$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft File: OvnsvEXk4pfSm6bEEfGgXIudqeM.mft (raw, json) Hash identifier: 8Qm6pZXZFb394O7QeBYCTB3vO91oKNfhCroWLw0BOng= Subject key identifier: 2E:86:76:17:56:88:21:0A:57:06:E5:8F:8D:67:FB:26:3C:83:80:C6 Authority key identifier: 3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 Certificate issuer: /CN=A919CA18/serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft Manifest number: 01F2 Signing time: Sun 19 Oct 2025 04:52:32 +0000 Manifest this update: Sun 19 Oct 2025 04:52:32 +0000 Manifest next update: Sun 26 Oct 2025 04:52:32 +0000 Files and hashes: 1: OvnsvEXk4pfSm6bEEfGgXIudqeM.crl (hash: tNT09r9dsOmX/QKOMI3O6++Sozcy7ilw8cWVyFdkXCc=) 2: 82E99F5A10FC11EF95048154C4F9AE02.roa (hash: KiSgunw3k37SA5qIOSFD0yKCbhYgrY4Gzd+tIVRajoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:52:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA18, serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Validity Not Before: Oct 19 04:52:32 2025 GMT Not After : Oct 26 04:52:32 2025 GMT Subject: CN=68f46e90-97b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:18:7f:bb:96:68:11:c4:a7:72:a1:4e:b4:43: 40:af:47:5c:9c:04:ce:f6:f1:7b:f6:c8:71:65:cb: 52:3a:bc:4a:59:df:ca:66:4a:97:25:ce:66:e8:5c: b8:97:cc:fc:39:d6:4a:23:c3:1d:8e:d9:6b:60:cb: 59:b2:9a:6c:0b:d1:06:3c:6a:fe:72:74:16:90:9d: c3:c8:0a:7c:74:b6:0e:5b:c4:fa:f6:12:31:39:15: 3e:f4:9d:68:73:d0:a6:b9:01:7f:82:07:73:1d:ec: ae:c0:d0:25:aa:78:41:01:50:81:09:42:c6:b6:ef: 1d:aa:04:15:0d:f7:22:bc:93:c0:43:c2:20:6f:94: a9:3f:15:85:95:2c:e4:2e:c5:5b:59:32:a3:30:14: 19:ff:84:8e:2f:24:b3:c0:fb:11:ba:3b:31:50:d7: f7:5c:3e:f9:3c:de:f1:54:46:ef:71:44:f2:cd:9a: 57:dc:1e:65:65:32:42:03:ca:e7:03:d0:51:3a:8d: a9:3a:35:5a:db:ac:56:12:eb:dc:4d:f4:d1:cf:dd: bc:45:f2:e8:23:5a:43:aa:de:ca:44:de:98:8b:a3: d1:20:3b:f7:7e:46:0f:b2:b4:2e:80:7f:83:26:a1: 56:46:85:14:24:e0:9f:3a:db:d9:5f:fd:47:14:c8: 14:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:86:76:17:56:88:21:0A:57:06:E5:8F:8D:67:FB:26:3C:83:80:C6 X509v3 Authority Key Identifier: keyid:3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:9d:d5:9d:9b:a0:b3:09:ed:7e:e5:02:6a:30:ce:f9:22:77: 75:3f:cc:cf:28:d7:e0:2e:f9:ad:d8:d8:95:bb:6b:5a:12:e5: 72:0c:04:45:04:8b:78:9a:6f:48:58:df:9f:d4:fa:b3:d6:ba: bc:ab:a2:da:9b:bf:46:1c:61:30:ad:b9:96:0d:28:21:68:f1: 59:4a:78:e2:3c:4c:8c:b4:57:0b:b0:b5:ff:42:18:66:ab:59: 89:89:d3:b0:ef:39:6f:f4:ac:78:84:da:d6:60:bd:74:2c:0c: 56:73:08:38:a6:da:b6:55:e3:60:2b:4d:d6:6b:17:a3:ed:f5: 65:41:ab:0e:72:97:5e:89:d9:a9:3f:f5:86:fe:86:3b:34:dc: 68:5f:a5:7b:48:f1:ac:e1:7a:8d:b2:d3:64:4d:0b:2d:fb:00: ef:6d:1a:e5:00:34:21:b2:66:09:91:15:4b:90:41:fd:d1:18: 49:31:e1:cc:26:43:99:3f:dd:84:cb:7e:3b:6b:48:6a:e7:5f: 8d:75:e0:1b:d1:f4:49:02:1b:f8:00:7a:5f:90:0b:8a:84:cf: 0c:c0:8f:7c:b8:e5:f1:51:92:5c:e7:81:d3:01:88:66:8a:4a: 1f:9e:0a:78:f2:c0:9d:ae:46:ea:0d:59:dd:f0:25:f6:2e:85: f1:8d:64:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMTgxMTAvBgNVBAUTKDNBRjlFQ0JDNDVFNEUyOTdEMjlCQTZDNDExRjFBMDVD OEI5REE5RTMwHhcNMjUxMDE5MDQ1MjMyWhcNMjUxMDI2MDQ1MjMyWjAYMRYwFAYD VQQDEw02OGY0NmU5MC05N2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBh/u5ZoEcSncqFOtENAr0dcnATO9vF79shxZctSOrxKWd/KZkqXJc5m6Fy4 l8z8OdZKI8MdjtlrYMtZsppsC9EGPGr+cnQWkJ3DyAp8dLYOW8T69hIxORU+9J1o c9CmuQF/ggdzHeyuwNAlqnhBAVCBCULGtu8dqgQVDfcivJPAQ8Igb5SpPxWFlSzk LsVbWTKjMBQZ/4SOLySzwPsRujsxUNf3XD75PN7xVEbvcUTyzZpX3B5lZTJCA8rn A9BROo2pOjVa26xWEuvcTfTRz928RfLoI1pDqt7KRN6Yi6PRIDv3fkYPsrQugH+D JqFWRoUUJOCfOtvZX/1HFMgUiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6GdhdW iCEKVwblj41n+yY8g4DGMB8GA1UdIwQYMBaAFDr57LxF5OKX0pumxBHxoFyLnanj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExOC82RDA1OUJCQ0Ix QjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRwZlNtNmJFRWZHZ1hJdWRx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL092bnN2RVhrNHBmU202YkVFZkdnWEl1ZHFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0ExOC82RDA1OUJCQ0IxQjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRw ZlNtNmJFRWZHZ1hJdWRxZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpndWdm6CzCe1+5QJqMM75Ind1P8zPKNfgLvmt2NiVu2taEuVyDARF BIt4mm9IWN+f1Pqz1rq8q6Lam79GHGEwrbmWDSghaPFZSnjiPEyMtFcLsLX/Qhhm q1mJidOw7zlv9Kx4hNrWYL10LAxWcwg4ptq2VeNgK03Waxej7fVlQasOcpdeidmp P/WG/oY7NNxoX6V7SPGs4XqNstNkTQst+wDvbRrlADQhsmYJkRVLkEH90RhJMeHM JkOZP92Ey347a0hq51+NdeAb0fRJAhv4AHpfkAuKhM8MwI98uOXxUZJc54HTAYhm ikofngp48sCdrkbqDVnd8CX2LoXxjWS1 -----END CERTIFICATE-----Generated at Mon Oct 20 17:08:28 2025 by rpki-client