$ rpki-client -vvf rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft File: omYWegT6_uWuGlDgRXCtX9RO1pI.mft (raw, json) Hash identifier: Jil2Npvd6DwbwbtRt+vfioH5v9PvHBHzWBp42q/pCXI= Subject key identifier: 6A:37:B1:8A:0E:FF:9B:43:2B:93:77:01:99:CF:D9:CF:16:86:56:39 Authority key identifier: A2:66:16:7A:04:FA:FE:E5:AE:1A:50:E0:45:70:AD:5F:D4:4E:D6:92 Certificate issuer: /CN=A917A0C0/serialNumber=A266167A04FAFEE5AE1A50E04570AD5FD44ED692 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft Manifest number: 7E Signing time: Tue 05 Aug 2025 07:20:21 +0000 Manifest this update: Tue 05 Aug 2025 07:20:20 +0000 Manifest next update: Tue 12 Aug 2025 07:20:20 +0000 Files and hashes: 1: omYWegT6_uWuGlDgRXCtX9RO1pI.crl (hash: b81cX/F3kp0OxnhaLM7LmyuONfqWIuWGlfO3QZZQpx8=) 2: B4A76FC8B5EC11EF9287020CC4F9AE02.roa (hash: JQfh1u+kukwSEqZawoJIJYKiGmFwuaaFjBW+kzrVtks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.crl rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:20:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A0C0, serialNumber=A266167A04FAFEE5AE1A50E04570AD5FD44ED692 Validity Not Before: Aug 5 07:20:20 2025 GMT Not After : Aug 12 07:20:20 2025 GMT Subject: CN=6891b0b4-f2a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6a:56:ab:93:9d:63:31:91:2a:91:af:cf:8a: bc:10:d3:93:36:39:c0:79:9b:70:c3:7f:71:c2:fe: bd:bd:9b:45:09:24:95:2f:7d:63:f0:ed:c8:11:76: 5f:9f:49:8e:89:f5:67:d0:dd:43:35:c3:45:b9:50: 73:d3:34:af:3b:25:de:19:79:bf:15:77:5e:2d:6f: 5f:1c:8c:6c:6e:f1:a8:d9:0d:8f:ff:8c:2d:9e:81: 2c:8a:02:64:e4:0b:a9:cd:e2:4f:68:d4:50:6b:1e: 7b:26:38:15:47:76:d7:99:ba:d9:ee:3f:b9:cf:16: c7:dd:26:45:f2:d2:10:01:33:3e:85:31:95:83:78: d8:5a:2b:87:73:f5:93:aa:46:5e:d5:d4:3a:2a:3a: 1b:18:1b:74:33:36:ea:5a:2b:1d:b6:d4:15:bf:60: a4:62:e8:aa:41:4b:eb:78:eb:1b:8f:6a:22:06:e2: b3:98:c3:b0:4a:96:7f:76:ea:9f:80:19:48:0e:e1: ad:ae:c9:27:b2:70:16:ef:83:c7:19:f4:7b:35:d2: 8d:d6:59:96:e8:bd:09:83:4b:96:7c:55:ce:09:96: c0:96:17:86:ae:3d:97:ae:33:38:d6:73:5c:43:a8: f3:14:5c:f0:40:c8:38:b9:34:08:4a:5f:ed:94:73: ef:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:37:B1:8A:0E:FF:9B:43:2B:93:77:01:99:CF:D9:CF:16:86:56:39 X509v3 Authority Key Identifier: keyid:A2:66:16:7A:04:FA:FE:E5:AE:1A:50:E0:45:70:AD:5F:D4:4E:D6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:e5:98:a6:6c:54:92:5c:f8:56:9e:21:bf:1b:22:70:26:ed: 