$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: sNNpINYDqE4ogq81DgaGSwLb7GZKqDHMmr/CGGK8Tnc= Subject key identifier: CA:0E:95:A8:F2:CA:EC:DA:89:60:5B:9C:BE:29:07:21:DC:7C:5B:90 Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: 63 Signing time: Sat 03 May 2025 06:22:24 +0000 Manifest this update: Sat 03 May 2025 06:22:24 +0000 Manifest next update: Sat 10 May 2025 06:22:24 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: rY/2eRyqMdThllWYv2r0FHvPnQ8VzdvsvSsXGjhJ+uA=) 2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: Es9pKOD8mSWZed849uffE6lhUB5WDPjyB7dm14eKTpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 06:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: May 3 06:22:24 2025 GMT Not After : May 10 06:22:24 2025 GMT Subject: CN=6815b620-1801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ea:d0:01:2b:96:89:17:d1:29:ed:a1:53:27: 31:63:d3:77:a8:fb:4b:f9:f0:23:3e:a4:59:7f:e8: de:68:9f:cb:bd:1a:78:92:16:0b:e0:bc:96:0f:f4: 66:7d:2c:d3:f9:8a:6f:e4:ba:69:0d:cd:fc:0d:10: 4a:21:25:0e:ca:c0:d2:b4:81:f7:fe:f5:47:2b:50: 82:c5:9b:16:94:f5:4b:27:a3:63:35:d7:47:b6:3b: 15:10:a9:18:da:50:dc:81:42:9d:e3:9f:d3:45:4a: 10:a4:d8:36:22:01:49:38:7e:fa:5d:c9:31:9f:be: a7:f9:1e:f0:44:cb:06:34:85:54:25:10:ed:1c:24: b4:e0:f8:50:4b:61:62:af:61:0c:e9:d5:d7:2b:db: 2d:ce:81:d9:b7:4e:9e:da:03:ed:7e:64:7f:d7:e8: e3:3f:dd:eb:f2:13:30:67:9e:e3:87:11:4b:32:fc: 4e:e4:32:30:16:7f:86:2a:8c:f9:37:1c:9c:e1:7c: 3f:2d:02:d9:30:23:f8:5e:e9:f5:44:4d:37:96:30: 1e:f3:cb:92:53:1b:0e:c6:17:a8:c6:81:7d:de:15: f7:c1:0d:06:0a:c2:17:0f:aa:dc:e0:5b:d1:da:42: 24:2c:98:5b:2d:d9:da:31:05:5f:1c:11:a5:3d:76: 87:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:0E:95:A8:F2:CA:EC:DA:89:60:5B:9C:BE:29:07:21:DC:7C:5B:90 X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:84:da:cc:41:a5:4d:15:63:d4:fb:ac:9f:10:36:4e:69:3d: 53:ca:a2:24:a8:00:ee:08:6c:1e:90:a1:3c:6d:54:0b:cd:4d: a7:82:0a:07:a0:c9:0a:59:93:d9:0a:37:88:1b:96:8c:4b:ef: f5:ad:27:57:2c:4d:d1:cd:f7:90:ba:ed:d5:af:c9:af:24:da: f1:85:8b:6b:1e:88:42:d1:dc:6c:f7:9f:69:dc:40:ff:7c:d3: 4c:a8:90:2f:c8:6a:f1:8a:38:94:f1:24:82:48:19:3d:ce:09: 11:7d:a4:db:07:14:b5:ef:36:83:50:6c:5a:a8:f9:12:36:1c: a4:5c:a8:9d:1d:f6:15:57:ef:3d:ae:17:90:f9:44:cb:ff:20: 33:09:f1:0c:8f:27:6f:f0:6b:46:a6:10:58:5a:6e:0b:1d:81: 03:20:f8:92:60:4c:fc:55:a8:3c:e6:10:09:e4:79:33:fc:db: da:8f:06:36:ba:0f:57:fc:5e:e4:d9:60:fb:5d:86:29:8c:15: d2:68:ec:56:c2:89:2c:ac:72:ab:fd:dc:fd:d5:f5:85:02:26: 60:5b:14:f4:3f:ff:19:39:6e:16:fd:2b:dd:15:a1:3b:44:f0: 85:76:3f:d1:93:73:24:f6:bc:df:58:bf:61:a5:c8:5a:66:e3: af:39:e4:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUQ4MDExMC8GA1UEBRMoQTExNDdFODQ3QkNGRUVFQUREOUU4OUE5N0E4RDlGMzM2 NzlDQTdFMjAeFw0yNTA1MDMwNjIyMjRaFw0yNTA1MTAwNjIyMjRaMBgxFjAUBgNV BAMTDTY4MTViNjIwLTE4MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCz6tABK5aJF9Ep7aFTJzFj03eo+0v58CM+pFl/6N5on8u9GniSFgvgvJYP9GZ9 LNP5im/kumkNzfwNEEohJQ7KwNK0gff+9UcrUILFmxaU9Usno2M110e2OxUQqRja UNyBQp3jn9NFShCk2DYiAUk4fvpdyTGfvqf5HvBEywY0hVQlEO0cJLTg+FBLYWKv YQzp1dcr2y3Ogdm3Tp7aA+1+ZH/X6OM/3evyEzBnnuOHEUsy/E7kMjAWf4YqjPk3 HJzhfD8tAtkwI/he6fVETTeWMB7zy5JTGw7GF6jGgX3eFffBDQYKwhcPqtzgW9Ha QiQsmFst2doxBV8cEaU9dod1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyg6VqPLK 7NqJYFucvikHIdx8W5AwHwYDVR0jBBgwFoAUoRR+hHvP7urdnompeo2fM2ecp+Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRDgwL0QyMjNDNUFFOTRD OTExRUY5MkNENzI1OEM0RjlBRTAyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3At SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1JSLWhIdlA3dXJkbm9tcGVvMmZNMmVjcC1JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB RDgwL0QyMjNDNUFFOTRDOTExRUY5MkNENzI1OEM0RjlBRTAyL29SUi1oSHZQN3Vy ZG5vbXBlbzJmTTJlY3AtSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD+E2sxBpU0VY9T7rJ8QNk5pPVPKoiSoAO4IbB6QoTxtVAvNTaeCCgeg yQpZk9kKN4gbloxL7/WtJ1csTdHN95C67dWvya8k2vGFi2seiELR3Gz3n2ncQP98 00yokC/IavGKOJTxJIJIGT3OCRF9pNsHFLXvNoNQbFqo+RI2HKRcqJ0d9hVX7z2u F5D5RMv/IDMJ8QyPJ2/wa0amEFhabgsdgQMg+JJgTPxVqDzmEAnkeTP829qPBja6 D1f8XuTZYPtdhimMFdJo7FbCiSyscqv93P3V9YUCJmBbFPQ//xk5bhb9K90VoTtE 8IV2P9GTcyT2vN9Yv2GlyFpm46855LU= -----END CERTIFICATE-----Generated at Mon May 5 06:50:38 2025 by rpki-client