$ rpki-client -vvf rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft File: OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft (raw, json) Hash identifier: uflizdYBCixTh72zPbF1H0SIxSpTKi2QTWaRKsxwrxg= Subject key identifier: 51:89:AD:6E:3B:9F:0F:47:50:C9:5B:D5:19:3E:3D:75:8D:40:63:F7 Authority key identifier: 3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B Certificate issuer: /CN=A913B32D/serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Certificate serial: 0421 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft Manifest number: 041A Signing time: Sat 09 Aug 2025 00:52:38 +0000 Manifest this update: Sat 09 Aug 2025 00:52:37 +0000 Manifest next update: Sat 16 Aug 2025 00:52:37 +0000 Files and hashes: 1: OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl (hash: Q1/y+qWQvSjrAf1VS5eFwnQhoDV308uI3bfp0jWguPY=) 2: F2BB36DC790E11EC8EA0F77FC4F9AE02.roa (hash: 17t3m0KvoRjfHzLmSGQMixJ4h1po9W3fjkqykP9EfmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1057 (0x421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B32D, serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Validity Not Before: Aug 9 00:52:37 2025 GMT Not After : Aug 16 00:52:37 2025 GMT Subject: CN=68969bd5-7700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:fc:e0:40:5e:22:b1:74:7c:13:0a:84:a2:ce: f5:75:ca:6f:90:cb:f4:df:58:36:9a:00:1b:9f:38: 6d:14:8b:be:01:3f:41:ce:f7:f6:76:79:57:51:5c: f4:1a:fd:08:a4:a4:24:19:3c:ae:ca:46:8d:f2:fd: d7:fe:db:e5:1e:78:23:89:d2:59:4e:9f:b3:7a:d6: d1:e7:80:85:46:33:05:76:47:45:2a:f0:4b:f8:18: fb:7d:96:a4:89:e1:e8:f2:74:f7:d3:0e:f6:78:ac: 3f:95:ab:c9:60:bb:b6:35:c2:0e:3d:04:c1:47:6e: 9f:ac:d2:a8:4a:f0:32:1e:3e:00:ef:73:e8:2f:44: bd:31:2e:a8:0b:c1:19:a9:97:ee:e4:f7:56:52:57: 40:ad:11:ee:d5:6b:9f:80:35:66:04:17:f9:0b:41: 77:01:c4:ba:4d:82:72:eb:41:52:e7:a0:81:44:31: a3:96:8e:2a:8c:ce:e8:ce:e5:29:47:c0:56:74:ce: 07:67:17:84:64:74:69:15:60:a6:ab:60:58:be:cc: f8:a8:03:b3:8b:5a:7e:37:22:9a:38:30:32:24:a6: 83:75:e2:bf:de:29:12:55:b7:e9:6f:42:a0:7d:2a: 7f:49:c6:00:1b:8b:74:2f:7d:64:70:96:77:77:51: de:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:89:AD:6E:3B:9F:0F:47:50:C9:5B:D5:19:3E:3D:75:8D:40:63:F7 X509v3 Authority Key Identifier: keyid:3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:34:1d:2d:b7:15:df:88:12:6d:2f:6d:5f:da:48:89:73:ab: f6:8a:83:cb:c9:79:94:70:b1:61:79:32:12:36:7b:da:0e:b1: bd:2e:68:1d:3e:01:99:79:37:2b:a9:90:1f:89:4e:99:21:11: 8d:2b:c3:8c:ad:0b:70:6c:fb:4c:15:8c:4f:8b:93:20:53:0d: 6b:f9:bd:6d:50:56:fc:d3:08:cb:79:24:de:fd:da:d1:51:17: 8c:b7:92:b9:78:e2:a0:eb:c7:26:0b:35:80:a0:19:ae:40:9c: 14:0b:78:e5:51:a0:2f:3a:c8:85:52:ef:15:41:a9:e4:c6:ef: 99:fd:e6:88:f5:da:15:28:38:2c:99:2c:67:6a:e9:07:36:ed: f5:e6:ad:5a:30:20:26:fa:40:5a:f0:e2:61:d2:b0:4a:41:df: 0c:de:b6:39:fc:dd:08:32:e4:3c:bc:a8:fd:cd:c6:99:eb:f0: 5f:24:04:09:90:41:e5:07:c8:bd:04:b5:21:34:01:df:d9:fd: 4a:58:c8:f0:10:da:52:3e:1c:7e:d8:4b:93:48:27:5e:29:01: 53:f9:4c:ae:9f:92:33:c1:b9:45:47:1d:da:3e:69:4d:7d:88: 9b:38:c3:a3:ad:46:a1:33:a8:49:1d:e6:05:66:22:84:6f:2a: f1:5f:71:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IzMkQxMTAvBgNVBAUTKDNBNjhBMjIyQzJDMENGNDE0MzBDMDk2OEQyMzA5QUE4 OTNDNzRBM0IwHhcNMjUwODA5MDA1MjM3WhcNMjUwODE2MDA1MjM3WjAYMRYwFAYD VQQDEw02ODk2OWJkNS03NzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2vzgQF4isXR8EwqEos71dcpvkMv031g2mgAbnzhtFIu+AT9Bzvf2dnlXUVz0 Gv0IpKQkGTyuykaN8v3X/tvlHngjidJZTp+zetbR54CFRjMFdkdFKvBL+Bj7fZak ieHo8nT30w72eKw/lavJYLu2NcIOPQTBR26frNKoSvAyHj4A73PoL0S9MS6oC8EZ qZfu5PdWUldArRHu1WufgDVmBBf5C0F3AcS6TYJy60FS56CBRDGjlo4qjM7ozuUp R8BWdM4HZxeEZHRpFWCmq2BYvsz4qAOzi1p+NyKaODAyJKaDdeK/3ikSVbfpb0Kg fSp/ScYAG4t0L31kcJZ3d1HeiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGJrW47 nw9HUMlb1Rk+PXWNQGP3MB8GA1UdIwQYMBaAFDpooiLCwM9BQwwJaNIwmqiTx0o7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjMyRC84NkZEMTM4ODc5 MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXowRkREQWxvMGpDYXFKUEhT anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taWlJc0xBejBGRERBbG8wakNhcUpQSFNqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjMyRC84NkZEMTM4ODc5MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXow RkREQWxvMGpDYXFKUEhTanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzNB0ttxXfiBJtL21f2kiJc6v2ioPLyXmUcLFheTISNnvaDrG9Lmgd PgGZeTcrqZAfiU6ZIRGNK8OMrQtwbPtMFYxPi5MgUw1r+b1tUFb80wjLeSTe/drR UReMt5K5eOKg68cmCzWAoBmuQJwUC3jlUaAvOsiFUu8VQankxu+Z/eaI9doVKDgs mSxnaukHNu315q1aMCAm+kBa8OJh0rBKQd8M3rY5/N0IMuQ8vKj9zcaZ6/BfJAQJ kEHlB8i9BLUhNAHf2f1KWMjwENpSPhx+2EuTSCdeKQFT+Uyun5IzwblFRx3aPmlN fYibOMOjrUahM6hJHeYFZiKEbyrxX3HC -----END CERTIFICATE-----Generated at Sat Aug 9 15:12:10 2025 by rpki-client