$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json) Hash identifier: EBcFS+JJpGUxwhYAYrcy1z8v7sVY9wrabe1/X+Nin8c= Subject key identifier: 0F:07:7D:80:28:E3:E5:8C:7B:F1:B6:68:ED:72:DF:C4:77:F5:82:9E Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft Manifest number: 0175 Signing time: Fri 22 Aug 2025 17:50:00 +0000 Manifest this update: Fri 22 Aug 2025 17:50:00 +0000 Manifest next update: Fri 29 Aug 2025 17:50:00 +0000 Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: dpQBc9yAkhuS3dnQw9x6Ubd2nKn0UxuYXZKY1TJNh9A=) 2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: 6Te+3VLS/O5qxRt8jv/bM33nUlqEem+47I9pmRS4Z7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Validity Not Before: Aug 22 17:50:00 2025 GMT Not After : Aug 29 17:50:00 2025 GMT Subject: CN=68a8adc8-2cd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:35:42:57:a5:95:66:26:ed:da:91:02:3c:6b: 7b:78:74:e7:90:6d:6b:7d:91:c9:5d:41:43:21:73: 28:ff:97:5a:74:8e:3b:86:f8:c1:45:52:39:7a:fc: 12:a2:e2:98:51:ed:22:97:c5:c1:d6:a7:1b:0c:da: 89:b8:98:07:3f:c4:13:f8:b0:01:78:f8:79:f4:52: 56:6c:6c:83:e7:a4:68:c8:dd:02:63:c6:42:78:7e: 12:20:af:cc:f3:61:6b:fc:f3:d8:bc:ae:3a:18:22: 89:22:21:55:a4:29:2a:a4:60:7e:4b:41:d8:ac:1d: ef:37:4c:7c:1e:f8:a8:a7:63:e4:ca:37:63:73:8c: 3e:1c:62:3d:f2:38:fa:ff:68:a9:c1:23:53:69:18: 2d:a1:ab:84:e0:8e:62:24:a2:37:45:62:92:92:9c: 0b:78:a1:bb:06:8a:38:14:57:d2:dc:bb:10:02:71: a5:2e:1b:72:6c:be:d0:e6:28:84:be:58:27:4b:a6: 46:54:02:93:fd:bb:b0:15:9e:f9:61:b7:25:fe:25: 96:ef:11:56:43:40:21:98:2c:5d:88:f5:96:43:38: f6:94:d9:7f:bb:09:51:b5:41:39:f5:74:bc:5c:8f: 8a:7f:31:b9:1e:5b:32:6e:a1:8e:c1:28:58:ec:e5: 8c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:07:7D:80:28:E3:E5:8C:7B:F1:B6:68:ED:72:DF:C4:77:F5:82:9E X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:9d:5b:bd:57:4b:5e:65:2e:ab:15:c1:c8:d9:81:fa:3c:23: 8e:57:fd:ed:0c:a2:05:75:ae:cc:f3:0d:79:23:ea:fa:ab:9e: ff:e1:a4:27:9d:2a:7b:c5:45:bc:17:5b:24:3f:05:3e:51:0a: ff:9f:5c:4c:aa:14:e2:09:37:3f:c7:bb:89:95:99:39:b9:17: 77:d3:59:78:3f:d1:25:20:13:07:fa:b8:84:33:f1:ee:88:ce: 8f:d7:78:05:f6:5e:51:2b:75:46:a9:e1:b9:fc:98:b9:39:64: f2:6e:8a:49:cc:fd:b8:e1:a9:b5:9b:3d:f9:a2:a4:87:34:cc: a9:65:4f:45:fc:41:21:7a:09:f4:de:2a:9d:87:31:b2:e1:fe: 7a:04:7c:73:cf:cf:e8:46:a5:fc:c7:ff:a7:d7:5c:0b:cf:7a: 06:46:a7:de:c4:0a:bd:4d:50:74:d1:cd:dc:a6:ae:4a:6c:3c: 98:21:bc:c7:d2:79:14:b0:b4:49:98:59:76:29:59:0e:97:f2: 56:15:b9:19:2d:50:02:4b:58:51:d9:a1:57:30:29:84:c8:c3: 8f:32:e8:e5:2c:7f:f4:47:97:45:21:14:a9:ef:55:3e:2a:89: 18:9e:2c:e6:0f:ef:99:17:fe:ad:25:cb:33:b1:e3:3b:cf:bd: 35:ba:ad:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjUwODIyMTc1MDAwWhcNMjUwODI5MTc1MDAwWjAYMRYwFAYD VQQDEw02OGE4YWRjOC0yY2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7TVCV6WVZibt2pECPGt7eHTnkG1rfZHJXUFDIXMo/5dadI47hvjBRVI5evwS ouKYUe0il8XB1qcbDNqJuJgHP8QT+LABePh59FJWbGyD56RoyN0CY8ZCeH4SIK/M 82Fr/PPYvK46GCKJIiFVpCkqpGB+S0HYrB3vN0x8Hviop2Pkyjdjc4w+HGI98jj6 /2ipwSNTaRgtoauE4I5iJKI3RWKSkpwLeKG7Boo4FFfS3LsQAnGlLhtybL7Q5iiE vlgnS6ZGVAKT/buwFZ75Ybcl/iWW7xFWQ0AhmCxdiPWWQzj2lNl/uwlRtUE59XS8 XI+KfzG5HlsybqGOwShY7OWMUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8HfYAo 4+WMe/G2aO1y38R39YKeMB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yRERCNDI2RTQ4NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2 eWtCbzB6bUVSUE5rRUlWSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDnVu9V0teZS6rFcHI2YH6PCOOV/3tDKIFda7M8w15I+r6q57/4aQn nSp7xUW8F1skPwU+UQr/n1xMqhTiCTc/x7uJlZk5uRd301l4P9ElIBMH+riEM/Hu iM6P13gF9l5RK3VGqeG5/Ji5OWTybopJzP244am1mz35oqSHNMypZU9F/EEhegn0 3iqdhzGy4f56BHxzz8/oRqX8x/+n11wLz3oGRqfexAq9TVB00c3cpq5KbDyYIbzH 0nkUsLRJmFl2KVkOl/JWFbkZLVACS1hR2aFXMCmEyMOPMujlLH/0R5dFIRSp71U+ KokYnizmD++ZF/6tJcszseM7z701uq2b -----END CERTIFICATE-----Generated at Sat Aug 23 10:40:51 2025 by rpki-client