$ rpki-client -vvf rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft File: OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft (raw, json) Hash identifier: mIWSigabkHfne62so51Nb9lIO8rspkiHcTRdtQLRSe8= Subject key identifier: BF:6C:E6:96:08:85:D4:92:FD:A1:79:E3:87:6C:9D:F9:0B:8E:FA:21 Authority key identifier: 3B:0B:C5:56:50:AA:46:B1:78:B3:E1:74:23:00:0B:D9:81:CA:67:36 Certificate issuer: /CN=A9186C66/serialNumber=3B0BC55650AA46B178B3E17423000BD981CA6736 Certificate serial: 2617 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OwvFVlCqRrF4s-F0IwAL2YHKZzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft Manifest number: 2606 Signing time: Fri 16 May 2025 15:54:55 +0000 Manifest this update: Fri 16 May 2025 15:54:54 +0000 Manifest next update: Fri 23 May 2025 15:54:54 +0000 Files and hashes: 1: OwvFVlCqRrF4s-F0IwAL2YHKZzY.crl (hash: t7HpT/652i7a+3crfiyDqX2ZysSRVGzoUR7WThqnW24=) 2: 02DB5704B0F211E58974874FC4F9AE02.roa (hash: 80axerWiZ6cd/ywlGklwH07eZfaJzXVmfhf4nrdmoFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.crl rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OwvFVlCqRrF4s-F0IwAL2YHKZzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 15:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9751 (0x2617) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186C66, serialNumber=3B0BC55650AA46B178B3E17423000BD981CA6736 Validity Not Before: May 16 15:54:54 2025 GMT Not After : May 23 15:54:54 2025 GMT Subject: CN=68275fce-db26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8c:a9:2c:7a:b7:1e:2d:09:cf:e6:0d:9b:b2: 42:56:2a:e7:7f:3c:87:03:16:ab:85:33:92:40:ff: a6:e8:3e:04:1e:07:93:4e:cd:21:a8:d5:9f:8b:7a: ac:b5:5e:37:fc:96:12:6c:02:3c:33:03:94:dd:d1: 37:a0:6c:aa:29:98:05:2f:9d:61:37:b1:96:e6:32: 87:2f:ae:30:f6:e6:f6:33:e1:71:a1:24:e5:89:84: 2f:70:e0:67:78:f6:36:81:58:77:f1:fe:c6:1d:5f: 66:03:a6:82:67:e2:3b:ee:5c:2c:9c:de:50:a9:34: 3f:0e:a9:b2:de:78:44:4d:db:58:61:85:c7:15:d8: 71:4a:a9:ff:8e:3b:6e:61:a6:e0:f9:3e:7a:18:da: d9:db:92:98:51:65:89:0b:a8:d9:dd:30:5f:89:29: e4:d0:09:45:a5:15:b2:31:c4:10:03:5b:8a:07:d2: 0e:82:7c:00:06:3d:b3:0a:ec:de:13:17:35:98:2e: 75:11:07:94:de:85:04:18:84:1d:8a:a6:96:29:fa: ef:0b:e3:46:a7:df:11:a2:f2:31:9b:71:39:33:28: 32:83:05:2e:55:93:0b:4e:79:c0:63:2b:03:91:3f: 87:32:2f:2e:7b:1f:84:c1:72:25:5b:27:d6:0a:ab: 29:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:6C:E6:96:08:85:D4:92:FD:A1:79:E3:87:6C:9D:F9:0B:8E:FA:21 X509v3 Authority Key Identifier: