$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: w8M3T76nL0aQk+J8BhUksT6x5PkmS1oClPQGXK3b2FE= Subject key identifier: 15:C3:49:DD:2A:52:18:81:78:F3:DB:5B:DE:4B:B7:CA:00:CE:75:CD Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: 81 Signing time: Sun 29 Jun 2025 05:43:47 +0000 Manifest this update: Sun 29 Jun 2025 05:43:46 +0000 Manifest next update: Sun 06 Jul 2025 05:43:46 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: wAXnKqqS6KuqyFkHGgNAD+Y03hIta3LV9AmC/vsSgEM=) 2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: zOW380YmpQpMtSyWb7ghqrZ9YCinfgNDwAX0rgUwhPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 05:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: Jun 29 05:43:46 2025 GMT Not After : Jul 6 05:43:46 2025 GMT Subject: CN=6860d292-b6cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:16:7b:6d:28:9f:22:52:3b:c7:15:e5:14:7e: 64:63:87:e3:04:14:06:ab:6c:95:1b:2a:a1:a6:94: fd:d7:05:fc:d1:45:85:3d:7f:1f:79:d2:c1:79:3e: e5:18:38:be:2b:c1:47:9c:dd:52:0f:a0:09:e4:1e: f6:fe:a3:6b:3a:c2:02:b8:f5:4e:cf:4f:6f:dd:90: 22:03:f6:d6:eb:74:d1:66:c7:bc:c3:1d:11:34:d8: 8c:ca:5c:3c:b7:57:67:36:f2:47:10:04:df:f3:35: aa:92:87:94:06:ad:9e:08:5e:0c:23:3f:d1:be:f6: 71:94:85:bc:21:59:b8:da:68:a7:88:8c:96:6a:4c: f4:35:77:fe:75:b6:75:1f:a0:dd:4a:43:f2:a3:48: 22:04:fa:68:2a:74:6d:1f:80:d1:c9:86:61:8f:e7: 4b:f1:c8:f2:12:4d:b3:9e:fa:d9:82:a6:9d:38:46: ff:b3:d3:2a:a5:de:50:c1:37:30:f9:45:9b:1d:32: 9c:ff:14:c8:df:c1:5c:03:6a:92:91:35:0d:64:42: cf:59:43:da:a4:2a:b4:b1:5f:b4:69:1b:94:91:5b: 8f:25:72:d1:c4:89:22:97:96:43:a3:85:52:80:69: 18:d9:f1:58:7c:e7:f5:57:cd:c4:24:5a:6e:b1:87: d4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:C3:49:DD:2A:52:18:81:78:F3:DB:5B:DE:4B:B7:CA:00:CE:75:CD X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:27:9c:64:6d:fe:6a:e2:12:8c:a6:ec:8e:28:1c:21:7b:72: c5:17:96:de:a8:c5:29:c5:39:3f:e9:c8:8b:de:b8:70:3c:d0: 0d:6c:53:f2:80:c9:c0:a0:ad:3c:f7:0b:c7:92:23:b1:e7:ee: a5:00:a4:9d:02:ba:4a:aa:09:53:34:40:5a:28:07:ad:2e:9f: f9:13:92:c3:1e:f8:08:1c:fb:79:b8:a5:a2:24:cc:bb:23:c2: 4c:42:52:a2:7f:0f:7f:b2:8f:12:c5:cc:7b:17:d5:9e:e1:b6: 6c:50:6a:ee:c1:0b:f6:ad:ad:1f:7a:c0:fa:88:98:da:01:57: f0:14:4f:b6:e4:de:ef:42:76:ee:ed:c8:6d:76:97:ed:60:80: 2b:1f:5a:65:f9:66:8f:eb:b0:8e:2e:8f:43:24:ef:9d:f1:4b: a5:6c:59:ee:f4:1f:75:fe:14:51:52:bf:13:fe:2f:05:94:67: 4c:07:5e:80:f7:7f:6b:65:c6:a6:ef:eb:4d:a6:0f:b6:6b:09: 11:62:d3:60:81:17:6d:4d:7f:c6:fb:fa:4c:4b:f4:ff:54:e6: 43:cd:a7:2a:66:ec:57:29:6d:d9:67:59:84:2c:8b:cb:45:56: 37:dd:c3:9c:17:09:a9:98:fc:9a:45:ea:cf:2b:f6:9f:11:6d: 57:bb:8e:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFEODAxMTAvBgNVBAUTKEExMTQ3RTg0N0JDRkVFRUFERDlFODlBOTdBOEQ5RjMz Njc5Q0E3RTIwHhcNMjUwNjI5MDU0MzQ2WhcNMjUwNzA2MDU0MzQ2WjAYMRYwFAYD VQQDEw02ODYwZDI5Mi1iNmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthZ7bSifIlI7xxXlFH5kY4fjBBQGq2yVGyqhppT91wX80UWFPX8fedLBeT7l GDi+K8FHnN1SD6AJ5B72/qNrOsICuPVOz09v3ZAiA/bW63TRZse8wx0RNNiMylw8 t1dnNvJHEATf8zWqkoeUBq2eCF4MIz/RvvZxlIW8IVm42miniIyWakz0NXf+dbZ1 H6DdSkPyo0giBPpoKnRtH4DRyYZhj+dL8cjyEk2znvrZgqadOEb/s9Mqpd5QwTcw +UWbHTKc/xTI38FcA2qSkTUNZELPWUPapCq0sV+0aRuUkVuPJXLRxIkil5ZDo4VS gGkY2fFYfOf1V83EJFpusYfUDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXDSd0q UhiBePPbW95Lt8oAznXNMB8GA1UdIwQYMBaAFKEUfoR7z+7q3Z6JqXqNnzNnnKfi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUQ4MC9EMjIzQzVBRTk0 QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1cmRub21wZW8yZk0yZWNw LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3AtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUQ4MC9EMjIzQzVBRTk0QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1 cmRub21wZW8yZk0yZWNwLUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvJ5xkbf5q4hKMpuyOKBwhe3LFF5beqMUpxTk/6ciL3rhwPNANbFPy gMnAoK089wvHkiOx5+6lAKSdArpKqglTNEBaKAetLp/5E5LDHvgIHPt5uKWiJMy7 I8JMQlKifw9/so8Sxcx7F9We4bZsUGruwQv2ra0fesD6iJjaAVfwFE+25N7vQnbu 7chtdpftYIArH1pl+WaP67COLo9DJO+d8UulbFnu9B91/hRRUr8T/i8FlGdMB16A 939rZcam7+tNpg+2awkRYtNggRdtTX/G+/pMS/T/VOZDzacqZuxXKW3ZZ1mELIvL RVY33cOcFwmpmPyaRerPK/afEW1Xu44g -----END CERTIFICATE-----Generated at Sun Jun 29 16:11:51 2025 by rpki-client