$ rpki-client -vvf rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft File: Omhmsd88LltfrK7gwJkrvHiMXQo.mft (raw, json) Hash identifier: 5JmwcaJcwBrzdjZdKSQDbdW3BJo8rYUvWPUTMPbi7ig= Subject key identifier: 87:6A:4F:DE:E9:49:54:17:74:71:32:8D:37:00:D7:9E:EF:43:67:F0 Authority key identifier: 3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A Certificate issuer: /CN=A911A6D6/serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Certificate serial: 018C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft Manifest number: 0189 Signing time: Tue 01 Jul 2025 03:58:12 +0000 Manifest this update: Tue 01 Jul 2025 03:58:11 +0000 Manifest next update: Tue 08 Jul 2025 03:58:11 +0000 Files and hashes: 1: Omhmsd88LltfrK7gwJkrvHiMXQo.crl (hash: H1I9hf8/elOK8S2Yvcx23h54PSRYYTlt8W9hwCPFaKQ=) 2: D4D3B47EA27811EE9C29A256C4F9AE02.roa (hash: QHRHGfrfRtZTCug8O+YvL4h2f3rUlXsvRTX9IxlC4gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:58:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A6D6, serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Validity Not Before: Jul 1 03:58:11 2025 GMT Not After : Jul 8 03:58:11 2025 GMT Subject: CN=68635cd4-4d5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:c1:e3:aa:b9:dc:66:29:2f:c1:ce:ba:e2:ee: 2a:70:f8:2e:1e:68:71:4e:75:55:e4:b7:a7:b0:2d: e5:a7:a2:0f:83:0c:8d:a2:23:e3:55:b9:40:94:f8: 66:98:3e:44:f4:64:04:b4:f0:87:a3:b9:eb:c3:b5: ae:a6:3e:bd:d6:f2:f1:3d:2c:58:4a:ff:bb:4c:a8: bf:ee:a4:af:6f:04:2b:87:b9:98:0f:58:78:1d:17: 08:d8:ff:2a:1f:f4:a6:75:08:81:53:37:e6:70:18: c5:08:87:f4:4a:94:7e:c8:94:24:27:3e:a7:26:5c: b4:68:8f:66:1c:a6:e6:c3:35:4d:c3:7d:9b:bd:db: 81:2d:2d:34:80:eb:24:59:8b:40:76:76:5a:55:17: 92:dc:1c:bc:37:c7:34:e7:c7:a1:1b:d6:36:fa:87: d7:b7:00:58:01:c8:53:5c:59:9d:10:f2:71:52:f3: 29:41:69:48:82:09:42:66:00:ed:2f:3b:f8:4f:19: 04:0d:7c:09:fd:2d:ac:a7:07:34:05:a6:63:e7:10: f5:32:b7:96:ba:ee:10:43:d1:ed:6b:45:57:0c:05: 02:f8:42:28:d9:dc:91:01:9f:45:28:15:d7:9f:90: 01:57:60:a1:37:c9:1e:52:bd:d6:d2:00:eb:db:68: 27:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:6A:4F:DE:E9:49:54:17:74:71:32:8D:37:00:D7:9E:EF:43:67:F0 X509v3 Authority Key Identifier: keyid:3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:1f:f1:f8:02:8b:01:1a:e1:ba:8c:1b:e7:17:b9:d9:5b:0e: 1e:7c:3f:e9:1f:f2:a0:1f:b0:d8:cf:e2:7f:ec:84:12:38:c4: 19:76:63:24:f2:6f:1b:2c:56:68:7f:89:38:28:45:61:18:ad: 26:6e:73:5f:df:e9:f1:27:ca:af:9a:d5:c7:1d:d1:bb:29:fb: f0:ed:fe:3f:eb:b8:b1:de:ac:b2:e7:9c:78:51:dd:58:fa:ec: b1:0f:a6:a1:4d:fd:b8:09:18:ab:38:5a:7c:92:23:f4:a4:46: 00:fa:fa:60:de:44:5f:5f:bc:35:ed:96:ae:ea:7d:50:1a:6f: 85:ee:cf:37:94:70:a2:8e:8d:39:f4:a5:46:17:23:0a:50:22: 3b:63:82:ce:1d:8b:ef:2b:b5:a6:1f:ed:9d:4e:91:61:6e:1e: d5:78:d4:6d:bb:c7:e5:09:f9:63:b8:e6:6f:56:21:0f:bd:36: 42:ab:ca:31:aa:b3:62:a1:ea:83:07:8f:c3:78:65:dc:ed:77: 18:97:c6:2b:dd:87:74:48:a4:f1:e6:8e:e3:65:14:21:6e:fc: b3:68:32:55:db:42:6e:58:a8:c8:eb:ad:90:00:fe:09:4a:01: 46:f4:27:5f:37:c1:a0:25:58:20:8c:d6:71:54:7b:4d:05:5f: 3b:32:2d:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2RDYxMTAvBgNVBAUTKDNBNjg2NkIxREYzQzJFNUI1RkFDQUVFMEMwOTkyQkJD Nzg4QzVEMEEwHhcNMjUwNzAxMDM1ODExWhcNMjUwNzA4MDM1ODExWjAYMRYwFAYD VQQDEw02ODYzNWNkNC00ZDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5cHjqrncZikvwc664u4qcPguHmhxTnVV5LensC3lp6IPgwyNoiPjVblAlPhm mD5E9GQEtPCHo7nrw7Wupj691vLxPSxYSv+7TKi/7qSvbwQrh7mYD1h4HRcI2P8q H/SmdQiBUzfmcBjFCIf0SpR+yJQkJz6nJly0aI9mHKbmwzVNw32bvduBLS00gOsk WYtAdnZaVReS3By8N8c058ehG9Y2+ofXtwBYAchTXFmdEPJxUvMpQWlIgglCZgDt Lzv4TxkEDXwJ/S2spwc0BaZj5xD1MreWuu4QQ9Hta0VXDAUC+EIo2dyRAZ9FKBXX n5ABV2ChN8keUr3W0gDr22gnMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdqT97p SVQXdHEyjTcA157vQ2fwMB8GA1UdIwQYMBaAFDpoZrHfPC5bX6yu4MCZK7x4jF0K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTZENi9ERTM0QzE3OEZD ODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExsdGZySzdnd0prcnZIaU1Y UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taG1zZDg4TGx0ZnJLN2d3SmtydkhpTVhRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTZENi9ERTM0QzE3OEZDODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExs dGZySzdnd0prcnZIaU1YUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyH/H4AosBGuG6jBvnF7nZWw4efD/pH/KgH7DYz+J/7IQSOMQZdmMk 8m8bLFZof4k4KEVhGK0mbnNf3+nxJ8qvmtXHHdG7Kfvw7f4/67ix3qyy55x4Ud1Y +uyxD6ahTf24CRirOFp8kiP0pEYA+vpg3kRfX7w17Zau6n1QGm+F7s83lHCijo05 9KVGFyMKUCI7Y4LOHYvvK7WmH+2dTpFhbh7VeNRtu8flCfljuOZvViEPvTZCq8ox qrNioeqDB4/DeGXc7XcYl8Yr3Yd0SKTx5o7jZRQhbvyzaDJV20JuWKjI662QAP4J SgFG9CdfN8GgJVggjNZxVHtNBV87Mi0+ -----END CERTIFICATE-----Generated at Wed Jul 2 01:24:45 2025 by rpki-client