$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft File: ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft (raw, json) Hash identifier: E+jB1hiWMFKAqQ/hdM7vBJPhXwnAONDugqPYKOqVI5A= Subject key identifier: 84:ED:F9:E3:8C:50:A4:87:E1:5A:25:F9:E7:D2:DE:7D:CB:AE:FC:3E Authority key identifier: 39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 Certificate issuer: /CN=A914CCC5/serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Certificate serial: 078C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft Manifest number: 0783 Signing time: Fri 22 Aug 2025 21:39:14 +0000 Manifest this update: Fri 22 Aug 2025 21:39:13 +0000 Manifest next update: Fri 29 Aug 2025 21:39:13 +0000 Files and hashes: 1: ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl (hash: KJoHV84HnnnOcVVC/NDH0PYX/dHpeMRiia2cU+3yeng=) 2: 94CB63BC241E11EB985FC048C4F9AE02.roa (hash: QadRAteDkMr+/Vf11v/PSiWZ5qLyjgZNySKVRInle2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1932 (0x78c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCC5, serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Validity Not Before: Aug 22 21:39:13 2025 GMT Not After : Aug 29 21:39:13 2025 GMT Subject: CN=68a8e382-b3b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:63:69:d5:fa:e8:c6:df:fe:22:f7:06:e9:88: 67:04:02:cb:d6:bf:74:18:d9:0b:25:6a:87:7b:0f: 42:d1:44:e4:5e:db:07:44:07:64:54:bd:52:a0:43: 02:cf:13:ff:94:ec:49:58:c4:fb:ed:be:f7:0e:4f: 1d:48:f5:13:0f:75:7d:e5:95:68:4c:15:f0:bd:0f: e8:53:1e:35:71:fe:96:a6:6b:c4:df:1b:ba:f4:29: fd:29:29:28:71:6e:fd:16:b0:51:58:0e:68:1d:2a: ef:27:f6:73:84:64:b4:14:d6:29:5f:b4:8d:cc:79: 29:6a:fb:9a:2a:82:72:09:d5:68:e5:29:c9:d4:80: 0c:18:e9:ff:9d:27:df:a4:ab:9a:cd:ef:7b:31:de: ec:59:4e:cc:9b:0a:07:6f:1e:94:21:5d:15:2d:43: 8c:55:75:88:11:aa:0d:5f:d0:82:9d:a9:e9:61:df: b8:d9:0d:7b:dd:a7:5f:7c:76:00:a2:57:74:30:76: ba:92:83:33:c6:fc:a2:7e:06:e0:83:a4:1d:ae:86: 61:e8:22:11:9f:eb:ff:fa:dd:bc:3f:45:09:ae:77: 71:ec:d4:52:09:be:f6:1c:15:ef:66:f5:c1:c7:1f: bb:1f:d8:55:8c:95:33:73:16:60:f1:0d:8e:a0:42: 88:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:ED:F9:E3:8C:50:A4:87:E1:5A:25:F9:E7:D2:DE:7D:CB:AE:FC:3E X509v3 Authority Key Identifier: keyid:39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:97:50:8e:cb:a1:88:76:ba:7c:96:11:00:d5:c0:e7:c9:84: 4e:9a:22:cf:c7:5c:5f:e8:2f:e4:57:9e:5c:ae:e6:87:a8:bf: 8a:91:3f:d2:dd:f6:f6:16:01:60:04:22:da:04:00:de:27:85: d8:5e:6b:32:4e:30:fd:7a:7c:d0:94:a5:1a:5e:23:63:8a:2d: 46:14:00:38:c3:1d:6c:5a:12:64:5f:d6:ba:fb:25:ec:9e:5c: 4e:9e:ee:a0:a2:35:b6:2c:70:a6:ab:67:b1:68:46:8c:cc:12: ba:31:80:cb:96:50:f2:25:f3:a3:3a:ed:64:9e:b0:c3:8f:46: 86:b5:9e:a8:ea:21:45:42:56:7b:2c:98:d2:e9:1f:f5:48:02: 2f:16:f9:c7:81:c0:ca:7f:31:eb:e2:69:a7:28:f8:cb:ce:d6: 7b:67:58:9e:dd:9e:77:e0:8b:67:dd:5a:04:03:10:84:1a:ef: cb:ae:40:3e:48:23:19:9b:6f:ae:a7:17:2c:d4:16:57:df:5a: 7e:c6:07:66:9c:71:c7:4b:81:56:6b:b0:e9:bf:40:b9:3b:c6: fc:fa:dc:41:51:83:e6:46:3a:33:02:99:0e:de:b6:60:cd:84: 71:2b:5b:62:e4:5f:5d:b2:36:0d:c7:82:80:8e:38:97:0a:72: 04:b9:6c:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDQzUxMTAvBgNVBAUTKDM5MTFFMUVGQjAyQjAzNkY4MzVCRjY1OEUxMzY2MDFB Njc0MjE2OTMwHhcNMjUwODIyMjEzOTEzWhcNMjUwODI5MjEzOTEzWjAYMRYwFAYD VQQDEw02OGE4ZTM4Mi1iM2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GNp1froxt/+IvcG6YhnBALL1r90GNkLJWqHew9C0UTkXtsHRAdkVL1SoEMC zxP/lOxJWMT77b73Dk8dSPUTD3V95ZVoTBXwvQ/oUx41cf6WpmvE3xu69Cn9KSko cW79FrBRWA5oHSrvJ/ZzhGS0FNYpX7SNzHkpavuaKoJyCdVo5SnJ1IAMGOn/nSff pKuaze97Md7sWU7MmwoHbx6UIV0VLUOMVXWIEaoNX9CCnanpYd+42Q173adffHYA old0MHa6koMzxvyifgbgg6QdroZh6CIRn+v/+t28P0UJrndx7NRSCb72HBXvZvXB xx+7H9hVjJUzcxZg8Q2OoEKIdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFITt+eOM UKSH4Vol+efS3n3Lrvw+MB8GA1UdIwQYMBaAFDkR4e+wKwNvg1v2WOE2YBpnQhaT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NDNS80M0I1RUZEMDI0 MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEyLURXX1pZNFRaZ0dtZENG cE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SSGg3N0FyQTItRFdfWlk0VFpnR21kQ0ZwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NDNS80M0I1RUZEMDI0MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEy LURXX1pZNFRaZ0dtZENGcE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHl1COy6GIdrp8lhEA1cDnyYROmiLPx1xf6C/kV55cruaHqL+KkT/S 3fb2FgFgBCLaBADeJ4XYXmsyTjD9enzQlKUaXiNjii1GFAA4wx1sWhJkX9a6+yXs nlxOnu6gojW2LHCmq2exaEaMzBK6MYDLllDyJfOjOu1knrDDj0aGtZ6o6iFFQlZ7 LJjS6R/1SAIvFvnHgcDKfzHr4mmnKPjLztZ7Z1ie3Z534Itn3VoEAxCEGu/LrkA+ SCMZm2+upxcs1BZX31p+xgdmnHHHS4FWa7Dpv0C5O8b8+txBUYPmRjozApkO3rZg zYRxK1ti5F9dsjYNx4KAjjiXCnIEuWxE -----END CERTIFICATE-----Generated at Sat Aug 23 18:39:45 2025 by rpki-client