$ rpki-client -vvf rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft File: OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft (raw, json) Hash identifier: yN213Hkox6ahiuC+YsLmozzmdiLnISImWyV24eK9f1w= Subject key identifier: 15:F1:FF:96:6F:F0:79:E8:AF:91:1B:AA:63:2D:4A:C1:7B:EB:14:F8 Authority key identifier: 3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B Certificate issuer: /CN=A913B32D/serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Certificate serial: 03EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft Manifest number: 03E5 Signing time: Fri 25 Apr 2025 00:18:24 +0000 Manifest this update: Fri 25 Apr 2025 00:18:24 +0000 Manifest next update: Fri 02 May 2025 00:18:24 +0000 Files and hashes: 1: OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl (hash: seF6EPKI3Y/3qtsTbwwqahk4WFStDRcmxV3UL0IGUuU=) 2: F2BB36DC790E11EC8EA0F77FC4F9AE02.roa (hash: 17t3m0KvoRjfHzLmSGQMixJ4h1po9W3fjkqykP9EfmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1004 (0x3ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B32D, serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Validity Not Before: Apr 25 00:18:24 2025 GMT Not After : May 2 00:18:24 2025 GMT Subject: CN=680ad4d0-5e69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5b:81:12:73:49:45:b1:a4:92:53:66:7b:64: bd:a0:f4:43:c4:74:1e:e5:95:c5:2d:ab:c8:b8:fe: 0b:0d:ab:74:56:0c:bc:ec:0f:8f:9d:06:61:fe:64: 93:d6:d1:ee:d4:3d:87:52:23:87:92:78:c0:f7:ba: c2:bd:1e:5e:5a:0e:6a:c1:a8:50:bf:42:0f:04:4b: 9c:7a:b7:a4:3f:b6:8a:d4:c5:3f:ec:6e:da:60:69: 6f:4b:2d:bd:42:8f:85:6b:39:57:31:70:a9:3e:b1: cb:75:52:98:d9:55:2d:b8:b1:62:3f:53:c1:7e:17: 0e:2f:67:a4:f6:50:35:ac:2f:c9:43:10:9f:64:1f: fc:31:17:f7:fc:b8:6c:23:29:08:88:79:03:13:a5: 33:df:e9:47:f3:9f:11:dc:f6:b7:15:63:b8:93:2e: 1b:b0:98:b4:65:d0:fa:87:39:15:b9:84:0e:d2:14: c0:c6:f6:40:06:6f:7a:a2:9b:db:a2:d9:73:c5:f8: 5a:68:f7:06:e7:4b:d4:63:d7:f3:cf:03:97:a9:d5: 21:7f:0f:f0:cd:84:8d:d8:9a:ce:a4:d7:a5:76:b3: b7:40:b9:44:0e:8d:69:80:3b:f9:ad:73:4f:25:d0: cc:ce:80:90:79:5b:fa:8c:6a:7f:4e:ac:07:c6:7b: fc:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F1:FF:96:6F:F0:79:E8:AF:91:1B:AA:63:2D:4A:C1:7B:EB:14:F8 X509v3 Authority Key Identifier: keyid:3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:8d:85:2e:eb:b9:f5:47:d4:12:b2:77:b0:45:b8:f8:46:da: 7c:5c:9f:83:0d:fc:19:42:9e:d6:3a:52:44:3d:07:a4:e8:85: 12:7a:fe:6c:a3:ce:28:94:fc:10:94:47:7c:96:4a:50:ef:ba: 60:fa:d7:9c:15:da:e2:de:9f:1b:2e:98:43:61:0b:39:0d:70: 2b:de:ed:78:fa:e8:ed:ee:8f:4d:d6:e1:36:a8:f7:2d:6a:64: 6e:f0:e3:7d:27:c3:04:47:56:ef:09:af:ad:db:6f:46:b9:e5: 96:bf:53:69:d6:de:56:23:99:fb:f6:dd:55:64:ad:27:b9:1b: ef:6f:08:83:73:22:73:c1:22:7e:a1:eb:dd:89:8e:1b:16:df: 8f:e0:84:1e:2e:89:9d:17:c4:f1:a8:7f:fb:e7:08:d6:95:01: 9a:7c:f2:13:36:16:03:8d:dc:c0:d0:56:90:bf:32:09:d0:be: b1:cb:1a:bd:5e:5a:73:60:48:62:c2:8f:05:51:2a:59:29:58: c0:c7:d4:89:7e:fd:08:5d:8b:58:74:0c:c6:cb:63:bc:1f:a9: 23:4f:23:40:2b:2d:28:0c:cb:15:84:61:02:2b:2c:e0:69:f6: ab:96:af:0a:51:16:4f:d4:09:dd:35:7d:d7:36:d6:59:99:af: 44:8d:74:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IzMkQxMTAvBgNVBAUTKDNBNjhBMjIyQzJDMENGNDE0MzBDMDk2OEQyMzA5QUE4 OTNDNzRBM0IwHhcNMjUwNDI1MDAxODI0WhcNMjUwNTAyMDAxODI0WjAYMRYwFAYD VQQDEw02ODBhZDRkMC01ZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVuBEnNJRbGkklNme2S9oPRDxHQe5ZXFLavIuP4LDat0Vgy87A+PnQZh/mST 1tHu1D2HUiOHknjA97rCvR5eWg5qwahQv0IPBEucerekP7aK1MU/7G7aYGlvSy29 Qo+FazlXMXCpPrHLdVKY2VUtuLFiP1PBfhcOL2ek9lA1rC/JQxCfZB/8MRf3/Lhs IykIiHkDE6Uz3+lH858R3Pa3FWO4ky4bsJi0ZdD6hzkVuYQO0hTAxvZABm96opvb otlzxfhaaPcG50vUY9fzzwOXqdUhfw/wzYSN2JrOpNeldrO3QLlEDo1pgDv5rXNP JdDMzoCQeVv6jGp/TqwHxnv8BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXx/5Zv 8Hnor5EbqmMtSsF76xT4MB8GA1UdIwQYMBaAFDpooiLCwM9BQwwJaNIwmqiTx0o7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjMyRC84NkZEMTM4ODc5 MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXowRkREQWxvMGpDYXFKUEhT anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taWlJc0xBejBGRERBbG8wakNhcUpQSFNqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjMyRC84NkZEMTM4ODc5MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXow RkREQWxvMGpDYXFKUEhTanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvjYUu67n1R9QSsnewRbj4Rtp8XJ+DDfwZQp7WOlJEPQek6IUSev5s o84olPwQlEd8lkpQ77pg+tecFdri3p8bLphDYQs5DXAr3u14+ujt7o9N1uE2qPct amRu8ON9J8MER1bvCa+t229GueWWv1Np1t5WI5n79t1VZK0nuRvvbwiDcyJzwSJ+ oevdiY4bFt+P4IQeLomdF8TxqH/75wjWlQGafPITNhYDjdzA0FaQvzIJ0L6xyxq9 XlpzYEhiwo8FUSpZKVjAx9SJfv0IXYtYdAzGy2O8H6kjTyNAKy0oDMsVhGECKyzg afarlq8KURZP1AndNX3XNtZZma9EjXRD -----END CERTIFICATE-----Generated at Sat Apr 26 05:05:57 2025 by rpki-client