$ rpki-client -vvf rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft File: omYWegT6_uWuGlDgRXCtX9RO1pI.mft (raw, json) Hash identifier: 8CCb/iHLBR/vsD6GCdGcbP3RAvAPxMJmq2Yl1VXfAT0= Subject key identifier: BC:A0:84:B2:C2:60:A8:85:7A:DE:F4:0F:6C:27:A0:75:C7:3E:B9:C2 Authority key identifier: A2:66:16:7A:04:FA:FE:E5:AE:1A:50:E0:45:70:AD:5F:D4:4E:D6:92 Certificate issuer: /CN=A917A0C0/serialNumber=A266167A04FAFEE5AE1A50E04570AD5FD44ED692 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft Manifest number: 63 Signing time: Fri 13 Jun 2025 05:59:30 +0000 Manifest this update: Fri 13 Jun 2025 05:59:30 +0000 Manifest next update: Fri 20 Jun 2025 05:59:30 +0000 Files and hashes: 1: omYWegT6_uWuGlDgRXCtX9RO1pI.crl (hash: NUED1mfvvkdJYvMBJ4OKrIsdvWZ2SOzyqH1WAfuL2Dw=) 2: B4A76FC8B5EC11EF9287020CC4F9AE02.roa (hash: JQfh1u+kukwSEqZawoJIJYKiGmFwuaaFjBW+kzrVtks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.crl rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A0C0, serialNumber=A266167A04FAFEE5AE1A50E04570AD5FD44ED692 Validity Not Before: Jun 13 05:59:30 2025 GMT Not After : Jun 20 05:59:30 2025 GMT Subject: CN=684bbe42-e4d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c6:32:27:ea:c7:ad:49:a4:6d:97:41:4f:1b: 21:02:cd:d2:d7:a8:dd:dc:7d:7b:e0:f0:fa:41:26: b2:f8:cb:93:a8:af:e2:2f:59:ea:13:d8:55:00:ce: 8f:12:98:90:65:f7:38:16:fb:15:07:2e:e9:3e:09: 65:85:0a:52:94:9d:96:d1:82:87:22:8b:29:06:ad: 7a:a2:2a:1a:e9:80:64:82:08:6a:84:3b:1a:a8:2e: 75:77:ec:3f:7a:df:af:b7:23:0e:b5:a9:a8:0b:65: ed:c6:b2:cd:91:de:5c:b7:1c:8d:92:bb:2e:fe:25: 5e:49:90:3d:23:f8:ac:1e:a9:76:ec:f4:6f:87:1e: 25:32:aa:58:d5:a7:2a:8e:98:0f:34:5c:7a:de:22: 8b:b0:e5:96:f5:23:df:c8:3e:c4:b2:56:8d:db:f3: 2c:3f:05:96:0d:ca:6c:58:c7:e6:71:43:7e:8d:cd: f6:de:5c:ac:58:bf:c3:48:d0:d5:56:b7:d3:b5:14: cf:ae:a0:41:ae:38:4d:b3:f8:01:10:54:01:86:5f: 2e:fd:7f:29:a5:3c:2b:b6:59:85:c6:01:eb:68:ae: 60:21:1c:dd:78:ec:51:cd:2f:a1:54:c1:6f:63:11: 27:cb:a0:a3:2c:25:b0:8c:f7:26:3d:06:91:a4:52: 07:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:A0:84:B2:C2:60:A8:85:7A:DE:F4:0F:6C:27:A0:75:C7:3E:B9:C2 X509v3 Authority Key Identifier: keyid:A2:66:16:7A:04:FA:FE:E5:AE:1A:50:E0:45:70:AD:5F:D4:4E:D6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:58:b6:32:43:e1:3d:24:53:f8:b6:2c:f9:87:01:d0:8f:36: 