$ rpki-client -vvf rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft File: OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft (raw, json) Hash identifier: kgY6T7aQdytOcP3Hkh3iKmOYTfiU5i6Q5niFU/YckhM= Subject key identifier: 65:F0:86:8D:66:8C:10:2A:C6:D7:D9:B2:AD:CF:FB:92:DD:40:25:8F Authority key identifier: 3B:0B:C5:56:50:AA:46:B1:78:B3:E1:74:23:00:0B:D9:81:CA:67:36 Certificate issuer: /CN=A9186C66/serialNumber=3B0BC55650AA46B178B3E17423000BD981CA6736 Certificate serial: 2666 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OwvFVlCqRrF4s-F0IwAL2YHKZzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft Manifest number: 2655 Signing time: Sat 18 Oct 2025 15:54:26 +0000 Manifest this update: Sat 18 Oct 2025 15:54:25 +0000 Manifest next update: Sat 25 Oct 2025 15:54:25 +0000 Files and hashes: 1: OwvFVlCqRrF4s-F0IwAL2YHKZzY.crl (hash: cZQGIsqdekNS/mj4sqOJAeGCUPMWlXcaEk5H71TOP9s=) 2: 02DB5704B0F211E58974874FC4F9AE02.roa (hash: 80axerWiZ6cd/ywlGklwH07eZfaJzXVmfhf4nrdmoFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.crl rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OwvFVlCqRrF4s-F0IwAL2YHKZzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9830 (0x2666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186C66, serialNumber=3B0BC55650AA46B178B3E17423000BD981CA6736 Validity Not Before: Oct 18 15:54:25 2025 GMT Not After : Oct 25 15:54:25 2025 GMT Subject: CN=68f3b831-c0ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:16:fe:ab:d5:de:79:ef:36:97:b0:c5:08:f6: 96:ac:0b:72:bd:35:43:5b:5f:aa:8a:70:bd:e2:18: 73:13:aa:6c:c3:7c:38:bf:be:0d:3c:09:14:7b:81: 23:3b:71:d9:e5:0e:38:84:56:34:53:e7:ff:55:6b: 41:61:57:00:ea:74:01:ab:20:74:92:12:7e:84:e3: a3:40:26:14:aa:32:b2:50:d1:22:c7:7c:4c:5f:10: 9b:d8:f9:60:8f:6b:00:65:7f:6a:1e:cd:f6:17:e4: ef:26:8e:15:4e:99:73:00:db:bb:dd:29:5b:11:d5: 94:c6:56:84:d9:b8:b7:6c:11:a6:32:5f:71:31:30: ec:97:27:4f:59:a4:57:15:81:31:b7:54:d5:8a:73: 4c:da:5f:16:50:c7:0a:fc:2e:a5:d2:d8:c3:4f:2d: cd:a9:b2:9f:d9:70:79:db:30:50:e8:2e:b7:60:aa: 7a:8c:f0:6a:33:ea:51:8f:b1:b1:e6:b8:30:de:d4: 6b:c2:2b:87:b6:ea:e9:54:2c:e9:96:ce:98:15:56: 46:51:be:d2:56:05:39:b0:65:14:84:b6:0b:f0:81: c5:ac:46:9b:53:fb:86:4f:b7:8f:84:78:22:b5:16: a8:1a:7a:1a:09:7b:0d:bf:7a:23:da:82:43:6b:89: d6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F0:86:8D:66:8C:10:2A:C6:D7:D9:B2:AD:CF:FB:92:DD:40:25:8F X509v3 Authority Key Identifier: