$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json) Hash identifier: NXFJBnaYi55rncChpDCdQT0FUYwWdZyV6PKHiqTKJws= Subject key identifier: FA:31:70:86:F2:93:28:82:A9:41:09:95:27:0A:18:6F:2C:D2:0F:1E Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: 015E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft Manifest number: 015B Signing time: Wed 02 Jul 2025 17:56:55 +0000 Manifest this update: Wed 02 Jul 2025 17:56:54 +0000 Manifest next update: Wed 09 Jul 2025 17:56:54 +0000 Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: ZaOAeTv8TUAaXLUfaWqWS8wAmBBRE4iwLMZN0scCxbo=) 2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: 6Te+3VLS/O5qxRt8jv/bM33nUlqEem+47I9pmRS4Z7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Validity Not Before: Jul 2 17:56:54 2025 GMT Not After : Jul 9 17:56:54 2025 GMT Subject: CN=686572e6-a148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c0:e4:75:d6:f8:a4:1b:35:de:f3:bc:4f:00: 16:41:0e:5b:89:46:23:70:9a:3e:33:3a:34:38:9b: 1c:de:d1:0b:2a:64:a6:34:0f:27:5d:51:67:55:73: f3:fb:a8:98:6b:76:7b:a5:9e:28:d7:5b:77:be:28: 8c:01:3b:8c:4e:fc:f4:15:7d:c6:dc:27:ba:d2:e4: 71:81:db:24:e4:4e:0e:c8:95:32:d8:af:5e:a0:6b: 80:02:0d:7b:5b:a4:52:b1:83:b2:4c:0d:95:1d:bc: d8:6e:0f:60:1a:f7:c4:17:c3:ac:82:5b:70:0c:95: 6f:db:ea:bd:8a:fe:b9:e8:1e:d9:25:04:cb:9a:f0: 76:e0:51:ed:4c:08:6b:d7:bf:a8:08:56:00:bd:69: 22:1d:e3:19:ac:aa:94:57:06:f4:1a:0a:84:c5:a3: cc:19:2c:87:f2:5b:9e:7c:fa:c7:79:cc:6a:d7:ae: 2b:d7:1b:0a:f3:94:ca:bf:0e:b0:a0:6e:d3:10:bf: cf:04:89:c9:73:5b:4b:a3:1e:41:c3:b0:e1:90:5d: 03:f2:d1:fe:86:2b:c6:f9:0f:f8:65:fa:df:f3:c2: fa:86:e7:25:4e:a2:0e:65:6c:2f:4a:9c:1d:45:6f: 5c:96:f9:fd:87:7b:54:0f:35:86:e6:4c:1d:63:8d: a2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:31:70:86:F2:93:28:82:A9:41:09:95:27:0A:18:6F:2C:D2:0F:1E X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:c9:db:8c:f1:6b:9f:30:c7:b2:ea:86:64:39:13:a0:f6:e1: 7c:06:2b:fe:17:e9:ae:a6:60:9d:16:ae:70:a9:b5:f4:5c:19: fe:3c:2f:42:49:ff:06:c5:43:3f:1b:32:1c:8e:ba:55:27:b5: 37:88:95:a4:00:1a:90:8f:49:4c:8a:61:f0:42:cc:02:be:eb: 6e:28:68:b7:d7:52:a6:95:83:2a:7b:42:65:b8:48:78:51:f0: 88:43:82:a3:45:6a:42:02:37:4a:8a:99:44:7e:f5:de:41:2e: 81:b6:e6:3e:6b:b7:bc:44:67:15:fb:b1:04:97:43:9d:6f:6e: aa:df:a7:e4:56:db:f7:c9:99:59:2a:36:f0:7c:49:af:3e:4d: 10:ce:8f:79:07:f8:4c:14:ae:08:9c:2e:48:b5:2d:c4:c0:f4: b2:df:ae:8e:75:49:ad:53:8f:cd:eb:cc:af:e4:12:59:82:0e: 00:49:2c:95:61:9c:61:fb:a5:1d:4b:d0:6c:8c:b8:e5:18:f4: 9d:82:3c:a9:83:06:a7:98:e3:39:95:5b:8e:51:d8:ff:7c:f8: 8f:ad:25:4a:83:cc:0c:de:9b:ec:7e:56:aa:70:fe:25:26:b7: 5c:38:69:03:73:3d:20:b6:2f:45:d4:02:73:a7:4b:48:1c:a0: ae:e2:d2:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjUwNzAyMTc1NjU0WhcNMjUwNzA5MTc1NjU0WjAYMRYwFAYD VQQDEw02ODY1NzJlNi1hMTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucDkddb4pBs13vO8TwAWQQ5biUYjcJo+Mzo0OJsc3tELKmSmNA8nXVFnVXPz +6iYa3Z7pZ4o11t3viiMATuMTvz0FX3G3Ce60uRxgdsk5E4OyJUy2K9eoGuAAg17 W6RSsYOyTA2VHbzYbg9gGvfEF8OsgltwDJVv2+q9iv656B7ZJQTLmvB24FHtTAhr 17+oCFYAvWkiHeMZrKqUVwb0GgqExaPMGSyH8luefPrHecxq164r1xsK85TKvw6w oG7TEL/PBInJc1tLox5Bw7DhkF0D8tH+hivG+Q/4Zfrf88L6huclTqIOZWwvSpwd RW9clvn9h3tUDzWG5kwdY42iwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPoxcIby kyiCqUEJlScKGG8s0g8eMB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yRERCNDI2RTQ4NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2 eWtCbzB6bUVSUE5rRUlWSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzyduM8WufMMey6oZkOROg9uF8Biv+F+mupmCdFq5wqbX0XBn+PC9C Sf8GxUM/GzIcjrpVJ7U3iJWkABqQj0lMimHwQswCvutuKGi311KmlYMqe0JluEh4 UfCIQ4KjRWpCAjdKiplEfvXeQS6BtuY+a7e8RGcV+7EEl0Odb26q36fkVtv3yZlZ KjbwfEmvPk0Qzo95B/hMFK4InC5ItS3EwPSy366OdUmtU4/N68yv5BJZgg4ASSyV YZxh+6UdS9BsjLjlGPSdgjypgwanmOM5lVuOUdj/fPiPrSVKg8wM3pvsflaqcP4l JrdcOGkDcz0gti9F1AJzp0tIHKCu4tLT -----END CERTIFICATE-----Generated at Thu Jul 3 23:45:57 2025 by rpki-client