$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: RZVFe8bzzYLO6JMc9Udysdb1bJfZzCdJvDvO4z/rRR0= Subject key identifier: A0:E4:79:30:1F:65:02:5B:9D:59:D7:DA:31:95:2F:B8:DB:81:56:A1 Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: 5F Signing time: Fri 25 Apr 2025 06:05:22 +0000 Manifest this update: Fri 25 Apr 2025 06:05:22 +0000 Manifest next update: Fri 02 May 2025 06:05:22 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: 9cI2gzgzP4PAlJMxiOhSWeV9F8vUAm8KrPSTYZ+1tyM=) 2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: Es9pKOD8mSWZed849uffE6lhUB5WDPjyB7dm14eKTpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:05:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: Apr 25 06:05:22 2025 GMT Not After : May 2 06:05:22 2025 GMT Subject: CN=680b2622-628c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:96:da:b5:7e:94:a0:20:86:3f:b4:41:75:fd: 55:f8:0f:58:45:ff:22:48:b5:39:11:b0:97:5d:6c: 1e:95:5f:ee:58:01:84:15:c7:d3:1c:2e:a0:ff:d8: 11:8c:fa:88:bc:26:f0:1b:f3:55:10:71:80:38:2c: 98:51:40:e4:09:7b:22:8c:53:ba:b8:18:d8:19:ca: 37:43:fc:fd:b6:97:82:4f:8d:d9:db:29:03:36:a8: 29:d6:45:a6:ab:00:2f:00:3c:68:57:80:85:42:ff: 4e:a9:66:0b:62:ab:20:85:e9:8b:83:f0:df:73:55: 80:9e:f1:44:ed:eb:d0:b6:aa:cc:df:2d:37:cc:00: 91:4c:cf:c2:32:bc:4e:3b:d6:58:a0:da:cc:d7:de: ed:c5:b0:85:96:a5:64:6c:0a:71:f1:fe:a5:4a:b1: 7d:e1:5d:2a:2f:58:36:11:f2:1c:2e:54:7d:9a:b0: 1d:a9:f0:4a:5b:04:8d:45:8b:92:d8:15:c1:c0:0c: 14:04:37:62:dd:e1:6e:00:88:96:93:4a:3b:98:e4: f0:d8:9f:70:32:f9:fd:6d:13:9c:eb:49:67:0b:a3: d8:33:4f:ed:65:78:f4:64:23:5a:2a:bd:15:82:9c: 0b:ef:10:c9:f3:31:3d:31:aa:e1:e1:72:ab:e4:d8: f6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E4:79:30:1F:65:02:5B:9D:59:D7:DA:31:95:2F:B8:DB:81:56:A1 X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:4a:be:6f:27:33:1e:4e:eb:cc:56:69:c0:d2:a7:18:b2:b6: 55:4d:9e:de:e1:d8:a3:c7:40:44:7a:45:f7:07:dc:77:05:58: c4:b9:fd:4e:e7:63:73:f2:cb:e1:7d:68:d3:8b:28:e2:c6:63: f2:87:80:f9:11:bf:b8:d3:50:b1:0a:b9:e3:d8:46:10:ba:2e: e6:6c:70:43:47:cf:0e:f8:3f:2b:eb:b2:ee:cf:e9:8d:53:ef: ac:64:53:e0:ef:9e:2a:13:ce:b0:8c:a4:6f:60:70:3e:58:a1: 1f:c2:31:67:1b:38:ac:ec:67:cb:56:9f:c3:59:09:d3:5b:ad: 92:af:5e:c0:c7:47:d0:08:cc:dd:92:14:b4:86:b8:75:4d:31: 24:e6:a8:e8:62:fc:69:9a:53:26:3e:99:e1:97:24:63:17:9b: 8c:7e:fa:71:e7:c7:5b:c4:20:3f:14:fa:52:a3:db:74:c7:4e: 39:a8:3e:eb:4b:a8:4b:25:38:1c:ae:27:e8:1d:6b:0f:58:21: 3f:b7:67:bc:45:53:2d:05:ef:70:d3:14:95:01:74:e9:6b:58: c4:ff:86:44:8f:cd:6f:4b:99:4f:09:83:5d:b7:e9:b4:9a:79: 7c:d7:ed:f7:9d:dd:5d:f9:7e:88:6b:a9:de:ec:59:0c:bf:60: 78:98:dd:58 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUQ4MDExMC8GA1UEBRMoQTExNDdFODQ3QkNGRUVFQUREOUU4OUE5N0E4RDlGMzM2 NzlDQTdFMjAeFw0yNTA0MjUwNjA1MjJaFw0yNTA1MDIwNjA1MjJaMBgxFjAUBgNV BAMTDTY4MGIyNjIyLTYyOGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQltq1fpSgIIY/tEF1/VX4D1hF/yJItTkRsJddbB6VX+5YAYQVx9McLqD/2BGM +oi8JvAb81UQcYA4LJhRQOQJeyKMU7q4GNgZyjdD/P22l4JPjdnbKQM2qCnWRaar AC8APGhXgIVC/06pZgtiqyCF6YuD8N9zVYCe8UTt69C2qszfLTfMAJFMz8IyvE47 1lig2szX3u3FsIWWpWRsCnHx/qVKsX3hXSovWDYR8hwuVH2asB2p8EpbBI1Fi5LY FcHADBQEN2Ld4W4AiJaTSjuY5PDYn3Ay+f1tE5zrSWcLo9gzT+1lePRkI1oqvRWC nAvvEMnzMT0xquHhcqvk2PZtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoOR5MB9l AludWdfaMZUvuNuBVqEwHwYDVR0jBBgwFoAUoRR+hHvP7urdnompeo2fM2ecp+Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRDgwL0QyMjNDNUFFOTRD OTExRUY5MkNENzI1OEM0RjlBRTAyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3At SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1JSLWhIdlA3dXJkbm9tcGVvMmZNMmVjcC1JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB RDgwL0QyMjNDNUFFOTRDOTExRUY5MkNENzI1OEM0RjlBRTAyL29SUi1oSHZQN3Vy ZG5vbXBlbzJmTTJlY3AtSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG9Kvm8nMx5O68xWacDSpxiytlVNnt7h2KPHQER6RfcH3HcFWMS5/U7n Y3Pyy+F9aNOLKOLGY/KHgPkRv7jTULEKuePYRhC6LuZscENHzw74Pyvrsu7P6Y1T 76xkU+DvnioTzrCMpG9gcD5YoR/CMWcbOKzsZ8tWn8NZCdNbrZKvXsDHR9AIzN2S FLSGuHVNMSTmqOhi/GmaUyY+meGXJGMXm4x++nHnx1vEID8U+lKj23THTjmoPutL qEslOByuJ+gdaw9YIT+3Z7xFUy0F73DTFJUBdOlrWMT/hkSPzW9LmU8Jg1236bSa eXzX7fed3V35fohrqd7sWQy/YHiY3Vg= -----END CERTIFICATE-----Generated at Sat Apr 26 17:42:50 2025 by rpki-client