$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft File: OvnsvEXk4pfSm6bEEfGgXIudqeM.mft (raw, json) Hash identifier: Ni1spYmnyodKqUF+uwdjbbAILKAlbBkfoxs+5kOqto0= Subject key identifier: 17:A3:F6:11:9D:FC:CB:63:4B:1A:47:DE:40:33:D2:D9:AD:07:0E:DD Authority key identifier: 3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 Certificate issuer: /CN=A919CA18/serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft Manifest number: 01D5 Signing time: Sat 23 Aug 2025 02:52:52 +0000 Manifest this update: Sat 23 Aug 2025 02:52:51 +0000 Manifest next update: Sat 30 Aug 2025 02:52:51 +0000 Files and hashes: 1: OvnsvEXk4pfSm6bEEfGgXIudqeM.crl (hash: VsRHfR1VnJ17JYU3Q3DToKmYFy//Jsqtbn3nUhyoBjo=) 2: 82E99F5A10FC11EF95048154C4F9AE02.roa (hash: KiSgunw3k37SA5qIOSFD0yKCbhYgrY4Gzd+tIVRajoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:52:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA18, serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Validity Not Before: Aug 23 02:52:51 2025 GMT Not After : Aug 30 02:52:51 2025 GMT Subject: CN=68a92d03-d103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a2:6b:72:07:2e:30:c9:0a:17:64:8b:aa:6c: 90:e8:65:8c:f7:03:70:f6:4a:73:a1:45:fc:ca:68: 61:d1:da:99:c7:b3:42:01:28:a8:11:23:d2:58:01: 77:06:32:a5:0d:dd:c3:96:71:8e:13:ca:b7:4c:31: ef:f6:45:a2:1e:b0:89:11:14:71:f6:e5:fa:2a:e5: 53:e2:50:93:dc:99:95:91:b9:9d:4b:34:3d:df:6d: 43:f7:c6:d0:f3:bb:a1:69:7c:63:94:b7:af:9c:2d: 5e:16:ab:70:55:9e:d7:1c:e2:e2:a6:27:83:e0:47: 57:cc:6d:e4:5b:4e:06:d0:a6:51:9a:ce:9e:ec:17: 55:70:b4:66:c9:c9:95:15:e2:a2:a1:63:73:78:47: 2f:46:37:10:62:cf:5b:39:ac:63:ed:c2:c4:cf:46: ff:79:6b:e8:19:68:3b:aa:10:99:cf:a7:7b:08:ca: 1e:35:1e:19:ad:fa:c7:05:ed:64:f5:f2:5e:41:45: f6:66:80:2a:ce:af:aa:c1:7a:8e:04:cb:88:93:e4: 43:f1:3f:de:8e:54:fe:f6:b8:c7:1b:20:59:11:6d: 6a:45:4e:c0:43:10:fa:bb:f1:43:80:12:ed:02:6a: ef:d1:07:23:b7:f8:08:cc:ee:81:42:38:91:db:0b: b4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A3:F6:11:9D:FC:CB:63:4B:1A:47:DE:40:33:D2:D9:AD:07:0E:DD X509v3 Authority Key Identifier: keyid:3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:68:f2:28:89:a7:36:d1:9f:5f:14:db:86:2f:49:12:5a:22: 8d:21:92:a1:3b:d1:5b:d2:f7:2d:2e:b0:a6:f6:47:11:e4:b2: 20:f0:d8:e2:b6:c3:2c:99:0d:79:96:24:ea:65:c9:2c:5a:85: e8:52:44:b0:6e:31:51:86:a0:9c:9f:f7:98:16:35:28:b1:be: 45:5e:aa:30:cc:bc:2f:e9:73:85:57:60:2d:84:2d:6b:07:15: 66:c8:e9:70:5c:5c:18:5d:b8:cc:c7:64:0b:2d:db:7b:b2:8e: 3b:c3:08:b2:97:6c:04:8c:df:38:81:d4:7b:7c:9a:f7:04:44: bc:0d:14:24:3b:f2:af:9e:7e:79:49:66:b5:84:38:69:9c:11: 87:a8:41:d1:d5:41:8f:4d:49:17:47:9e:1d:e8:97:2c:52:e4: 89:d2:4e:6a:4d:4e:0e:3f:da:c4:59:41:a4:4c:b6:bb:78:da: c9:69:86:53:b3:77:1f:22:1d:ee:6d:c2:3f:e8:8a:8d:a7:1e: 92:a3:65:0d:83:c5:4c:25:97:91:2b:82:08:c0:9f:8d:59:14: 4d:22:d6:7f:b4:5f:26:e2:eb:e5:f6:a3:b4:ec:bd:39:5c:61: 79:2b:27:11:69:45:3d:a8:6e:05:3b:f5:af:4e:3b:ff:90:09: fe:36:b0:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMTgxMTAvBgNVBAUTKDNBRjlFQ0JDNDVFNEUyOTdEMjlCQTZDNDExRjFBMDVD OEI5REE5RTMwHhcNMjUwODIzMDI1MjUxWhcNMjUwODMwMDI1MjUxWjAYMRYwFAYD VQQDEw02OGE5MmQwMy1kMTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqJrcgcuMMkKF2SLqmyQ6GWM9wNw9kpzoUX8ymhh0dqZx7NCASioESPSWAF3 BjKlDd3DlnGOE8q3TDHv9kWiHrCJERRx9uX6KuVT4lCT3JmVkbmdSzQ9321D98bQ 87uhaXxjlLevnC1eFqtwVZ7XHOLipieD4EdXzG3kW04G0KZRms6e7BdVcLRmycmV FeKioWNzeEcvRjcQYs9bOaxj7cLEz0b/eWvoGWg7qhCZz6d7CMoeNR4ZrfrHBe1k 9fJeQUX2ZoAqzq+qwXqOBMuIk+RD8T/ejlT+9rjHGyBZEW1qRU7AQxD6u/FDgBLt Amrv0Qcjt/gIzO6BQjiR2wu0GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBej9hGd /MtjSxpH3kAz0tmtBw7dMB8GA1UdIwQYMBaAFDr57LxF5OKX0pumxBHxoFyLnanj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExOC82RDA1OUJCQ0Ix QjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRwZlNtNmJFRWZHZ1hJdWRx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL092bnN2RVhrNHBmU202YkVFZkdnWEl1ZHFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0ExOC82RDA1OUJCQ0IxQjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRw ZlNtNmJFRWZHZ1hJdWRxZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDeaPIoiac20Z9fFNuGL0kSWiKNIZKhO9Fb0vctLrCm9kcR5LIg8Nji tsMsmQ15liTqZcksWoXoUkSwbjFRhqCcn/eYFjUosb5FXqowzLwv6XOFV2AthC1r BxVmyOlwXFwYXbjMx2QLLdt7so47wwiyl2wEjN84gdR7fJr3BES8DRQkO/Kvnn55 SWa1hDhpnBGHqEHR1UGPTUkXR54d6JcsUuSJ0k5qTU4OP9rEWUGkTLa7eNrJaYZT s3cfIh3ubcI/6IqNpx6So2UNg8VMJZeRK4IIwJ+NWRRNItZ/tF8m4uvl9qO07L05 XGF5KycRaUU9qG4FO/WvTjv/kAn+NrAC -----END CERTIFICATE-----Generated at Sun Aug 24 03:34:25 2025 by rpki-client