keyid:3B:0B:C5:56:50:AA:46:B1:78:B3:E1:74:23:00:0B:D9:81:CA:67:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OwvFVlCqRrF4s-F0IwAL2YHKZzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:30:2d:49:1d:f6:97:79:43:1f:b1:4d:ad:19:05:4e:61:ef: ee:ab:4a:36:0d:89:04:42:14:72:73:60:63:19:d6:54:4f:3e: c9:3c:2b:2a:6c:fa:5a:2f:c0:05:5b:19:0f:23:0d:0c:71:45: e4:8d:22:55:8c:79:8d:05:6b:2a:c7:00:52:70:46:50:62:d4: da:5a:5c:ff:55:00:51:f8:21:56:c9:98:a9:3f:8e:2b:6a:eb: bc:83:8d:a6:2b:b4:35:6b:44:3a:47:34:6b:e0:5c:d7:74:e1: db:c1:dd:5a:f7:9d:8e:db:a7:e7:89:44:a3:40:93:8d:72:c8: 6c:35:64:27:bc:7f:ed:11:dd:7d:e9:79:ed:41:4c:01:eb:c8: aa:60:56:0f:96:2b:9c:e4:56:56:90:7b:b1:5d:4c:2a:63:b3: 14:46:2a:25:4a:0e:56:81:a1:88:d8:96:75:c8:8d:1d:84:ae: d2:72:ad:4f:08:c7:c7:23:25:bd:1d:53:dc:f2:f8:06:8f:3f: d9:da:9e:43:f2:13:fc:93:09:46:6a:42:44:63:7b:d6:94:c4: 87:c3:8e:ac:4d:fe:c5:67:3b:6d:36:b6:14:36:b1:76:0b:60: ff:77:18:c7:6a:4b:1b:47:37:bf:44:91:43:ae:f3:df:dc:24: 0d:13:21:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZDNjYxMTAvBgNVBAUTKDNCMEJDNTU2NTBBQTQ2QjE3OEIzRTE3NDIzMDAwQkQ5 ODFDQTY3MzYwHhcNMjUwNTE2MTU1NDU0WhcNMjUwNTIzMTU1NDU0WjAYMRYwFAYD VQQDEw02ODI3NWZjZS1kYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYypLHq3Hi0Jz+YNm7JCVirnfzyHAxarhTOSQP+m6D4EHgeTTs0hqNWfi3qs tV43/JYSbAI8MwOU3dE3oGyqKZgFL51hN7GW5jKHL64w9ub2M+FxoSTliYQvcOBn ePY2gVh38f7GHV9mA6aCZ+I77lwsnN5QqTQ/Dqmy3nhETdtYYYXHFdhxSqn/jjtu Yabg+T56GNrZ25KYUWWJC6jZ3TBfiSnk0AlFpRWyMcQQA1uKB9IOgnwABj2zCuze Exc1mC51EQeU3oUEGIQdiqaWKfrvC+NGp98RovIxm3E5MygygwUuVZMLTnnAYysD kT+HMi8uex+EwXIlWyfWCqspjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9s5pYI hdSS/aF544dsnfkLjvohMB8GA1UdIwQYMBaAFDsLxVZQqkaxeLPhdCMAC9mBymc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkM2Ni84RkI5NThGQUY4 NkIxMUU0ODMxNjczNjBDNEY5QUUwMi9Pd3ZGVmxDcVJyRjRzLUYwSXdBTDJZSEta elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL093dkZWbENxUnJGNHMtRjBJd0FMMllIS1p6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkM2Ni84RkI5NThGQUY4NkIxMUU0ODMxNjczNjBDNEY5QUUwMi9Pd3ZGVmxDcVJy RjRzLUYwSXdBTDJZSEtaelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiMC1JHfaXeUMfsU2tGQVOYe/uq0o2DYkEQhRyc2BjGdZUTz7JPCsq bPpaL8AFWxkPIw0McUXkjSJVjHmNBWsqxwBScEZQYtTaWlz/VQBR+CFWyZipP44r auu8g42mK7Q1a0Q6RzRr4FzXdOHbwd1a952O26fniUSjQJONcshsNWQnvH/tEd19 6XntQUwB68iqYFYPliuc5FZWkHuxXUwqY7MURiolSg5WgaGI2JZ1yI0dhK7Scq1P CMfHIyW9HVPc8vgGjz/Z2p5D8hP8kwlGakJEY3vWlMSHw46sTf7FZzttNrYUNrF2 C2D/dxjHaksbRze/RJFDrvPf3CQNEyEX -----END CERTIFICATE-----Generated at Sun May 18 03:19:05 2025 by rpki-client