$ rpki-client -vvf rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft File: OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft (raw, json) Hash identifier: Gh2KZtoBoHmLczmSQibmShpoUl9Z1lfaJCMHdD9km50= Subject key identifier: EC:A7:6D:92:C9:37:49:E3:9E:AF:36:01:33:FA:FA:AA:24:0C:C9:99 Authority key identifier: 3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B Certificate issuer: /CN=A913B32D/serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Certificate serial: 0445 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft Manifest number: 043E Signing time: Sun 19 Oct 2025 02:09:12 +0000 Manifest this update: Sun 19 Oct 2025 02:09:11 +0000 Manifest next update: Sun 26 Oct 2025 02:09:11 +0000 Files and hashes: 1: OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl (hash: HSrwuTrvE3sPAzBo5Ov+35oIMMcxZn4nrrJkCASaxbA=) 2: F2BB36DC790E11EC8EA0F77FC4F9AE02.roa (hash: 17t3m0KvoRjfHzLmSGQMixJ4h1po9W3fjkqykP9EfmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1093 (0x445) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B32D, serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Validity Not Before: Oct 19 02:09:11 2025 GMT Not After : Oct 26 02:09:11 2025 GMT Subject: CN=68f44847-f881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:3a:d2:aa:52:9b:43:1a:53:eb:d4:a2:5d:55: 3b:27:a2:9e:ec:ea:a0:48:02:c6:32:4c:e5:4b:0e: 31:98:31:ad:9e:36:d9:28:9a:c8:65:3e:83:d1:84: 81:ed:a7:8a:a2:32:8b:57:87:37:6b:5d:0b:0d:ae: ad:35:56:c3:57:a3:99:d6:f9:64:67:a6:d2:cb:cc: 47:6f:09:ab:3f:0a:07:bb:41:98:9d:97:e1:ff:bf: 60:38:bd:a5:3a:f8:36:73:04:b6:6d:02:7d:38:85: 67:06:62:34:7b:91:47:01:b2:76:80:c1:d0:25:76: f0:b3:f3:a7:a7:63:19:aa:26:3e:bc:e2:e3:17:3b: 5d:7f:3b:c3:fe:e4:75:fd:84:99:6f:03:12:dc:96: 9b:81:ab:27:04:d1:c9:70:49:0f:11:9b:d7:4e:38: 4d:ce:b0:62:ad:02:c6:a8:ce:0a:68:af:b2:81:3b: 13:73:47:e0:af:79:07:e7:8f:fa:8c:c8:98:10:95: 34:d1:aa:f7:a3:ec:1f:00:82:8d:83:ec:c1:b6:c1: 8d:32:8c:25:16:2e:67:e9:04:bc:50:ff:f6:23:fb: 60:fc:62:26:24:9d:96:ef:30:b3:c2:68:ec:36:b3: d0:14:99:89:72:8f:6d:a9:f4:12:3b:5f:12:27:83: 53:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:A7:6D:92:C9:37:49:E3:9E:AF:36:01:33:FA:FA:AA:24:0C:C9:99 X509v3 Authority Key Identifier: keyid:3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:98:8d:41:26:bc:9b:8b:38:83:cf:8a:d6:71:75:94:fc:b0: 59:b0:e1:5a:03:c6:84:ed:c3:3f:fe:d6:af:4a:40:b1:91:60: 38:c0:17:6e:d7:9b:51:aa:de:06:29:7b:73:f7:31:53:72:ce: 4a:76:90:9e:77:0d:ce:56:ed:8f:8d:35:79:f6:86:d1:f1:22: 30:e5:1c:82:c2:df:c7:31:a1:ce:b4:cd:24:4a:7e:07:87:7d: 06:0d:31:db:af:69:29:04:5a:67:e2:3d:c5:05:b9:af:52:c6: 60:ab:27:b7:fc:47:5b:0f:57:61:fa:30:d2:51:69:54:be:43: ca:38:3e:a8:5e:a1:61:bc:b5:f2:3b:79:26:b8:a2:21:f1:15: d1:83:0a:73:a6:08:c0:f2:35:88:72:81:d8:a4:b4:21:a0:1b: 4c:47:28:2e:2b:cf:39:64:85:33:e6:09:e0:c2:65:a6:05:c0: f1:4b:51:a5:ac:be:4b:d4:c3:56:b7:d8:3f:79:7b:dd:11:84: d7:2b:b5:6f:53:fa:a6:3b:77:95:4f:40:b7:ea:1d:7f:41:51: 52:5f:d4:da:de:bb:3a:75:86:a7:d6:59:74:ad:55:de:07:6a: 9a:57:36:56:e0:3b:0b:ec:9c:fe:88:ea:af:5a:bf:b8:c4:a1: 8f:dc:38:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IzMkQxMTAvBgNVBAUTKDNBNjhBMjIyQzJDMENGNDE0MzBDMDk2OEQyMzA5QUE4 OTNDNzRBM0IwHhcNMjUxMDE5MDIwOTExWhcNMjUxMDI2MDIwOTExWjAYMRYwFAYD VQQDEw02OGY0NDg0Ny1mODgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDrSqlKbQxpT69SiXVU7J6Ke7OqgSALGMkzlSw4xmDGtnjbZKJrIZT6D0YSB 7aeKojKLV4c3a10LDa6tNVbDV6OZ1vlkZ6bSy8xHbwmrPwoHu0GYnZfh/79gOL2l Ovg2cwS2bQJ9OIVnBmI0e5FHAbJ2gMHQJXbws/Onp2MZqiY+vOLjFztdfzvD/uR1 /YSZbwMS3JabgasnBNHJcEkPEZvXTjhNzrBirQLGqM4KaK+ygTsTc0fgr3kH54/6 jMiYEJU00ar3o+wfAIKNg+zBtsGNMowlFi5n6QS8UP/2I/tg/GImJJ2W7zCzwmjs NrPQFJmJco9tqfQSO18SJ4NTqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOynbZLJ N0njnq82ATP6+qokDMmZMB8GA1UdIwQYMBaAFDpooiLCwM9BQwwJaNIwmqiTx0o7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjMyRC84NkZEMTM4ODc5 MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXowRkREQWxvMGpDYXFKUEhT anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taWlJc0xBejBGRERBbG8wakNhcUpQSFNqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjMyRC84NkZEMTM4ODc5MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXow RkREQWxvMGpDYXFKUEhTanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHmI1BJrybiziDz4rWcXWU/LBZsOFaA8aE7cM//tavSkCxkWA4wBdu 15tRqt4GKXtz9zFTcs5KdpCedw3OVu2PjTV59obR8SIw5RyCwt/HMaHOtM0kSn4H h30GDTHbr2kpBFpn4j3FBbmvUsZgqye3/EdbD1dh+jDSUWlUvkPKOD6oXqFhvLXy O3kmuKIh8RXRgwpzpgjA8jWIcoHYpLQhoBtMRyguK885ZIUz5gngwmWmBcDxS1Gl rL5L1MNWt9g/eXvdEYTXK7VvU/qmO3eVT0C36h1/QVFSX9Ta3rs6dYan1ll0rVXe B2qaVzZW4DsL7Jz+iOqvWr+4xKGP3Dhi -----END CERTIFICATE-----Generated at Mon Oct 20 11:35:46 2025 by rpki-client