$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft File: OvnsvEXk4pfSm6bEEfGgXIudqeM.mft (raw, json) Hash identifier: 5XmRMSkKnHCzia/t5KwNeqRabrClP3YVxD794zYzbL0= Subject key identifier: 21:0B:76:6A:FC:65:0C:C5:41:D2:46:1D:0A:9F:E8:72:70:89:CC:3F Authority key identifier: 3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 Certificate issuer: /CN=A919CA18/serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft Manifest number: 01F9 Signing time: Mon 03 Nov 2025 02:24:34 +0000 Manifest this update: Mon 03 Nov 2025 02:24:34 +0000 Manifest next update: Mon 10 Nov 2025 02:24:34 +0000 Files and hashes: 1: OvnsvEXk4pfSm6bEEfGgXIudqeM.crl (hash: C0JAelfBYtJ+if6SAoIB3q3iWBBywbQehHx2qU49/Vk=) 2: 82E99F5A10FC11EF95048154C4F9AE02.roa (hash: KiSgunw3k37SA5qIOSFD0yKCbhYgrY4Gzd+tIVRajoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA18, serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Validity Not Before: Nov 3 02:24:34 2025 GMT Not After : Nov 10 02:24:34 2025 GMT Subject: CN=69081262-184a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:00:7d:de:2e:06:8e:47:ab:af:77:45:b8:e3: 7f:3f:f9:40:00:ea:eb:24:ea:d3:6d:ca:83:ee:a9: 76:35:42:46:ae:ef:2f:41:17:65:3a:d5:bb:f0:d6: a2:d2:0d:e0:1d:0a:4e:0e:db:b0:b7:2e:e4:04:be: 58:a9:67:fe:c6:68:70:e9:a5:82:50:b1:f7:3a:73: 05:39:6d:5c:4f:d5:49:e5:57:d7:b0:ba:e6:84:d9: cc:ba:35:7c:c3:69:40:d9:4e:44:50:a4:8c:c7:21: d3:98:e5:13:9c:a6:fe:35:1f:a6:43:a4:25:99:a8: 05:fa:97:c8:81:81:85:aa:74:26:76:f6:59:57:ec: 0f:15:9f:c8:11:91:34:17:f6:18:47:66:9a:5c:56: 5e:9b:08:62:91:31:55:c8:b0:8c:15:34:31:5a:e5: 3f:ea:d8:8b:2c:64:e0:ff:21:d1:ab:63:4a:c9:de: ab:a6:34:0f:8b:d3:55:0b:36:c4:b4:64:06:6f:cb: 51:19:84:60:ed:e1:67:4f:08:ff:c6:7f:d3:b4:8d: 45:76:7a:2b:c3:f0:64:ec:68:0d:4b:01:02:1a:fe: b0:fc:0e:e1:be:80:f7:c7:ff:ca:62:d8:6b:4f:2c: ba:e4:0b:28:60:ea:a3:1e:db:a0:86:b5:db:ec:92: 2a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:0B:76:6A:FC:65:0C:C5:41:D2:46:1D:0A:9F:E8:72:70:89:CC:3F X509v3 Authority Key Identifier: keyid:3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:2a:4c:fc:49:29:58:f6:13:bd:68:df:47:15:63:4b:46:2b: f1:c9:1a:88:16:58:ac:fd:b2:48:e9:30:b4:d6:d8:57:2d:8f: 21:24:4a:59:65:ca:e5:ee:75:53:04:46:6a:01:d3:32:a8:e7: 3f:b0:fe:a8:2b:42:f2:ea:0e:bc:b2:66:e3:5b:ef:3e:f0:ee: 74:24:2a:29:f7:ba:0f:19:a8:e2:69:c1:d5:7c:5c:dc:1d:20: 3c:21:83:b2:d8:69:c8:30:fa:ea:a3:1a:73:ac:13:67:23:2a: e9:82:67:a1:a8:0e:8d:4c:e4:47:08:a4:94:c3:b2:d4:97:62: bd:79:5c:8b:7c:bf:01:9b:6d:2a:1c:af:db:fe:9d:cc:86:d3: 22:16:da:23:de:86:24:19:c2:f2:ea:1f:22:c2:fd:c7:c4:85: ec:57:3a:8e:50:3b:23:60:51:c2:a8:91:92:ea:4e:56:18:bb: ab:b2:66:b4:f1:37:39:11:49:50:27:55:c9:d1:cf:8d:b3:dd: ad:a7:97:53:f3:03:6f:e7:40:6d:ee:b5:98:71:b6:e8:f0:71: 01:9e:e7:b0:4b:c0:f7:91:91:ac:28:1d:ca:7f:a2:03:20:56: f3:50:1b:6f:72:aa:fc:b6:93:a2:92:30:60:72:5c:4a:64:2b: 67:a5:31:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMTgxMTAvBgNVBAUTKDNBRjlFQ0JDNDVFNEUyOTdEMjlCQTZDNDExRjFBMDVD OEI5REE5RTMwHhcNMjUxMTAzMDIyNDM0WhcNMjUxMTEwMDIyNDM0WjAYMRYwFAYD VQQDEw02OTA4MTI2Mi0xODRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wB93i4Gjkerr3dFuON/P/lAAOrrJOrTbcqD7ql2NUJGru8vQRdlOtW78Nai 0g3gHQpODtuwty7kBL5YqWf+xmhw6aWCULH3OnMFOW1cT9VJ5VfXsLrmhNnMujV8 w2lA2U5EUKSMxyHTmOUTnKb+NR+mQ6QlmagF+pfIgYGFqnQmdvZZV+wPFZ/IEZE0 F/YYR2aaXFZemwhikTFVyLCMFTQxWuU/6tiLLGTg/yHRq2NKyd6rpjQPi9NVCzbE tGQGb8tRGYRg7eFnTwj/xn/TtI1Fdnorw/Bk7GgNSwECGv6w/A7hvoD3x//KYthr Tyy65AsoYOqjHtughrXb7JIqxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCELdmr8 ZQzFQdJGHQqf6HJwicw/MB8GA1UdIwQYMBaAFDr57LxF5OKX0pumxBHxoFyLnanj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExOC82RDA1OUJCQ0Ix QjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRwZlNtNmJFRWZHZ1hJdWRx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL092bnN2RVhrNHBmU202YkVFZkdnWEl1ZHFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0ExOC82RDA1OUJCQ0IxQjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRw ZlNtNmJFRWZHZ1hJdWRxZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMKkz8SSlY9hO9aN9HFWNLRivxyRqIFlis/bJI6TC01thXLY8hJEpZ Zcrl7nVTBEZqAdMyqOc/sP6oK0Ly6g68smbjW+8+8O50JCop97oPGajiacHVfFzc HSA8IYOy2GnIMPrqoxpzrBNnIyrpgmehqA6NTORHCKSUw7LUl2K9eVyLfL8Bm20q HK/b/p3MhtMiFtoj3oYkGcLy6h8iwv3HxIXsVzqOUDsjYFHCqJGS6k5WGLursma0 8Tc5EUlQJ1XJ0c+Ns92tp5dT8wNv50Bt7rWYcbbo8HEBnuewS8D3kZGsKB3Kf6ID IFbzUBtvcqr8tpOikjBgclxKZCtnpTEe -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:37 2025 by rpki-client