$ rpki-client -vvf rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft File: ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft (raw, json) Hash identifier: SPpNLOyE0IyA7iAlaURMI37fl08IXj5zSih2Kvn4wu4= Subject key identifier: BA:A2:5D:A0:22:BE:FF:B9:4A:F2:56:2F:F4:8E:FE:8B:BA:15:60:90 Authority key identifier: 39:1A:6F:67:5F:4B:AA:DC:21:DD:79:A9:BB:4F:F0:95:63:56:57:B2 Certificate issuer: /CN=A911D080/serialNumber=391A6F675F4BAADC21DD79A9BB4FF095635657B2 Certificate serial: 0558 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft Manifest number: 0552 Signing time: Mon 14 Apr 2025 23:08:48 +0000 Manifest this update: Mon 14 Apr 2025 23:08:48 +0000 Manifest next update: Mon 21 Apr 2025 23:08:48 +0000 Files and hashes: 1: ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl (hash: E7YwmCEhYiSdIcTzfnX3eSLNBh0joaslpi6LscsFJ70=) 2: 0D0106EAE5BF11EB801D410DC4F9AE02.roa (hash: 3jMfh6JrAWUp0w/oStB2daKxlSbx8MU7h4k/yNQbZVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 23:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1368 (0x558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D080, serialNumber=391A6F675F4BAADC21DD79A9BB4FF095635657B2 Validity Not Before: Apr 14 23:08:48 2025 GMT Not After : Apr 21 23:08:48 2025 GMT Subject: CN=67fd9580-d161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5c:27:74:63:83:cf:04:48:ff:a7:cf:33:63: 9d:88:93:d1:6b:c4:a2:ed:1e:ad:b2:57:fe:e4:bc: 47:fc:3a:99:31:28:2d:3e:bd:fd:b7:6c:83:53:d5: bd:f2:0f:48:82:54:b7:8d:d7:62:c8:c8:c8:fd:d4: 2d:b1:9c:e2:53:81:fe:eb:97:71:f0:d9:84:30:b8: 18:2d:55:f1:23:7e:3b:4e:58:87:d3:47:8b:10:bb: a3:2a:b3:ad:33:99:6a:03:9d:49:0f:ea:68:9f:a2: ae:65:0b:cc:65:4e:e1:b1:d5:8f:f5:92:b8:cd:57: d5:75:16:5b:16:ef:b4:e5:b6:54:84:24:d9:d8:c1: 74:b7:ad:de:19:82:bf:1e:4d:9a:dd:e9:91:af:48: a4:76:f3:df:99:a1:01:82:94:cf:0c:04:e6:ec:7d: a5:35:35:39:6e:fa:b0:ce:a3:72:9e:62:01:74:2d: 31:4a:f6:92:40:4a:3c:8d:54:53:74:b2:6a:d0:1a: 78:40:cd:37:48:f6:cb:d1:2c:cb:6c:96:fd:a3:bd: 0d:0f:da:bd:05:07:56:52:da:7d:0e:cf:3c:d2:63: ea:12:91:ff:26:a6:2e:07:59:1d:a1:70:5d:c6:31: 0d:41:5f:8f:d1:cc:01:32:b6:57:18:64:bb:f4:12: 55:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A2:5D:A0:22:BE:FF:B9:4A:F2:56:2F:F4:8E:FE:8B:BA:15:60:90 X509v3 Authority Key Identifier: keyid:39:1A:6F:67:5F:4B:AA:DC:21:DD:79:A9:BB:4F:F0:95:63:56:57:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:a0:6b:cc:1b:ad:69:e9:af:30:75:de:d8:39:1e:46:f9:4a: 