$ rpki-client -vvf rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft File: Omhmsd88LltfrK7gwJkrvHiMXQo.mft (raw, json) Hash identifier: cnqJ3ztLWSyhKoClYyTYK4Y50LNn0qcMLQjS5LCRAzA= Subject key identifier: 47:38:3D:CB:51:F7:C5:EF:28:BC:7B:64:40:F8:EB:C8:0E:66:61:C2 Authority key identifier: 3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A Certificate issuer: /CN=A911A6D6/serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Certificate serial: 01C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft Manifest number: 01C1 Signing time: Sun 19 Oct 2025 05:26:53 +0000 Manifest this update: Sun 19 Oct 2025 05:26:52 +0000 Manifest next update: Sun 26 Oct 2025 05:26:52 +0000 Files and hashes: 1: Omhmsd88LltfrK7gwJkrvHiMXQo.crl (hash: GoX6piZGMLYXwDMOa07diM8utz1IqFnwcwXC3Vz7nx8=) 2: D4D3B47EA27811EE9C29A256C4F9AE02.roa (hash: QHRHGfrfRtZTCug8O+YvL4h2f3rUlXsvRTX9IxlC4gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:26:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A6D6, serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Validity Not Before: Oct 19 05:26:52 2025 GMT Not After : Oct 26 05:26:52 2025 GMT Subject: CN=68f4769d-0407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:96:e5:9f:2c:34:b7:b0:9d:17:16:63:a8:75: 10:41:1f:3d:45:30:0d:09:28:93:98:7c:76:e9:90: 31:54:77:22:1b:f2:be:8c:ee:c0:88:26:85:5f:b3: ad:e8:50:31:b4:a9:74:82:c1:5c:83:60:8b:25:b2: 96:4f:53:c3:11:d6:81:6a:8b:92:e6:1e:49:05:01: 39:f9:19:4b:ea:53:90:8d:eb:50:74:f8:cd:70:be: 3d:b2:eb:14:f0:af:57:db:e1:ba:a4:20:2b:a4:4b: 96:9d:3b:be:70:8e:2b:04:f9:de:be:5f:50:7e:bc: 8d:68:53:05:97:c2:bd:7d:b1:fb:ea:7b:97:f4:0b: 5c:db:32:01:cf:09:15:60:48:b3:16:4e:b4:1a:70: 5a:f7:fc:a7:84:07:07:54:aa:a5:8c:d4:9c:cb:76: 48:a8:dd:8f:56:8e:e6:56:47:e4:84:2a:6a:6e:b0: bb:c4:01:fd:f6:b2:f8:8f:f9:80:b9:4d:7f:c2:0b: 4f:00:00:30:65:40:3e:1c:a6:3d:96:0b:fe:b1:5d: d5:33:56:8d:1c:10:73:1c:f2:d1:81:3e:24:11:db: 8c:3d:2b:ab:95:34:3c:33:91:b6:0b:3e:7d:b0:d7: 24:1a:dd:e4:45:f7:c8:7e:16:31:5e:af:bc:d9:28: cf:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:38:3D:CB:51:F7:C5:EF:28:BC:7B:64:40:F8:EB:C8:0E:66:61:C2 X509v3 Authority Key Identifier: keyid:3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:01:0e:3f:e8:ba:5c:98:d7:11:2a:60:ff:06:5d:32:fa:0d: 8c:a3:20:2a:61:53:1d:67:ef:d1:4c:33:4c:68:73:b4:e1:8a: 5f:a7:e7:f1:18:9b:69:d2:46:46:89:9a:ba:01:30:10:0b:b5: 34:0c:88:77:8f:b3:5e:e0:6b:32:19:60:9e:b3:f0:30:83:a9: c2:3f:21:99:38:52:64:80:55:ed:c6:1d:b2:f4:40:c7:76:20: 90:c0:6f:e2:6c:26:75:2f:6c:9b:a5:a3:ed:73:4b:ae:c5:11: a8:6e:12:12:09:65:2a:a9:c5:e9:83:99:b9:63:02:94:46:43: f9:a1:0e:18:8c:cb:12:cc:6f:ec:c5:d8:9f:c8:e2:74:7a:ac: 9e:98:7c:b3:45:d3:ed:2f:fc:fa:17:9c:51:ac:90:9d:e8:85: b6:5a:c5:57:96:3f:1b:3a:56:12:5c:b3:35:bb:93:39:93:2c: 0d:51:86:e5:58:00:eb:5a:04:09:a6:01:ca:00:06:3b:7d:27: ae:61:e8:c0:73:95:84:b8:f4:5f:b1:ac:c5:be:d1:9b:f1:5d: 14:2d:d0:d6:de:50:38:b3:44:5f:0d:ee:e3:45:fe:29:93:7f: 57:d9:dd:d9:3a:7a:de:35:32:96:d0:fe:9c:37:23:a2:11:b9: 04:64:bf:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2RDYxMTAvBgNVBAUTKDNBNjg2NkIxREYzQzJFNUI1RkFDQUVFMEMwOTkyQkJD Nzg4QzVEMEEwHhcNMjUxMDE5MDUyNjUyWhcNMjUxMDI2MDUyNjUyWjAYMRYwFAYD VQQDEw02OGY0NzY5ZC0wNDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Jblnyw0t7CdFxZjqHUQQR89RTANCSiTmHx26ZAxVHciG/K+jO7AiCaFX7Ot 6FAxtKl0gsFcg2CLJbKWT1PDEdaBaouS5h5JBQE5+RlL6lOQjetQdPjNcL49susU 8K9X2+G6pCArpEuWnTu+cI4rBPnevl9QfryNaFMFl8K9fbH76nuX9Atc2zIBzwkV YEizFk60GnBa9/ynhAcHVKqljNScy3ZIqN2PVo7mVkfkhCpqbrC7xAH99rL4j/mA uU1/wgtPAAAwZUA+HKY9lgv+sV3VM1aNHBBzHPLRgT4kEduMPSurlTQ8M5G2Cz59 sNckGt3kRffIfhYxXq+82SjPHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEc4PctR 98XvKLx7ZED468gOZmHCMB8GA1UdIwQYMBaAFDpoZrHfPC5bX6yu4MCZK7x4jF0K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTZENi9ERTM0QzE3OEZD ODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExsdGZySzdnd0prcnZIaU1Y UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taG1zZDg4TGx0ZnJLN2d3SmtydkhpTVhRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTZENi9ERTM0QzE3OEZDODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExs dGZySzdnd0prcnZIaU1YUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRAQ4/6LpcmNcRKmD/Bl0y+g2MoyAqYVMdZ+/RTDNMaHO04Ypfp+fx GJtp0kZGiZq6ATAQC7U0DIh3j7Ne4GsyGWCes/Awg6nCPyGZOFJkgFXtxh2y9EDH diCQwG/ibCZ1L2ybpaPtc0uuxRGobhISCWUqqcXpg5m5YwKURkP5oQ4YjMsSzG/s xdifyOJ0eqyemHyzRdPtL/z6F5xRrJCd6IW2WsVXlj8bOlYSXLM1u5M5kywNUYbl WADrWgQJpgHKAAY7fSeuYejAc5WEuPRfsazFvtGb8V0ULdDW3lA4s0RfDe7jRf4p k39X2d3ZOnreNTKW0P6cNyOiEbkEZL99 -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:13 2025 by rpki-client