$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: +S2Pv+d7VVlt7fM9KAr/DFwndCOfIQRrFQZzLhjblIc= Subject key identifier: C1:BE:FC:76:94:DE:B8:BB:06:C6:69:8C:34:E7:DC:6D:32:DD:D4:06 Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: C1 Signing time: Mon 03 Nov 2025 05:55:09 +0000 Manifest this update: Mon 03 Nov 2025 05:55:08 +0000 Manifest next update: Mon 10 Nov 2025 05:55:08 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: xDiTTUhVSbwM9AT4OUtdmF44vaiYH3g91VNjzKRgHn0=) 2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: zOW380YmpQpMtSyWb7ghqrZ9YCinfgNDwAX0rgUwhPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: Nov 3 05:55:08 2025 GMT Not After : Nov 10 05:55:08 2025 GMT Subject: CN=690843bc-e3ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:19:2b:65:c9:66:82:56:d2:85:d8:f5:81:ad: 37:21:e3:2d:56:1f:87:ae:d5:76:d9:cb:78:6a:48: 53:1b:65:0e:85:29:25:a8:0f:e8:fd:7c:38:3c:2d: f2:8f:af:5b:49:ff:ad:b6:1c:03:b8:ae:61:e2:11: d2:bb:ff:9b:b5:78:69:bc:85:15:92:f3:bc:27:c2: b2:1f:52:33:21:a7:41:73:e4:c2:6d:bc:3a:d3:be: 4b:e5:cb:82:8c:b8:a1:a1:b7:81:de:8b:34:12:5f: 64:4a:63:ab:e4:78:91:e4:98:5f:af:d0:aa:d7:3f: 37:8d:a5:fd:9e:2f:bf:1b:f0:1e:27:b3:e7:59:ce: fd:c1:2a:01:9a:18:41:7a:97:ce:c2:eb:be:c4:12: c5:74:02:29:7c:39:fe:d4:43:ea:f1:e8:1f:c8:23: 39:65:86:bd:9e:87:30:bb:75:6f:e4:83:1a:0d:ff: 3e:31:a3:dc:bf:53:0b:b2:f7:04:d8:3b:c0:fb:29: 75:52:56:4d:6f:7e:d1:f7:23:2a:a8:25:f4:74:d9: 51:a8:f3:d2:c9:89:0c:4c:18:7e:a3:f1:9d:46:b0: 73:cb:45:b8:87:5d:99:f9:69:84:20:83:46:46:fd: e1:b0:52:b5:a4:da:62:7c:a5:8c:b9:a0:78:82:5a: e3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:BE:FC:76:94:DE:B8:BB:06:C6:69:8C:34:E7:DC:6D:32:DD:D4:06 X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:b0:62:fc:49:f7:7f:30:90:6e:4b:d9:03:0c:bd:16:af:eb: 37:c2:2c:12:ec:20:32:ae:77:e7:c8:15:a3:6a:c2:9d:37:8b: 53:a6:d5:32:f7:42:f3:3f:70:d4:cc:f4:f6:b6:ed:a6:29:c5: 92:c4:d6:72:0b:e0:d3:c2:ab:b1:db:d7:82:c1:18:17:aa:38: 0f:54:25:f2:70:46:9b:b2:67:ca:e1:80:77:97:a0:d8:a7:e4: 6e:d4:29:86:56:0a:08:08:85:d7:c5:aa:b8:3f:53:77:4f:5b: a6:dd:05:15:d7:bc:c2:46:df:3c:63:f2:ac:e2:7b:26:2e:81: 73:f1:63:79:43:63:55:04:88:9b:5b:b4:f8:5e:50:4f:9b:e7: 51:ce:ec:b7:74:c9:17:39:67:42:ee:c5:ff:04:0b:2a:29:4d: 77:0b:a6:1e:64:43:43:5f:ea:97:cd:83:5d:e8:6c:26:24:09: 9f:50:0c:31:6d:f0:c2:02:d8:cc:6b:6c:fc:e0:a5:26:45:46: 07:2b:4f:47:08:04:81:77:03:cd:b2:0e:62:a4:1b:d5:84:b6: 25:b2:c4:f4:2e:e9:9a:6a:81:44:ec:22:82:49:1f:5a:99:e1: 9e:ca:86:db:bd:d0:6d:ef:60:95:41:09:9f:31:7b:76:b5:93: 2b:6b:52:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFEODAxMTAvBgNVBAUTKEExMTQ3RTg0N0JDRkVFRUFERDlFODlBOTdBOEQ5RjMz Njc5Q0E3RTIwHhcNMjUxMTAzMDU1NTA4WhcNMjUxMTEwMDU1NTA4WjAYMRYwFAYD VQQDEw02OTA4NDNiYy1lM2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhkrZclmglbShdj1ga03IeMtVh+HrtV22ct4akhTG2UOhSklqA/o/Xw4PC3y j69bSf+tthwDuK5h4hHSu/+btXhpvIUVkvO8J8KyH1IzIadBc+TCbbw6075L5cuC jLihobeB3os0El9kSmOr5HiR5Jhfr9Cq1z83jaX9ni+/G/AeJ7PnWc79wSoBmhhB epfOwuu+xBLFdAIpfDn+1EPq8egfyCM5ZYa9nocwu3Vv5IMaDf8+MaPcv1MLsvcE 2DvA+yl1UlZNb37R9yMqqCX0dNlRqPPSyYkMTBh+o/GdRrBzy0W4h12Z+WmEIING Rv3hsFK1pNpifKWMuaB4glrj5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMG+/HaU 3ri7BsZpjDTn3G0y3dQGMB8GA1UdIwQYMBaAFKEUfoR7z+7q3Z6JqXqNnzNnnKfi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUQ4MC9EMjIzQzVBRTk0 QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1cmRub21wZW8yZk0yZWNw LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3AtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUQ4MC9EMjIzQzVBRTk0QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1 cmRub21wZW8yZk0yZWNwLUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3sGL8Sfd/MJBuS9kDDL0Wr+s3wiwS7CAyrnfnyBWjasKdN4tTptUy 90LzP3DUzPT2tu2mKcWSxNZyC+DTwqux29eCwRgXqjgPVCXycEabsmfK4YB3l6DY p+Ru1CmGVgoICIXXxaq4P1N3T1um3QUV17zCRt88Y/Ks4nsmLoFz8WN5Q2NVBIib W7T4XlBPm+dRzuy3dMkXOWdC7sX/BAsqKU13C6YeZENDX+qXzYNd6GwmJAmfUAwx bfDCAtjMa2z84KUmRUYHK09HCASBdwPNsg5ipBvVhLYlssT0LumaaoFE7CKCSR9a meGeyobbvdBt72CVQQmfMXt2tZMra1K5 -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:16 2025 by rpki-client