keyid:3B:0B:C5:56:50:AA:46:B1:78:B3:E1:74:23:00:0B:D9:81:CA:67:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OwvFVlCqRrF4s-F0IwAL2YHKZzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:11:70:e0:bf:c8:9a:f1:8c:31:e2:33:f4:fe:f4:3a:02:b0: 4a:ad:b9:c2:29:52:e5:ca:2a:45:08:17:49:46:ff:9d:a8:26: af:e2:27:21:a9:c5:c4:b3:d9:81:e7:68:68:cb:ca:4f:b7:95: e3:24:98:25:07:33:6d:15:16:bf:7a:a3:08:f6:67:8f:45:6d: 7f:b1:89:e5:94:30:ce:26:2a:ab:56:7e:51:f6:9a:b3:18:fe: e2:d4:66:1f:31:27:fc:cb:59:43:f7:5b:38:3c:db:7e:5d:b2: 20:b6:6e:21:fe:04:5e:ec:72:01:87:4b:af:10:28:e5:fe:01: e4:b6:da:4f:c7:88:cf:23:29:d4:20:4d:78:f8:2f:82:cd:b2: bc:5c:6f:1c:9f:9e:99:27:fc:71:4d:4e:3f:b4:6f:50:29:0e: 77:c9:67:ba:a1:12:08:ca:19:bc:21:67:54:fe:c2:fe:0e:aa: ac:43:78:d7:06:ea:78:3f:d8:07:0f:06:41:60:17:ab:f6:65: 41:d4:ab:3d:99:88:de:9e:e1:fe:91:6c:0c:1d:57:87:a2:68: 8f:39:02:8c:01:dc:74:ce:72:3f:eb:90:c3:fa:e6:d0:d7:4f: 7d:ab:1b:9c:da:ba:a6:1a:42:52:42:fb:49:68:b2:3f:8e:8c: f3:68:f0:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZDNjYxMTAvBgNVBAUTKDNCMEJDNTU2NTBBQTQ2QjE3OEIzRTE3NDIzMDAwQkQ5 ODFDQTY3MzYwHhcNMjUxMDE4MTU1NDI1WhcNMjUxMDI1MTU1NDI1WjAYMRYwFAYD VQQDEw02OGYzYjgzMS1jMGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRb+q9Xeee82l7DFCPaWrAtyvTVDW1+qinC94hhzE6psw3w4v74NPAkUe4Ej O3HZ5Q44hFY0U+f/VWtBYVcA6nQBqyB0khJ+hOOjQCYUqjKyUNEix3xMXxCb2Plg j2sAZX9qHs32F+TvJo4VTplzANu73SlbEdWUxlaE2bi3bBGmMl9xMTDslydPWaRX FYExt1TVinNM2l8WUMcK/C6l0tjDTy3NqbKf2XB52zBQ6C63YKp6jPBqM+pRj7Gx 5rgw3tRrwiuHturpVCzpls6YFVZGUb7SVgU5sGUUhLYL8IHFrEabU/uGT7ePhHgi tRaoGnoaCXsNv3oj2oJDa4nWjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGXwho1m jBAqxtfZsq3P+5LdQCWPMB8GA1UdIwQYMBaAFDsLxVZQqkaxeLPhdCMAC9mBymc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkM2Ni84RkI5NThGQUY4 NkIxMUU0ODMxNjczNjBDNEY5QUUwMi9Pd3ZGVmxDcVJyRjRzLUYwSXdBTDJZSEta elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL093dkZWbENxUnJGNHMtRjBJd0FMMllIS1p6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkM2Ni84RkI5NThGQUY4NkIxMUU0ODMxNjczNjBDNEY5QUUwMi9Pd3ZGVmxDcVJy RjRzLUYwSXdBTDJZSEtaelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaEXDgv8ia8Ywx4jP0/vQ6ArBKrbnCKVLlyipFCBdJRv+dqCav4ich qcXEs9mB52hoy8pPt5XjJJglBzNtFRa/eqMI9mePRW1/sYnllDDOJiqrVn5R9pqz GP7i1GYfMSf8y1lD91s4PNt+XbIgtm4h/gRe7HIBh0uvECjl/gHkttpPx4jPIynU IE14+C+CzbK8XG8cn56ZJ/xxTU4/tG9QKQ53yWe6oRIIyhm8IWdU/sL+DqqsQ3jX Bup4P9gHDwZBYBer9mVB1Ks9mYjenuH+kWwMHVeHomiPOQKMAdx0znI/65DD+ubQ 1099qxuc2rqmGkJSQvtJaLI/jozzaPDA -----END CERTIFICATE-----Generated at Mon Oct 20 05:50:35 2025 by rpki-client