8e:d6:07:9b:a8:09:b9:15:93:85:6e:b3:e1:33:64:c5:61:dd: fc:fd:94:72:83:87:b4:dd:a2:9c:16:83:4b:6e:a8:2b:a4:ea: 7f:49:91:28:fa:d7:b9:d8:94:70:70:05:27:64:55:8d:ab:5d: f1:4f:71:02:62:f1:cb:81:e8:e7:fd:d2:d8:32:71:b5:0a:06: 49:8d:bf:99:b3:28:3a:bd:6c:63:4b:8e:a0:4d:61:ae:ae:b9: 5c:7c:45:c7:f6:2b:1a:95:a8:bc:27:61:a6:fa:97:b1:cf:60: a9:f9:5b:9c:7a:c0:3f:10:a5:b0:af:5a:3e:51:4f:93:6c:a8: 85:f5:0b:bb:7b:b3:69:a7:f1:76:be:6c:ab:4a:f6:d4:8c:87: 4d:26:0a:b9:c0:58:08:97:c2:0c:37:c7:58:d9:8a:2d:ac:93: 06:88:03:97:b3:2a:08:29:4d:a1:b0:c5:86:00:a3:a0:82:f5: be:c3:42:77:d4:df:b5:0f:e7:50:da:f1:65:7f:38:d0:0e:cf: fd:ec:f7:26:34:58:9c:48:e8:a6:e7:8b:56:2a:f2:a6:4a:d5: 9a:23:cc:84:fb:ad:d1:ab:4c:95:61:6a:03:d3:b9:f7:c4:89: c7:4d:0e:fc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QTBDMDExMC8GA1UEBRMoQTI2NjE2N0EwNEZBRkVFNUFFMUE1MEUwNDU3MEFENUZE NDRFRDY5MjAeFw0yNTA2MTMwNTU5MzBaFw0yNTA2MjAwNTU5MzBaMBgxFjAUBgNV BAMTDTY4NGJiZTQyLWU0ZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFxjIn6setSaRtl0FPGyECzdLXqN3cfXvg8PpBJrL4y5Oor+IvWeoT2FUAzo8S mJBl9zgW+xUHLuk+CWWFClKUnZbRgociiykGrXqiKhrpgGSCCGqEOxqoLnV37D96 36+3Iw61qagLZe3Gss2R3ly3HI2Suy7+JV5JkD0j+KweqXbs9G+HHiUyqljVpyqO mA80XHreIouw5Zb1I9/IPsSyVo3b8yw/BZYNymxYx+ZxQ36NzfbeXKxYv8NI0NVW t9O1FM+uoEGuOE2z+AEQVAGGXy79fymlPCu2WYXGAetormAhHN147FHNL6FUwW9j ESfLoKMsJbCM9yY9BpGkUgfxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvKCEssJg qIV63vQPbCegdcc+ucIwHwYDVR0jBBgwFoAUomYWegT6/uWuGlDgRXCtX9RO1pIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBMEMwLzRBMkVEQzgwQjVF QzExRUZCMDJFQzEwQUM0RjlBRTAyL29tWVdlZ1Q2X3VXdUdsRGdSWEN0WDlSTzFw SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb21ZV2VnVDZfdVd1R2xEZ1JYQ3RYOVJPMXBJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdB MEMwLzRBMkVEQzgwQjVFQzExRUZCMDJFQzEwQUM0RjlBRTAyL29tWVdlZ1Q2X3VX dUdsRGdSWEN0WDlSTzFwSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD5YtjJD4T0kU/i2LPmHAdCPNo7WB5uoCbkVk4Vus+EzZMVh3fz9lHKD h7TdopwWg0tuqCuk6n9JkSj617nYlHBwBSdkVY2rXfFPcQJi8cuB6Of90tgycbUK BkmNv5mzKDq9bGNLjqBNYa6uuVx8Rcf2KxqVqLwnYab6l7HPYKn5W5x6wD8QpbCv Wj5RT5NsqIX1C7t7s2mn8Xa+bKtK9tSMh00mCrnAWAiXwgw3x1jZii2skwaIA5ez KggpTaGwxYYAo6CC9b7DQnfU37UP51Da8WV/ONAOz/3s9yY0WJxI6Kbni1Yq8qZK 1ZojzIT7rdGrTJVhagPTuffEicdNDvw= -----END CERTIFICATE-----Generated at Sat Jun 14 18:45:46 2025 by rpki-client