$ rpki-client -vvf rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft File: omYWegT6_uWuGlDgRXCtX9RO1pI.mft (raw, json) Hash identifier: i15yEj7XBYJmJ0/fCiSnpkR/hIs8KJ+1cKjsRKYCKGg= Subject key identifier: 47:CC:6D:33:3B:DE:8F:C7:27:5E:2A:E5:D1:70:86:06:95:93:7E:80 Authority key identifier: A2:66:16:7A:04:FA:FE:E5:AE:1A:50:E0:45:70:AD:5F:D4:4E:D6:92 Certificate issuer: /CN=A917A0C0/serialNumber=A266167A04FAFEE5AE1A50E04570AD5FD44ED692 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft Manifest number: 75 Signing time: Sat 19 Jul 2025 07:05:55 +0000 Manifest this update: Sat 19 Jul 2025 07:05:54 +0000 Manifest next update: Sat 26 Jul 2025 07:05:54 +0000 Files and hashes: 1: omYWegT6_uWuGlDgRXCtX9RO1pI.crl (hash: UmKuZKBRwq6nqDauLbB5X6fwrU/g0e7azxRL0vCjWYA=) 2: B4A76FC8B5EC11EF9287020CC4F9AE02.roa (hash: JQfh1u+kukwSEqZawoJIJYKiGmFwuaaFjBW+kzrVtks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.crl rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:05:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A0C0, serialNumber=A266167A04FAFEE5AE1A50E04570AD5FD44ED692 Validity Not Before: Jul 19 07:05:54 2025 GMT Not After : Jul 26 07:05:54 2025 GMT Subject: CN=687b43d2-0f42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1c:f2:8e:ae:04:e8:33:bf:15:33:93:c8:d9: 32:b1:8f:28:20:99:91:f2:99:fe:eb:79:fb:54:c2: d6:0d:5e:d6:ed:83:c8:3b:1d:79:6b:0e:5a:e6:31: f4:a8:88:eb:8c:de:fd:65:8e:7b:7c:42:e4:02:cc: ca:46:fe:56:85:4a:1a:ba:16:ab:d5:04:06:1e:3f: bf:4a:2e:ca:66:c0:1f:df:0a:1d:91:b0:cc:44:98: 50:bf:8f:d7:ec:16:cf:33:84:70:47:bc:f2:d3:f5: 10:c1:71:58:df:04:75:9c:ca:d9:22:2c:02:f8:b9: 41:ce:6a:6c:05:34:ec:92:29:f5:a3:cd:0a:c4:ed: 76:9c:b2:1d:97:89:d6:b5:49:99:08:fe:bb:4d:d2: ad:f3:dc:c9:68:aa:e1:7b:33:d6:60:18:aa:0c:88: f5:5a:ec:28:bf:05:f2:6b:78:3d:1d:dc:1f:4a:14: 15:0e:cf:95:3e:bf:74:5c:b5:4b:f1:01:1f:f2:42: 08:ee:53:63:0f:d0:20:11:b3:7c:a8:f6:62:1b:ac: e9:2e:66:21:78:64:1c:8f:9a:b1:d2:7f:68:5a:87: b1:67:b5:88:7c:b5:3b:84:59:c1:0e:0e:b8:d9:b3: 8a:f7:a9:8d:40:08:bb:72:cc:3e:b1:01:07:4f:f5: 3f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:CC:6D:33:3B:DE:8F:C7:27:5E:2A:E5:D1:70:86:06:95:93:7E:80 X509v3 Authority Key Identifier: keyid:A2:66:16:7A:04:FA:FE:E5:AE:1A:50:E0:45:70:AD:5F:D4:4E:D6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:8f:22:6f:b4:a7:1f:a1:55:39:ed:9a:42:d2:1d:6a:cb:ae: 