$ rpki-client -vvf rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft File: OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft (raw, json) Hash identifier: oXZ6TMwUrklKV2O8usmOBV8WmVGD5TAeSrUZcHm36f8= Subject key identifier: BB:09:E5:0C:E1:C2:FA:90:96:DD:24:C9:AC:5D:B3:CB:8D:6B:EA:28 Authority key identifier: 3B:0B:C5:56:50:AA:46:B1:78:B3:E1:74:23:00:0B:D9:81:CA:67:36 Certificate issuer: /CN=A9186C66/serialNumber=3B0BC55650AA46B178B3E17423000BD981CA6736 Certificate serial: 2649 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OwvFVlCqRrF4s-F0IwAL2YHKZzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft Manifest number: 2638 Signing time: Fri 22 Aug 2025 15:44:18 +0000 Manifest this update: Fri 22 Aug 2025 15:44:18 +0000 Manifest next update: Fri 29 Aug 2025 15:44:18 +0000 Files and hashes: 1: OwvFVlCqRrF4s-F0IwAL2YHKZzY.crl (hash: Lo2JphevwaAuR+g/7bqhNb+5664z5WxsLYSGFH49XkE=) 2: 02DB5704B0F211E58974874FC4F9AE02.roa (hash: 80axerWiZ6cd/ywlGklwH07eZfaJzXVmfhf4nrdmoFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.crl rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OwvFVlCqRrF4s-F0IwAL2YHKZzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9801 (0x2649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186C66, serialNumber=3B0BC55650AA46B178B3E17423000BD981CA6736 Validity Not Before: Aug 22 15:44:18 2025 GMT Not After : Aug 29 15:44:18 2025 GMT Subject: CN=68a89052-99ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:6a:16:2e:b8:64:00:11:a5:4a:05:d9:b4:2b: 0f:e8:ac:1e:44:3c:db:ca:03:00:8a:c4:87:e7:f2: e1:68:09:51:51:37:6e:9d:9b:49:5e:59:c4:66:04: 3b:fb:3b:fb:b6:b0:bc:73:a7:38:7d:b7:fc:0e:34: cb:d2:0b:0f:ab:cd:cc:a6:f7:7e:ee:5a:9a:f3:25: 38:59:53:4a:7b:04:24:8f:8b:78:77:fe:71:54:d5: 90:35:6c:33:a5:c6:3a:f8:c8:2a:72:c6:81:17:7e: 6e:d8:73:b9:c5:5f:e6:29:df:e9:5c:75:ec:dd:12: 8f:e8:5d:79:0a:60:01:a9:e6:d6:aa:8a:6c:1b:14: c0:1a:ce:fe:b8:f2:bf:0f:73:31:cc:dd:76:81:0a: 6c:76:a4:c0:67:85:5f:3c:d9:1d:74:a9:3d:91:5e: 23:63:33:60:41:83:5c:a8:13:0d:20:79:f4:f1:76: 1c:4a:00:99:3e:8e:b6:34:cf:82:4a:bb:87:e8:99: 1c:12:72:18:44:30:b1:21:0b:c7:14:01:e8:14:ad: 86:3f:93:94:d6:bd:02:de:8d:f9:ed:ae:45:04:f8: 0a:91:c9:0c:23:3c:c4:81:3f:75:12:66:11:00:a0: 6b:c6:4e:18:e6:87:72:bc:38:97:df:70:51:34:d6: eb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:09:E5:0C:E1:C2:FA:90:96:DD:24:C9:AC:5D:B3:CB:8D:6B:EA:28 X509v3 Authority Key Identifier: