$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json) Hash identifier: Ok1TOcryoaWUqkhwRR9VIJfwipVaJSGceBf7HjFIJXs= Subject key identifier: 44:F6:97:57:7F:15:45:E3:D5:4D:28:26:AF:9B:1C:1D:57:AA:72:DE Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft Manifest number: 0131 Signing time: Tue 08 Apr 2025 17:46:08 +0000 Manifest this update: Tue 08 Apr 2025 17:46:08 +0000 Manifest next update: Tue 15 Apr 2025 17:46:08 +0000 Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: kZmzKwRXvw/MwhqC4kC86KL1SFHDCwzQg5TfPf7yyI0=) 2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: 6Te+3VLS/O5qxRt8jv/bM33nUlqEem+47I9pmRS4Z7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 17:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856 Validity Not Before: Apr 8 17:46:08 2025 GMT Not After : Apr 15 17:46:08 2025 GMT Subject: CN=67f560e0-263b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0c:b4:63:6e:c5:df:5d:c5:31:1b:39:5d:35: db:e6:87:17:57:aa:70:f6:dc:9a:db:4c:ae:75:d7: 7d:e0:34:33:36:73:01:c8:4b:c2:37:10:66:01:a7: 04:58:f5:13:c3:0f:2a:72:47:a2:33:79:7f:d1:f9: 17:52:b5:ef:9b:02:da:d4:9b:03:65:d4:8f:6b:fb: d8:43:10:82:7c:a0:29:60:37:9b:91:05:e5:f9:14: e6:c5:67:33:1c:d0:bf:62:c9:af:1f:e1:2c:f7:3e: 54:47:6a:51:4a:08:26:07:c4:b3:0a:28:a6:39:f1: ea:f7:38:1e:20:a5:1a:b6:2f:6e:97:16:48:13:bf: eb:9c:7c:73:98:b0:72:80:28:b7:29:3a:5d:60:4f: 3a:b6:ba:48:55:7e:5e:38:0b:33:7f:37:16:ca:f4: 08:58:1d:ae:89:b6:b6:f8:0a:8e:c0:f6:3f:7d:6f: 97:be:17:2f:33:ca:d6:d4:28:de:86:a1:17:6a:a7: e1:85:88:23:54:12:37:8a:b6:e4:8a:19:99:33:78: 8b:5f:be:c7:7c:77:99:85:31:87:ba:22:60:93:c0: 08:97:49:9f:3a:4f:29:ee:64:8b:9a:ae:cd:5e:70: 01:e2:c4:eb:65:52:1f:88:dc:e9:38:c4:1a:ca:ea: e7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:F6:97:57:7F:15:45:E3:D5:4D:28:26:AF:9B:1C:1D:57:AA:72:DE X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:b4:64:89:b0:fc:2e:e6:e1:2c:76:8b:df:52:19:8c:3b:14: 87:75:bc:92:a9:92:49:9e:46:83:b8:19:40:79:ca:92:2c:e8: d2:5b:ab:53:e4:45:41:73:97:9a:a6:85:c6:0e:95:91:8e:9d: a3:0f:9a:77:ec:2b:77:5d:6f:ef:06:39:81:85:a1:77:ce:9f: 51:59:76:5c:9a:45:5d:9f:6f:2b:b0:3a:ca:3f:a2:ca:7c:59: 92:b3:94:79:b8:a5:77:2f:0b:67:d6:62:a0:5a:a9:6e:de:e9: 21:dd:7c:47:ae:74:25:6b:7b:ef:96:af:61:2b:d6:6b:13:ba: b8:32:65:a2:73:5b:cc:94:d1:2b:83:1c:58:a4:69:9b:bf:9c: 91:47:4a:1d:ad:33:3c:b7:93:99:96:2f:98:38:c3:37:68:df: 06:93:7f:03:a1:4d:39:a5:b6:28:3e:e1:5e:cc:2a:df:cd:e5: a0:ce:d9:86:1c:58:e9:c6:b3:b0:92:b8:2b:12:8a:05:2a:4e: da:63:f5:7d:28:9b:ca:82:a7:83:9d:35:9d:10:34:21:c2:af: 99:c2:4a:a9:04:ab:bb:f4:f5:0c:df:88:4c:c1:ef:03:24:4e: aa:e4:92:0c:0c:95:75:72:79:fd:53:47:e2:62:0d:33:44:d8: 10:2b:af:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjUwNDA4MTc0NjA4WhcNMjUwNDE1MTc0NjA4WjAYMRYwFAYD VQQDEw02N2Y1NjBlMC0yNjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAy0Y27F313FMRs5XTXb5ocXV6pw9tya20yuddd94DQzNnMByEvCNxBmAacE WPUTww8qckeiM3l/0fkXUrXvmwLa1JsDZdSPa/vYQxCCfKApYDebkQXl+RTmxWcz HNC/YsmvH+Es9z5UR2pRSggmB8SzCiimOfHq9zgeIKUati9ulxZIE7/rnHxzmLBy gCi3KTpdYE86trpIVX5eOAszfzcWyvQIWB2uiba2+AqOwPY/fW+XvhcvM8rW1Cje hqEXaqfhhYgjVBI3irbkihmZM3iLX77HfHeZhTGHuiJgk8AIl0mfOk8p7mSLmq7N XnAB4sTrZVIfiNzpOMQayurnFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFET2l1d/ FUXj1U0oJq+bHB1XqnLeMB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yRERCNDI2RTQ4NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2 eWtCbzB6bUVSUE5rRUlWSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVtGSJsPwu5uEsdovfUhmMOxSHdbySqZJJnkaDuBlAecqSLOjSW6tT 5EVBc5eapoXGDpWRjp2jD5p37Ct3XW/vBjmBhaF3zp9RWXZcmkVdn28rsDrKP6LK fFmSs5R5uKV3Lwtn1mKgWqlu3ukh3XxHrnQla3vvlq9hK9ZrE7q4MmWic1vMlNEr gxxYpGmbv5yRR0odrTM8t5OZli+YOMM3aN8Gk38DoU05pbYoPuFezCrfzeWgztmG HFjpxrOwkrgrEooFKk7aY/V9KJvKgqeDnTWdEDQhwq+ZwkqpBKu79PUM34hMwe8D JE6q5JIMDJV1cnn9U0fiYg0zRNgQK6+e -----END CERTIFICATE-----Generated at Fri Apr 11 00:36:57 2025 by rpki-client