$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft File: OvnsvEXk4pfSm6bEEfGgXIudqeM.mft (raw, json) Hash identifier: FNY2trm6VtW9jBT4NKMEVCyAdBaygpwpuHFksBYxoiQ= Subject key identifier: 35:43:75:B7:88:9E:3E:D8:4A:6D:F5:3C:58:C7:6A:E5:8D:C8:B1:C8 Authority key identifier: 3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 Certificate issuer: /CN=A919CA18/serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Certificate serial: 01BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft Manifest number: 01BB Signing time: Thu 03 Jul 2025 03:07:44 +0000 Manifest this update: Thu 03 Jul 2025 03:07:44 +0000 Manifest next update: Thu 10 Jul 2025 03:07:44 +0000 Files and hashes: 1: OvnsvEXk4pfSm6bEEfGgXIudqeM.crl (hash: VsnuDwHYyVrpIv2HqNifqjQbde7Ff5aZXONq0VCdPg8=) 2: 82E99F5A10FC11EF95048154C4F9AE02.roa (hash: KiSgunw3k37SA5qIOSFD0yKCbhYgrY4Gzd+tIVRajoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA18, serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Validity Not Before: Jul 3 03:07:44 2025 GMT Not After : Jul 10 03:07:44 2025 GMT Subject: CN=6865f400-9b9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:18:16:91:a7:32:fa:fa:f6:57:28:57:d4:81: a1:2e:b3:b0:f7:9f:23:c7:f1:06:2c:ee:4c:4e:03: aa:70:bd:8b:c7:97:34:f2:11:4e:a0:19:84:c8:20: ed:c0:dd:98:e8:72:35:58:82:81:af:23:8d:28:f6: 84:9d:45:c9:25:47:06:8b:4f:b9:e5:f9:b8:aa:82: b0:d0:d6:52:1b:5e:0a:94:6e:76:e2:b5:ce:0b:f1: 43:42:09:53:67:bd:e3:f1:bb:52:b2:1f:66:c6:8f: 60:44:8a:62:f1:a4:f3:f6:51:44:d0:ac:dd:17:98: 21:92:62:bb:84:38:6c:59:44:60:c7:b3:39:56:b0: 31:69:ac:65:64:a8:5b:38:e9:9f:c4:f4:4b:18:8d: 77:fd:40:28:a5:d3:26:77:ed:84:df:c8:94:f4:03: 2c:34:88:b3:3d:9d:0e:21:a7:99:80:f2:63:de:98: a1:43:4d:41:d0:0b:82:93:88:91:34:81:7a:a1:eb: 9e:bb:a2:b0:18:6f:4c:73:de:d5:d0:88:7f:fb:d9: b8:0c:1c:12:1d:23:a4:cd:1e:ce:a6:17:03:c6:21: 95:27:ce:06:4e:8d:e8:1e:b5:7b:45:88:32:2a:8e: 32:01:44:80:3d:91:bf:a2:09:1f:80:3a:37:0b:9d: 3b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:43:75:B7:88:9E:3E:D8:4A:6D:F5:3C:58:C7:6A:E5:8D:C8:B1:C8 X509v3 Authority Key Identifier: keyid:3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:dc:14:ef:36:00:d8:26:26:92:4a:a6:cb:3c:bf:82:7e:4c: 1a:aa:60:12:1d:d0:44:94:ad:62:80:80:46:90:5b:ba:9a:dd: 4e:56:f2:5c:00:7f:d3:78:44:9a:fc:d9:cf:af:78:6f:42:97: 60:e2:d8:66:90:05:4f:ec:a6:21:9f:82:ad:1b:12:65:41:be: a7:94:37:60:4b:cf:f7:78:d6:b2:9b:74:a3:10:a1:29:a5:61: d6:df:b8:38:c1:a8:ff:b2:4c:91:35:36:72:e6:a1:81:c8:40: 51:92:9f:2c:a4:76:f0:1a:b6:e0:1f:b1:7b:fc:17:d5:f1:18: d6:31:51:74:43:db:a6:61:3b:1e:81:63:be:04:58:9e:06:9d: d0:d8:58:ab:2a:af:b9:fc:9f:44:8c:47:dc:69:08:61:28:c2: 89:44:5a:db:f0:69:1d:5a:56:eb:24:88:5f:47:05:32:f7:ff: 76:90:2d:89:db:c7:f0:aa:b1:86:49:20:ea:5c:9d:5b:bc:10: 7e:e6:3b:79:e8:47:93:3b:63:85:58:0c:b8:75:c5:c8:76:ba: 10:35:1a:4c:bc:bf:25:53:f0:33:cd:15:3e:23:73:5b:e5:50: d9:38:1f:f0:13:1a:d3:c3:a5:b6:45:98:70:45:f8:b6:5c:5e: bb:44:74:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMTgxMTAvBgNVBAUTKDNBRjlFQ0JDNDVFNEUyOTdEMjlCQTZDNDExRjFBMDVD OEI5REE5RTMwHhcNMjUwNzAzMDMwNzQ0WhcNMjUwNzEwMDMwNzQ0WjAYMRYwFAYD VQQDEw02ODY1ZjQwMC05YjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7RgWkacy+vr2VyhX1IGhLrOw958jx/EGLO5MTgOqcL2Lx5c08hFOoBmEyCDt wN2Y6HI1WIKBryONKPaEnUXJJUcGi0+55fm4qoKw0NZSG14KlG524rXOC/FDQglT Z73j8btSsh9mxo9gRIpi8aTz9lFE0KzdF5ghkmK7hDhsWURgx7M5VrAxaaxlZKhb OOmfxPRLGI13/UAopdMmd+2E38iU9AMsNIizPZ0OIaeZgPJj3pihQ01B0AuCk4iR NIF6oeueu6KwGG9Mc97V0Ih/+9m4DBwSHSOkzR7OphcDxiGVJ84GTo3oHrV7RYgy Ko4yAUSAPZG/ogkfgDo3C507AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVDdbeI nj7YSm31PFjHauWNyLHIMB8GA1UdIwQYMBaAFDr57LxF5OKX0pumxBHxoFyLnanj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExOC82RDA1OUJCQ0Ix QjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRwZlNtNmJFRWZHZ1hJdWRx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL092bnN2RVhrNHBmU202YkVFZkdnWEl1ZHFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0ExOC82RDA1OUJCQ0IxQjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRw ZlNtNmJFRWZHZ1hJdWRxZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDX3BTvNgDYJiaSSqbLPL+CfkwaqmASHdBElK1igIBGkFu6mt1OVvJc AH/TeESa/NnPr3hvQpdg4thmkAVP7KYhn4KtGxJlQb6nlDdgS8/3eNaym3SjEKEp pWHW37g4waj/skyRNTZy5qGByEBRkp8spHbwGrbgH7F7/BfV8RjWMVF0Q9umYTse gWO+BFieBp3Q2FirKq+5/J9EjEfcaQhhKMKJRFrb8GkdWlbrJIhfRwUy9/92kC2J 28fwqrGGSSDqXJ1bvBB+5jt56EeTO2OFWAy4dcXIdroQNRpMvL8lU/AzzRU+I3Nb 5VDZOB/wExrTw6W2RZhwRfi2XF67RHTM -----END CERTIFICATE-----Generated at Thu Jul 3 06:05:09 2025 by rpki-client