$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft File: ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft (raw, json) Hash identifier: AjmwyAbfTfiVS1LljD+eA7gD6osK3RsWJRo8DSq/InM= Subject key identifier: E0:37:7D:44:8E:06:DE:35:AF:19:C6:B7:71:29:D8:66:FA:77:FC:01 Authority key identifier: 39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 Certificate issuer: /CN=A914CCC5/serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Certificate serial: 0770 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft Manifest number: 0767 Signing time: Sat 28 Jun 2025 21:13:46 +0000 Manifest this update: Sat 28 Jun 2025 21:13:46 +0000 Manifest next update: Sat 05 Jul 2025 21:13:46 +0000 Files and hashes: 1: ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl (hash: febzLriZfwgk3rf4lQAM6KvV5x1MHhWG8NQCNdr2oMY=) 2: 94CB63BC241E11EB985FC048C4F9AE02.roa (hash: QadRAteDkMr+/Vf11v/PSiWZ5qLyjgZNySKVRInle2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 21:13:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1904 (0x770) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCC5, serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Validity Not Before: Jun 28 21:13:46 2025 GMT Not After : Jul 5 21:13:46 2025 GMT Subject: CN=68605b0a-35e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:10:54:f5:78:cd:14:4e:4d:24:81:e2:64:3b: 78:70:fa:c5:54:4e:8e:57:12:79:93:11:63:cd:14: 1c:54:9c:05:9b:a2:ad:ed:68:1b:92:68:83:a5:cf: 57:50:a6:86:ba:61:00:1c:b7:42:5f:5c:bc:23:4d: ce:67:82:be:a8:13:a7:60:ff:08:82:22:f0:72:e6: 35:cf:82:75:7b:d7:65:f4:33:31:ee:01:2d:41:b8: c5:6f:63:95:d8:21:3d:03:5b:fe:69:96:78:9b:fc: c3:fd:6c:a1:15:c5:38:c7:e5:28:cb:d4:21:41:ca: 49:35:38:89:76:1a:14:3d:02:46:e9:ab:2a:75:94: 69:63:52:89:42:49:e8:6d:53:fb:ee:ee:7f:ae:b8: 86:63:bc:7e:dd:6d:11:cb:a1:3a:d3:19:6f:ee:f5: a7:cf:47:50:b0:89:1f:2b:4d:80:1a:7b:98:c0:58: a4:f8:13:5e:74:14:3d:c8:36:25:23:83:72:d9:06: 5a:2b:d1:c3:e3:94:8b:54:13:63:1e:14:ed:e1:f1: aa:46:e7:e0:f0:57:07:fe:2e:bd:d5:e5:97:39:ed: bd:df:2e:ec:af:15:52:8e:17:bd:85:ac:a5:15:1f: 91:ff:4d:14:72:6d:31:e6:0d:91:df:25:56:82:99: 8f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:37:7D:44:8E:06:DE:35:AF:19:C6:B7:71:29:D8:66:FA:77:FC:01 X509v3 Authority Key Identifier: keyid:39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:51:ba:82:27:2c:1b:f1:82:c2:7e:02:74:b8:31:4e:c6:cd: 05:51:23:58:7e:c7:f9:d5:a5:b1:a8:cb:ed:3c:cf:a0:0e:4d: e1:e7:ce:7f:2f:37:77:80:0a:f7:f9:bf:c3:f3:8c:f2:9b:44: f3:af:6e:85:6a:e6:ee:5d:3b:53:65:01:5c:41:15:d7:f3:7b: 5d:f2:5e:1b:4e:a8:03:71:e8:ca:81:63:b0:21:20:fa:04:39: 4c:2d:31:2f:4e:f4:18:be:d0:8f:64:68:ca:de:d9:d4:70:99: 78:fe:17:83:9d:96:3d:9d:70:54:08:58:f3:65:8c:13:13:8b: e2:29:d3:7b:33:8b:e5:d9:92:92:bd:59:44:1f:0a:71:d9:b8: 0b:20:89:30:8d:ca:3b:ed:b1:50:65:f2:fe:2f:36:38:fc:5a: e4:75:68:ac:57:fb:20:dd:a5:be:aa:94:3c:af:ca:93:b2:f4: 5a:0c:52:7a:65:38:25:cb:1f:0d:f2:3e:c5:d7:e6:f9:22:37: 19:80:8a:36:18:db:cb:6b:cb:1c:11:91:25:2c:72:2c:32:fa: ea:a8:aa:4f:9f:ec:ea:3e:02:ee:2d:8d:45:0b:d9:d0:bc:49: a3:bb:23:bf:77:aa:e6:cf:72:b1:b8:c4:61:36:d3:cf:69:09: cc:af:ac:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDQzUxMTAvBgNVBAUTKDM5MTFFMUVGQjAyQjAzNkY4MzVCRjY1OEUxMzY2MDFB Njc0MjE2OTMwHhcNMjUwNjI4MjExMzQ2WhcNMjUwNzA1MjExMzQ2WjAYMRYwFAYD VQQDEw02ODYwNWIwYS0zNWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBBU9XjNFE5NJIHiZDt4cPrFVE6OVxJ5kxFjzRQcVJwFm6Kt7WgbkmiDpc9X UKaGumEAHLdCX1y8I03OZ4K+qBOnYP8IgiLwcuY1z4J1e9dl9DMx7gEtQbjFb2OV 2CE9A1v+aZZ4m/zD/WyhFcU4x+Uoy9QhQcpJNTiJdhoUPQJG6asqdZRpY1KJQkno bVP77u5/rriGY7x+3W0Ry6E60xlv7vWnz0dQsIkfK02AGnuYwFik+BNedBQ9yDYl I4Ny2QZaK9HD45SLVBNjHhTt4fGqRufg8FcH/i691eWXOe293y7srxVSjhe9hayl FR+R/00Ucm0x5g2R3yVWgpmPtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOA3fUSO Bt41rxnGt3Ep2Gb6d/wBMB8GA1UdIwQYMBaAFDkR4e+wKwNvg1v2WOE2YBpnQhaT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NDNS80M0I1RUZEMDI0 MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEyLURXX1pZNFRaZ0dtZENG cE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SSGg3N0FyQTItRFdfWlk0VFpnR21kQ0ZwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NDNS80M0I1RUZEMDI0MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEy LURXX1pZNFRaZ0dtZENGcE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVUbqCJywb8YLCfgJ0uDFOxs0FUSNYfsf51aWxqMvtPM+gDk3h585/ Lzd3gAr3+b/D84zym0Tzr26FaubuXTtTZQFcQRXX83td8l4bTqgDcejKgWOwISD6 BDlMLTEvTvQYvtCPZGjK3tnUcJl4/heDnZY9nXBUCFjzZYwTE4viKdN7M4vl2ZKS vVlEHwpx2bgLIIkwjco77bFQZfL+LzY4/FrkdWisV/sg3aW+qpQ8r8qTsvRaDFJ6 ZTglyx8N8j7F1+b5IjcZgIo2GNvLa8scEZElLHIsMvrqqKpPn+zqPgLuLY1FC9nQ vEmjuyO/d6rmz3KxuMRhNtPPaQnMr6xD -----END CERTIFICATE-----Generated at Mon Jun 30 19:24:14 2025 by rpki-client