keyid:3B:0B:C5:56:50:AA:46:B1:78:B3:E1:74:23:00:0B:D9:81:CA:67:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OwvFVlCqRrF4s-F0IwAL2YHKZzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:25:17:df:28:30:91:f5:10:93:63:7d:76:a7:6d:c9:21:43: a7:2d:dc:1b:9f:30:f6:c5:7d:3f:c3:ff:3f:73:cc:cd:fb:4e: 46:0c:79:2e:73:75:b3:13:99:c5:69:01:0f:e0:e5:ad:fc:7b: c2:7a:ea:32:c2:e2:70:fd:b6:4b:51:fe:e3:d7:84:04:fd:3e: df:f6:8d:bd:f8:b7:85:3e:86:b7:9a:b5:af:67:8f:3f:62:6b: d8:41:0c:3b:d7:bf:8b:47:85:c9:80:87:21:bd:d2:7b:79:2b: a7:d2:8b:96:36:cb:40:69:ae:21:a7:b1:91:0d:5a:f2:79:04: ce:c4:ac:cd:09:c9:90:b7:5e:99:d1:f3:b5:71:1d:ad:fb:7c: df:d3:ac:d2:7a:41:b3:99:f0:7c:71:e1:f5:4b:b6:7d:89:d9: 34:91:d4:d7:6d:27:57:1e:99:6a:93:6a:30:d1:2f:5a:7e:1b: 37:79:91:5d:a8:c0:84:ed:18:fb:75:58:b7:f3:72:61:6b:c9: fd:28:4d:e8:87:a1:76:06:d0:df:aa:04:e8:1e:1a:c5:8c:f2: cd:8d:ed:48:85:9c:4f:11:fa:0d:f2:21:00:76:e3:63:59:63: ff:4a:3c:87:43:ac:bb:a5:7a:dc:f3:66:3b:dc:68:1b:6d:54: 2d:94:0b:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZDNjYxMTAvBgNVBAUTKDNCMEJDNTU2NTBBQTQ2QjE3OEIzRTE3NDIzMDAwQkQ5 ODFDQTY3MzYwHhcNMjUwODIyMTU0NDE4WhcNMjUwODI5MTU0NDE4WjAYMRYwFAYD VQQDEw02OGE4OTA1Mi05OWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl2oWLrhkABGlSgXZtCsP6KweRDzbygMAisSH5/LhaAlRUTdunZtJXlnEZgQ7 +zv7trC8c6c4fbf8DjTL0gsPq83Mpvd+7lqa8yU4WVNKewQkj4t4d/5xVNWQNWwz pcY6+MgqcsaBF35u2HO5xV/mKd/pXHXs3RKP6F15CmABqebWqopsGxTAGs7+uPK/ D3MxzN12gQpsdqTAZ4VfPNkddKk9kV4jYzNgQYNcqBMNIHn08XYcSgCZPo62NM+C SruH6JkcEnIYRDCxIQvHFAHoFK2GP5OU1r0C3o357a5FBPgKkckMIzzEgT91EmYR AKBrxk4Y5odyvDiX33BRNNbrgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsJ5Qzh wvqQlt0kyaxds8uNa+ooMB8GA1UdIwQYMBaAFDsLxVZQqkaxeLPhdCMAC9mBymc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkM2Ni84RkI5NThGQUY4 NkIxMUU0ODMxNjczNjBDNEY5QUUwMi9Pd3ZGVmxDcVJyRjRzLUYwSXdBTDJZSEta elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL093dkZWbENxUnJGNHMtRjBJd0FMMllIS1p6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkM2Ni84RkI5NThGQUY4NkIxMUU0ODMxNjczNjBDNEY5QUUwMi9Pd3ZGVmxDcVJy RjRzLUYwSXdBTDJZSEtaelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQJRffKDCR9RCTY312p23JIUOnLdwbnzD2xX0/w/8/c8zN+05GDHku c3WzE5nFaQEP4OWt/HvCeuoywuJw/bZLUf7j14QE/T7f9o29+LeFPoa3mrWvZ48/ YmvYQQw717+LR4XJgIchvdJ7eSun0ouWNstAaa4hp7GRDVryeQTOxKzNCcmQt16Z 0fO1cR2t+3zf06zSekGzmfB8ceH1S7Z9idk0kdTXbSdXHplqk2ow0S9afhs3eZFd qMCE7Rj7dVi383Jha8n9KE3oh6F2BtDfqgToHhrFjPLNje1IhZxPEfoN8iEAduNj WWP/SjyHQ6y7pXrc82Y73GgbbVQtlAs1 -----END CERTIFICATE-----Generated at Sun Aug 24 05:44:05 2025 by rpki-client