$ rpki-client -vvf rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft File: Omhmsd88LltfrK7gwJkrvHiMXQo.mft (raw, json) Hash identifier: dlAHuTFSl9tFn/9j4zv+5RPPNhpC3yCSSq+Twcj1U80= Subject key identifier: 74:77:A5:5F:85:60:03:C0:B6:18:9C:DC:DE:F1:57:AF:40:1D:2F:A4 Authority key identifier: 3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A Certificate issuer: /CN=A911A6D6/serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Certificate serial: 0166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft Manifest number: 0163 Signing time: Tue 15 Apr 2025 02:55:49 +0000 Manifest this update: Tue 15 Apr 2025 02:55:49 +0000 Manifest next update: Tue 22 Apr 2025 02:55:49 +0000 Files and hashes: 1: Omhmsd88LltfrK7gwJkrvHiMXQo.crl (hash: SlZK1mhpZT71xP7sRNdoSoTpdizs32N4+qFx/wjzLXQ=) 2: D4D3B47EA27811EE9C29A256C4F9AE02.roa (hash: QHRHGfrfRtZTCug8O+YvL4h2f3rUlXsvRTX9IxlC4gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 02:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A6D6, serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Validity Not Before: Apr 15 02:55:49 2025 GMT Not After : Apr 22 02:55:49 2025 GMT Subject: CN=67fdcab5-0aec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:93:ea:39:bf:37:b7:fc:ef:91:ae:2a:ce:2e: ee:6f:87:df:aa:97:04:2f:8b:e2:a8:2c:12:24:ca: 04:85:6a:82:e5:90:71:68:a4:b4:a9:33:a6:04:04: c6:b3:44:c4:92:c2:f6:e3:a0:7f:f4:19:c8:82:dc: 31:72:bd:0b:2e:33:e2:8b:78:46:f7:27:67:33:87: 88:11:40:b8:0e:8e:04:ef:4e:97:47:89:8d:c7:04: 1f:95:dd:bc:dc:1f:20:68:cf:c5:27:4d:52:84:70: 3a:c1:11:29:c1:ba:bf:e9:05:54:4f:3e:6a:1e:7c: f1:53:db:f9:0c:0d:d9:33:56:6c:20:d2:9c:2e:64: f6:ee:e2:86:4f:13:46:52:b3:49:11:e5:81:60:9d: d9:30:e2:70:70:d1:00:f9:a6:40:e9:5e:a7:02:22: bb:e6:76:8b:69:51:70:e9:9f:57:a6:cc:4b:f0:14: df:b0:21:10:dd:5e:ae:78:5a:c5:4f:62:cc:f3:cb: a8:d9:82:3e:9a:65:0c:04:a9:6e:f8:b0:f4:e8:2b: 95:03:95:30:97:0c:d3:3d:01:03:71:d5:ee:79:fe: 7d:40:9a:69:e8:b5:99:e0:da:05:3b:94:7c:99:e8: 85:b6:55:d8:8c:b2:54:bb:13:25:26:7d:17:02:8c: 34:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:77:A5:5F:85:60:03:C0:B6:18:9C:DC:DE:F1:57:AF:40:1D:2F:A4 X509v3 Authority Key Identifier: keyid:3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:4a:b0:7d:fa:87:0f:31:71:63:c4:5b:b9:16:8c:f2:02:b0: 66:62:df:71:53:5b:fa:8f:9e:ff:a7:5c:de:3e:b5:36:b8:91: 59:a1:2b:2e:71:56:11:28:bd:e2:33:34:98:37:2e:a0:91:63: 64:25:d0:9a:50:31:d7:e7:bd:d2:b5:53:1e:54:c6:19:de:1f: 9e:64:4b:20:56:7c:97:8c:82:15:5b:c8:be:13:77:48:2f:7f: 56:61:02:e1:d4:ab:db:35:75:5b:3d:f8:04:94:41:f8:e1:4d: 05:cc:67:12:41:f4:b9:b5:6f:1a:78:92:f8:a2:8b:c1:9c:ae: 3c:29:8f:07:86:30:f4:4c:fb:78:a3:d0:32:f6:b1:85:ec:f0: 63:1b:60:65:3b:b7:72:81:bf:72:02:2e:91:23:e1:65:a7:07: b8:af:74:eb:3e:44:6d:b5:96:e3:be:d5:82:4c:4e:f1:ce:6f: 96:d7:b0:18:d2:bd:a8:89:5e:0c:37:93:75:05:85:24:b4:3a: 4d:78:e8:3b:67:e2:a4:93:74:d2:fe:f5:f0:06:67:22:18:eb: 35:a2:e7:35:12:bd:9a:0d:6a:13:d3:da:70:6a:71:01:3e:6f: 71:86:b7:f4:4b:b6:92:25:60:14:61:f3:1a:d8:ca:0d:29:a4: 6d:55:9c:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2RDYxMTAvBgNVBAUTKDNBNjg2NkIxREYzQzJFNUI1RkFDQUVFMEMwOTkyQkJD Nzg4QzVEMEEwHhcNMjUwNDE1MDI1NTQ5WhcNMjUwNDIyMDI1NTQ5WjAYMRYwFAYD VQQDEw02N2ZkY2FiNS0wYWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ZPqOb83t/zvka4qzi7ub4ffqpcEL4viqCwSJMoEhWqC5ZBxaKS0qTOmBATG s0TEksL246B/9BnIgtwxcr0LLjPii3hG9ydnM4eIEUC4Do4E706XR4mNxwQfld28 3B8gaM/FJ01ShHA6wREpwbq/6QVUTz5qHnzxU9v5DA3ZM1ZsINKcLmT27uKGTxNG UrNJEeWBYJ3ZMOJwcNEA+aZA6V6nAiK75naLaVFw6Z9XpsxL8BTfsCEQ3V6ueFrF T2LM88uo2YI+mmUMBKlu+LD06CuVA5UwlwzTPQEDcdXuef59QJpp6LWZ4NoFO5R8 meiFtlXYjLJUuxMlJn0XAow0YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHR3pV+F YAPAthic3N7xV69AHS+kMB8GA1UdIwQYMBaAFDpoZrHfPC5bX6yu4MCZK7x4jF0K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTZENi9ERTM0QzE3OEZD ODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExsdGZySzdnd0prcnZIaU1Y UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taG1zZDg4TGx0ZnJLN2d3SmtydkhpTVhRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTZENi9ERTM0QzE3OEZDODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExs dGZySzdnd0prcnZIaU1YUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvSrB9+ocPMXFjxFu5FozyArBmYt9xU1v6j57/p1zePrU2uJFZoSsu cVYRKL3iMzSYNy6gkWNkJdCaUDHX573StVMeVMYZ3h+eZEsgVnyXjIIVW8i+E3dI L39WYQLh1KvbNXVbPfgElEH44U0FzGcSQfS5tW8aeJL4oovBnK48KY8HhjD0TPt4 o9Ay9rGF7PBjG2BlO7dygb9yAi6RI+Flpwe4r3TrPkRttZbjvtWCTE7xzm+W17AY 0r2oiV4MN5N1BYUktDpNeOg7Z+Kkk3TS/vXwBmciGOs1ouc1Er2aDWoT09pwanEB Pm9xhrf0S7aSJWAUYfMa2MoNKaRtVZxV -----END CERTIFICATE-----Generated at Wed Apr 16 17:14:20 2025 by rpki-client