$ rpki-client -vvf rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft File: OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft (raw, json) Hash identifier: sYiauqPjyxcobIo75FJctge2XzwiJFBIWfrvUGPhZnY= Subject key identifier: 0D:36:89:E2:5B:C2:21:39:96:83:6A:32:89:47:79:1D:BE:F2:94:1B Authority key identifier: 3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B Certificate issuer: /CN=A913B32D/serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Certificate serial: 03F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft Manifest number: 03EE Signing time: Tue 13 May 2025 00:18:37 +0000 Manifest this update: Tue 13 May 2025 00:18:36 +0000 Manifest next update: Tue 20 May 2025 00:18:36 +0000 Files and hashes: 1: OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl (hash: hg3ocGOl5nOaHlzbphtFjjz5aUIijtRPAEQ9qMI3Bx0=) 2: F2BB36DC790E11EC8EA0F77FC4F9AE02.roa (hash: 17t3m0KvoRjfHzLmSGQMixJ4h1po9W3fjkqykP9EfmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:18:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1013 (0x3f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B32D, serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Validity Not Before: May 13 00:18:36 2025 GMT Not After : May 20 00:18:36 2025 GMT Subject: CN=68228fdc-188b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8f:d6:59:b8:00:df:c7:06:c1:d1:f3:99:c1: 9a:2d:db:08:16:77:c8:22:b2:c9:d6:9d:e2:f0:2c: d1:cf:52:b8:45:98:28:27:fc:a3:05:dc:87:76:1b: 6f:8b:5b:63:dc:0f:03:8f:68:29:84:ce:52:b3:74: 0e:66:96:40:ad:ab:54:84:a9:2e:d2:5c:5b:ed:4c: fd:80:f1:15:3e:bc:79:29:8e:0d:fe:9d:aa:5b:34: fa:0f:1f:a2:58:3e:3b:31:a6:61:c6:92:e3:b6:e1: 6c:b8:f5:8e:5f:a6:aa:b5:2c:9b:1e:cd:05:e9:b6: 39:2e:2b:b9:8c:a7:2a:67:dc:fc:fb:e1:46:c6:c7: 7f:97:a4:f7:15:11:c4:9d:a5:47:8d:9d:00:62:f2: f3:30:b4:55:39:e9:5a:19:7e:82:dc:e2:84:d8:06: 8e:98:97:46:4f:23:6f:9a:ff:ee:d2:dd:56:44:43: e2:56:cf:4e:7a:39:1e:33:98:3c:ec:f3:3b:3f:7d: 4a:89:4d:e3:f3:26:b3:80:1d:d1:3b:c1:a9:ca:ab: 67:48:e5:3b:15:42:07:05:20:36:6d:2d:77:8e:37: 1e:4e:82:02:2c:1f:24:ce:2e:7e:a4:54:dc:17:65: b1:62:9a:37:a3:ce:30:26:03:8c:54:2d:31:5a:7a: 39:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:36:89:E2:5B:C2:21:39:96:83:6A:32:89:47:79:1D:BE:F2:94:1B X509v3 Authority Key Identifier: keyid:3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:cc:28:d3:27:fe:6d:56:07:3b:00:dd:bf:18:d3:0c:70:10: e8:72:fc:9e:25:eb:41:4a:f3:3b:ed:39:a3:8d:2f:c3:c3:18: 59:af:64:a6:d8:c9:98:df:80:0b:60:39:ea:18:02:da:80:4b: 8e:aa:d2:12:e9:88:d6:56:bb:ad:06:9d:05:bc:01:8a:05:ce: 9d:31:4c:15:a2:a3:4b:2d:55:87:a7:60:2d:04:78:13:2b:cb: 27:cd:5c:46:fd:3f:94:04:de:5e:09:7d:25:91:3e:69:7c:d1: ef:de:7e:a6:ab:4e:33:6b:16:d2:88:23:6c:ff:46:11:3e:0e: 0b:ba:ac:3a:f1:7e:0f:4d:8c:66:18:f5:86:0d:4e:4e:24:6e: 50:4f:11:ab:fc:8e:70:dc:e5:e9:ef:fd:6f:19:09:ba:ae:fb: e5:da:14:47:b2:4e:00:d3:65:55:6c:54:a4:5c:51:d6:e1:6b: 33:91:50:d7:1f:9d:b8:8f:30:6d:ba:e9:9e:4a:c7:e0:a6:6b: 46:bb:3e:49:54:27:e4:2a:8a:52:89:b1:e3:87:62:dd:84:85: e6:42:71:72:28:a3:bc:91:f5:1a:f3:c2:97:d9:ef:fd:1c:6a: 26:64:84:2d:37:e3:98:41:f4:92:a2:5e:fd:92:aa:8b:ed:83: f0:66:87:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IzMkQxMTAvBgNVBAUTKDNBNjhBMjIyQzJDMENGNDE0MzBDMDk2OEQyMzA5QUE4 OTNDNzRBM0IwHhcNMjUwNTEzMDAxODM2WhcNMjUwNTIwMDAxODM2WjAYMRYwFAYD VQQDEw02ODIyOGZkYy0xODhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuI/WWbgA38cGwdHzmcGaLdsIFnfIIrLJ1p3i8CzRz1K4RZgoJ/yjBdyHdhtv i1tj3A8Dj2gphM5Ss3QOZpZAratUhKku0lxb7Uz9gPEVPrx5KY4N/p2qWzT6Dx+i WD47MaZhxpLjtuFsuPWOX6aqtSybHs0F6bY5Liu5jKcqZ9z8++FGxsd/l6T3FRHE naVHjZ0AYvLzMLRVOelaGX6C3OKE2AaOmJdGTyNvmv/u0t1WREPiVs9OejkeM5g8 7PM7P31KiU3j8yazgB3RO8GpyqtnSOU7FUIHBSA2bS13jjceToICLB8kzi5+pFTc F2WxYpo3o84wJgOMVC0xWno5AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA02ieJb wiE5loNqMolHeR2+8pQbMB8GA1UdIwQYMBaAFDpooiLCwM9BQwwJaNIwmqiTx0o7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjMyRC84NkZEMTM4ODc5 MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXowRkREQWxvMGpDYXFKUEhT anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taWlJc0xBejBGRERBbG8wakNhcUpQSFNqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjMyRC84NkZEMTM4ODc5MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXow RkREQWxvMGpDYXFKUEhTanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhzCjTJ/5tVgc7AN2/GNMMcBDocvyeJetBSvM77TmjjS/DwxhZr2Sm 2MmY34ALYDnqGALagEuOqtIS6YjWVrutBp0FvAGKBc6dMUwVoqNLLVWHp2AtBHgT K8snzVxG/T+UBN5eCX0lkT5pfNHv3n6mq04zaxbSiCNs/0YRPg4Luqw68X4PTYxm GPWGDU5OJG5QTxGr/I5w3OXp7/1vGQm6rvvl2hRHsk4A02VVbFSkXFHW4WszkVDX H524jzBtuumeSsfgpmtGuz5JVCfkKopSibHjh2LdhIXmQnFyKKO8kfUa88KX2e/9 HGomZIQtN+OYQfSSol79kqqL7YPwZodV -----END CERTIFICATE-----Generated at Tue May 13 18:29:37 2025 by rpki-client