$ rpki-client -vvf rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft File: orn_7UcMW3HFLztks7btpBm-E7M.mft (raw, json) Hash identifier: aWwTueAx0FZQuQK8b+gp9LCNnwMbvAQ6HNJMh8bHhuI= Subject key identifier: 35:DA:C8:87:73:83:F7:20:68:14:2E:32:D7:4A:78:CA:BA:8C:25:9E Authority key identifier: A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 Certificate issuer: /CN=A91187C1/serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft Manifest number: 3B Signing time: Fri 17 Oct 2025 11:14:12 +0000 Manifest this update: Fri 17 Oct 2025 11:14:12 +0000 Manifest next update: Fri 24 Oct 2025 11:14:12 +0000 Files and hashes: 1: orn_7UcMW3HFLztks7btpBm-E7M.crl (hash: Hz/Qxt/GTJTNSxRbkET6DzEp3wXlkkm7NsImS8PZ2vA=) 2: C265A63A571211F092B99F2AC4F9AE02.roa (hash: mdIvnywtfDJvKSbbhgc4qSg7/SJGPr319lK/wnjqr9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:14:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91187C1, serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Validity Not Before: Oct 17 11:14:12 2025 GMT Not After : Oct 24 11:14:12 2025 GMT Subject: CN=68f22504-3452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:13:28:06:44:ae:1c:7a:8c:ce:cf:49:78:8d: 36:5b:ed:79:f7:cf:78:89:cd:3f:93:d4:7b:28:b8: 70:76:86:cc:18:de:68:d9:d7:af:02:2c:20:53:19: 61:28:bd:7c:73:14:32:9f:cb:c9:f0:06:57:7c:17: ba:ab:25:e1:9d:9c:df:85:38:37:d1:e9:e5:36:12: bb:aa:c5:83:52:7a:5e:60:38:5d:09:e7:21:e2:cd: ee:77:3b:5e:bd:8a:83:b5:aa:a7:fc:54:2c:ff:80: cb:d3:03:4a:95:4b:0f:48:9c:94:d2:15:0e:ab:28: 8a:64:6e:8f:31:9d:35:50:6d:50:df:71:df:57:cf: ef:f5:34:8d:68:da:06:2c:b6:d5:52:9b:75:0b:f0: f3:08:4d:35:b0:07:1b:3b:93:6b:28:de:17:25:09: 4c:63:40:e2:51:e4:dc:c4:49:1f:b3:4f:14:6f:87: c3:d0:e8:40:7c:f7:7a:7a:17:4a:e0:32:c3:49:7a: 78:3b:3b:31:37:dc:78:5c:6c:9a:84:b4:69:f2:20: 7e:63:d4:0c:fb:39:97:e2:ca:52:68:2e:b9:39:87: f1:20:e0:a4:b8:c9:3c:93:0e:73:88:42:a2:0d:26: 9d:29:eb:7b:ac:66:d6:05:05:25:30:c3:74:dc:33: d6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:DA:C8:87:73:83:F7:20:68:14:2E:32:D7:4A:78:CA:BA:8C:25:9E X509v3 Authority Key Identifier: keyid:A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:90:c4:33:77:54:55:a4:3b:7f:de:7a:09:ef:77:d4:85:b8: 06:1c:84:0c:46:ef:60:7e:d2:fe:14:de:d2:91:87:0a:3a:30: c1:28:0c:3c:41:a2:9d:2d:fb:e9:9b:43:da:bd:c4:97:96:4d: fe:b6:2f:29:e1:3d:ba:a9:db:96:8c:c2:3e:18:bd:51:58:a3: eb:41:1e:5d:71:87:92:28:9d:47:4a:0b:33:45:5c:1e:fe:42: 0b:f3:25:40:b6:f4:30:1d:18:ea:fb:d9:bd:3d:4d:62:32:43: cb:f8:24:9c:e8:e1:ed:ae:00:3c:4d:2d:c1:9d:22:4c:8d:2c: f4:07:9a:05:6b:53:11:2e:c9:a7:34:9e:cb:ff:98:ac:59:8d: b2:bb:01:f9:90:2f:fa:8d:4e:6a:23:14:1b:2d:13:19:91:6e: b4:45:56:0d:d8:92:c0:7a:2d:a0:f6:52:78:5e:35:50:ca:6e: fb:b7:ae:09:67:95:72:1e:52:bc:d4:89:17:d5:87:9c:20:e1: 40:c2:e9:54:da:1f:fd:a8:3f:36:ec:49:98:86:fd:c5:01:e4: 35:b0:29:a6:bb:e6:e7:91:be:48:02:92:94:4f:e0:34:2d:b6: 74:14:7a:16:0d:6b:62:0b:94:e1:00:aa:a1:21:dc:d8:20:0b: 46:6e:de:a4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODdDMTExMC8GA1UEBRMoQTJCOUZGRUQ0NzBDNUI3MUM1MkYzQjY0QjNCNkVEQTQx OUJFMTNCMzAeFw0yNTEwMTcxMTE0MTJaFw0yNTEwMjQxMTE0MTJaMBgxFjAUBgNV BAMTDTY4ZjIyNTA0LTM0NTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOEygGRK4ceozOz0l4jTZb7Xn3z3iJzT+T1HsouHB2hswY3mjZ168CLCBTGWEo vXxzFDKfy8nwBld8F7qrJeGdnN+FODfR6eU2EruqxYNSel5gOF0J5yHize53O169 ioO1qqf8VCz/gMvTA0qVSw9InJTSFQ6rKIpkbo8xnTVQbVDfcd9Xz+/1NI1o2gYs ttVSm3UL8PMITTWwBxs7k2so3hclCUxjQOJR5NzESR+zTxRvh8PQ6EB893p6F0rg MsNJeng7OzE33HhcbJqEtGnyIH5j1Az7OZfiylJoLrk5h/Eg4KS4yTyTDnOIQqIN Jp0p63usZtYFBSUww3TcM9YVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNdrIh3OD 9yBoFC4y10p4yrqMJZ4wHwYDVR0jBBgwFoAUorn/7UcMW3HFLztks7btpBm+E7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4N0MxLzI2MzFDOEI0NTcw QTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNIRkx6dGtzN2J0cEJtLUU3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb3JuXzdVY01XM0hGTHp0a3M3YnRwQm0tRTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 N0MxLzI2MzFDOEI0NTcwQTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNI Rkx6dGtzN2J0cEJtLUU3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADKQxDN3VFWkO3/eegnvd9SFuAYchAxG72B+0v4U3tKRhwo6MMEoDDxB op0t++mbQ9q9xJeWTf62LynhPbqp25aMwj4YvVFYo+tBHl1xh5IonUdKCzNFXB7+ QgvzJUC29DAdGOr72b09TWIyQ8v4JJzo4e2uADxNLcGdIkyNLPQHmgVrUxEuyac0 nsv/mKxZjbK7AfmQL/qNTmojFBstExmRbrRFVg3YksB6LaD2UnheNVDKbvu3rgln lXIeUrzUiRfVh5wg4UDC6VTaH/2oPzbsSZiG/cUB5DWwKaa75ueRvkgCkpRP4DQt tnQUehYNa2ILlOEAqqEh3NggC0Zu3qQ= -----END CERTIFICATE-----Generated at Sat Oct 18 23:39:01 2025 by rpki-client