVxDCDt4B5VMvO3bBj6iy meeYfY/xS8diOe9x5YdjITMwLGEeWeCx -----END CERTIFICATE-----Generated at Sat May 10 10:20:28 2025 by rpki-client