$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft File: OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft (raw, json) Hash identifier: zIcJMjttlxiwLKZCwpS4t/TocEzJBSe48Yl9j5BGDeo= Subject key identifier: A7:0D:6F:88:8C:26:BB:8B:F8:D7:B9:8E:C7:F4:B7:10:F4:EA:A2:FB Authority key identifier: 3A:83:0D:43:F3:59:44:FF:B2:86:01:D3:33:30:20:AC:3C:31:92:41 Certificate issuer: /CN=A919F0DA/serialNumber=3A830D43F35944FFB28601D3333020AC3C319241 Certificate serial: 241C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft Manifest number: 6062 Signing time: Sat 06 Sep 2025 14:15:21 +0000 Manifest this update: Sat 06 Sep 2025 14:15:21 +0000 Manifest next update: Sat 13 Sep 2025 14:15:21 +0000 Files and hashes: 1: OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl (hash: CqGXTyZUotJfs44pedPwNM6ftFrt/NsZOBnb6YwfvGM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9244 (0x241c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=3A830D43F35944FFB28601D3333020AC3C319241 Validity Not Before: Sep 6 14:15:21 2025 GMT Not After : Sep 13 14:15:21 2025 GMT Subject: CN=68bc41f9-4893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0e:1a:e5:33:e1:c7:47:7e:67:2b:cc:6c:79: a7:3e:c3:92:0b:4f:97:a9:fb:70:da:e8:7f:e4:7e: a1:62:67:56:bf:a7:6d:38:c6:18:72:8f:a4:b4:84: 64:88:c6:ca:e3:86:6b:9c:43:03:69:fe:d8:e5:87: 89:21:30:a1:9c:49:f9:c0:e4:92:7c:ab:6c:20:62: ba:d6:8e:26:54:cb:ee:f6:33:a9:0c:b5:3f:0f:96: 5d:cc:55:b0:7d:7e:c2:81:90:b7:91:f9:87:47:3c: 30:14:c3:d5:ef:95:65:6a:34:09:8d:12:a6:d0:05: 96:0a:fd:61:03:00:f9:83:d2:29:05:d6:6d:6c:34: d4:e8:d3:f3:28:a3:70:90:b3:65:80:6e:99:e7:4a: e2:6e:de:9f:29:60:78:9f:c2:5e:5e:f6:67:e2:01: 44:02:9b:b0:07:2c:08:09:00:78:71:9c:97:12:d5: 30:22:24:e7:65:d9:4c:b4:ba:64:66:2d:3d:0b:20: d5:d5:04:0c:27:c8:b1:82:ec:5d:45:bd:34:34:86: bb:8b:37:7e:94:e4:e9:32:d7:69:a9:71:d0:8f:18: 2a:72:61:a8:71:d9:e9:34:de:8a:aa:ce:e8:ff:82: c5:db:be:50:7d:78:51:e1:31:f7:74:7a:c7:df:d1: 4a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:0D:6F:88:8C:26:BB:8B:F8:D7:B9:8E:C7:F4:B7:10:F4:EA:A2:FB X509v3 Authority Key Identifier: keyid:3A:83:0D:43:F3:59:44:FF:B2:86:01:D3:33:30:20:AC:3C:31:92:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:38:18:15:ba:d2:e6:ac:35:f5:72:50:a8:25:c9:c8:ed:92: d0:fa:d7:6c:50:e2:17:85:5f:c3:95:fb:37:00:01:4a:09:ad: 4f:26:cf:8b:65:e7:ad:74:65:6a:4f:4c:aa:53:a4:58:fb:09: 2d:db:44:e3:ec:b0:40:43:e0:d9:22:11:06:81:c9:b4:d7:e0: ce:ca:b1:55:33:5f:1b:46:d8:f1:f3:dc:50:72:f7:21:a6:3d: 4e:29:e3:0f:a2:54:b8:18:d2:6d:6b:1b:76:0c:53:d6:01:ee: eb:ad:ab:01:f3:9c:01:68:ba:fb:9c:0a:22:08:58:00:38:3e: 56:8e:86:5b:1a:85:fe:57:80:fe:e5:86:9e:59:47:5f:8f:41: 55:48:8b:5c:32:91:21:cc:0e:eb:08:ac:b8:4e:0a:f0:16:a3: 69:16:6f:2b:5b:bd:be:82:6a:8f:11:26:da:85:68:a4:24:09: e8:1f:ba:c3:4b:24:9f:9f:90:b0:39:06:68:3f:01:ca:bb:fc: 5d:19:f7:51:9f:06:ea:6b:e4:78:7d:ee:a7:14:42:9f:de:4d: c3:35:ab:6a:d4:55:8b:94:7b:d1:b1:bd:b4:21:c7:c0:c6:cc: 2c:68:c0:2e:6f:0b:e0:6b:2a:25:60:4d:41:0e:a6:d5:9d:db: f8:9a:a2:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDNBODMwRDQzRjM1OTQ0RkZCMjg2MDFEMzMzMzAyMEFD M0MzMTkyNDEwHhcNMjUwOTA2MTQxNTIxWhcNMjUwOTEzMTQxNTIxWjAYMRYwFAYD VQQDEw02OGJjNDFmOS00ODkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvg4a5TPhx0d+ZyvMbHmnPsOSC0+Xqftw2uh/5H6hYmdWv6dtOMYYco+ktIRk iMbK44ZrnEMDaf7Y5YeJITChnEn5wOSSfKtsIGK61o4mVMvu9jOpDLU/D5ZdzFWw fX7CgZC3kfmHRzwwFMPV75VlajQJjRKm0AWWCv1hAwD5g9IpBdZtbDTU6NPzKKNw kLNlgG6Z50ribt6fKWB4n8JeXvZn4gFEApuwBywICQB4cZyXEtUwIiTnZdlMtLpk Zi09CyDV1QQMJ8ixguxdRb00NIa7izd+lOTpMtdpqXHQjxgqcmGocdnpNN6Kqs7o /4LF275QfXhR4TH3dHrH39FKewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcNb4iM JruL+Ne5jsf0txD06qL7MB8GA1UdIwQYMBaAFDqDDUPzWUT/soYB0zMwIKw8MZJB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS9GQzYxRTAwODFE NjcxMUUyOEMxODI4QTQwOEIwMkNEMi9Pb01OUV9OWlJQLXloZ0hUTXpBZ3JEd3hr a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09vTU5RX05aUlAteWhnSFRNekFnckR3eGtrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS9GQzYxRTAwODFENjcxMUUyOEMxODI4QTQwOEIwMkNEMi9Pb01OUV9OWlJQ LXloZ0hUTXpBZ3JEd3hra0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2OBgVutLmrDX1clCoJcnI7ZLQ+tdsUOIXhV/Dlfs3AAFKCa1PJs+L ZeetdGVqT0yqU6RY+wkt20Tj7LBAQ+DZIhEGgcm01+DOyrFVM18bRtjx89xQcvch pj1OKeMPolS4GNJtaxt2DFPWAe7rrasB85wBaLr7nAoiCFgAOD5WjoZbGoX+V4D+ 5YaeWUdfj0FVSItcMpEhzA7rCKy4TgrwFqNpFm8rW72+gmqPESbahWikJAnoH7rD SySfn5CwOQZoPwHKu/xdGfdRnwbqa+R4fe6nFEKf3k3DNatq1FWLlHvRsb20IcfA xswsaMAubwvgayolYE1BDqbVndv4mqIF -----END CERTIFICATE-----Generated at Sat Sep 6 20:46:18 2025 by rpki-client