$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft File: ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft (raw, json) Hash identifier: gGmatQ4/fuxz1ONfo0rndDHah/SALNxSjhrch2aDN34= Subject key identifier: 6E:18:86:AE:26:9D:3C:66:02:FD:B1:CF:31:FA:01:18:28:7A:81:BB Authority key identifier: 39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 Certificate issuer: /CN=A914CCC5/serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Certificate serial: 074C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft Manifest number: 0743 Signing time: Wed 16 Apr 2025 21:24:16 +0000 Manifest this update: Wed 16 Apr 2025 21:24:15 +0000 Manifest next update: Wed 23 Apr 2025 21:24:15 +0000 Files and hashes: 1: ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl (hash: KkLDzsMTkrSERa1CF//rHiyP58DcwSVmMbFmbpWeEC8=) 2: 94CB63BC241E11EB985FC048C4F9AE02.roa (hash: QadRAteDkMr+/Vf11v/PSiWZ5qLyjgZNySKVRInle2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 21:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1868 (0x74c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCC5, serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Validity Not Before: Apr 16 21:24:15 2025 GMT Not After : Apr 23 21:24:15 2025 GMT Subject: CN=68001fff-504e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7d:f8:bc:aa:1c:ed:27:4a:e8:44:74:01:fb: 4b:0a:5e:f6:96:02:61:da:43:af:30:60:69:42:1a: 4e:4d:f1:0e:37:64:26:29:36:4e:f9:63:01:94:0f: aa:4b:12:79:3a:ec:96:6a:ca:f3:13:29:29:de:19: 6a:3e:94:c2:27:32:b0:60:a2:de:93:f0:10:70:be: b1:9e:ae:01:82:fd:92:6d:38:d6:a7:ba:42:28:6f: da:7d:a4:77:52:2a:71:ae:de:58:3b:87:30:8d:33: 15:8e:78:84:ff:75:bf:1d:c8:ea:bd:20:1e:0a:3e: 13:0a:d1:fb:60:0f:b4:e7:89:7c:e8:4f:39:74:62: 66:a6:07:7c:89:71:e7:d3:0e:b4:bb:81:ea:89:f4: 64:35:da:ae:f0:17:2c:7d:d6:c6:02:5a:2e:ae:48: 29:80:fd:3f:8a:9a:12:61:58:42:68:66:45:ef:36: c3:a7:99:59:7b:aa:80:ce:35:da:2d:5d:8a:14:0b: 4d:3d:f7:61:e3:0c:53:ea:d5:37:5b:fb:1c:fa:c0: bc:ec:ee:46:ac:8c:32:07:d6:fd:74:1b:0f:ef:1e: e5:71:20:b5:be:f8:9c:ac:ad:06:ff:37:44:3d:07: 8c:52:74:e5:c1:f3:79:ca:b9:11:55:14:e8:ab:e2: cf:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:18:86:AE:26:9D:3C:66:02:FD:B1:CF:31:FA:01:18:28:7A:81:BB X509v3 Authority Key Identifier: keyid:39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:b2:e4:f5:b9:a8:27:31:8c:a0:48:fd:02:9f:e4:49:d2:49: 6e:a9:81:9f:67:5b:09:58:51:09:44:db:a4:f6:3a:2a:2e:8c: 08:12:83:dc:5a:3b:e5:54:e4:07:b8:68:57:7a:a6:0a:5a:42: e4:77:5f:06:50:7c:c5:8e:25:ee:f6:63:bc:f9:c7:0c:5b:42: 31:45:b6:dd:15:4f:9a:be:31:2b:23:a7:eb:b2:d9:4c:16:1f: a7:02:6d:51:a6:60:bc:a0:d1:63:c4:23:c5:ae:3a:0c:92:f8: 47:7c:fe:07:2c:1d:2f:32:e4:0d:f1:74:c4:08:b8:93:8f:07: 2c:64:a4:1e:b3:45:f7:7a:22:88:c9:df:08:16:e2:d5:c5:c2: 9c:e7:19:7b:d7:21:7e:81:56:7b:5f:92:c6:87:c3:e2:fb:89: 54:8f:1a:e6:0d:72:10:37:f5:31:65:c1:d1:90:42:8b:11:e3: 7c:d2:ae:16:dc:87:ed:41:05:9f:0e:df:6f:d7:a6:7d:db:3c: eb:9b:3d:22:73:cf:87:85:7a:d5:19:0d:0d:5f:3a:cc:34:09: 43:ce:50:c7:a7:27:ff:26:82:64:8b:37:21:cf:13:96:ed:69: 00:97:e7:bc:7e:20:e3:7e:d9:42:a7:65:0a:bb:8a:f6:ba:c4: 05:24:40:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDQzUxMTAvBgNVBAUTKDM5MTFFMUVGQjAyQjAzNkY4MzVCRjY1OEUxMzY2MDFB Njc0MjE2OTMwHhcNMjUwNDE2MjEyNDE1WhcNMjUwNDIzMjEyNDE1WjAYMRYwFAYD VQQDEw02ODAwMWZmZi01MDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwX34vKoc7SdK6ER0AftLCl72lgJh2kOvMGBpQhpOTfEON2QmKTZO+WMBlA+q SxJ5OuyWasrzEykp3hlqPpTCJzKwYKLek/AQcL6xnq4Bgv2SbTjWp7pCKG/afaR3 Uipxrt5YO4cwjTMVjniE/3W/HcjqvSAeCj4TCtH7YA+054l86E85dGJmpgd8iXHn 0w60u4HqifRkNdqu8BcsfdbGAlourkgpgP0/ipoSYVhCaGZF7zbDp5lZe6qAzjXa LV2KFAtNPfdh4wxT6tU3W/sc+sC87O5GrIwyB9b9dBsP7x7lcSC1vvicrK0G/zdE PQeMUnTlwfN5yrkRVRToq+LPdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4Yhq4m nTxmAv2xzzH6ARgoeoG7MB8GA1UdIwQYMBaAFDkR4e+wKwNvg1v2WOE2YBpnQhaT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NDNS80M0I1RUZEMDI0 MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEyLURXX1pZNFRaZ0dtZENG cE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SSGg3N0FyQTItRFdfWlk0VFpnR21kQ0ZwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NDNS80M0I1RUZEMDI0MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEy LURXX1pZNFRaZ0dtZENGcE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVsuT1uagnMYygSP0Cn+RJ0kluqYGfZ1sJWFEJRNuk9joqLowIEoPc WjvlVOQHuGhXeqYKWkLkd18GUHzFjiXu9mO8+ccMW0IxRbbdFU+avjErI6frstlM Fh+nAm1RpmC8oNFjxCPFrjoMkvhHfP4HLB0vMuQN8XTECLiTjwcsZKQes0X3eiKI yd8IFuLVxcKc5xl71yF+gVZ7X5LGh8Pi+4lUjxrmDXIQN/UxZcHRkEKLEeN80q4W 3IftQQWfDt9v16Z92zzrmz0ic8+HhXrVGQ0NXzrMNAlDzlDHpyf/JoJkizchzxOW 7WkAl+e8fiDjftlCp2UKu4r2usQFJECw -----END CERTIFICATE-----Generated at Fri Apr 18 05:25:26 2025 by rpki-client