$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: e6DR3S6BB9jle/I0r8V96RU+LJiD9jaEYjhRYPwA3Cg= Subject key identifier: C5:C1:8C:40:9B:7E:18:07:38:FE:F0:6F:4E:46:22:CA:AC:FD:8B:F1 Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: 55 Signing time: Sat 05 Apr 2025 06:29:49 +0000 Manifest this update: Sat 05 Apr 2025 06:29:49 +0000 Manifest next update: Sat 12 Apr 2025 06:29:49 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: FGFlNHDj0uNOFiVxpcmfJtDFjff4cNFj2htuOc+2zJE=) 2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: Es9pKOD8mSWZed849uffE6lhUB5WDPjyB7dm14eKTpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80 Validity Not Before: Apr 5 06:29:49 2025 GMT Not After : Apr 12 06:29:49 2025 GMT Subject: CN=67f0cddd-4daf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:83:b3:20:91:cf:f7:15:51:68:a3:88:53:01: ce:e0:22:99:c8:e5:5f:50:64:3f:f8:78:7d:45:73: e7:31:dd:55:57:76:3d:29:05:25:a2:96:ad:47:20: 02:82:69:7b:17:c7:84:93:d7:53:8e:55:0f:53:ef: d0:61:a9:38:eb:e1:c7:33:ad:32:d8:62:64:be:f0: c9:fe:dd:e5:8e:fc:c6:73:9a:c8:cf:0f:98:bd:2a: 19:2b:9c:da:e1:ac:6d:12:60:05:98:2e:2b:28:90: af:72:50:3e:ee:b0:26:5b:91:26:b5:05:7e:d4:33: 45:b3:64:fd:12:7f:56:d2:78:8c:6b:7b:4d:51:b9: 20:c8:c0:4b:b1:a6:c0:32:49:5b:00:3b:9c:ca:9a: 01:cf:2b:0e:c0:73:12:a5:8c:4a:b5:ee:51:c9:26: 72:f0:ee:0b:a5:bc:78:69:e4:cc:a4:41:19:89:ec: 32:ba:a8:f1:a4:01:55:66:02:c4:6a:56:aa:d4:01: a6:9d:4c:2b:01:24:37:2d:d4:d7:8d:39:e0:52:75: 58:35:3d:7a:6c:24:5a:fe:74:1b:7b:81:2f:73:03: 22:6c:57:d3:44:e7:df:4c:0f:11:4d:84:8c:76:ad: a5:6c:48:9c:34:2b:58:e8:f7:be:74:f6:8d:bd:81: 7a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C1:8C:40:9B:7E:18:07:38:FE:F0:6F:4E:46:22:CA:AC:FD:8B:F1 X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:f8:7c:d0:40:7e:43:11:a9:bc:83:b8:46:b0:47:f1:34:d3: 8c:91:65:b2:94:ca:1a:f0:7c:f0:03:6a:8f:9f:4e:ae:d0:32: fd:d2:a6:ef:63:26:8d:04:cb:8c:32:fb:7f:a8:f8:fe:89:87: ea:4a:69:2c:6d:a4:49:50:ee:a1:e4:88:25:e0:45:3f:60:75: ed:4c:f9:1d:04:81:6d:01:c6:3f:aa:6b:17:6e:7a:00:78:95: 9e:d7:75:af:77:c1:a6:a7:b9:73:23:7b:6b:c6:92:2c:da:23: 0b:ce:b4:f9:76:80:30:b1:42:79:0f:47:96:af:41:88:ba:7e: 54:2f:32:b0:4f:ac:52:57:b0:d0:21:29:a2:e4:ac:a6:26:11: 15:2b:e6:e7:79:fc:45:8e:32:5b:5c:80:1f:e4:e3:9f:04:45: c9:a3:13:30:cc:d1:72:d7:1d:1a:74:1b:a8:31:cc:fc:18:17: 50:1a:54:1e:5b:78:e1:68:45:06:23:3c:67:84:b7:ec:88:5c: 6c:4b:39:a7:e3:11:11:4c:44:2c:7c:0a:87:93:31:e9:03:23: 8f:12:23:1a:77:e4:a3:73:69:5c:54:87:22:fd:a4:02:e2:b9: 6b:aa:4d:f8:39:2a:35:7f:0e:e5:c0:0d:cf:e9:36:97:5b:b7: a0:3a:27:b9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUQ4MDExMC8GA1UEBRMoQTExNDdFODQ3QkNGRUVFQUREOUU4OUE5N0E4RDlGMzM2 NzlDQTdFMjAeFw0yNTA0MDUwNjI5NDlaFw0yNTA0MTIwNjI5NDlaMBgxFjAUBgNV BAMTDTY3ZjBjZGRkLTRkYWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+g7Mgkc/3FVFoo4hTAc7gIpnI5V9QZD/4eH1Fc+cx3VVXdj0pBSWilq1HIAKC aXsXx4ST11OOVQ9T79BhqTjr4cczrTLYYmS+8Mn+3eWO/MZzmsjPD5i9KhkrnNrh rG0SYAWYLisokK9yUD7usCZbkSa1BX7UM0WzZP0Sf1bSeIxre01RuSDIwEuxpsAy SVsAO5zKmgHPKw7AcxKljEq17lHJJnLw7gulvHhp5MykQRmJ7DK6qPGkAVVmAsRq VqrUAaadTCsBJDct1NeNOeBSdVg1PXpsJFr+dBt7gS9zAyJsV9NE599MDxFNhIx2 raVsSJw0K1jo97509o29gXrJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxcGMQJt+ GAc4/vBvTkYiyqz9i/EwHwYDVR0jBBgwFoAUoRR+hHvP7urdnompeo2fM2ecp+Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRDgwL0QyMjNDNUFFOTRD OTExRUY5MkNENzI1OEM0RjlBRTAyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3At SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1JSLWhIdlA3dXJkbm9tcGVvMmZNMmVjcC1JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB RDgwL0QyMjNDNUFFOTRDOTExRUY5MkNENzI1OEM0RjlBRTAyL29SUi1oSHZQN3Vy ZG5vbXBlbzJmTTJlY3AtSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAz4fNBAfkMRqbyDuEawR/E004yRZbKUyhrwfPADao+fTq7QMv3Spu9j Jo0Ey4wy+3+o+P6Jh+pKaSxtpElQ7qHkiCXgRT9gde1M+R0EgW0Bxj+qaxduegB4 lZ7Xda93waanuXMje2vGkizaIwvOtPl2gDCxQnkPR5avQYi6flQvMrBPrFJXsNAh KaLkrKYmERUr5ud5/EWOMltcgB/k458ERcmjEzDM0XLXHRp0G6gxzPwYF1AaVB5b eOFoRQYjPGeEt+yIXGxLOafjERFMRCx8CoeTMekDI48SIxp35KNzaVxUhyL9pALi uWuqTfg5KjV/DuXADc/pNpdbt6A6J7k= -----END CERTIFICATE-----Generated at Sat Apr 5 12:25:02 2025 by rpki-client