23:8d:ae:f7:64:ac:63:73:05:b3:f0:92:f8:7d:f9:aa:27:f6: 75:61:06:43:22:4e:db:00:be:7e:d2:a4:c5:5a:ca:58:0d:e5: ef:df:27:66:76:c0:78:6b:03:d7:59:86:32:ff:cf:7b:d9:9f: 45:94:27:e9:91:c7:10:48:96:81:06:1a:8d:95:5e:fa:08:2f: 43:0a:a5:8e:be:3f:c0:e7:a0:f8:f8:b2:ab:6a:b9:87:a6:a3: 7f:0b:b9:bb:09:14:f2:73:12:88:f4:77:a0:ae:eb:e6:db:55: 98:49:dc:b4:b2:36:20:af:a2:a0:dd:fc:8a:4c:2a:ec:16:da: 5c:41:8a:c2:3f:8f:db:48:4f:98:fc:de:75:96:b2:0e:7c:86: 64:39:b7:09:04:77:b3:02:b3:be:df:5c:61:6c:42:7c:f0:33: a6:b8:92:67:bf:7a:7d:18:fb:51:9e:ca:00:7f:02:05:4d:1d: 19:7f:e4:4d:0d:1c:8c:b4:ac:a7:62:63:b4:d1:80:43:f1:3b: 60:d4:d1:69:8d:fc:53:f6:4b:79:4a:c5:7f:3e:2c:44:f9:d3: 46:4b:a7:35:92:25:6c:eb:7c:0a:e9:c6:f6:9d:5f:bd:e3:b7: b7:50:92:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQwODAxMTAvBgNVBAUTKDM5MUE2RjY3NUY0QkFBREMyMURENzlBOUJCNEZGMDk1 NjM1NjU3QjIwHhcNMjUwNDE0MjMwODQ4WhcNMjUwNDIxMjMwODQ4WjAYMRYwFAYD VQQDEw02N2ZkOTU4MC1kMTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lwndGODzwRI/6fPM2OdiJPRa8Si7R6tslf+5LxH/DqZMSgtPr39t2yDU9W9 8g9IglS3jddiyMjI/dQtsZziU4H+65dx8NmEMLgYLVXxI347TliH00eLELujKrOt M5lqA51JD+pon6KuZQvMZU7hsdWP9ZK4zVfVdRZbFu+05bZUhCTZ2MF0t63eGYK/ Hk2a3emRr0ikdvPfmaEBgpTPDATm7H2lNTU5bvqwzqNynmIBdC0xSvaSQEo8jVRT dLJq0Bp4QM03SPbL0SzLbJb9o70ND9q9BQdWUtp9Ds880mPqEpH/JqYuB1kdoXBd xjENQV+P0cwBMrZXGGS79BJVwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqiXaAi vv+5SvJWL/SO/ou6FWCQMB8GA1UdIwQYMBaAFDkab2dfS6rcId15qbtP8JVjVley MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDA4MC81QzI0OTcwQUU0 QUMxMUVCOTk3MTBBMTVDNEY5QUUwMi9PUnB2WjE5THF0d2gzWG1wdTBfd2xXTldW N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ScHZaMTlMcXR3aDNYbXB1MF93bFdOV1Y3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDA4MC81QzI0OTcwQUU0QUMxMUVCOTk3MTBBMTVDNEY5QUUwMi9PUnB2WjE5THF0 d2gzWG1wdTBfd2xXTldWN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsoGvMG61p6a8wdd7YOR5G+Uojja73ZKxjcwWz8JL4ffmqJ/Z1YQZD Ik7bAL5+0qTFWspYDeXv3ydmdsB4awPXWYYy/8972Z9FlCfpkccQSJaBBhqNlV76 CC9DCqWOvj/A56D4+LKrarmHpqN/C7m7CRTycxKI9Hegruvm21WYSdy0sjYgr6Kg 3fyKTCrsFtpcQYrCP4/bSE+Y/N51lrIOfIZkObcJBHezArO+31xhbEJ88DOmuJJn v3p9GPtRnsoAfwIFTR0Zf+RNDRyMtKynYmO00YBD8Ttg1NFpjfxT9kt5SsV/PixE +dNGS6c1kiVs63wK6cb2nV+947e3UJJT -----END CERTIFICATE-----Generated at Wed Apr 16 17:15:26 2025 by rpki-client