$ rpki-client -vvf rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft File: OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft (raw, json) Hash identifier: YBY23+X2PqS2ivIhN6gVCY9Sfxk5K+Q2WnDaciFkNHI= Subject key identifier: 04:91:50:C7:BA:D7:DA:7E:B9:6C:1B:2F:86:18:7A:16:81:5B:F1:4A Authority key identifier: 3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B Certificate issuer: /CN=A913B32D/serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Certificate serial: 0405 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft Manifest number: 03FE Signing time: Sun 15 Jun 2025 00:10:51 +0000 Manifest this update: Sun 15 Jun 2025 00:10:51 +0000 Manifest next update: Sun 22 Jun 2025 00:10:51 +0000 Files and hashes: 1: OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl (hash: M4mv+RrETSQNt/z65nWhvpp0erTudIWr/BZ+qj5itcA=) 2: F2BB36DC790E11EC8EA0F77FC4F9AE02.roa (hash: 17t3m0KvoRjfHzLmSGQMixJ4h1po9W3fjkqykP9EfmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1029 (0x405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B32D, serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Validity Not Before: Jun 15 00:10:51 2025 GMT Not After : Jun 22 00:10:51 2025 GMT Subject: CN=684e0f8b-77d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:42:26:2f:45:04:39:6d:87:26:78:dd:86:10: 4b:dc:b6:a0:61:5f:8f:72:08:66:60:3a:e8:4c:85: 80:8c:75:ea:c2:38:91:8f:a3:6b:ee:aa:79:de:25: a4:79:ab:ef:6f:07:0a:f2:7e:8e:cb:c6:51:8e:6e: b6:c7:34:1d:7d:52:27:dd:95:e1:b5:93:b7:4f:d0: e7:4e:3b:5f:61:6a:7c:7b:6f:ec:ad:bb:b9:bc:20: db:5b:b5:c1:44:ad:42:c3:59:ed:5d:27:ff:4c:e6: 2c:54:d5:b3:01:8d:90:4f:e8:a5:a7:90:a5:56:e5: 49:fd:5b:c8:21:9b:91:f2:f9:df:6f:73:d0:43:03: 53:c4:a3:cc:20:4c:1a:cf:9f:02:89:ce:90:ad:75: d9:1c:d7:a2:4f:18:06:66:12:75:18:01:7c:82:e9: 26:18:40:bb:e9:a6:60:66:b3:7b:b6:f5:20:7c:f3: 37:0c:50:b8:30:78:be:6b:9b:8e:ab:79:2a:69:56: 6e:35:73:12:6c:85:41:db:d8:7a:b7:af:b9:0e:5f: 4a:51:db:19:67:dc:68:08:43:00:74:08:24:f4:33: fa:d3:41:1d:41:04:d7:79:c0:d7:b2:42:47:c0:6a: 9f:3d:f5:e8:47:ad:96:8d:7f:42:3c:3d:81:e3:f5: 45:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:91:50:C7:BA:D7:DA:7E:B9:6C:1B:2F:86:18:7A:16:81:5B:F1:4A X509v3 Authority Key Identifier: keyid:3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:a5:88:2c:ad:e8:a3:e0:18:59:fd:eb:1f:e2:90:85:37:99: 0f:30:74:36:ae:43:99:b4:88:6d:48:96:70:fb:77:54:65:cc: ad:68:1c:78:98:14:00:d1:ce:5a:7e:05:59:52:b9:03:e2:3f: 04:d9:f7:33:0c:08:08:fa:e9:fe:00:94:af:3f:70:05:32:41: 95:fe:9f:88:a3:dd:64:7e:b6:fe:23:98:35:1e:35:11:56:ee: 85:df:a1:5a:04:0b:9e:c9:26:1f:3c:39:1a:da:72:94:20:ca: b3:3d:d3:92:b7:b6:bd:dc:29:9b:6c:36:e1:8f:61:4f:c9:08: b0:10:cb:ba:c6:ca:1b:d6:0e:92:45:3d:0b:9f:fd:2a:53:99: 1d:03:07:70:3f:ca:f5:c6:37:a8:64:dd:02:ac:26:52:7b:43: 91:24:8d:06:a9:a7:81:ce:b2:e3:8e:b2:1f:a4:19:f9:ac:69: 39:1b:09:33:50:5f:65:56:58:6e:59:e0:b4:2a:39:5d:1c:aa: 45:96:31:b3:b6:c1:67:49:cb:32:09:0d:75:12:68:fd:1b:cf: 55:31:ad:80:44:03:f2:ce:b6:7e:2e:ca:53:6b:f3:42:36:82: ad:87:3c:cf:bb:89:20:65:06:5b:78:74:6e:6d:23:25:49:13: 9b:a0:d3:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IzMkQxMTAvBgNVBAUTKDNBNjhBMjIyQzJDMENGNDE0MzBDMDk2OEQyMzA5QUE4 OTNDNzRBM0IwHhcNMjUwNjE1MDAxMDUxWhcNMjUwNjIyMDAxMDUxWjAYMRYwFAYD VQQDEw02ODRlMGY4Yi03N2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0ImL0UEOW2HJnjdhhBL3LagYV+PcghmYDroTIWAjHXqwjiRj6Nr7qp53iWk eavvbwcK8n6Oy8ZRjm62xzQdfVIn3ZXhtZO3T9DnTjtfYWp8e2/srbu5vCDbW7XB RK1Cw1ntXSf/TOYsVNWzAY2QT+ilp5ClVuVJ/VvIIZuR8vnfb3PQQwNTxKPMIEwa z58Cic6QrXXZHNeiTxgGZhJ1GAF8gukmGEC76aZgZrN7tvUgfPM3DFC4MHi+a5uO q3kqaVZuNXMSbIVB29h6t6+5Dl9KUdsZZ9xoCEMAdAgk9DP600EdQQTXecDXskJH wGqfPfXoR62WjX9CPD2B4/VFuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASRUMe6 19p+uWwbL4YYehaBW/FKMB8GA1UdIwQYMBaAFDpooiLCwM9BQwwJaNIwmqiTx0o7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjMyRC84NkZEMTM4ODc5 MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXowRkREQWxvMGpDYXFKUEhT anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taWlJc0xBejBGRERBbG8wakNhcUpQSFNqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjMyRC84NkZEMTM4ODc5MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXow RkREQWxvMGpDYXFKUEhTanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOpYgsreij4BhZ/esf4pCFN5kPMHQ2rkOZtIhtSJZw+3dUZcytaBx4 mBQA0c5afgVZUrkD4j8E2fczDAgI+un+AJSvP3AFMkGV/p+Io91kfrb+I5g1HjUR Vu6F36FaBAueySYfPDka2nKUIMqzPdOSt7a93CmbbDbhj2FPyQiwEMu6xsob1g6S RT0Ln/0qU5kdAwdwP8r1xjeoZN0CrCZSe0ORJI0GqaeBzrLjjrIfpBn5rGk5Gwkz UF9lVlhuWeC0KjldHKpFljGztsFnScsyCQ11Emj9G89VMa2ARAPyzrZ+LspTa/NC NoKthzzPu4kgZQZbeHRubSMlSROboNOM -----END CERTIFICATE-----Generated at Sun Jun 15 08:35:41 2025 by rpki-client