$ rpki-client -vvf rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft File: Omhmsd88LltfrK7gwJkrvHiMXQo.mft (raw, json) Hash identifier: ypKWoNX349jg+DI1e2e7aWr/dnz7G73MPh4r++ywAMk= Subject key identifier: 94:85:0D:9E:C1:44:C9:35:B3:8D:3C:CA:55:AB:C1:1E:E0:0C:5D:3E Authority key identifier: 3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A Certificate issuer: /CN=A911A6D6/serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft Manifest number: 0182 Signing time: Tue 17 Jun 2025 02:43:43 +0000 Manifest this update: Tue 17 Jun 2025 02:43:42 +0000 Manifest next update: Tue 24 Jun 2025 02:43:42 +0000 Files and hashes: 1: Omhmsd88LltfrK7gwJkrvHiMXQo.crl (hash: PzcoLr14DsVGcmFOGhzTpVIOm4BIB1Kg7YvVlPxyXQc=) 2: D4D3B47EA27811EE9C29A256C4F9AE02.roa (hash: QHRHGfrfRtZTCug8O+YvL4h2f3rUlXsvRTX9IxlC4gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A6D6, serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Validity Not Before: Jun 17 02:43:42 2025 GMT Not After : Jun 24 02:43:42 2025 GMT Subject: CN=6850d65f-ab82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e6:23:67:fb:4d:29:05:d4:a7:21:8e:f5:8f: dc:f5:46:0c:15:e5:b4:fa:ec:97:83:c3:f9:4f:cf: e7:55:be:fb:1f:b2:03:a5:40:ea:fd:9d:70:1a:88: 53:b3:57:1c:cf:e9:71:49:ee:d1:10:70:fc:3a:5a: 86:5b:29:7a:bf:26:a6:79:b1:30:cf:b0:a4:7c:7b: d8:20:27:39:6c:60:f0:1a:57:06:3c:18:23:11:90: 66:74:f6:50:33:55:40:98:48:f3:97:24:9b:cb:80: 5d:d6:da:50:d7:1a:6f:48:75:69:00:38:ce:01:ca: 51:cf:95:73:38:b3:d7:c4:84:0e:ba:a9:c6:d8:32: 53:5b:84:9d:d3:78:86:13:56:7c:94:93:5c:eb:f0: 5c:1b:0c:ab:4b:ef:c3:df:a5:86:30:1d:3d:9f:54: 08:45:db:b5:93:ad:88:86:a9:43:45:66:50:c1:55: 2b:5d:e0:73:49:ec:ca:20:f9:ad:9a:f5:eb:f1:3d: 4a:4d:9b:4f:3b:b9:28:7f:b6:e7:a2:79:d1:be:ed: d7:f0:e3:7e:21:01:e3:9e:08:ec:1b:ad:8f:9c:21: 78:74:a9:df:61:92:b0:88:ba:83:59:99:28:99:1a: e6:e9:bd:69:88:de:11:ee:a5:6b:2b:92:f7:b2:f5: 03:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:85:0D:9E:C1:44:C9:35:B3:8D:3C:CA:55:AB:C1:1E:E0:0C:5D:3E X509v3 Authority Key Identifier: keyid:3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:da:68:f9:3d:39:03:b8:0d:0d:ac:45:85:9b:22:91:48:c6: 4b:e0:93:6d:07:0d:51:4d:74:21:30:26:73:eb:57:2e:01:04: bc:ea:71:2e:c6:b8:98:67:d9:86:c5:d5:3f:c7:7f:68:c4:a8: c6:8b:27:76:a8:5a:fc:c8:ff:80:48:16:25:4b:42:3c:6f:15: 23:09:a5:b6:13:f1:cd:01:5f:c2:30:f9:e3:48:95:ca:8d:ff: 7d:5a:bf:d0:29:3b:75:87:a7:3f:89:ee:c0:a2:23:6a:7e:23: 2e:81:4b:81:6d:35:c5:76:99:48:9d:df:1e:44:95:c2:a9:4c: 62:1d:1b:05:77:54:94:a5:03:a3:1f:a8:2e:f4:2b:40:b5:1f: 08:62:ca:6c:95:5e:8e:c3:ba:60:66:cc:14:ba:bb:aa:56:a9: cc:3f:e3:f8:63:3e:c8:aa:69:d2:29:c0:5f:d4:74:52:6c:b5: f5:3f:2d:25:50:36:b9:4f:e8:5c:80:23:6f:09:f9:9d:64:4c: 15:c1:87:fb:d6:28:d6:5b:78:69:09:c1:68:84:cf:b3:64:eb: 9e:79:9c:29:fd:1e:a6:50:46:32:d9:dc:59:d3:19:e8:a8:e1: 13:af:f0:0f:66:23:5d:1c:f3:26:4c:a9:18:cf:08:d9:9e:b3: 48:85:6b:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2RDYxMTAvBgNVBAUTKDNBNjg2NkIxREYzQzJFNUI1RkFDQUVFMEMwOTkyQkJD Nzg4QzVEMEEwHhcNMjUwNjE3MDI0MzQyWhcNMjUwNjI0MDI0MzQyWjAYMRYwFAYD VQQDEw02ODUwZDY1Zi1hYjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+YjZ/tNKQXUpyGO9Y/c9UYMFeW0+uyXg8P5T8/nVb77H7IDpUDq/Z1wGohT s1ccz+lxSe7REHD8OlqGWyl6vyamebEwz7CkfHvYICc5bGDwGlcGPBgjEZBmdPZQ M1VAmEjzlySby4Bd1tpQ1xpvSHVpADjOAcpRz5VzOLPXxIQOuqnG2DJTW4Sd03iG E1Z8lJNc6/BcGwyrS+/D36WGMB09n1QIRdu1k62IhqlDRWZQwVUrXeBzSezKIPmt mvXr8T1KTZtPO7kof7bnonnRvu3X8ON+IQHjngjsG62PnCF4dKnfYZKwiLqDWZko mRrm6b1piN4R7qVrK5L3svUDOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSFDZ7B RMk1s408ylWrwR7gDF0+MB8GA1UdIwQYMBaAFDpoZrHfPC5bX6yu4MCZK7x4jF0K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTZENi9ERTM0QzE3OEZD ODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExsdGZySzdnd0prcnZIaU1Y UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taG1zZDg4TGx0ZnJLN2d3SmtydkhpTVhRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTZENi9ERTM0QzE3OEZDODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExs dGZySzdnd0prcnZIaU1YUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg2mj5PTkDuA0NrEWFmyKRSMZL4JNtBw1RTXQhMCZz61cuAQS86nEu xriYZ9mGxdU/x39oxKjGiyd2qFr8yP+ASBYlS0I8bxUjCaW2E/HNAV/CMPnjSJXK jf99Wr/QKTt1h6c/ie7AoiNqfiMugUuBbTXFdplInd8eRJXCqUxiHRsFd1SUpQOj H6gu9CtAtR8IYspslV6Ow7pgZswUuruqVqnMP+P4Yz7IqmnSKcBf1HRSbLX1Py0l UDa5T+hcgCNvCfmdZEwVwYf71ijWW3hpCcFohM+zZOueeZwp/R6mUEYy2dxZ0xno qOETr/APZiNdHPMmTKkYzwjZnrNIhWtV -----END CERTIFICATE-----Generated at Tue Jun 17 07:56:11 2025 by rpki-client