0c:76:06:c0:b4:fb:8e:fa:9f:ea:3e:3e:a9:99:0e:e4:49:11: cc:d9:27:96:d7:82:bb:00:c0:d4:af:f7:9c:19:e7:97:b7:b7: 84:ca:60:2d:c8:81:3e:da:48:a6:20:ce:57:58:c8:88:0a:0a: ea:56:fa:7d:09:5b:f0:c8:81:d2:20:4c:55:2d:d9:27:94:d9: aa:26:97:15:ef:f6:b2:60:c5:a6:e5:07:5d:0f:59:f6:ea:d3: a7:2a:13:62:c3:c0:02:7c:34:d3:47:55:2f:27:ce:f2:97:15: f9:dc:38:39:ac:44:de:23:24:13:1b:fa:02:12:a2:55:2f:84: 0c:fb:83:18:97:65:7c:78:4d:c2:54:4d:01:7c:ff:71:69:e1: 84:5a:a8:92:15:b1:ab:45:b9:8a:f5:29:2f:ea:48:71:6a:31: cc:e1:06:19:c2:8a:dd:de:da:22:b2:d9:03:ff:6a:75:89:f9: 23:13:d3:de:1c:df:25:5f:88:59:a4:8d:6c:ef:76:42:e5:a3: 95:73:c1:4f:e1:ee:dd:98:92:8b:2b:fb:de:d8:dd:4b:1b:e0: ad:63:a2:98:25:74:a5:f8:86:2b:36:bb:ee:1c:5d:f0:1f:52: 2e:da:00:f2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QTBDMDExMC8GA1UEBRMoQTI2NjE2N0EwNEZBRkVFNUFFMUE1MEUwNDU3MEFENUZE NDRFRDY5MjAeFw0yNTA3MTkwNzA1NTRaFw0yNTA3MjYwNzA1NTRaMBgxFjAUBgNV BAMTDTY4N2I0M2QyLTBmNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+HPKOrgToM78VM5PI2TKxjyggmZHymf7reftUwtYNXtbtg8g7HXlrDlrmMfSo iOuM3v1ljnt8QuQCzMpG/laFShq6FqvVBAYeP79KLspmwB/fCh2RsMxEmFC/j9fs Fs8zhHBHvPLT9RDBcVjfBHWcytkiLAL4uUHOamwFNOySKfWjzQrE7Xacsh2Xida1 SZkI/rtN0q3z3MloquF7M9ZgGKoMiPVa7Ci/BfJreD0d3B9KFBUOz5U+v3RctUvx AR/yQgjuU2MP0CARs3yo9mIbrOkuZiF4ZByPmrHSf2hah7FntYh8tTuEWcEODrjZ s4r3qY1ACLtyzD6xAQdP9T9rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUR8xtMzve j8cnXirl0XCGBpWTfoAwHwYDVR0jBBgwFoAUomYWegT6/uWuGlDgRXCtX9RO1pIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBMEMwLzRBMkVEQzgwQjVF QzExRUZCMDJFQzEwQUM0RjlBRTAyL29tWVdlZ1Q2X3VXdUdsRGdSWEN0WDlSTzFw SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb21ZV2VnVDZfdVd1R2xEZ1JYQ3RYOVJPMXBJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdB MEMwLzRBMkVEQzgwQjVFQzExRUZCMDJFQzEwQUM0RjlBRTAyL29tWVdlZ1Q2X3VX dUdsRGdSWEN0WDlSTzFwSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACqPIm+0px+hVTntmkLSHWrLrgx2BsC0+476n+o+PqmZDuRJEczZJ5bX grsAwNSv95wZ55e3t4TKYC3IgT7aSKYgzldYyIgKCupW+n0JW/DIgdIgTFUt2SeU 2aomlxXv9rJgxablB10PWfbq06cqE2LDwAJ8NNNHVS8nzvKXFfncODmsRN4jJBMb +gISolUvhAz7gxiXZXx4TcJUTQF8/3Fp4YRaqJIVsatFuYr1KS/qSHFqMczhBhnC it3e2iKy2QP/anWJ+SMT094c3yVfiFmkjWzvdkLlo5VzwU/h7t2Ykosr+97Y3Usb 4K1jopgldKX4his2u+4cXfAfUi7aAPI= -----END CERTIFICATE-----Generated at Mon Jul 21 02:07:32 2025 by rpki-client