$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft File: OvnsvEXk4pfSm6bEEfGgXIudqeM.mft (raw, json) Hash identifier: 1R+DFlATklvqrfQmGQ5N36uotF8FPRtDMTzr7CM1eqM= Subject key identifier: A5:AC:C8:59:33:9B:6A:61:2E:EA:97:19:70:35:AF:42:DC:1A:96:4F Authority key identifier: 3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 Certificate issuer: /CN=A919CA18/serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft Manifest number: 01A3 Signing time: Thu 15 May 2025 02:45:00 +0000 Manifest this update: Thu 15 May 2025 02:45:00 +0000 Manifest next update: Thu 22 May 2025 02:45:00 +0000 Files and hashes: 1: OvnsvEXk4pfSm6bEEfGgXIudqeM.crl (hash: CqDhxbmEKaFTTIf1AJN1JwYwdOAtsNFNlhhE7nS86Bk=) 2: 82E99F5A10FC11EF95048154C4F9AE02.roa (hash: KiSgunw3k37SA5qIOSFD0yKCbhYgrY4Gzd+tIVRajoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:44:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA18, serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Validity Not Before: May 15 02:45:00 2025 GMT Not After : May 22 02:45:00 2025 GMT Subject: CN=6825552c-ff61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f4:13:20:80:de:ce:26:80:98:44:53:7f:0f: f9:d1:a6:35:3d:47:bb:cf:32:b1:b9:ab:67:33:af: ed:0e:55:ae:d3:f4:76:36:11:77:3c:f3:e2:82:f8: 32:bc:ef:e4:4d:51:a6:b7:bc:2b:a0:74:e0:05:ef: 0b:2a:0e:cf:b4:5d:72:f1:9e:f6:d1:0d:38:d1:b7: 24:7c:25:db:91:2f:2e:91:df:a6:ca:c7:8a:79:73: 39:17:db:f1:41:bb:57:ef:f2:f9:35:51:b9:12:f4: 9c:76:af:e5:9f:e6:16:82:29:a8:3e:5d:ff:2e:d5: 7b:ec:03:d2:8f:cc:43:da:82:06:6c:a5:01:a8:a9: 8b:53:aa:72:30:89:a4:aa:b4:8e:7a:72:3b:12:00: 3b:f4:20:47:24:ec:54:fa:fa:7b:9c:b2:6c:1c:b8: be:af:f7:16:25:11:1a:69:58:28:56:05:5f:4a:45: 18:70:fc:a1:9a:f9:e0:61:2b:45:dd:87:1f:a3:6a: 01:99:14:a1:61:f1:89:f4:c0:f2:26:8d:9a:3e:d8: 1b:19:81:73:aa:12:b8:59:f9:67:44:8e:9d:af:01: 66:8d:93:4e:ed:bc:20:72:f3:03:9e:3c:f6:7a:17: 17:88:46:68:9f:9a:bd:c7:34:9f:19:19:49:38:c5: f8:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:AC:C8:59:33:9B:6A:61:2E:EA:97:19:70:35:AF:42:DC:1A:96:4F X509v3 Authority Key Identifier: keyid:3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:ba:a1:fc:e0:86:5f:74:4c:e9:d2:5a:50:04:b8:be:11:28: 3f:6c:e1:16:1c:b0:a2:32:25:9f:15:43:e4:f8:e9:62:f8:81: bd:e9:86:b6:6d:c3:ec:5e:a3:33:f4:ab:23:15:10:03:86:99: 0b:7b:9f:61:b1:4f:66:03:b7:1c:3a:26:c3:6d:ff:70:f1:f2: 01:b8:7d:50:08:cd:c8:a8:ce:49:1a:ab:78:62:fc:80:70:c9: 39:81:08:05:60:cb:c5:4b:24:2a:e1:db:31:97:68:df:c6:02: 34:bd:1d:1a:2a:22:8a:5f:9f:bf:ed:9b:1a:3d:f3:ed:67:e0: 73:15:8c:4a:05:f2:bd:7e:15:bc:d3:3e:1e:30:d4:33:07:29: 79:8a:df:a0:67:92:2d:a1:66:13:d0:03:b8:e9:f6:a5:b1:aa: f0:7b:0e:a9:e7:e4:77:9b:5e:c9:59:86:ba:bf:06:77:cb:81: 55:3f:70:f2:fb:ed:05:d4:1b:f6:be:0f:7d:dc:a8:a7:85:17: 17:97:4d:6b:29:49:7f:d5:27:38:3b:82:b0:97:0d:62:59:3c: a9:52:3e:a8:e8:0c:b9:05:c6:e3:b3:6f:bd:90:3f:cd:d6:9f: 9a:4c:81:fd:0f:bf:d5:58:40:ac:f9:45:5f:4e:e5:e8:70:ac: 3e:7c:a6:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMTgxMTAvBgNVBAUTKDNBRjlFQ0JDNDVFNEUyOTdEMjlCQTZDNDExRjFBMDVD OEI5REE5RTMwHhcNMjUwNTE1MDI0NTAwWhcNMjUwNTIyMDI0NTAwWjAYMRYwFAYD VQQDEw02ODI1NTUyYy1mZjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvQTIIDeziaAmERTfw/50aY1PUe7zzKxuatnM6/tDlWu0/R2NhF3PPPigvgy vO/kTVGmt7wroHTgBe8LKg7PtF1y8Z720Q040bckfCXbkS8ukd+myseKeXM5F9vx QbtX7/L5NVG5EvScdq/ln+YWgimoPl3/LtV77APSj8xD2oIGbKUBqKmLU6pyMImk qrSOenI7EgA79CBHJOxU+vp7nLJsHLi+r/cWJREaaVgoVgVfSkUYcPyhmvngYStF 3Ycfo2oBmRShYfGJ9MDyJo2aPtgbGYFzqhK4WflnRI6drwFmjZNO7bwgcvMDnjz2 ehcXiEZon5q9xzSfGRlJOMX43wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWsyFkz m2phLuqXGXA1r0LcGpZPMB8GA1UdIwQYMBaAFDr57LxF5OKX0pumxBHxoFyLnanj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExOC82RDA1OUJCQ0Ix QjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRwZlNtNmJFRWZHZ1hJdWRx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL092bnN2RVhrNHBmU202YkVFZkdnWEl1ZHFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0ExOC82RDA1OUJCQ0IxQjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRw ZlNtNmJFRWZHZ1hJdWRxZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUuqH84IZfdEzp0lpQBLi+ESg/bOEWHLCiMiWfFUPk+Oli+IG96Ya2 bcPsXqMz9KsjFRADhpkLe59hsU9mA7ccOibDbf9w8fIBuH1QCM3IqM5JGqt4YvyA cMk5gQgFYMvFSyQq4dsxl2jfxgI0vR0aKiKKX5+/7ZsaPfPtZ+BzFYxKBfK9fhW8 0z4eMNQzByl5it+gZ5ItoWYT0AO46falsarwew6p5+R3m17JWYa6vwZ3y4FVP3Dy ++0F1Bv2vg993KinhRcXl01rKUl/1Sc4O4Kwlw1iWTypUj6o6Ay5Bcbjs2+9kD/N 1p+aTIH9D7/VWECs+UVfTuXocKw+fKZu -----END CERTIFICATE-----Generated at Thu May 15 13:30:49 2025 by rpki-client