$ rpki-client -vvf rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft File: ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft (raw, json) Hash identifier: 67okIVUr9IAz8wq8VcFIdZjUcM3b4jlD2WRVdXNPD+Y= Subject key identifier: 96:09:50:FE:24:E0:27:AB:FB:77:63:D2:89:02:FC:FE:0C:14:5D:DC Authority key identifier: 39:1A:6F:67:5F:4B:AA:DC:21:DD:79:A9:BB:4F:F0:95:63:56:57:B2 Certificate issuer: /CN=A911D080/serialNumber=391A6F675F4BAADC21DD79A9BB4FF095635657B2 Certificate serial: 0574 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft Manifest number: 056D Signing time: Mon 02 Jun 2025 23:33:48 +0000 Manifest this update: Mon 02 Jun 2025 23:33:47 +0000 Manifest next update: Mon 09 Jun 2025 23:33:47 +0000 Files and hashes: 1: ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl (hash: QyBzKwioSY+X0lq041obOGG9KZ9iNO+6EjJJbjtdjno=) 2: 0D0106EAE5BF11EB801D410DC4F9AE02.roa (hash: Vy8MJrdeSiPIr3JrTpVK+MSmKs+H+gy2bX59wqQW2c8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1396 (0x574) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D080, serialNumber=391A6F675F4BAADC21DD79A9BB4FF095635657B2 Validity Not Before: Jun 2 23:33:47 2025 GMT Not After : Jun 9 23:33:47 2025 GMT Subject: CN=683e34db-c400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:42:9c:5f:48:23:b5:6a:c3:ff:f6:78:fb:04: a7:8f:97:6c:18:7b:08:1b:f3:f0:d3:08:a8:3c:c9: ff:ca:c9:07:64:6a:2f:79:1b:21:2a:62:99:1b:9d: 7c:56:d9:f6:8e:1a:cf:8e:c3:5b:da:58:21:c4:80: 07:4e:84:b5:52:56:f2:7d:e8:a0:20:6d:ef:78:46: 97:4a:cb:00:e4:e5:7d:4f:91:c6:26:c8:e6:2b:89: 44:a1:f3:61:bd:8f:fe:6d:1d:99:61:05:a6:7e:df: 7c:5b:d9:e3:da:ce:06:b6:f2:30:b4:1f:41:d1:75: 5a:fb:28:9a:e5:90:f9:ab:3d:23:4f:c2:36:3f:58: 8f:64:eb:f7:da:1c:6e:23:42:f8:53:4b:77:f1:83: a6:35:d7:23:a5:bf:e5:00:45:4c:e6:a7:08:74:36: 82:94:ca:0f:90:a6:9d:1b:09:95:73:76:37:8f:5f: 23:de:5f:9d:da:c7:85:2c:01:20:a3:93:bc:c7:72: 9b:41:33:df:89:6b:3a:3b:6d:c1:77:d7:15:14:d6: 48:72:e0:f2:7e:9b:07:37:06:7b:c8:38:bd:cb:b5: 39:0c:9d:55:f8:f4:8a:0c:aa:d1:6e:c0:98:c9:aa: 65:e2:df:c1:66:1b:fb:c9:38:0d:fb:d5:be:b4:f1: ae:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:09:50:FE:24:E0:27:AB:FB:77:63:D2:89:02:FC:FE:0C:14:5D:DC X509v3 Authority Key Identifier: keyid:39:1A:6F:67:5F:4B:AA:DC:21:DD:79:A9:BB:4F:F0:95:63:56:57:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:cf:bb:d6:99:03:c8:4b:dd:9e:e5:79:fc:ef:15:fb:95:f6: