$ rpki-client -vvf rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft File: Omhmsd88LltfrK7gwJkrvHiMXQo.mft (raw, json) Hash identifier: ef9alCo6DbUFsyVgi8KAPri0gVAkuq0gfRjBwJ/hS8Y= Subject key identifier: 1F:11:7E:11:B5:62:EB:C2:0D:D1:AE:D1:C6:66:A8:67:24:19:B4:06 Authority key identifier: 3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A Certificate issuer: /CN=A911A6D6/serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Certificate serial: 01A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft Manifest number: 01A4 Signing time: Sat 23 Aug 2025 03:22:35 +0000 Manifest this update: Sat 23 Aug 2025 03:22:35 +0000 Manifest next update: Sat 30 Aug 2025 03:22:35 +0000 Files and hashes: 1: Omhmsd88LltfrK7gwJkrvHiMXQo.crl (hash: 47Fa4IkHo6JRC9FYKRhGuTM/gNZZiUU8ZkaGKm+om90=) 2: D4D3B47EA27811EE9C29A256C4F9AE02.roa (hash: QHRHGfrfRtZTCug8O+YvL4h2f3rUlXsvRTX9IxlC4gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A6D6, serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Validity Not Before: Aug 23 03:22:35 2025 GMT Not After : Aug 30 03:22:35 2025 GMT Subject: CN=68a933fb-bf9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:99:86:86:ef:74:15:b9:40:73:3b:0a:bc:16: 74:11:e1:e1:ed:5f:35:62:88:26:c5:ac:9d:34:90: cc:60:01:e0:93:d4:a3:cc:a8:06:83:76:62:e3:dc: 87:ff:75:be:17:26:6d:d3:d4:a6:44:6f:6d:13:d5: 0d:ab:03:6e:59:cf:5a:42:70:cf:0a:a6:83:a9:fe: 1e:72:fe:35:8a:d3:e5:0f:07:0f:42:b4:da:c4:5d: a6:71:81:e4:14:ed:fc:cb:1a:0d:1b:49:ec:db:d7: 7f:44:92:21:8f:c3:6d:11:1a:32:2b:ba:23:77:c1: 03:2e:dd:89:d9:90:c6:20:d4:51:10:f8:49:a6:27: 63:03:0e:84:48:fa:70:c4:0a:d7:e1:8f:b3:4b:d4: 72:4c:91:be:87:73:87:5d:9f:b7:f4:98:7d:87:67: 9c:08:25:d3:e7:fb:3a:85:93:bc:c0:5b:99:4e:03: cb:74:95:78:1f:2e:92:04:c2:6b:9e:ee:3a:04:55: 9a:4f:6f:36:e5:6b:96:00:69:69:5f:0a:c0:ce:5d: 9a:8f:58:f8:91:68:40:fd:d6:00:6d:fe:49:06:3f: 6c:50:62:8e:68:84:ec:1e:5d:02:74:5f:b2:2d:45: 91:e1:1a:a0:f4:41:fa:9f:da:4f:63:6f:ac:bf:d9: 7b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:11:7E:11:B5:62:EB:C2:0D:D1:AE:D1:C6:66:A8:67:24:19:B4:06 X509v3 Authority Key Identifier: keyid:3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:2f:07:33:84:b1:e7:65:ee:32:a1:18:65:07:4f:e0:0c:e5: 46:c2:0f:1e:98:b2:b4:e0:a7:ff:b2:db:8d:42:f9:25:6f:90: a2:3f:bf:21:89:cf:e0:12:d0:72:f4:37:0e:d6:f5:cd:fd:70: 70:dc:56:39:fe:0a:f7:33:b6:2e:6c:a7:fe:05:14:39:02:5e: 41:e2:ee:8e:1a:cf:f6:87:7d:19:96:e4:36:e5:37:3c:d1:3d: 60:ce:fa:69:71:6f:da:3c:2b:cc:8f:dd:98:94:48:7a:f8:94: ab:25:f0:60:e7:a4:df:fa:6a:80:07:f1:e9:b5:8e:67:dd:5f: c1:4f:1d:b9:49:e1:1f:e6:b1:11:c5:9d:20:90:41:4c:0c:c1: c2:61:80:a9:58:f8:cb:1e:bc:44:1a:52:49:ed:d2:1b:2c:49: f9:1c:e3:3d:a3:71:44:ef:c6:4a:52:de:b0:a4:b0:c7:58:ea: 96:74:74:5b:53:72:07:6f:4d:ca:25:ab:90:3d:19:73:43:87: 0f:54:4b:4f:ec:2d:c4:be:7b:26:cb:b1:67:a6:8c:af:f0:63: b2:d2:dd:7c:14:f9:71:4b:2a:a9:ce:0e:a9:e0:da:fa:6b:ad: 6a:37:f8:7e:4b:04:89:da:56:1b:76:00:c1:e8:4d:dc:72:71: 73:42:38:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2RDYxMTAvBgNVBAUTKDNBNjg2NkIxREYzQzJFNUI1RkFDQUVFMEMwOTkyQkJD Nzg4QzVEMEEwHhcNMjUwODIzMDMyMjM1WhcNMjUwODMwMDMyMjM1WjAYMRYwFAYD VQQDEw02OGE5MzNmYi1iZjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5pmGhu90FblAczsKvBZ0EeHh7V81YogmxaydNJDMYAHgk9SjzKgGg3Zi49yH /3W+FyZt09SmRG9tE9UNqwNuWc9aQnDPCqaDqf4ecv41itPlDwcPQrTaxF2mcYHk FO38yxoNG0ns29d/RJIhj8NtERoyK7ojd8EDLt2J2ZDGINRREPhJpidjAw6ESPpw xArX4Y+zS9RyTJG+h3OHXZ+39Jh9h2ecCCXT5/s6hZO8wFuZTgPLdJV4Hy6SBMJr nu46BFWaT2825WuWAGlpXwrAzl2aj1j4kWhA/dYAbf5JBj9sUGKOaITsHl0CdF+y LUWR4Rqg9EH6n9pPY2+sv9l7YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8RfhG1 YuvCDdGu0cZmqGckGbQGMB8GA1UdIwQYMBaAFDpoZrHfPC5bX6yu4MCZK7x4jF0K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTZENi9ERTM0QzE3OEZD ODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExsdGZySzdnd0prcnZIaU1Y UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taG1zZDg4TGx0ZnJLN2d3SmtydkhpTVhRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTZENi9ERTM0QzE3OEZDODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExs dGZySzdnd0prcnZIaU1YUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByLwczhLHnZe4yoRhlB0/gDOVGwg8emLK04Kf/stuNQvklb5CiP78h ic/gEtBy9DcO1vXN/XBw3FY5/gr3M7YubKf+BRQ5Al5B4u6OGs/2h30ZluQ25Tc8 0T1gzvppcW/aPCvMj92YlEh6+JSrJfBg56Tf+mqAB/HptY5n3V/BTx25SeEf5rER xZ0gkEFMDMHCYYCpWPjLHrxEGlJJ7dIbLEn5HOM9o3FE78ZKUt6wpLDHWOqWdHRb U3IHb03KJauQPRlzQ4cPVEtP7C3Evnsmy7Fnpoyv8GOy0t18FPlxSyqpzg6p4Nr6 a61qN/h+SwSJ2lYbdgDB6E3ccnFzQjgJ -----END CERTIFICATE-----Generated at Sat Aug 23 23:53:12 2025 by rpki-client