41:4c:26:71:33:5e:fd:cc:26:33:52:e4:36:45:e1:d9:92:61: 18:9e:8a:39:92:79:d0:70:4c:a0:05:be:7b:40:87:49:08:2b: 6d:5c:b8:ae:9a:84:f3:a8:83:3c:f3:d8:5e:64:ac:7e:53:e7: 46:60:14:67:b4:75:c3:ab:36:65:2e:b9:f0:83:ef:2f:bd:c2: bb:6e:3d:cd:83:b7:2f:eb:e2:2a:3d:b6:be:ae:9c:0a:a8:ce: c3:6b:59:d5:6c:44:00:e5:51:1b:2c:c6:94:08:0c:a2:a4:82: 8c:7f:4a:cb:70:fd:d3:97:7e:19:c6:b8:f8:7b:b1:fc:02:2b: 19:dd:d4:08:45:3b:f4:e2:3c:24:63:9b:0a:e1:f8:74:cb:af: c1:42:0d:14:5f:e3:09:ce:28:9c:63:64:f4:10:17:0e:cd:e1: 44:83:93:c8:5f:84:cc:41:43:43:7e:00:fe:99:9c:11:20:e1: 99:e0:36:5c:fa:7f:e8:07:18:4e:b5:b1:15:28:e7:e4:07:f1: e0:81:fb:54:e3:bb:87:f6:e7:f9:1c:c1:18:e1:ff:35:0b:11: 3e:4d:31:93:ca:af:f1:af:fd:93:45:11:b6:2d:3f:0c:b4:04: f7:d2:b7:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0EwQzAxMTAvBgNVBAUTKEEyNjYxNjdBMDRGQUZFRTVBRTFBNTBFMDQ1NzBBRDVG RDQ0RUQ2OTIwHhcNMjUwODA1MDcyMDIwWhcNMjUwODEyMDcyMDIwWjAYMRYwFAYD VQQDEw02ODkxYjBiNC1mMmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmpWq5OdYzGRKpGvz4q8ENOTNjnAeZtww39xwv69vZtFCSSVL31j8O3IEXZf n0mOifVn0N1DNcNFuVBz0zSvOyXeGXm/FXdeLW9fHIxsbvGo2Q2P/4wtnoEsigJk 5AupzeJPaNRQax57JjgVR3bXmbrZ7j+5zxbH3SZF8tIQATM+hTGVg3jYWiuHc/WT qkZe1dQ6KjobGBt0MzbqWisdttQVv2CkYuiqQUvreOsbj2oiBuKzmMOwSpZ/duqf gBlIDuGtrsknsnAW74PHGfR7NdKN1lmW6L0Jg0uWfFXOCZbAlheGrj2XrjM41nNc Q6jzFFzwQMg4uTQISl/tlHPvvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGo3sYoO /5tDK5N3AZnP2c8WhlY5MB8GA1UdIwQYMBaAFKJmFnoE+v7lrhpQ4EVwrV/UTtaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTBDMC80QTJFREM4MEI1 RUMxMUVGQjAyRUMxMEFDNEY5QUUwMi9vbVlXZWdUNl91V3VHbERnUlhDdFg5Uk8x cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29tWVdlZ1Q2X3VXdUdsRGdSWEN0WDlSTzFwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTBDMC80QTJFREM4MEI1RUMxMUVGQjAyRUMxMEFDNEY5QUUwMi9vbVlXZWdUNl91 V3VHbERnUlhDdFg5Uk8xcEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm5ZimbFSSXPhWniG/GyJwJu1BTCZxM179zCYzUuQ2ReHZkmEYnoo5 knnQcEygBb57QIdJCCttXLiumoTzqIM889heZKx+U+dGYBRntHXDqzZlLrnwg+8v vcK7bj3Ng7cv6+IqPba+rpwKqM7Da1nVbEQA5VEbLMaUCAyipIKMf0rLcP3Tl34Z xrj4e7H8AisZ3dQIRTv04jwkY5sK4fh0y6/BQg0UX+MJziicY2T0EBcOzeFEg5PI X4TMQUNDfgD+mZwRIOGZ4DZc+n/oBxhOtbEVKOfkB/HggftU47uH9uf5HMEY4f81 CxE+TTGTyq/xr/2TRRG2LT8MtAT30rcg -----END CERTIFICATE-----Generated at Thu Aug 7 07:34:56 2025 by rpki-client