$ rpki-client -vvf rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft File: Omhmsd88LltfrK7gwJkrvHiMXQo.mft (raw, json) Hash identifier: DsAOLgx4w6/Bar36XKjNj4zdB9i8FXQCWxBqvj8GlQ4= Subject key identifier: FE:E1:04:30:AF:16:C2:3F:F0:CD:96:28:BD:D3:AF:92:85:73:65:CB Authority key identifier: 3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A Certificate issuer: /CN=A911A6D6/serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Certificate serial: 016B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft Manifest number: 0168 Signing time: Fri 25 Apr 2025 03:03:09 +0000 Manifest this update: Fri 25 Apr 2025 03:03:09 +0000 Manifest next update: Fri 02 May 2025 03:03:09 +0000 Files and hashes: 1: Omhmsd88LltfrK7gwJkrvHiMXQo.crl (hash: J7VzustUTZXMNefhVLxvbGlDk3Rm02PZ6yIBJrdimKk=) 2: D4D3B47EA27811EE9C29A256C4F9AE02.roa (hash: QHRHGfrfRtZTCug8O+YvL4h2f3rUlXsvRTX9IxlC4gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:03:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 363 (0x16b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A6D6, serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Validity Not Before: Apr 25 03:03:09 2025 GMT Not After : May 2 03:03:09 2025 GMT Subject: CN=680afb6d-625c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f2:da:4d:f2:37:55:19:18:43:af:62:a2:b9: cb:cc:6f:32:4d:90:bf:54:55:97:0b:82:de:42:87: f5:2c:9d:8f:95:3e:db:2c:71:e2:31:9f:1d:34:93: 14:1e:c0:95:8e:13:69:26:72:9f:4b:63:2a:3b:66: 9c:c9:c4:4c:f0:e6:5b:2e:dd:a1:66:3a:bc:99:3a: 9e:eb:38:63:76:49:d6:72:7e:61:8b:73:0d:24:b9: 08:f1:55:b5:8a:87:27:41:25:d4:aa:82:74:4e:9d: 6f:e8:5c:06:ee:19:44:59:51:9f:b4:9f:0e:57:6c: bd:cd:44:03:2d:3e:62:9d:69:9d:44:94:a9:06:5c: ef:8a:5e:a5:b9:ed:d6:a7:77:02:be:ba:55:4b:60: 8d:7f:86:97:0a:1d:6e:a0:d8:da:c4:16:54:ed:d3: 85:54:af:1b:df:07:0a:37:76:e2:b0:a1:81:d9:56: 8d:8d:cd:fd:88:4f:d8:6d:39:4f:e0:c4:24:e0:48: b0:89:8a:20:6b:97:a6:96:17:0a:4f:00:db:b9:01: 60:ea:5a:42:b9:4c:ae:70:44:b3:a9:4f:00:79:35: 53:6b:f3:20:a8:9e:17:67:b7:a7:57:4e:3f:74:b9: 8e:d1:41:65:f9:87:37:8c:16:bc:05:34:16:b3:88: cc:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E1:04:30:AF:16:C2:3F:F0:CD:96:28:BD:D3:AF:92:85:73:65:CB X509v3 Authority Key Identifier: keyid:3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:0e:21:76:c4:4c:fa:54:cd:a4:6a:a7:5e:d9:3c:01:ff:bc: 92:b0:b7:13:d9:d6:2b:6b:7b:f8:7c:78:be:b0:98:2e:49:4c: 53:62:ee:b0:7a:22:1a:ce:bc:01:26:b0:90:fe:50:ff:f7:ab: a9:c9:31:02:29:14:0a:81:45:82:5b:c6:7c:12:93:6c:51:f1: 96:9b:e9:4b:94:89:94:2f:8d:5e:8c:1a:a7:ea:ad:98:3f:9e: c2:78:12:d1:e1:47:bc:44:9d:c6:9f:02:26:32:90:a6:28:07: 0d:4a:d6:ca:c5:7c:b7:a2:71:08:e9:c1:b9:41:27:0e:96:7e: 12:0c:31:d9:24:f7:42:05:a5:dd:35:d9:96:c6:3e:92:ba:ed: 5d:08:53:2c:1c:54:c0:5e:b9:ec:19:bb:8d:2c:c6:bf:21:09: 51:39:bd:3f:89:a7:14:05:ef:8f:d6:b0:3b:2a:d3:76:85:11: f2:d8:51:b3:e9:e5:f0:1c:fa:76:24:a9:8a:a1:ef:c4:df:9a: 72:c9:fd:54:ff:2b:e6:2f:81:66:df:f2:69:a9:fa:e4:62:10: e4:17:c0:b3:bc:32:73:f3:27:cf:7f:10:ab:02:e4:38:12:a0: 7c:ea:3b:fe:81:bd:09:52:cf:e8:2c:f4:5d:7e:20:66:89:95: 85:6c:6d:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2RDYxMTAvBgNVBAUTKDNBNjg2NkIxREYzQzJFNUI1RkFDQUVFMEMwOTkyQkJD Nzg4QzVEMEEwHhcNMjUwNDI1MDMwMzA5WhcNMjUwNTAyMDMwMzA5WjAYMRYwFAYD VQQDEw02ODBhZmI2ZC02MjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/LaTfI3VRkYQ69iornLzG8yTZC/VFWXC4LeQof1LJ2PlT7bLHHiMZ8dNJMU HsCVjhNpJnKfS2MqO2acycRM8OZbLt2hZjq8mTqe6zhjdknWcn5hi3MNJLkI8VW1 iocnQSXUqoJ0Tp1v6FwG7hlEWVGftJ8OV2y9zUQDLT5inWmdRJSpBlzvil6lue3W p3cCvrpVS2CNf4aXCh1uoNjaxBZU7dOFVK8b3wcKN3bisKGB2VaNjc39iE/YbTlP 4MQk4EiwiYoga5emlhcKTwDbuQFg6lpCuUyucESzqU8AeTVTa/MgqJ4XZ7enV04/ dLmO0UFl+Yc3jBa8BTQWs4jMEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7hBDCv FsI/8M2WKL3Tr5KFc2XLMB8GA1UdIwQYMBaAFDpoZrHfPC5bX6yu4MCZK7x4jF0K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTZENi9ERTM0QzE3OEZD ODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExsdGZySzdnd0prcnZIaU1Y UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taG1zZDg4TGx0ZnJLN2d3SmtydkhpTVhRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTZENi9ERTM0QzE3OEZDODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExs dGZySzdnd0prcnZIaU1YUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9DiF2xEz6VM2kaqde2TwB/7ySsLcT2dYra3v4fHi+sJguSUxTYu6w eiIazrwBJrCQ/lD/96upyTECKRQKgUWCW8Z8EpNsUfGWm+lLlImUL41ejBqn6q2Y P57CeBLR4Ue8RJ3GnwImMpCmKAcNStbKxXy3onEI6cG5QScOln4SDDHZJPdCBaXd NdmWxj6Suu1dCFMsHFTAXrnsGbuNLMa/IQlROb0/iacUBe+P1rA7KtN2hRHy2FGz 6eXwHPp2JKmKoe/E35pyyf1U/yvmL4Fm3/JpqfrkYhDkF8CzvDJz8yfPfxCrAuQ4 EqB86jv+gb0JUs/oLPRdfiBmiZWFbG2M -----END CERTIFICATE-----Generated at Sat Apr 26 05:03:35 2025 by rpki-client