$ rpki-client -vvf rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft File: Omhmsd88LltfrK7gwJkrvHiMXQo.mft (raw, json) Hash identifier: jBl4+45tEEMsd11Nk0RvPKzvuWIojGQlfpubCyu7ri0= Subject key identifier: 98:A3:13:6F:A7:72:05:89:00:D9:7F:69:8A:76:25:6C:1F:08:E6:82 Authority key identifier: 3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A Certificate issuer: /CN=A911A6D6/serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft Manifest number: 01C9 Signing time: Wed 05 Nov 2025 03:00:51 +0000 Manifest this update: Wed 05 Nov 2025 03:00:50 +0000 Manifest next update: Wed 12 Nov 2025 03:00:50 +0000 Files and hashes: 1: Omhmsd88LltfrK7gwJkrvHiMXQo.crl (hash: lDncVB5fJF+1LydcAMggUXGWnWvg/4E4gzno/QSUiMU=) 2: D4D3B47EA27811EE9C29A256C4F9AE02.roa (hash: QHRHGfrfRtZTCug8O+YvL4h2f3rUlXsvRTX9IxlC4gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A6D6, serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Validity Not Before: Nov 5 03:00:50 2025 GMT Not After : Nov 12 03:00:50 2025 GMT Subject: CN=690abde3-a4b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a2:f5:33:32:4c:c1:8d:e3:57:0b:57:89:d9: 69:b6:c1:16:01:12:d3:bb:d9:f3:7c:6d:b3:0a:3d: 16:20:45:a9:5f:02:8a:0b:54:a8:f2:cc:17:3f:ca: 10:e4:89:90:7f:47:5f:65:af:d2:46:27:7a:e8:1f: b2:7f:dc:34:54:c1:5a:42:15:64:78:ad:a1:50:fc: 47:28:32:a0:40:5f:4e:51:c9:3c:7b:b8:6c:f8:06: 79:6c:20:fc:4a:82:ea:7d:8b:fa:5f:3f:43:44:e8: 3c:5e:1e:56:73:3d:d5:3f:3b:21:a9:a5:69:d4:9f: ee:57:e3:2b:2b:aa:3d:94:f6:f7:48:e2:7d:19:f8: 13:81:66:82:f4:b8:3c:3b:7a:05:90:2a:95:c3:2e: 6d:65:99:23:0d:06:13:80:4d:f0:83:bd:12:d6:34: f3:97:3c:81:e6:8c:c1:74:2d:41:db:c2:ea:03:da: c7:d1:8f:be:d1:09:55:30:95:6e:25:92:7e:37:b0: f4:92:1f:ad:ce:59:cb:be:0b:64:3d:e3:17:d1:e7: c2:50:e9:df:86:e9:8a:eb:b1:a1:66:f9:3e:f4:41: 64:04:b6:86:4c:1d:bd:13:97:9f:bd:87:95:0d:95: ee:94:f0:c6:18:86:96:3b:5f:e7:38:79:ee:c8:f6: 26:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:A3:13:6F:A7:72:05:89:00:D9:7F:69:8A:76:25:6C:1F:08:E6:82 X509v3 Authority Key Identifier: keyid:3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:0e:57:53:a4:0e:11:cd:6d:5c:60:c3:d2:e7:67:64:6a:b2: f2:cb:d0:71:45:e3:95:dc:65:2d:49:5a:99:26:23:67:16:70: 5b:cb:45:1c:63:76:38:00:88:9e:15:59:c1:da:5b:df:48:b1: 46:a4:d3:9f:19:a0:90:cd:c6:f1:90:c4:e7:98:52:a8:29:6b: 94:11:6f:ac:92:b2:c8:6f:f6:54:85:3b:65:74:6e:0f:58:74: 53:47:7e:ae:5d:af:b3:cd:43:83:25:ee:4a:fc:66:e3:f5:c0: 42:ad:75:bb:70:c1:d8:ff:34:4d:e4:03:12:ee:39:30:ab:45: a9:65:2d:a7:5b:97:f9:14:63:22:9e:c8:d1:46:04:ae:73:ef: b3:b4:06:18:53:fb:74:c4:29:7c:48:b6:53:34:13:bb:2e:42: 9a:bc:18:12:2e:23:3d:bf:8a:d6:f9:1c:6f:96:89:c3:2a:7a: 47:cf:4e:d8:0c:b2:d5:40:bd:6a:d0:51:40:94:32:05:f8:aa: 8f:a5:98:03:e4:ed:a0:47:cc:a3:da:ae:82:40:10:33:4d:05: e0:50:38:5d:c4:ca:d7:e2:76:89:51:16:d0:de:68:7e:fa:05: 9b:b4:ad:0d:28:d8:56:7b:43:ba:6a:d2:03:64:f9:21:58:9b: b0:79:10:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2RDYxMTAvBgNVBAUTKDNBNjg2NkIxREYzQzJFNUI1RkFDQUVFMEMwOTkyQkJD Nzg4QzVEMEEwHhcNMjUxMTA1MDMwMDUwWhcNMjUxMTEyMDMwMDUwWjAYMRYwFAYD VQQDEw02OTBhYmRlMy1hNGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6L1MzJMwY3jVwtXidlptsEWARLTu9nzfG2zCj0WIEWpXwKKC1So8swXP8oQ 5ImQf0dfZa/SRid66B+yf9w0VMFaQhVkeK2hUPxHKDKgQF9OUck8e7hs+AZ5bCD8 SoLqfYv6Xz9DROg8Xh5Wcz3VPzshqaVp1J/uV+MrK6o9lPb3SOJ9GfgTgWaC9Lg8 O3oFkCqVwy5tZZkjDQYTgE3wg70S1jTzlzyB5ozBdC1B28LqA9rH0Y++0QlVMJVu JZJ+N7D0kh+tzlnLvgtkPeMX0efCUOnfhumK67GhZvk+9EFkBLaGTB29E5efvYeV DZXulPDGGIaWO1/nOHnuyPYmqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJijE2+n cgWJANl/aYp2JWwfCOaCMB8GA1UdIwQYMBaAFDpoZrHfPC5bX6yu4MCZK7x4jF0K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTZENi9ERTM0QzE3OEZD ODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExsdGZySzdnd0prcnZIaU1Y UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taG1zZDg4TGx0ZnJLN2d3SmtydkhpTVhRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTZENi9ERTM0QzE3OEZDODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExs dGZySzdnd0prcnZIaU1YUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcDldTpA4RzW1cYMPS52dkarLyy9BxReOV3GUtSVqZJiNnFnBby0Uc Y3Y4AIieFVnB2lvfSLFGpNOfGaCQzcbxkMTnmFKoKWuUEW+skrLIb/ZUhTtldG4P WHRTR36uXa+zzUODJe5K/Gbj9cBCrXW7cMHY/zRN5AMS7jkwq0WpZS2nW5f5FGMi nsjRRgSuc++ztAYYU/t0xCl8SLZTNBO7LkKavBgSLiM9v4rW+RxvlonDKnpHz07Y DLLVQL1q0FFAlDIF+KqPpZgD5O2gR8yj2q6CQBAzTQXgUDhdxMrX4naJURbQ3mh+ +gWbtK0NKNhWe0O6atIDZPkhWJuweRC3 -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:07 2025 by rpki-client