$ rpki-client -vvf rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft File: orn_7UcMW3HFLztks7btpBm-E7M.mft (raw, json) Hash identifier: GHKlnnq+BNjKiJ8dHEMfxj5ckKECBkAQbvo7k80untA= Subject key identifier: EE:72:26:2C:04:D1:AF:67:43:EA:AF:25:5F:6B:F1:5C:55:1A:E1:CE Authority key identifier: A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 Certificate issuer: /CN=A91187C1/serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft Manifest number: 3C Signing time: Sun 19 Oct 2025 10:58:42 +0000 Manifest this update: Sun 19 Oct 2025 10:58:41 +0000 Manifest next update: Sun 26 Oct 2025 10:58:41 +0000 Files and hashes: 1: orn_7UcMW3HFLztks7btpBm-E7M.crl (hash: thvCjSwqcgVkDC+1/CHZd4TBkyu3WzfxezstSqhX7m8=) 2: C265A63A571211F092B99F2AC4F9AE02.roa (hash: mdIvnywtfDJvKSbbhgc4qSg7/SJGPr319lK/wnjqr9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91187C1, serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Validity Not Before: Oct 19 10:58:41 2025 GMT Not After : Oct 26 10:58:41 2025 GMT Subject: CN=68f4c462-25b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:84:4c:07:af:64:28:a3:92:7d:21:2e:e4:64: 2b:00:59:95:77:a6:c5:17:f7:c1:0e:3d:c3:de:bd: cd:1e:63:b3:21:21:f8:63:95:3b:22:fb:82:d6:b4: 3c:a3:1f:7e:ad:6b:77:cb:67:e4:14:e7:e6:05:04: 26:00:cf:48:78:ba:63:43:a7:fa:de:0c:af:e9:fa: c7:b7:b5:6f:92:2e:3f:95:f7:5c:30:cf:2a:48:bb: ca:04:14:6e:03:69:55:94:a1:7a:fe:82:4f:16:ae: 43:de:ad:c6:15:d2:c0:ca:75:5b:2c:44:03:bd:d5: 32:f2:bd:ba:e4:c6:6b:73:e4:3a:b3:1b:63:6f:7a: 5a:78:04:89:19:1d:6f:c6:00:22:a3:67:af:56:ae: f5:51:58:42:68:45:cf:d3:9f:24:d5:e4:75:a8:a0: d0:29:cb:93:06:03:2f:52:04:85:61:53:12:15:af: 24:b7:ae:5d:97:d0:1e:d4:72:57:45:b2:e0:28:c3: 42:b6:50:76:b6:30:0d:43:50:7b:ef:49:7a:74:80: 51:f7:8e:c1:62:16:f4:f5:36:9a:59:ca:91:3b:29: 5e:07:a8:46:a5:aa:be:d1:e2:3b:76:18:71:0a:61: e7:6e:45:72:25:6e:60:66:b6:06:4b:16:48:90:26: 95:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:72:26:2C:04:D1:AF:67:43:EA:AF:25:5F:6B:F1:5C:55:1A:E1:CE X509v3 Authority Key Identifier: keyid:A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:1c:33:c0:a4:f2:3a:70:d0:ec:79:05:bf:13:40:d0:83:86: 61:c6:27:dc:73:f0:c6:af:14:c3:2a:72:1d:78:64:8b:4b:81: b3:31:69:d9:62:8d:4d:96:e4:cb:0e:37:ca:f8:a2:8c:d5:0e: da:19:4b:6a:3b:91:28:d3:78:34:b8:e1:27:f9:d0:eb:24:68: ed:85:de:88:57:08:ab:1d:93:3d:7a:be:e6:ed:08:66:b7:77: 2e:02:f4:53:92:55:9d:37:59:22:95:f5:f0:4d:27:e3:bc:d9: a4:65:4d:09:0f:17:b8:e1:17:8e:a9:f2:f4:f3:36:c3:f6:7f: 85:e3:11:d6:95:f3:ec:98:4f:ba:40:6b:69:c0:31:49:c5:f8: ca:de:10:5e:1d:a3:76:12:29:fa:2a:4b:b0:67:30:1c:fc:66: 50:16:d5:cb:4b:14:d9:67:22:57:d8:cc:ee:3f:0a:8d:50:43: 34:c5:01:ba:ef:77:ab:ee:95:ea:80:41:6d:e3:f1:7d:2c:3c: f6:cc:e7:60:75:a6:0a:92:59:ee:6a:35:8d:f6:d4:0b:0e:b0: 76:1b:69:bb:1b:38:8a:38:52:62:a0:8e:44:90:c2:02:34:18: b5:85:98:b9:af:be:0a:6d:58:8b:86:d6:21:c7:81:f9:7a:00: 8f:c9:b4:32 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODdDMTExMC8GA1UEBRMoQTJCOUZGRUQ0NzBDNUI3MUM1MkYzQjY0QjNCNkVEQTQx OUJFMTNCMzAeFw0yNTEwMTkxMDU4NDFaFw0yNTEwMjYxMDU4NDFaMBgxFjAUBgNV BAMTDTY4ZjRjNDYyLTI1YjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIhEwHr2Qoo5J9IS7kZCsAWZV3psUX98EOPcPevc0eY7MhIfhjlTsi+4LWtDyj H36ta3fLZ+QU5+YFBCYAz0h4umNDp/reDK/p+se3tW+SLj+V91wwzypIu8oEFG4D aVWUoXr+gk8WrkPercYV0sDKdVssRAO91TLyvbrkxmtz5DqzG2Nvelp4BIkZHW/G ACKjZ69WrvVRWEJoRc/TnyTV5HWooNApy5MGAy9SBIVhUxIVryS3rl2X0B7UcldF suAow0K2UHa2MA1DUHvvSXp0gFH3jsFiFvT1NppZypE7KV4HqEalqr7R4jt2GHEK YeduRXIlbmBmtgZLFkiQJpWlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7nImLATR r2dD6q8lX2vxXFUa4c4wHwYDVR0jBBgwFoAUorn/7UcMW3HFLztks7btpBm+E7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4N0MxLzI2MzFDOEI0NTcw QTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNIRkx6dGtzN2J0cEJtLUU3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb3JuXzdVY01XM0hGTHp0a3M3YnRwQm0tRTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 N0MxLzI2MzFDOEI0NTcwQTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNI Rkx6dGtzN2J0cEJtLUU3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJscM8Ck8jpw0Ox5Bb8TQNCDhmHGJ9xz8MavFMMqch14ZItLgbMxadli jU2W5MsON8r4oozVDtoZS2o7kSjTeDS44Sf50OskaO2F3ohXCKsdkz16vubtCGa3 dy4C9FOSVZ03WSKV9fBNJ+O82aRlTQkPF7jhF46p8vTzNsP2f4XjEdaV8+yYT7pA a2nAMUnF+MreEF4do3YSKfoqS7BnMBz8ZlAW1ctLFNlnIlfYzO4/Co1QQzTFAbrv d6vuleqAQW3j8X0sPPbM52B1pgqSWe5qNY321AsOsHYbabsbOIo4UmKgjkSQwgI0 GLWFmLmvvgptWIuG1iHHgfl6AI/JtDI= -----END CERTIFICATE-----Generated at Mon Oct 20 21:00:59 2025 by rpki-client