$ rpki-client -vvf rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft File: ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft (raw, json) Hash identifier: diiUmGRdR8z6nG/cxE1oG/KdFm1cuL8naFYcU8u7dFM= Subject key identifier: D2:D4:12:AC:90:EF:EC:3B:F4:B5:7C:82:EC:2F:BF:4F:AA:3B:A3:0E Authority key identifier: 39:1A:6F:67:5F:4B:AA:DC:21:DD:79:A9:BB:4F:F0:95:63:56:57:B2 Certificate issuer: /CN=A911D080/serialNumber=391A6F675F4BAADC21DD79A9BB4FF095635657B2 Certificate serial: 053B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft Manifest number: 0535 Signing time: Mon 17 Feb 2025 00:25:46 +0000 Manifest this update: Mon 17 Feb 2025 00:25:45 +0000 Manifest next update: Mon 24 Feb 2025 00:25:45 +0000 Files and hashes: 1: ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl (hash: VJJPkUFLwTQZUo9OW7deP9in41z7zd33o7dS1BsUwcY=) 2: 0D0106EAE5BF11EB801D410DC4F9AE02.roa (hash: 3jMfh6JrAWUp0w/oStB2daKxlSbx8MU7h4k/yNQbZVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1339 (0x53b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D080 Validity Not Before: Feb 17 00:25:45 2025 GMT Not After : Feb 24 00:25:45 2025 GMT Subject: CN=67b28209-b98a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:80:fe:2a:d6:4e:17:88:ef:3c:d8:c0:dc:d2: 1d:fa:6c:8c:13:0d:82:99:41:f2:28:13:21:56:ce: 36:9d:3a:60:85:b5:ae:df:5a:13:04:78:ea:93:4f: a7:0b:80:a0:35:9f:e1:a7:91:cf:5c:e2:1e:dc:a7: 5d:e7:b8:76:40:77:a9:77:d2:41:6e:f8:71:a0:34: d4:ab:37:03:9f:e7:9d:69:15:44:0e:d8:63:98:e3: ba:71:0d:3e:00:0f:9b:e3:74:66:da:4c:fe:88:d7: 9c:13:9e:ca:69:41:1f:39:98:84:14:c9:a1:a8:3e: 37:9d:38:55:96:35:f1:37:ac:d3:76:cf:15:50:4b: e0:a1:bc:be:9e:34:1e:76:25:39:ab:45:8f:12:40: ac:32:df:89:1d:7d:62:1b:fd:21:f7:73:5c:6d:4d: 3c:a8:3c:45:02:4b:1d:e4:72:cd:d2:34:61:da:3b: 6b:a3:fe:ca:e8:9e:2d:0c:dc:3f:f9:ba:15:d2:56: bb:ce:5f:81:f7:9e:f1:36:35:a2:a5:43:d5:4d:05: fc:dd:f7:b2:61:f9:a2:f4:ea:83:2e:23:7d:f3:9f: 7b:29:0c:41:2c:f4:26:27:76:5b:41:52:de:97:29: 27:8b:16:e8:b6:d2:78:e9:b4:25:b4:70:05:6e:07: 6c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:D4:12:AC:90:EF:EC:3B:F4:B5:7C:82:EC:2F:BF:4F:AA:3B:A3:0E X509v3 Authority Key Identifier: keyid:39:1A:6F:67:5F:4B:AA:DC:21:DD:79:A9:BB:4F:F0:95:63:56:57:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D080/5C24970AE4AC11EB99710A15C4F9AE02/ORpvZ19Lqtwh3Xmpu0_wlWNWV7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:c0:4f:8e:8f:f3:83:9d:d9:ac:01:53:f9:b5:43:25:39:3b: 