$ rpki-client -vvf rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft File: Omhmsd88LltfrK7gwJkrvHiMXQo.mft (raw, json) Hash identifier: 2BWOIVExShgTiX+SA9kWvz87nxFak2pxjw3zJi/oyNc= Subject key identifier: 82:F3:38:46:9D:DC:AE:C3:1E:C3:6B:A8:05:3D:00:9C:7A:18:AF:4A Authority key identifier: 3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A Certificate issuer: /CN=A911A6D6/serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft Manifest number: 0170 Signing time: Sun 11 May 2025 02:44:57 +0000 Manifest this update: Sun 11 May 2025 02:44:57 +0000 Manifest next update: Sun 18 May 2025 02:44:57 +0000 Files and hashes: 1: Omhmsd88LltfrK7gwJkrvHiMXQo.crl (hash: ROjJAqsCgTYEK6tGQyzsJ4t8d7hsygenI7qebZrItxA=) 2: D4D3B47EA27811EE9C29A256C4F9AE02.roa (hash: QHRHGfrfRtZTCug8O+YvL4h2f3rUlXsvRTX9IxlC4gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:44:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A6D6, serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Validity Not Before: May 11 02:44:57 2025 GMT Not After : May 18 02:44:57 2025 GMT Subject: CN=68200f29-e686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:99:00:59:e1:d6:b8:80:10:20:2c:f3:0a:9f: b0:1f:d6:4f:e2:da:ba:a2:26:53:d2:7c:6e:f8:23: a6:44:94:24:81:78:6f:cb:80:fd:53:f8:bc:b5:97: bd:3a:bb:21:01:bd:a9:d5:9e:29:a1:b4:76:2a:d5: 50:3a:08:e1:4a:7e:2e:7c:c5:ed:92:90:25:c4:ab: 20:9c:45:f5:ed:f1:f1:cb:47:06:dd:9a:2a:e1:6e: 11:18:dc:ee:92:91:e4:ed:c1:70:ae:e8:2d:43:ec: f0:b7:11:ac:1c:92:cb:48:95:f0:19:57:97:5b:52: d5:25:72:f2:ab:98:13:72:f1:02:f6:85:3c:78:5b: 6e:d5:73:10:07:a5:84:26:ba:f7:80:a3:f3:ab:75: b5:30:36:bc:99:cd:d6:6f:95:fa:64:1b:7a:c5:04: 8d:30:5b:a8:77:4a:46:31:83:92:86:3f:d1:05:7f: 6f:93:23:3b:81:b3:7f:54:50:66:e1:2b:e6:9a:e1: 25:a4:28:34:b0:6a:3f:c9:79:3a:e0:ed:2c:00:cc: 73:d3:3f:83:10:7b:8e:b0:35:01:7c:3f:38:f6:c7: 99:95:90:37:16:7d:b9:2f:91:bb:b1:97:f9:d8:94: 51:f2:7f:b2:6e:f3:fb:95:8c:34:1d:60:9c:1b:6b: a0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:F3:38:46:9D:DC:AE:C3:1E:C3:6B:A8:05:3D:00:9C:7A:18:AF:4A X509v3 Authority Key Identifier: keyid:3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:bd:fa:9a:38:4f:16:3f:89:2a:36:b5:2a:9c:13:4f:f6:66: 34:42:76:db:f9:19:3e:25:de:4b:1a:2a:20:9e:c9:36:a5:84: 32:81:04:19:24:7f:5c:6c:7c:cf:06:2b:36:73:5a:b2:61:5e: 3b:00:70:58:4f:1b:32:0b:87:77:85:64:c5:15:41:de:1c:dd: 7d:47:bf:f0:b0:f0:57:04:7a:28:82:37:d8:f7:7c:91:a1:3c: c0:ed:5a:d5:29:f8:08:e0:0e:60:13:06:55:f9:fc:df:cc:58: ba:e1:84:61:c9:64:fb:1f:b6:12:42:e0:f2:f1:be:31:fa:25: 90:ec:02:7e:4d:df:74:ec:cc:c4:ed:9e:b6:cb:06:bc:bf:47: d5:54:28:30:0d:bd:ef:0a:74:cf:7b:e2:90:9e:cc:9d:54:4e: 6e:2a:f5:bc:5c:c8:3a:1c:d4:86:0e:61:79:2e:35:7f:78:7b: 48:f0:de:8a:55:a5:aa:13:46:82:45:39:1a:e9:ad:4b:a4:d1: cd:4f:68:e8:9b:e9:fa:1f:b3:69:55:1e:01:67:ea:a1:43:a6: 81:60:0d:92:67:e4:ed:c8:96:a3:68:ad:fa:77:1b:04:c0:d4: 49:5e:62:67:7a:e6:b2:b0:6e:67:21:77:ad:c8:46:a8:f0:d2: e8:3d:a5:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2RDYxMTAvBgNVBAUTKDNBNjg2NkIxREYzQzJFNUI1RkFDQUVFMEMwOTkyQkJD Nzg4QzVEMEEwHhcNMjUwNTExMDI0NDU3WhcNMjUwNTE4MDI0NDU3WjAYMRYwFAYD VQQDEw02ODIwMGYyOS1lNjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypkAWeHWuIAQICzzCp+wH9ZP4tq6oiZT0nxu+COmRJQkgXhvy4D9U/i8tZe9 OrshAb2p1Z4pobR2KtVQOgjhSn4ufMXtkpAlxKsgnEX17fHxy0cG3Zoq4W4RGNzu kpHk7cFwrugtQ+zwtxGsHJLLSJXwGVeXW1LVJXLyq5gTcvEC9oU8eFtu1XMQB6WE Jrr3gKPzq3W1MDa8mc3Wb5X6ZBt6xQSNMFuod0pGMYOShj/RBX9vkyM7gbN/VFBm 4SvmmuElpCg0sGo/yXk64O0sAMxz0z+DEHuOsDUBfD849seZlZA3Fn25L5G7sZf5 2JRR8n+ybvP7lYw0HWCcG2ugZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFILzOEad 3K7DHsNrqAU9AJx6GK9KMB8GA1UdIwQYMBaAFDpoZrHfPC5bX6yu4MCZK7x4jF0K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTZENi9ERTM0QzE3OEZD ODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExsdGZySzdnd0prcnZIaU1Y UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taG1zZDg4TGx0ZnJLN2d3SmtydkhpTVhRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTZENi9ERTM0QzE3OEZDODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExs dGZySzdnd0prcnZIaU1YUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTvfqaOE8WP4kqNrUqnBNP9mY0Qnbb+Rk+Jd5LGiognsk2pYQygQQZ JH9cbHzPBis2c1qyYV47AHBYTxsyC4d3hWTFFUHeHN19R7/wsPBXBHoogjfY93yR oTzA7VrVKfgI4A5gEwZV+fzfzFi64YRhyWT7H7YSQuDy8b4x+iWQ7AJ+Td907MzE 7Z62ywa8v0fVVCgwDb3vCnTPe+KQnsydVE5uKvW8XMg6HNSGDmF5LjV/eHtI8N6K VaWqE0aCRTka6a1LpNHNT2jom+n6H7NpVR4BZ+qhQ6aBYA2SZ+TtyJajaK36dxsE wNRJXmJneuaysG5nIXetyEao8NLoPaXA -----END CERTIFICATE-----Generated at Sun May 11 17:12:44 2025 by rpki-client