$ rpki-client -vvf rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft File: ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft (raw, json) Hash identifier: agG023sm7OY9/M3GyB9GiFNvstxpAvkBRmAxnVLAFv4= Subject key identifier: 45:D7:76:7C:E6:30:EF:BC:38:87:69:45:F4:1F:EE:66:8F:AF:BB:AA Authority key identifier: 39:1A:6F:67:5F:4B:AA:DC:21:DD:79:A9:BB:4F:F0:95:63:56:57:B2 Certificate issuer: /CN=A911D080/serialNumber=391A6F675F4BAADC21DD79A9BB4FF095635657B2 Certificate serial: 058E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft Manifest number: 0587 Signing time: Sun 20 Jul 2025 23:27:59 +0000 Manifest this update: Sun 20 Jul 2025 23:27:58 +0000 Manifest next update: Sun 27 Jul 2025 23:27:58 +0000 Files and hashes: 1: ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl (hash: xjGeVUGTrNbRIrOzcfKmivgNQHBZRrporSHEmqEQ5zA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1422 (0x58e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D080, serialNumber=391A6F675F4BAADC21DD79A9BB4FF095635657B2 Validity Not Before: Jul 20 23:27:58 2025 GMT Not After : Jul 27 23:27:58 2025 GMT Subject: CN=687d7b7f-6d7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ca:33:a5:90:df:02:74:5e:70:e1:64:b2:1e: e1:6d:48:60:77:b0:4c:7a:dc:70:08:92:22:3c:d7: f6:36:cd:7a:cc:51:99:1f:c0:71:85:e7:8e:7c:9e: e7:21:b3:25:15:be:80:af:43:dc:2e:d1:ae:57:6a: 12:f9:2d:1a:c0:21:69:31:67:31:6a:6e:3d:a2:17: 19:da:df:ff:37:e5:03:de:fb:cc:cf:0b:d6:79:20: 8e:37:6d:47:d4:9a:2a:3a:4c:fc:5a:63:1a:7c:3e: aa:5c:fb:6c:38:05:f3:1b:9e:a2:87:b8:42:4a:b4: 18:88:2e:c3:a6:ac:c7:26:b0:c8:f8:cd:5b:f5:37: 9f:9b:d2:c6:45:b1:c7:e1:35:b2:35:fa:1a:a3:56: 69:50:32:0b:aa:4a:27:5f:2b:02:7c:eb:78:4a:74: 35:02:8d:7c:67:e6:7d:ee:70:3e:db:7d:76:78:41: 5e:4e:21:78:fc:d8:db:56:1e:5f:1b:10:39:9c:67: 33:31:cf:d1:57:2b:b6:67:b9:fa:21:24:a5:8d:1b: 6f:ef:8a:4a:4d:e7:0b:19:4b:82:59:53:e6:2c:8a: ac:c8:2e:5c:1a:a2:18:b4:2b:6b:f1:52:23:20:b0: 54:4d:98:18:7b:1d:ed:38:da:be:98:3f:d5:e0:8f: e6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D7:76:7C:E6:30:EF:BC:38:87:69:45:F4:1F:EE:66:8F:AF:BB:AA X509v3 Authority Key Identifier: keyid:39:1A:6F:67:5F:4B:AA:DC:21:DD:79:A9:BB:4F:F0:95:63:56:57:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:ce:9b:b9:9d:c7:81:e0:bd:66:f4:c4:be:de:b5:45:e3:bf: 