5c:47:46:c7:b7:e5:25:92:49:7c:87:dd:a9:d9:12:d6:96:dc: 02:f1:bd:ac:33:c1:a3:08:6a:3b:88:59:e6:69:a1:45:c4:2b: 6a:90:9c:28:fb:cc:8c:39:a7:68:9b:a6:4f:40:30:dc:da:ea: 95:8c:9d:d9:25:d0:7e:08:cf:43:63:78:b8:24:89:5e:9a:bb: d5:66:b4:e8:ae:ad:3f:0c:a1:7b:45:04:a5:37:cc:c6:07:76: 4e:1a:c5:69:3a:bc:36:a4:80:5b:72:f9:a3:58:3e:45:49:c3: bf:df:31:1e:f2:52:e9:cc:a7:48:fe:f0:69:ee:e9:de:00:7c: d7:09:33:99:b0:c4:eb:98:e5:60:42:f2:eb:bf:1e:8d:8a:65: a0:41:1a:a5:24:b8:46:69:32:a9:73:31:60:25:6d:8e:2f:8f: eb:9b:ee:41:bb:90:1b:bb:e3:aa:80:fd:f8:63:84:9e:29:82: fd:5c:a7:e5:66:8a:de:d0:40:1a:16:51:2b:e5:f0:6f:7b:3e: d9:4f:61:96:14:b7:2c:a5:84:d4:e7:56:15:48:41:8c:d5:e1: 87:9c:89:cf:df:9b:37:03:7f:6d:ce:99:8b:41:13:b0:22:40: bf:e6:1d:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQwODAxMTAvBgNVBAUTKDM5MUE2RjY3NUY0QkFBREMyMURENzlBOUJCNEZGMDk1 NjM1NjU3QjIwHhcNMjUwMjE3MDAyNTQ1WhcNMjUwMjI0MDAyNTQ1WjAYMRYwFAYD VQQDEw02N2IyODIwOS1iOThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoD+KtZOF4jvPNjA3NId+myMEw2CmUHyKBMhVs42nTpghbWu31oTBHjqk0+n C4CgNZ/hp5HPXOIe3Kdd57h2QHepd9JBbvhxoDTUqzcDn+edaRVEDthjmOO6cQ0+ AA+b43Rm2kz+iNecE57KaUEfOZiEFMmhqD43nThVljXxN6zTds8VUEvgoby+njQe diU5q0WPEkCsMt+JHX1iG/0h93NcbU08qDxFAksd5HLN0jRh2jtro/7K6J4tDNw/ +boV0la7zl+B957xNjWipUPVTQX83feyYfmi9OqDLiN98597KQxBLPQmJ3ZbQVLe lyknixbottJ46bQltHAFbgdsoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLUEqyQ 7+w79LV8guwvv0+qO6MOMB8GA1UdIwQYMBaAFDkab2dfS6rcId15qbtP8JVjVley MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDA4MC81QzI0OTcwQUU0 QUMxMUVCOTk3MTBBMTVDNEY5QUUwMi9PUnB2WjE5THF0d2gzWG1wdTBfd2xXTldW N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ScHZaMTlMcXR3aDNYbXB1MF93bFdOV1Y3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDA4MC81QzI0OTcwQUU0QUMxMUVCOTk3MTBBMTVDNEY5QUUwMi9PUnB2WjE5THF0 d2gzWG1wdTBfd2xXTldWN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPwE+Oj/ODndmsAVP5tUMlOTtcR0bHt+Ulkkl8h92p2RLWltwC8b2s M8GjCGo7iFnmaaFFxCtqkJwo+8yMOadom6ZPQDDc2uqVjJ3ZJdB+CM9DY3i4JIle mrvVZrTorq0/DKF7RQSlN8zGB3ZOGsVpOrw2pIBbcvmjWD5FScO/3zEe8lLpzKdI /vBp7uneAHzXCTOZsMTrmOVgQvLrvx6NimWgQRqlJLhGaTKpczFgJW2OL4/rm+5B u5Abu+OqgP34Y4SeKYL9XKflZore0EAaFlEr5fBvez7ZT2GWFLcspYTU51YVSEGM 1eGHnInP35s3A39tzpmLQROwIkC/5h3E -----END CERTIFICATE-----Generated at Mon Feb 17 07:44:19 2025 by rpki-client