$ rpki-client -vvf rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft File: OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft (raw, json) Hash identifier: I2olOeaK48pDwqPY3EGe7rklcKv708+DGtPLQpk7d+E= Subject key identifier: 21:28:29:80:84:F3:4C:F8:DE:25:0D:34:EB:1E:5F:AA:22:7D:B1:B7 Authority key identifier: 3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B Certificate issuer: /CN=A913B32D/serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Certificate serial: 040D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft Manifest number: 0406 Signing time: Tue 01 Jul 2025 00:59:18 +0000 Manifest this update: Tue 01 Jul 2025 00:59:17 +0000 Manifest next update: Tue 08 Jul 2025 00:59:17 +0000 Files and hashes: 1: OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl (hash: zfTgPaQ0lX+r17DXAxb5tWQl6RmIUlt3WUpPG38Nm5U=) 2: F2BB36DC790E11EC8EA0F77FC4F9AE02.roa (hash: 17t3m0KvoRjfHzLmSGQMixJ4h1po9W3fjkqykP9EfmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:59:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1037 (0x40d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B32D, serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Validity Not Before: Jul 1 00:59:17 2025 GMT Not After : Jul 8 00:59:17 2025 GMT Subject: CN=686332e6-6eef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f9:86:a1:4d:e6:77:57:89:b8:26:93:6c:23: 98:16:bf:1a:3f:c3:c5:26:75:5d:2f:6e:c6:36:1c: bf:64:a1:21:04:80:92:3d:93:8d:89:fb:49:de:5d: 7f:09:1a:f4:b4:5c:83:db:f7:29:c5:4b:9f:17:d6: 7c:26:c1:34:b6:9f:f7:d7:a2:9d:47:25:05:e4:1d: 0a:45:48:f4:f1:b1:e3:9d:74:7b:7e:c4:fa:4c:51: 77:2a:c7:d7:76:8e:2a:fc:89:76:4c:f5:f4:e2:1b: 59:ee:70:82:e0:41:a4:3b:22:c0:1e:26:e7:21:d7: 68:51:84:f5:56:01:97:f5:8d:e1:05:bd:39:77:93: 58:44:56:9d:23:97:15:c0:7e:8c:65:95:7a:bb:60: be:69:69:c6:43:20:17:28:42:50:18:63:7a:5d:d5: 21:72:0b:55:f9:65:51:9f:fa:ce:35:46:1a:d1:b3: fd:02:c9:a7:bc:95:ee:48:24:f7:49:4f:06:00:49: ee:10:82:e8:b8:b9:87:74:02:da:60:29:49:a7:de: 90:64:b5:b0:e6:38:59:4d:b0:35:27:6d:63:c7:cc: 31:aa:2b:1c:b3:0c:b7:10:65:b7:60:a1:3d:3d:c7: 3b:7a:61:13:80:1f:9b:bf:86:f7:dd:fa:69:1c:b5: 70:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:28:29:80:84:F3:4C:F8:DE:25:0D:34:EB:1E:5F:AA:22:7D:B1:B7 X509v3 Authority Key Identifier: keyid:3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:b6:9b:03:7c:6c:e3:61:70:d9:2a:4b:38:d4:5a:31:92:73: dd:6c:75:88:13:29:40:ad:a3:eb:a1:37:fe:6b:d1:9b:15:21: 58:32:37:0a:8a:36:54:26:e8:81:62:fc:5f:8e:a4:56:1e:9e: 45:9c:68:01:67:15:6a:cb:1c:a1:21:8c:3f:95:ff:b5:be:25: 88:41:6f:bc:cb:ea:37:e5:fe:54:cd:f8:0b:54:98:01:ef:ae: 4f:28:2a:75:17:22:99:87:a6:68:1e:6a:a9:37:99:93:b6:c0: 76:1c:3d:e2:ff:96:ae:54:15:95:09:d4:5c:73:cd:b5:e1:df: 0b:91:ca:b0:42:c1:51:71:4a:5b:07:c0:0a:59:5d:a4:13:8f: 98:9e:74:8c:3b:60:74:dc:a6:e8:05:d9:da:f5:ba:ce:10:5c: bf:9d:75:71:a4:d9:c0:a4:18:05:45:ea:75:ce:0e:2a:a7:a2: 3e:59:d4:e2:17:c7:bb:0a:59:32:97:d6:14:f8:00:d2:96:be: 84:0f:b4:8e:66:2b:2b:4a:d9:fc:c6:76:b0:3a:9a:7b:3d:79: 43:7d:3d:65:a1:2a:6d:0b:04:f5:0f:7d:ac:a0:85:07:12:4e: 9c:1d:26:db:ee:cd:17:9b:20:79:b8:84:da:5b:52:de:f3:30: 7d:6a:48:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IzMkQxMTAvBgNVBAUTKDNBNjhBMjIyQzJDMENGNDE0MzBDMDk2OEQyMzA5QUE4 OTNDNzRBM0IwHhcNMjUwNzAxMDA1OTE3WhcNMjUwNzA4MDA1OTE3WjAYMRYwFAYD VQQDEw02ODYzMzJlNi02ZWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvmGoU3md1eJuCaTbCOYFr8aP8PFJnVdL27GNhy/ZKEhBICSPZONiftJ3l1/ CRr0tFyD2/cpxUufF9Z8JsE0tp/316KdRyUF5B0KRUj08bHjnXR7fsT6TFF3KsfX do4q/Il2TPX04htZ7nCC4EGkOyLAHibnIddoUYT1VgGX9Y3hBb05d5NYRFadI5cV wH6MZZV6u2C+aWnGQyAXKEJQGGN6XdUhcgtV+WVRn/rONUYa0bP9AsmnvJXuSCT3 SU8GAEnuEILouLmHdALaYClJp96QZLWw5jhZTbA1J21jx8wxqiscswy3EGW3YKE9 Pcc7emETgB+bv4b33fppHLVwjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEoKYCE 80z43iUNNOseX6oifbG3MB8GA1UdIwQYMBaAFDpooiLCwM9BQwwJaNIwmqiTx0o7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjMyRC84NkZEMTM4ODc5 MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXowRkREQWxvMGpDYXFKUEhT anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taWlJc0xBejBGRERBbG8wakNhcUpQSFNqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjMyRC84NkZEMTM4ODc5MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXow RkREQWxvMGpDYXFKUEhTanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0tpsDfGzjYXDZKks41FoxknPdbHWIEylAraProTf+a9GbFSFYMjcK ijZUJuiBYvxfjqRWHp5FnGgBZxVqyxyhIYw/lf+1viWIQW+8y+o35f5UzfgLVJgB 765PKCp1FyKZh6ZoHmqpN5mTtsB2HD3i/5auVBWVCdRcc8214d8LkcqwQsFRcUpb B8AKWV2kE4+YnnSMO2B03KboBdna9brOEFy/nXVxpNnApBgFRep1zg4qp6I+WdTi F8e7Clkyl9YU+ADSlr6ED7SOZisrStn8xnawOpp7PXlDfT1loSptCwT1D32soIUH Ek6cHSbb7s0XmyB5uITaW1Le8zB9akje -----END CERTIFICATE-----Generated at Wed Jul 2 21:04:44 2025 by rpki-client