$ rpki-client -vvf rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft File: orn_7UcMW3HFLztks7btpBm-E7M.mft (raw, json) Hash identifier: k2Xn3aMeayvN/c0g43HSCqhtXIO4Ij2AujbZ/MSk0Wg= Subject key identifier: 18:DC:22:3A:7F:C6:69:D7:51:46:D4:5A:69:71:99:A0:09:8D:CB:27 Authority key identifier: A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 Certificate issuer: /CN=A91187C1/serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft Manifest number: 07 Signing time: Mon 07 Jul 2025 08:34:32 +0000 Manifest this update: Mon 07 Jul 2025 08:34:32 +0000 Manifest next update: Mon 14 Jul 2025 08:34:32 +0000 Files and hashes: 1: orn_7UcMW3HFLztks7btpBm-E7M.crl (hash: vxeII8bkljH4KSddWujcHdozycwRBBZD/dV8JXllKJg=) 2: C265A63A571211F092B99F2AC4F9AE02.roa (hash: mdIvnywtfDJvKSbbhgc4qSg7/SJGPr319lK/wnjqr9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Jul 2025 08:34:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91187C1, serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Validity Not Before: Jul 7 08:34:32 2025 GMT Not After : Jul 14 08:34:32 2025 GMT Subject: CN=686b8698-e77c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:45:c1:9f:c2:5b:95:74:cf:82:cd:f1:84:e8: 3f:11:71:fd:c1:13:ae:20:3f:fd:84:79:9c:5b:1b: 78:f8:3a:7c:b6:08:1a:c1:5a:ba:fa:ef:7c:1e:ed: b6:87:e1:de:ea:88:ff:8e:40:f0:49:f2:18:56:1f: 33:ef:f1:85:b1:f8:2f:57:4f:19:7c:53:38:7f:fe: 49:d9:fb:c6:db:09:60:fc:e4:30:65:d1:9a:b8:c7: b7:a4:4b:e2:be:2a:db:5f:68:e4:91:ac:ed:d5:4f: bc:00:bb:1d:55:26:6f:9e:fa:99:21:9a:3a:36:0f: aa:ef:a0:2f:92:6e:f1:80:ab:07:9d:74:47:35:58: 73:cc:85:a9:5c:f6:df:db:78:3a:d9:fd:42:90:45: a5:7a:7a:7e:4c:a5:c7:f3:d5:85:1c:b8:d3:8b:fe: c5:f3:d5:74:db:a4:28:5a:db:da:23:de:ef:8e:f8: 97:30:34:5f:4b:1c:7b:89:12:3d:e8:e5:74:c1:b6: 1f:db:f4:38:e7:46:f4:a1:57:ae:ab:ec:3e:80:69: 17:57:fa:66:cd:0f:ae:af:3e:08:b8:51:05:64:44: 9b:a8:82:9f:61:66:52:45:9e:f5:0d:5e:fb:cf:23: a7:b3:3d:b3:c8:da:e4:41:fc:62:f8:e5:4e:a3:0d: ec:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:DC:22:3A:7F:C6:69:D7:51:46:D4:5A:69:71:99:A0:09:8D:CB:27 X509v3 Authority Key Identifier: keyid:A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:e2:a7:8d:a7:4a:98:a4:60:55:6e:77:fb:71:d5:ac:19:71: 9e:b4:d6:df:0f:f4:21:d5:0a:dd:53:be:72:a5:f5:8a:a9:c2: 44:51:9a:4a:5f:ef:08:40:95:6c:88:8e:34:6c:13:65:76:55: 67:66:c4:6e:d8:52:6d:aa:94:4c:52:14:4e:dc:de:fe:e8:28: d8:b5:59:a9:58:05:45:c1:a3:dc:c8:fc:3f:10:9c:3f:4b:8a: f5:13:6e:0c:4e:74:48:bd:2f:d6:b6:9e:78:14:3c:06:25:dc: 74:90:f5:ca:db:16:6e:71:a1:88:fd:84:4c:b1:89:ca:d8:f0: 98:d3:c1:cd:58:ec:bc:08:04:fb:09:ec:d6:1f:78:be:c6:6c: 32:a7:00:10:5e:31:42:e5:a5:8a:25:8e:e1:f9:75:ac:ee:88: 5c:ff:b0:04:9e:4b:51:f3:b2:6a:f7:7d:70:5c:28:6e:d8:40: f2:97:cd:5a:26:fd:f1:ec:5f:96:d6:fb:05:fa:c2:36:fe:c4: 36:3e:c7:93:56:00:d8:57:6b:3a:5b:81:74:8f:f9:0f:f2:dd: 8b:7d:2d:54:3e:9a:b4:02:e8:f8:00:9d:3e:3e:ac:1e:70:83: 2c:14:6a:40:98:e4:ff:a4:f5:24:9e:24:15:86:c0:aa:08:57: 25:90:44:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODdDMTExMC8GA1UEBRMoQTJCOUZGRUQ0NzBDNUI3MUM1MkYzQjY0QjNCNkVEQTQx OUJFMTNCMzAeFw0yNTA3MDcwODM0MzJaFw0yNTA3MTQwODM0MzJaMBgxFjAUBgNV BAMTDTY4NmI4Njk4LWU3N2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDURcGfwluVdM+CzfGE6D8Rcf3BE64gP/2EeZxbG3j4Ony2CBrBWrr673we7baH 4d7qiP+OQPBJ8hhWHzPv8YWx+C9XTxl8Uzh//knZ+8bbCWD85DBl0Zq4x7ekS+K+ KttfaOSRrO3VT7wAux1VJm+e+pkhmjo2D6rvoC+SbvGAqweddEc1WHPMhalc9t/b eDrZ/UKQRaV6en5Mpcfz1YUcuNOL/sXz1XTbpCha29oj3u+O+JcwNF9LHHuJEj3o 5XTBth/b9DjnRvShV66r7D6AaRdX+mbND66vPgi4UQVkRJuogp9hZlJFnvUNXvvP I6ezPbPI2uRB/GL45U6jDewhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGNwiOn/G addRRtRaaXGZoAmNyycwHwYDVR0jBBgwFoAUorn/7UcMW3HFLztks7btpBm+E7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4N0MxLzI2MzFDOEI0NTcw QTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNIRkx6dGtzN2J0cEJtLUU3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb3JuXzdVY01XM0hGTHp0a3M3YnRwQm0tRTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 N0MxLzI2MzFDOEI0NTcwQTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNI Rkx6dGtzN2J0cEJtLUU3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALvip42nSpikYFVud/tx1awZcZ601t8P9CHVCt1TvnKl9YqpwkRRmkpf 7whAlWyIjjRsE2V2VWdmxG7YUm2qlExSFE7c3v7oKNi1WalYBUXBo9zI/D8QnD9L ivUTbgxOdEi9L9a2nngUPAYl3HSQ9crbFm5xoYj9hEyxicrY8JjTwc1Y7LwIBPsJ 7NYfeL7GbDKnABBeMULlpYoljuH5dazuiFz/sASeS1Hzsmr3fXBcKG7YQPKXzVom /fHsX5bW+wX6wjb+xDY+x5NWANhXazpbgXSP+Q/y3Yt9LVQ+mrQC6PgAnT4+rB5w gywUakCY5P+k9SSeJBWGwKoIVyWQRAU= -----END CERTIFICATE-----Generated at Mon Jul 7 23:10:32 2025 by rpki-client