$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: OYfqEAqjheAHPQwHucaXKU/X8BIp3TwPXxVPSGlN7jI= Subject key identifier: 7A:2F:50:73:EC:48:58:69:A3:DE:AA:FC:BA:60:17:47:B6:E3:A1:90 Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: 8B Signing time: Sat 19 Jul 2025 06:48:06 +0000 Manifest this update: Sat 19 Jul 2025 06:48:05 +0000 Manifest next update: Sat 26 Jul 2025 06:48:05 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: z0+Zwe88D45cd54DXRpgJ0B9Aigho/wxrN6SisnVpdM=) 2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: zOW380YmpQpMtSyWb7ghqrZ9YCinfgNDwAX0rgUwhPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: Jul 19 06:48:05 2025 GMT Not After : Jul 26 06:48:05 2025 GMT Subject: CN=687b3fa6-35f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:46:79:e0:78:79:a2:4f:6f:a0:34:94:ac:7e: b1:60:ad:52:f5:d1:fe:66:1c:ca:1d:24:7e:fd:93: 66:56:eb:a1:68:a7:94:a8:98:c7:52:f2:6f:9f:8f: ed:96:9f:57:37:9a:95:6e:d8:8c:c6:43:30:b8:4f: 23:89:b3:9e:57:53:fd:b7:d5:0b:6c:37:dd:bc:23: 4c:38:84:97:e6:56:a3:18:ff:bd:83:72:55:cc:ea: 45:3a:92:9c:8d:ad:95:a8:90:03:e1:40:56:c5:f1: 57:65:d5:85:72:c4:28:17:46:51:07:66:51:b3:a5: fd:d3:5e:89:69:a9:0e:21:ec:07:11:b6:c8:61:2a: c8:57:33:95:e7:16:cb:71:74:80:1a:25:c2:74:86: 33:3c:b8:73:d0:f9:83:9b:f5:93:d6:f2:21:ef:e8: 03:9f:79:1b:a2:3e:a6:7e:8a:9f:dd:27:97:61:5b: 1e:73:5c:d7:f6:89:f6:32:30:0c:23:24:27:6c:5b: 4a:19:73:97:21:51:2b:4f:f5:1d:51:bc:f2:6f:e2: f4:ba:b3:6a:20:f4:50:44:f2:8f:01:01:5c:af:1f: 77:7c:7e:76:3b:a2:d5:b6:df:03:25:e3:4e:82:17: 72:71:07:88:d1:c1:12:6b:65:c2:be:c2:44:43:ea: 03:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:2F:50:73:EC:48:58:69:A3:DE:AA:FC:BA:60:17:47:B6:E3:A1:90 X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:2c:f0:77:1a:76:3b:f7:79:68:5f:bc:b5:60:05:21:7f:e2: 83:a9:77:a6:42:f1:a7:d4:11:48:26:ce:4d:88:25:c1:09:b0: 3e:d1:7d:3f:ca:e8:df:85:76:b9:b9:ef:c8:48:2d:61:2c:fd: 3d:73:95:74:4b:f1:55:ca:18:79:57:d7:f1:e8:df:dc:f6:4b: 27:4f:bc:2c:dd:b5:60:65:ba:7e:66:fe:23:36:b9:8a:0e:2c: 4b:c7:97:01:14:7d:ad:78:e0:d6:a9:01:03:f3:d5:48:7f:08: b4:d9:33:f5:53:68:09:cd:9f:ac:86:e0:b5:6e:a0:25:80:d9: 9b:a1:2e:cb:6d:e9:6e:99:f4:81:3c:ef:a9:46:cb:c5:74:04: 29:55:2c:f2:c6:26:9f:e9:14:3e:14:93:20:e9:51:02:fc:6e: 29:e7:88:c3:4a:f0:02:5f:73:c3:5b:89:ad:3d:bb:b0:4b:f2: cc:e0:5d:7c:dc:b6:bd:dc:cc:00:2e:09:b1:5d:34:2e:91:cd: 59:41:dd:bc:8c:72:20:85:5f:7c:ed:85:c5:c4:b7:a4:d5:18: 68:00:ee:0f:24:26:fb:c6:ec:bc:5f:a1:ef:ab:94:90:68:38: 50:33:ad:39:0b:94:9a:ab:be:e1:0a:93:28:df:6a:fa:88:e5: b1:2d:b6:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFEODAxMTAvBgNVBAUTKEExMTQ3RTg0N0JDRkVFRUFERDlFODlBOTdBOEQ5RjMz Njc5Q0E3RTIwHhcNMjUwNzE5MDY0ODA1WhcNMjUwNzI2MDY0ODA1WjAYMRYwFAYD VQQDEw02ODdiM2ZhNi0zNWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0Z54Hh5ok9voDSUrH6xYK1S9dH+ZhzKHSR+/ZNmVuuhaKeUqJjHUvJvn4/t lp9XN5qVbtiMxkMwuE8jibOeV1P9t9ULbDfdvCNMOISX5lajGP+9g3JVzOpFOpKc ja2VqJAD4UBWxfFXZdWFcsQoF0ZRB2ZRs6X9016JaakOIewHEbbIYSrIVzOV5xbL cXSAGiXCdIYzPLhz0PmDm/WT1vIh7+gDn3kboj6mfoqf3SeXYVsec1zX9on2MjAM IyQnbFtKGXOXIVErT/UdUbzyb+L0urNqIPRQRPKPAQFcrx93fH52O6LVtt8DJeNO ghdycQeI0cESa2XCvsJEQ+oDxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHovUHPs SFhpo96q/LpgF0e246GQMB8GA1UdIwQYMBaAFKEUfoR7z+7q3Z6JqXqNnzNnnKfi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUQ4MC9EMjIzQzVBRTk0 QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1cmRub21wZW8yZk0yZWNw LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3AtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUQ4MC9EMjIzQzVBRTk0QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1 cmRub21wZW8yZk0yZWNwLUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOLPB3GnY793loX7y1YAUhf+KDqXemQvGn1BFIJs5NiCXBCbA+0X0/ yujfhXa5ue/ISC1hLP09c5V0S/FVyhh5V9fx6N/c9ksnT7ws3bVgZbp+Zv4jNrmK DixLx5cBFH2teODWqQED89VIfwi02TP1U2gJzZ+shuC1bqAlgNmboS7LbelumfSB PO+pRsvFdAQpVSzyxiaf6RQ+FJMg6VEC/G4p54jDSvACX3PDW4mtPbuwS/LM4F18 3La93MwALgmxXTQukc1ZQd28jHIghV987YXFxLek1RhoAO4PJCb7xuy8X6Hvq5SQ aDhQM605C5Saq77hCpMo32r6iOWxLbYe -----END CERTIFICATE-----Generated at Sun Jul 20 01:56:13 2025 by rpki-client