$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft File: OvnsvEXk4pfSm6bEEfGgXIudqeM.mft (raw, json) Hash identifier: 98Z8C9vlYfZr0LChoYjuQwjdx/HLkGF9CoGADcA1Up8= Subject key identifier: DA:13:D6:1C:30:9F:FB:7E:86:E3:25:E6:8F:AC:90:FD:DF:F9:F2:A3 Authority key identifier: 3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 Certificate issuer: /CN=A919CA18/serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Certificate serial: 0261 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft Manifest number: 025D Signing time: Mon 11 May 2026 02:13:04 +0000 Manifest this update: Mon 11 May 2026 02:13:03 +0000 Manifest next update: Mon 18 May 2026 02:13:03 +0000 Files and hashes: 1: OvnsvEXk4pfSm6bEEfGgXIudqeM.crl (hash: Ia2RUKb2VQoOi2ToY2Px2XhnQoAC98PRxkb8y9RPn6s=) 2: 82E99F5A10FC11EF95048154C4F9AE02.roa (hash: AXhLJomVJ63tE2qeqNBzn6juE7/Pg7GMaa4t59azamk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 02:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 609 (0x261) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA18, serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Validity Not Before: May 11 02:13:03 2026 GMT Not After : May 18 02:13:03 2026 GMT Subject: CN=6a013b30-574d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:21:ad:dc:87:de:70:8d:d2:21:35:b3:e1:dc: 00:ed:50:e6:3c:df:78:cd:27:91:71:32:80:2d:c3: ac:b9:a9:27:ec:52:c9:3b:bf:98:9c:cd:65:74:fe: a6:6d:ed:a0:81:c8:c3:15:10:69:11:b6:3a:71:0d: fa:0d:e6:33:8a:fc:ad:cb:18:34:14:86:1f:ff:fa: 49:23:88:1e:77:24:66:72:1e:58:b3:05:df:e6:32: ef:92:64:48:b3:ba:32:16:15:cf:db:09:8a:68:f5: cc:cd:74:ca:07:37:16:0f:4e:d8:30:29:ab:a3:30: 65:4b:8a:53:59:65:4b:b1:53:04:b0:f8:aa:45:b6: d8:f9:b7:69:a0:32:ad:fc:7b:88:75:bd:d2:a5:d4: fc:30:e7:44:49:68:d8:a8:89:7f:12:2b:68:ff:a6: ff:e5:84:0b:75:39:10:5b:cd:24:b0:c6:ba:ba:68: 7e:83:d7:98:ce:60:0e:bb:a6:59:91:03:49:9c:d5: 53:61:09:7d:32:59:e8:44:ae:eb:f2:6b:b3:b5:f8: 35:39:ed:2e:6a:65:ff:42:4d:ce:55:c5:e7:6e:bb: 06:38:6c:80:ea:87:86:8c:6c:d9:7d:41:9b:10:4c: 97:87:57:cf:a9:94:e5:30:1b:27:fb:e5:6d:c6:48: 83:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:13:D6:1C:30:9F:FB:7E:86:E3:25:E6:8F:AC:90:FD:DF:F9:F2:A3 X509v3 Authority Key Identifier: keyid:3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:5f:00:ec:83:57:d6:3a:e6:76:7f:7b:ae:11:62:9a:10:82: 65:0f:26:2f:6e:22:e3:b7:dd:cb:f4:e0:50:e8:ae:5a:3c:d6: 38:b1:40:64:c3:d9:3a:52:24:12:2f:2f:e9:a0:8a:0f:b1:04: 36:91:7f:88:61:fc:81:54:aa:db:89:c9:ea:08:97:83:4a:d1: fd:9a:72:2d:1f:6a:41:77:1d:df:ef:8c:f4:f8:43:aa:a5:87: 1d:aa:84:a1:e6:f0:fd:70:12:d2:ef:1f:2a:6c:8c:c1:d6:1b: f9:79:b4:93:c5:d9:04:05:51:bc:3a:5a:26:d9:ee:05:48:07: 3f:73:46:35:70:db:28:60:3e:df:79:d1:8d:5a:b1:7f:e7:30: 36:de:33:77:53:d0:f9:ee:83:63:87:90:75:17:a8:b1:12:fe: c2:87:d1:d0:da:3f:11:41:be:e7:87:26:d3:4a:46:3d:00:ff: 42:e0:8a:4f:b3:fc:ff:04:e9:c7:ea:5b:90:58:f0:c3:2b:1d: bc:d1:44:62:8a:f9:17:87:32:1a:1a:9a:1a:2e:8d:ab:2d:cb: 62:13:a9:72:91:6b:8e:5b:17:b2:db:04:1f:18:35:53:b2:d5: 31:e7:22:a7:b9:53:a7:62:6e:83:20:23:7b:a1:eb:76:86:1d: 86:f6:a3:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMTgxMTAvBgNVBAUTKDNBRjlFQ0JDNDVFNEUyOTdEMjlCQTZDNDExRjFBMDVD OEI5REE5RTMwHhcNMjYwNTExMDIxMzAzWhcNMjYwNTE4MDIxMzAzWjAYMRYwFAYD VQQDEw02YTAxM2IzMC01NzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2iGt3IfecI3SITWz4dwA7VDmPN94zSeRcTKALcOsuakn7FLJO7+YnM1ldP6m be2ggcjDFRBpEbY6cQ36DeYzivytyxg0FIYf//pJI4gedyRmch5YswXf5jLvkmRI s7oyFhXP2wmKaPXMzXTKBzcWD07YMCmrozBlS4pTWWVLsVMEsPiqRbbY+bdpoDKt /HuIdb3SpdT8MOdESWjYqIl/Eito/6b/5YQLdTkQW80ksMa6umh+g9eYzmAOu6ZZ kQNJnNVTYQl9MlnoRK7r8muztfg1Oe0uamX/Qk3OVcXnbrsGOGyA6oeGjGzZfUGb EEyXh1fPqZTlMBsn++VtxkiD2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNoT1hww n/t+huMl5o+skP3f+fKjMB8GA1UdIwQYMBaAFDr57LxF5OKX0pumxBHxoFyLnanj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExOC82RDA1OUJCQ0Ix QjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRwZlNtNmJFRWZHZ1hJdWRx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL092bnN2RVhrNHBmU202YkVFZkdnWEl1ZHFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0ExOC82RDA1OUJCQ0IxQjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRw ZlNtNmJFRWZHZ1hJdWRxZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjF8A7INX1jrmdn97rhFimhCCZQ8mL24i47fdy/TgUOiuWjzWOLFAZMPZOlIk Ei8v6aCKD7EENpF/iGH8gVSq24nJ6giXg0rR/ZpyLR9qQXcd3++M9PhDqqWHHaqE oebw/XAS0u8fKmyMwdYb+Xm0k8XZBAVRvDpaJtnuBUgHP3NGNXDbKGA+33nRjVqx f+cwNt4zd1PQ+e6DY4eQdReosRL+wofR0No/EUG+54cm00pGPQD/QuCKT7P8/wTp x+pbkFjwwysdvNFEYor5F4cyGhqaGi6Nqy3LYhOpcpFrjlsXstsEHxg1U7LVMeci p7lTp2JugyAje6HrdoYdhvajWA== -----END CERTIFICATE-----Generated at Wed May 13 00:19:34 2026 by rpki-client