6f:50:f6:08:b4:cc:ff:8e:35:e9:27:ce:8d:38:8d:f0:8f:63: 8f:4f:ff:35:24:13:c8:36:c3:04:c1:f6:ea:37:70:c5:3d:1f: f3:be:c3:cb:08:23:b4:a5:b8:11:45:01:99:6a:fe:d7:ee:0b: 42:c6:77:86:be:8b:7c:bb:d0:51:7a:de:f6:3e:2e:12:60:09: 0e:ef:85:8d:be:4c:03:45:8b:8d:7b:6d:4f:22:a0:34:ab:3f: 53:bf:88:9c:06:a8:78:5f:f7:c0:ac:95:bf:9e:d9:b4:36:a4: 52:58:ee:b2:0a:45:e7:86:ea:ec:fa:cd:50:c9:e9:c7:4c:07: 06:8a:64:f3:45:bf:81:81:7f:6e:14:6d:3c:b3:16:95:0e:a4: bf:5d:7c:73:1b:db:b2:88:47:68:0b:37:73:25:6f:d3:b6:70: e9:39:86:51:73:5d:53:42:be:77:43:36:2c:2d:13:46:d9:59: 3d:7d:4c:b7:3d:6f:77:92:26:bc:a5:66:91:ae:de:2d:35:a4: 4c:a3:8f:f4:93:9f:b9:3c:81:74:95:e8:c9:96:6e:2f:6c:5f: 4b:9b:2f:d2:5f:ba:8b:a5:5a:a2:50:be:66:ec:b3:93:03:4c: cf:08:39:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQwODAxMTAvBgNVBAUTKDM5MUE2RjY3NUY0QkFBREMyMURENzlBOUJCNEZGMDk1 NjM1NjU3QjIwHhcNMjUwNzIwMjMyNzU4WhcNMjUwNzI3MjMyNzU4WjAYMRYwFAYD VQQDEw02ODdkN2I3Zi02ZDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MozpZDfAnRecOFksh7hbUhgd7BMetxwCJIiPNf2Ns16zFGZH8BxheeOfJ7n IbMlFb6Ar0PcLtGuV2oS+S0awCFpMWcxam49ohcZ2t//N+UD3vvMzwvWeSCON21H 1JoqOkz8WmMafD6qXPtsOAXzG56ih7hCSrQYiC7DpqzHJrDI+M1b9Tefm9LGRbHH 4TWyNfoao1ZpUDILqkonXysCfOt4SnQ1Ao18Z+Z97nA+2312eEFeTiF4/NjbVh5f GxA5nGczMc/RVyu2Z7n6ISSljRtv74pKTecLGUuCWVPmLIqsyC5cGqIYtCtr8VIj ILBUTZgYex3tONq+mD/V4I/mqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXXdnzm MO+8OIdpRfQf7maPr7uqMB8GA1UdIwQYMBaAFDkab2dfS6rcId15qbtP8JVjVley MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDA4MC81QzI0OTcwQUU0 QUMxMUVCOTk3MTBBMTVDNEY5QUUwMi9PUnB2WjE5THF0d2gzWG1wdTBfd2xXTldW N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ScHZaMTlMcXR3aDNYbXB1MF93bFdOV1Y3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDA4MC81QzI0OTcwQUU0QUMxMUVCOTk3MTBBMTVDNEY5QUUwMi9PUnB2WjE5THF0 d2gzWG1wdTBfd2xXTldWN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSzpu5nceB4L1m9MS+3rVF479vUPYItMz/jjXpJ86NOI3wj2OPT/81 JBPINsMEwfbqN3DFPR/zvsPLCCO0pbgRRQGZav7X7gtCxneGvot8u9BRet72Pi4S YAkO74WNvkwDRYuNe21PIqA0qz9Tv4icBqh4X/fArJW/ntm0NqRSWO6yCkXnhurs +s1QyenHTAcGimTzRb+BgX9uFG08sxaVDqS/XXxzG9uyiEdoCzdzJW/TtnDpOYZR c11TQr53QzYsLRNG2Vk9fUy3PW93kia8pWaRrt4tNaRMo4/0k5+5PIF0lejJlm4v bF9Lmy/SX7qLpVqiUL5m7LOTA0zPCDmd -----END CERTIFICATE-----Generated at Mon Jul 21 06:54:24 2025 by rpki-client