c0:d3:77:17:46:15:71:16:b6:54:29:cd:48:3e:f5:22:5a:ba: ca:b5:d4:c0:ef:d1:b7:62:46:33:d7:1d:57:64:6c:ff:8f:ea: 36:39:22:73:78:17:7d:a3:4f:52:8c:69:47:6d:07:b7:58:4a: 2a:51:0f:f8:fc:e0:bc:c5:c0:64:53:a3:36:9e:e8:2f:ca:7d: e5:9a:7e:f9:c4:f6:53:94:cd:03:24:c0:89:cc:c7:1a:09:36: 49:04:4c:10:3a:9f:4c:ee:f6:0c:b6:20:60:93:37:92:cb:b5: 5e:68:82:34:85:8c:f3:85:db:5c:fa:fe:bb:0f:30:69:e8:17: 27:ed:bc:37:93:e9:f5:33:57:45:d2:4b:93:b8:ec:93:6c:83: 92:17:cf:b7:8f:98:ea:67:29:2a:9f:54:c8:36:aa:6a:5f:e3: 3c:7c:bd:ea:e4:c6:e1:1e:56:9e:12:c6:b2:44:4b:3c:31:0f: 5f:90:a8:71:8d:83:6a:24:ee:f8:88:47:86:dc:81:7b:ad:f9: 12:65:dd:58:e3:67:35:a1:a0:d1:57:20:c6:3b:f5:8d:c1:38: 2c:f0:3a:2c:cc:7e:15:29:c3:13:b4:c4:e0:f6:ec:b5:8c:21: eb:9a:bc:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQwODAxMTAvBgNVBAUTKDM5MUE2RjY3NUY0QkFBREMyMURENzlBOUJCNEZGMDk1 NjM1NjU3QjIwHhcNMjUwNjAyMjMzMzQ3WhcNMjUwNjA5MjMzMzQ3WjAYMRYwFAYD VQQDEw02ODNlMzRkYi1jNDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5EKcX0gjtWrD//Z4+wSnj5dsGHsIG/Pw0wioPMn/yskHZGoveRshKmKZG518 Vtn2jhrPjsNb2lghxIAHToS1UlbyfeigIG3veEaXSssA5OV9T5HGJsjmK4lEofNh vY/+bR2ZYQWmft98W9nj2s4GtvIwtB9B0XVa+yia5ZD5qz0jT8I2P1iPZOv32hxu I0L4U0t38YOmNdcjpb/lAEVM5qcIdDaClMoPkKadGwmVc3Y3j18j3l+d2seFLAEg o5O8x3KbQTPfiWs6O23Bd9cVFNZIcuDyfpsHNwZ7yDi9y7U5DJ1V+PSKDKrRbsCY yapl4t/BZhv7yTgN+9W+tPGuzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJYJUP4k 4Cer+3dj0okC/P4MFF3cMB8GA1UdIwQYMBaAFDkab2dfS6rcId15qbtP8JVjVley MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDA4MC81QzI0OTcwQUU0 QUMxMUVCOTk3MTBBMTVDNEY5QUUwMi9PUnB2WjE5THF0d2gzWG1wdTBfd2xXTldW N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ScHZaMTlMcXR3aDNYbXB1MF93bFdOV1Y3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDA4MC81QzI0OTcwQUU0QUMxMUVCOTk3MTBBMTVDNEY5QUUwMi9PUnB2WjE5THF0 d2gzWG1wdTBfd2xXTldWN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIz7vWmQPIS92e5Xn87xX7lfbA03cXRhVxFrZUKc1IPvUiWrrKtdTA 79G3YkYz1x1XZGz/j+o2OSJzeBd9o09SjGlHbQe3WEoqUQ/4/OC8xcBkU6M2nugv yn3lmn75xPZTlM0DJMCJzMcaCTZJBEwQOp9M7vYMtiBgkzeSy7VeaII0hYzzhdtc +v67DzBp6Bcn7bw3k+n1M1dF0kuTuOyTbIOSF8+3j5jqZykqn1TINqpqX+M8fL3q 5MbhHlaeEsayREs8MQ9fkKhxjYNqJO74iEeG3IF7rfkSZd1Y42c1oaDRVyDGO/WN wTgs8DoszH4VKcMTtMTg9uy1jCHrmryg -----END CERTIFICATE-----Generated at Tue Jun 3 23:47:41 2025 by rpki-client