$ rpki-client -vvf rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft File: orn_7UcMW3HFLztks7btpBm-E7M.mft (raw, json) Hash identifier: GoBQcVWp9pJysA03KHTUq+W9LqltgiooYpt2jvAHiFw= Subject key identifier: 7E:2B:D5:D6:23:6C:7F:CD:71:E9:FD:EC:57:F8:B9:F5:3A:87:7A:59 Authority key identifier: A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 Certificate issuer: /CN=A91187C1/serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Certificate serial: 06 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft Manifest number: 05 Signing time: Thu 03 Jul 2025 08:28:45 +0000 Manifest this update: Thu 03 Jul 2025 08:28:45 +0000 Manifest next update: Thu 10 Jul 2025 08:28:45 +0000 Files and hashes: 1: orn_7UcMW3HFLztks7btpBm-E7M.crl (hash: 0ys8TFgDcfTQGKK4VAqrpi535o6vo2k4tfGrRA7T5KQ=) 2: C265A63A571211F092B99F2AC4F9AE02.roa (hash: mdIvnywtfDJvKSbbhgc4qSg7/SJGPr319lK/wnjqr9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91187C1, serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Validity Not Before: Jul 3 08:28:45 2025 GMT Not After : Jul 10 08:28:45 2025 GMT Subject: CN=68663f3d-52fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c6:31:9e:6b:1a:98:f6:5c:bd:cb:e7:0e:c8: 99:09:c3:1e:ca:53:11:a2:00:9e:9e:60:b9:32:22: c6:a4:26:d2:65:a0:94:16:b8:3d:4d:59:ed:79:45: 24:4a:98:ee:47:c3:b4:59:99:50:53:08:67:a7:c2: 05:78:42:9e:6c:d5:fe:04:0f:cf:0d:c1:bf:ee:86: d6:a5:16:71:21:a8:76:b1:61:d1:fc:95:62:cb:14: e4:cd:22:3f:0c:0a:ee:52:8b:ab:ba:a2:73:5f:01: 39:ea:2d:58:9c:e1:d4:b1:5c:fc:41:46:2c:6a:58: 18:9e:41:50:40:1e:49:1b:75:04:34:19:07:33:a9: 10:95:ec:63:c0:74:c7:71:d4:46:15:ad:97:10:d5: 56:5f:e1:2f:b6:39:9d:21:c0:72:26:d3:f7:77:e2: d1:2e:e9:ec:23:5f:72:28:03:72:3d:9a:1e:bf:dc: 80:2f:ae:39:87:38:d0:55:ba:f2:e8:a2:46:ef:2f: 26:92:c8:3a:16:c3:26:5c:48:52:3f:d1:e9:56:b2: 5c:a7:b2:fa:8e:fd:e2:f5:46:4a:b6:98:07:10:8d: 75:76:eb:1f:48:4f:db:bc:1b:8c:b2:20:f1:53:57: 07:68:aa:f4:32:f2:34:39:d4:0e:54:ec:b2:0f:1a: dd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:2B:D5:D6:23:6C:7F:CD:71:E9:FD:EC:57:F8:B9:F5:3A:87:7A:59 X509v3 Authority Key Identifier: keyid:A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:78:59:13:32:af:26:1c:39:e9:ab:a3:aa:4e:6c:53:ed:0a: b5:fe:28:46:1a:72:94:98:e5:4b:11:45:df:0a:9f:5b:90:0b: dc:8f:de:ba:60:8f:8d:3c:8d:89:0e:0f:00:d9:ab:8e:9e:61: fe:74:5a:17:a3:d7:1a:8d:3e:81:9f:67:a5:18:5b:61:bb:55: da:d4:de:60:44:39:9b:a7:63:01:29:f5:a1:ba:34:fb:9c:f2: f0:0b:bf:6d:1a:ed:1f:0f:ce:85:f9:cc:04:44:19:6c:e5:99: 64:bd:24:c2:8a:33:d3:e1:c5:b9:73:8d:6e:34:04:dd:a5:a5: e1:ad:d7:6a:8b:81:3d:64:08:28:21:26:39:63:ed:8f:12:b8: 6d:c5:4e:0b:e4:3d:c9:2b:bb:8d:60:1a:16:42:05:b3:cf:f1: 50:a2:95:1c:2e:ab:ba:83:59:e9:92:fa:1a:fa:89:00:05:da: 59:98:9c:10:7d:7a:1f:d5:d3:40:11:a0:4b:f7:61:57:d4:88: 95:1b:25:06:b3:dd:e0:67:1d:f1:0c:ed:35:71:52:4f:0a:71: d5:69:31:47:cd:6a:e9:70:f5:e1:de:a3:15:3c:0f:b3:50:e1: 3c:7c:84:6a:0c:82:65:8e:aa:2c:ca:ff:d0:a4:18:76:0d:ba: f8:eb:64:d0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODdDMTExMC8GA1UEBRMoQTJCOUZGRUQ0NzBDNUI3MUM1MkYzQjY0QjNCNkVEQTQx OUJFMTNCMzAeFw0yNTA3MDMwODI4NDVaFw0yNTA3MTAwODI4NDVaMBgxFjAUBgNV BAMTDTY4NjYzZjNkLTUyZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJxjGeaxqY9ly9y+cOyJkJwx7KUxGiAJ6eYLkyIsakJtJloJQWuD1NWe15RSRK mO5Hw7RZmVBTCGenwgV4Qp5s1f4ED88Nwb/uhtalFnEhqHaxYdH8lWLLFOTNIj8M Cu5Si6u6onNfATnqLVic4dSxXPxBRixqWBieQVBAHkkbdQQ0GQczqRCV7GPAdMdx 1EYVrZcQ1VZf4S+2OZ0hwHIm0/d34tEu6ewjX3IoA3I9mh6/3IAvrjmHONBVuvLo okbvLyaSyDoWwyZcSFI/0elWslynsvqO/eL1Rkq2mAcQjXV26x9IT9u8G4yyIPFT VwdoqvQy8jQ51A5U7LIPGt3bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfivV1iNs f81x6f3sV/i59TqHelkwHwYDVR0jBBgwFoAUorn/7UcMW3HFLztks7btpBm+E7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4N0MxLzI2MzFDOEI0NTcw QTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNIRkx6dGtzN2J0cEJtLUU3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb3JuXzdVY01XM0hGTHp0a3M3YnRwQm0tRTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 N0MxLzI2MzFDOEI0NTcwQTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNI Rkx6dGtzN2J0cEJtLUU3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIh4WRMyryYcOemro6pObFPtCrX+KEYacpSY5UsRRd8Kn1uQC9yP3rpg j408jYkODwDZq46eYf50Whej1xqNPoGfZ6UYW2G7VdrU3mBEOZunYwEp9aG6NPuc 8vALv20a7R8PzoX5zAREGWzlmWS9JMKKM9PhxblzjW40BN2lpeGt12qLgT1kCCgh Jjlj7Y8SuG3FTgvkPckru41gGhZCBbPP8VCilRwuq7qDWemS+hr6iQAF2lmYnBB9 eh/V00ARoEv3YVfUiJUbJQaz3eBnHfEM7TVxUk8KcdVpMUfNaulw9eHeoxU8D7NQ 4Tx8hGoMgmWOqizK/9CkGHYNuvjrZNA= -----END CERTIFICATE-----Generated at Fri Jul 4 12:17:17 2025 by rpki-client