$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: Pp5PZZcC375bcDS8j/VdoQT/JUT6GZfSzg7EuVxEaWk= Subject key identifier: 68:95:1D:E8:05:72:BC:59:82:DB:30:4F:69:05:2F:56:E1:E1:DC:E4 Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: 93 Signing time: Sun 03 Aug 2025 06:50:16 +0000 Manifest this update: Sun 03 Aug 2025 06:50:16 +0000 Manifest next update: Sun 10 Aug 2025 06:50:16 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: H59fNw5DBjzChGLCNd9ywBZSHIq7oUCfyA03B32JLMs=) 2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: zOW380YmpQpMtSyWb7ghqrZ9YCinfgNDwAX0rgUwhPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 06:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: Aug 3 06:50:16 2025 GMT Not After : Aug 10 06:50:16 2025 GMT Subject: CN=688f06a8-31c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7a:b4:3a:c2:cb:3f:1f:14:66:2d:3a:dd:91: 32:03:d8:f5:48:a1:c7:22:1a:a8:4a:50:f0:28:a5: 67:9e:8a:76:75:65:56:bd:43:b9:b4:45:a3:39:64: a3:af:3a:ff:9c:0e:25:df:8c:9e:7b:21:e7:e5:98: 4f:65:f9:dd:39:06:2b:5a:3d:ae:aa:f7:68:d2:29: 1a:c2:f7:a0:0c:ad:65:45:2e:e6:5c:b6:87:a8:ca: 50:6c:39:1d:df:de:72:52:8d:1a:37:08:c1:0a:fb: 70:c1:6e:8b:75:89:5c:36:42:46:3a:3e:94:b8:75: 58:56:2f:9b:c3:ff:63:ec:dd:85:22:7b:45:ff:bc: a1:ae:56:cd:27:02:03:eb:ad:f9:aa:82:70:79:6d: 81:84:0f:8f:3d:4f:43:df:95:d2:3e:37:c9:4f:6b: ee:97:00:71:03:c9:ad:e9:4c:60:55:b5:a8:6c:d3: cd:a1:12:2f:3e:77:1d:d4:5f:9c:8c:7b:c8:23:34: b3:ff:9f:3b:38:76:ea:43:4f:d3:1e:07:a2:90:c9: c6:18:09:58:c6:cf:22:07:b1:f8:d1:a6:d0:7d:f7: df:1f:43:2e:af:08:15:be:85:dc:12:e0:2f:72:9e: a3:f5:e8:31:d8:84:f5:15:c6:c0:ef:25:ed:45:e7: 76:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:95:1D:E8:05:72:BC:59:82:DB:30:4F:69:05:2F:56:E1:E1:DC:E4 X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:72:64:70:f4:63:5b:a3:07:38:e5:65:d6:d0:9e:33:16:1c: 7a:bd:74:f8:77:a8:e9:5d:82:a6:6f:55:7b:60:b6:6d:05:16: 04:90:da:9b:7f:67:c6:5f:66:c0:05:3d:58:70:b3:05:02:a3: ca:1b:b1:be:9f:ae:fe:6c:7d:37:90:6e:1a:4f:ca:58:d2:84: 8b:84:3f:9d:47:a5:90:52:7c:36:fa:24:2f:bc:ff:e7:6e:62: 90:af:c5:07:09:c6:e2:9f:28:bc:7e:7a:6c:85:a8:ad:7c:8e: 97:c4:ee:4c:06:f4:82:55:92:50:e9:60:87:89:0e:ea:48:e2: 09:8c:ad:60:6a:74:0d:42:2f:55:32:73:a6:33:ef:24:4d:d1: aa:dc:37:6c:22:12:c9:64:76:fc:ec:1b:3c:d2:99:5f:bd:79: 8d:47:63:06:ac:31:ac:41:78:ef:51:9e:fb:e5:97:49:c5:ea: 85:6f:89:67:db:e4:6f:1f:98:21:e6:40:80:f1:f4:45:36:53: a6:83:2b:08:3c:71:db:35:9d:fc:41:c7:e3:94:b2:e6:da:df: 78:c3:fe:f9:1c:79:72:2c:48:22:e9:4f:03:01:25:26:37:ab: b3:87:38:f1:70:71:c8:7e:2b:86:2d:44:f5:b4:ac:e1:e7:61: 87:eb:4f:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFEODAxMTAvBgNVBAUTKEExMTQ3RTg0N0JDRkVFRUFERDlFODlBOTdBOEQ5RjMz Njc5Q0E3RTIwHhcNMjUwODAzMDY1MDE2WhcNMjUwODEwMDY1MDE2WjAYMRYwFAYD VQQDEw02ODhmMDZhOC0zMWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Xq0OsLLPx8UZi063ZEyA9j1SKHHIhqoSlDwKKVnnop2dWVWvUO5tEWjOWSj rzr/nA4l34yeeyHn5ZhPZfndOQYrWj2uqvdo0ikawvegDK1lRS7mXLaHqMpQbDkd 395yUo0aNwjBCvtwwW6LdYlcNkJGOj6UuHVYVi+bw/9j7N2FIntF/7yhrlbNJwID 6635qoJweW2BhA+PPU9D35XSPjfJT2vulwBxA8mt6UxgVbWobNPNoRIvPncd1F+c jHvIIzSz/587OHbqQ0/THgeikMnGGAlYxs8iB7H40abQffffH0MurwgVvoXcEuAv cp6j9egx2IT1FcbA7yXtRed2qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGiVHegF crxZgtswT2kFL1bh4dzkMB8GA1UdIwQYMBaAFKEUfoR7z+7q3Z6JqXqNnzNnnKfi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUQ4MC9EMjIzQzVBRTk0 QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1cmRub21wZW8yZk0yZWNw LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3AtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUQ4MC9EMjIzQzVBRTk0QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1 cmRub21wZW8yZk0yZWNwLUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkcmRw9GNbowc45WXW0J4zFhx6vXT4d6jpXYKmb1V7YLZtBRYEkNqb f2fGX2bABT1YcLMFAqPKG7G+n67+bH03kG4aT8pY0oSLhD+dR6WQUnw2+iQvvP/n bmKQr8UHCcbinyi8fnpshaitfI6XxO5MBvSCVZJQ6WCHiQ7qSOIJjK1ganQNQi9V MnOmM+8kTdGq3DdsIhLJZHb87Bs80plfvXmNR2MGrDGsQXjvUZ775ZdJxeqFb4ln 2+RvH5gh5kCA8fRFNlOmgysIPHHbNZ38QcfjlLLm2t94w/75HHlyLEgi6U8DASUm N6uzhzjxcHHIfiuGLUT1tKzh52GH60+M -----END CERTIFICATE-----Generated at Mon Aug 4 14:59:22 2025 by rpki-client