$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft File: OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft (raw, json) Hash identifier: DdL+dc64hf0fIC72VJyBKIc5chDz+lXopdYeAdE+zac= Subject key identifier: 62:21:89:FB:47:1E:3B:49:FC:9F:32:DF:AF:77:1C:54:B4:83:F8:BE Authority key identifier: 3A:83:0D:43:F3:59:44:FF:B2:86:01:D3:33:30:20:AC:3C:31:92:41 Certificate issuer: /CN=A919F0DA/serialNumber=3A830D43F35944FFB28601D3333020AC3C319241 Certificate serial: 23EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft Manifest number: 5FFD Signing time: Mon 02 Jun 2025 14:15:19 +0000 Manifest this update: Mon 02 Jun 2025 14:15:19 +0000 Manifest next update: Mon 09 Jun 2025 14:15:19 +0000 Files and hashes: 1: OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl (hash: Ez+wE0Zr2bee9977PkOvkB8MNC8nc/083Md4Mv6eYKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:15:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9194 (0x23ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=3A830D43F35944FFB28601D3333020AC3C319241 Validity Not Before: Jun 2 14:15:19 2025 GMT Not After : Jun 9 14:15:19 2025 GMT Subject: CN=683db1f7-6bdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:53:48:d8:6b:ac:46:c4:77:eb:7f:1f:6d:d3: 9b:74:62:85:8a:90:64:69:1f:9d:5c:f6:d7:00:48: be:b5:68:85:bd:1e:50:77:c0:bb:4a:d0:39:44:70: a6:38:44:16:ce:65:35:59:30:3b:ca:c5:e4:29:82: 95:6c:81:7d:49:33:93:ff:61:2d:84:b9:73:1d:f8: 37:a3:ab:97:b1:b9:2b:cc:c8:42:71:27:48:9b:6d: a5:c7:8b:2c:69:8b:2c:5c:04:d0:c3:64:6f:23:52: 8b:dc:7c:39:41:8e:1a:68:b1:71:c7:77:88:87:23: 3c:7c:05:65:2c:0a:a6:c0:8d:e8:a4:f6:43:50:19: 56:c1:65:5d:e5:ce:63:7f:51:3c:16:b1:5b:4a:c7: 2c:f5:8f:28:62:26:bd:dc:15:57:2c:51:70:55:0f: 5d:5b:06:52:a2:50:1f:16:b2:15:ab:31:ba:de:cb: d1:c8:a0:3f:27:aa:cf:8a:e5:41:3d:a4:54:c5:cd: 3b:70:3b:c6:fd:9f:d9:60:50:ce:f8:cf:55:75:74: 8e:24:aa:06:12:4c:ff:cf:48:fd:aa:ed:9e:a9:63: 50:42:c5:38:63:e1:97:5d:83:50:03:25:62:fe:11: 34:bd:9d:73:be:4e:2f:4c:36:39:e2:10:94:21:4e: e5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:21:89:FB:47:1E:3B:49:FC:9F:32:DF:AF:77:1C:54:B4:83:F8:BE X509v3 Authority Key Identifier: keyid:3A:83:0D:43:F3:59:44:FF:B2:86:01:D3:33:30:20:AC:3C:31:92:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:3c:07:53:4e:f6:1f:42:11:cd:17:28:91:3d:e9:c2:cb:c9: 80:f1:4d:9a:ca:14:cc:fe:b9:80:ed:f7:07:d1:d2:61:11:39: 46:a0:53:f8:ee:9c:84:f8:e6:17:6f:1b:56:a1:c8:1a:22:34: 28:61:e8:ab:98:3e:8a:3d:2c:9c:83:41:bc:90:42:06:f4:7e: 44:33:22:86:42:6d:3c:b6:4a:fc:b5:d2:67:38:cd:68:c4:4b: dc:04:06:df:b0:30:b9:08:79:02:ba:ff:7a:b8:6c:5d:1f:1c: 02:47:6a:fe:6c:76:cd:2c:f4:d2:59:0a:82:aa:b7:0a:c8:a0: 37:82:19:c5:68:00:3e:21:7d:a8:37:50:e9:de:9f:d8:91:31: 3c:54:99:69:49:47:49:86:16:91:40:64:03:e3:f6:1e:ff:b6: 7f:d6:23:00:62:44:82:44:76:3c:ad:c7:03:f2:85:17:21:58: 06:7a:f6:ea:a8:67:71:d2:16:86:11:b5:23:5d:e0:d3:10:81: da:1a:34:07:9d:8a:ac:cf:87:79:cd:c6:8a:57:0d:f4:b0:7b: c9:3e:91:f4:6f:d1:83:da:b8:7c:55:4c:9a:59:c8:11:38:c7: ef:18:de:cc:20:94:7a:02:fe:a2:9c:b1:c4:38:23:9a:77:a7: e9:d5:4b:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDNBODMwRDQzRjM1OTQ0RkZCMjg2MDFEMzMzMzAyMEFD M0MzMTkyNDEwHhcNMjUwNjAyMTQxNTE5WhcNMjUwNjA5MTQxNTE5WjAYMRYwFAYD VQQDEw02ODNkYjFmNy02YmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVNI2GusRsR3638fbdObdGKFipBkaR+dXPbXAEi+tWiFvR5Qd8C7StA5RHCm OEQWzmU1WTA7ysXkKYKVbIF9STOT/2EthLlzHfg3o6uXsbkrzMhCcSdIm22lx4ss aYssXATQw2RvI1KL3Hw5QY4aaLFxx3eIhyM8fAVlLAqmwI3opPZDUBlWwWVd5c5j f1E8FrFbSscs9Y8oYia93BVXLFFwVQ9dWwZSolAfFrIVqzG63svRyKA/J6rPiuVB PaRUxc07cDvG/Z/ZYFDO+M9VdXSOJKoGEkz/z0j9qu2eqWNQQsU4Y+GXXYNQAyVi /hE0vZ1zvk4vTDY54hCUIU7laQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGIhiftH HjtJ/J8y3693HFS0g/i+MB8GA1UdIwQYMBaAFDqDDUPzWUT/soYB0zMwIKw8MZJB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS9GQzYxRTAwODFE NjcxMUUyOEMxODI4QTQwOEIwMkNEMi9Pb01OUV9OWlJQLXloZ0hUTXpBZ3JEd3hr a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09vTU5RX05aUlAteWhnSFRNekFnckR3eGtrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS9GQzYxRTAwODFENjcxMUUyOEMxODI4QTQwOEIwMkNEMi9Pb01OUV9OWlJQ LXloZ0hUTXpBZ3JEd3hra0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnPAdTTvYfQhHNFyiRPenCy8mA8U2ayhTM/rmA7fcH0dJhETlGoFP4 7pyE+OYXbxtWocgaIjQoYeirmD6KPSycg0G8kEIG9H5EMyKGQm08tkr8tdJnOM1o xEvcBAbfsDC5CHkCuv96uGxdHxwCR2r+bHbNLPTSWQqCqrcKyKA3ghnFaAA+IX2o N1Dp3p/YkTE8VJlpSUdJhhaRQGQD4/Ye/7Z/1iMAYkSCRHY8rccD8oUXIVgGevbq qGdx0haGEbUjXeDTEIHaGjQHnYqsz4d5zcaKVw30sHvJPpH0b9GD2rh8VUyaWcgR OMfvGN7MIJR6Av6inLHEOCOad6fp1UsI -----END CERTIFICATE-----Generated at Tue Jun 3 23:42:03 2025 by rpki-client