$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft File: ORjYC8twLsrPhMt6yogPh4oU_kg.mft (raw, json) Hash identifier: nXIg2Q72f6BP7T0IhxqCoEVNeY08Hzts1rBoeThmkgw= Subject key identifier: E6:17:14:17:BC:6E:DC:F7:21:EC:6C:09:1B:D4:B2:09:6F:02:B6:17 Authority key identifier: 39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48 Certificate issuer: /CN=A9146B24/serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48 Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft Manifest number: 0158 Signing time: Mon 21 Jul 2025 04:38:45 +0000 Manifest this update: Mon 21 Jul 2025 04:38:44 +0000 Manifest next update: Mon 28 Jul 2025 04:38:44 +0000 Files and hashes: 1: ORjYC8twLsrPhMt6yogPh4oU_kg.crl (hash: /uT1aRa+gX82CatqRYlgph4FgCgRX/jEfP2gMO9jKnE=) 2: 0D16F5F4933211EEA5AC155DC4F9AE02.roa (hash: 1LEVeAmiTE8mfugUrgZ7PXJTh3jzct433M4/pCSC1j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:38:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B24, serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48 Validity Not Before: Jul 21 04:38:44 2025 GMT Not After : Jul 28 04:38:44 2025 GMT Subject: CN=687dc454-1044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:80:1e:5f:16:8e:2e:41:e7:0b:51:32:1f:52: 3a:ce:d1:41:2c:8f:ad:fe:c2:ce:02:d8:8f:7b:c4: 18:b8:49:01:fb:17:fd:3c:31:ae:fc:48:d8:1e:55: 83:7a:58:0c:23:82:3a:eb:b2:17:b6:96:01:6f:8d: d7:0a:05:a9:f8:6d:22:97:c7:4d:c0:f9:81:e8:20: 97:27:7a:0b:72:4c:f5:13:6e:1d:67:5f:29:e4:94: b5:a8:86:51:55:1d:08:79:1d:33:0e:ae:32:ec:23: b2:58:f3:89:0f:62:c9:c7:cb:90:04:33:82:0f:e0: c6:c1:66:27:1c:ba:b5:18:d4:8a:76:23:43:14:9f: 05:5d:b2:a2:9e:5d:b9:09:5c:d8:d7:d7:88:60:33: 19:50:81:29:2a:e4:e6:e5:9f:3e:6d:27:9a:c5:7b: db:94:38:85:4f:94:bc:76:ac:99:37:c3:a8:5c:fd: 8c:cf:8d:cd:fc:eb:58:db:e1:18:d5:f4:d4:b8:af: 78:47:d1:78:81:98:78:31:2f:2a:86:7f:c4:7e:bc: e8:9e:25:32:2d:a7:43:c5:0d:2b:96:87:e8:e9:87: be:d3:6b:71:39:23:45:1d:b7:74:41:df:0a:04:11: de:7a:ca:03:b6:46:3d:05:97:ab:41:05:53:8a:0f: 56:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:17:14:17:BC:6E:DC:F7:21:EC:6C:09:1B:D4:B2:09:6F:02:B6:17 X509v3 Authority Key Identifier: keyid:39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b3:0e:a0:42:7d:0f:70:08:2c:53:9a:8a:b8:31:2f:8f:50: 7f:ab:88:17:5d:79:9f:f1:cc:0a:33:95:1d:2b:9c:55:5b:c6: 30:a9:0f:b8:c2:3d:17:af:06:c4:f0:27:c1:bd:6c:f5:fc:a1: 14:6a:27:ae:37:c1:f3:50:bb:1d:8e:52:2e:85:9c:b5:28:79: c7:c4:c7:a1:25:cb:f5:39:69:be:e2:dc:7c:e1:81:b9:a1:30: 06:9f:40:a8:d3:87:5e:f0:9d:9d:4f:b5:5a:5f:45:97:d7:94: 6f:a6:07:7c:40:5e:e6:74:2b:14:0d:36:28:be:9b:72:b3:52: 7e:e3:1f:cf:ca:ae:19:da:04:98:52:9b:2b:b5:8a:6d:96:51: 2a:81:6b:85:33:de:a6:bf:39:78:4f:78:e6:db:ae:2b:cf:bf: 3c:7b:27:4f:96:ef:bc:fe:c2:fb:0f:ce:79:2e:0e:36:48:02: da:dd:a4:38:8b:d8:de:e4:46:15:46:7f:85:46:ff:81:50:c8: 43:d6:e3:3b:0e:3c:b9:2e:b2:ba:2c:fe:30:33:57:97:f5:9f: 43:23:ca:48:a7:46:80:6b:25:c1:14:20:aa:80:e1:65:4b:19: 5f:fb:e3:9d:4c:8a:d5:a4:18:3e:f9:73:63:c3:e3:b6:ea:74: 1f:6c:54:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCMjQxMTAvBgNVBAUTKDM5MThEODBCQ0I3MDJFQ0FDRjg0Q0I3QUNBODgwRjg3 OEExNEZFNDgwHhcNMjUwNzIxMDQzODQ0WhcNMjUwNzI4MDQzODQ0WjAYMRYwFAYD VQQDEw02ODdkYzQ1NC0xMDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIAeXxaOLkHnC1EyH1I6ztFBLI+t/sLOAtiPe8QYuEkB+xf9PDGu/EjYHlWD elgMI4I667IXtpYBb43XCgWp+G0il8dNwPmB6CCXJ3oLckz1E24dZ18p5JS1qIZR VR0IeR0zDq4y7COyWPOJD2LJx8uQBDOCD+DGwWYnHLq1GNSKdiNDFJ8FXbKinl25 CVzY19eIYDMZUIEpKuTm5Z8+bSeaxXvblDiFT5S8dqyZN8OoXP2Mz43N/OtY2+EY 1fTUuK94R9F4gZh4MS8qhn/EfrzoniUyLadDxQ0rlofo6Ye+02txOSNFHbd0Qd8K BBHeesoDtkY9BZerQQVTig9W4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYXFBe8 btz3IexsCRvUsglvArYXMB8GA1UdIwQYMBaAFDkY2AvLcC7Kz4TLesqID4eKFP5I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkIyNC9CNDczQzRCRTkz MzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xzclBoTXQ2eW9nUGg0b1Vf a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SallDOHR3THNyUGhNdDZ5b2dQaDRvVV9rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkIyNC9CNDczQzRCRTkzMzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xz clBoTXQ2eW9nUGg0b1Vfa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAisw6gQn0PcAgsU5qKuDEvj1B/q4gXXXmf8cwKM5UdK5xVW8YwqQ+4 wj0XrwbE8CfBvWz1/KEUaieuN8HzULsdjlIuhZy1KHnHxMehJcv1OWm+4tx84YG5 oTAGn0Co04de8J2dT7VaX0WX15Rvpgd8QF7mdCsUDTYovptys1J+4x/Pyq4Z2gSY UpsrtYptllEqgWuFM96mvzl4T3jm264rz788eydPlu+8/sL7D855Lg42SALa3aQ4 i9je5EYVRn+FRv+BUMhD1uM7Djy5LrK6LP4wM1eX9Z9DI8pIp0aAayXBFCCqgOFl Sxlf++OdTIrVpBg++XNjw+O26nQfbFTR -----END CERTIFICATE-----Generated at Mon Jul 21 07:31:32 2025 by rpki-client