$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft File: OvnsvEXk4pfSm6bEEfGgXIudqeM.mft (raw, json) Hash identifier: acFYXm158h3OQULQewX27HvKcgm3epvujskKI5F9ccM= Subject key identifier: 75:DC:BA:38:F4:71:56:73:16:A8:28:08:2B:2F:EB:B1:AF:19:D4:3D Authority key identifier: 3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 Certificate issuer: /CN=A919CA18/serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft Manifest number: 01AC Signing time: Tue 03 Jun 2025 02:59:49 +0000 Manifest this update: Tue 03 Jun 2025 02:59:49 +0000 Manifest next update: Tue 10 Jun 2025 02:59:49 +0000 Files and hashes: 1: OvnsvEXk4pfSm6bEEfGgXIudqeM.crl (hash: 94ieeYjWVc6zfDJ7XzfKy2JZC0Vxvptts7OwNISZy9A=) 2: 82E99F5A10FC11EF95048154C4F9AE02.roa (hash: KiSgunw3k37SA5qIOSFD0yKCbhYgrY4Gzd+tIVRajoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA18, serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Validity Not Before: Jun 3 02:59:49 2025 GMT Not After : Jun 10 02:59:49 2025 GMT Subject: CN=683e6525-f13a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e7:14:95:30:0e:4f:b8:b9:41:1f:77:cd:b2: 2d:fe:90:c1:a3:f6:23:5a:e4:b9:17:a6:69:e2:49: 76:96:58:53:ce:2a:f3:cd:3b:41:1b:b1:50:46:3d: f1:15:7a:98:31:41:31:13:24:8c:21:b0:b6:bf:cf: 6f:9b:dc:e1:c1:91:d6:8a:98:10:b3:a2:2f:70:4d: 75:c4:8f:e7:c3:9a:69:b6:07:a8:76:3f:71:75:3b: 39:ac:5c:1f:fe:b6:19:e0:f5:15:86:3a:ff:f9:3d: 18:ed:9c:ca:9f:20:b8:71:7d:41:60:65:ab:76:d1: 2d:6e:cd:10:d9:a0:7e:3f:27:09:b5:32:8d:45:1a: ac:ab:9e:df:e7:dd:ef:0b:80:00:a5:78:82:89:d5: 87:61:43:d7:d2:bd:5e:27:41:38:89:f2:1a:79:a2: 93:af:30:d7:d8:77:bd:08:f9:52:da:19:96:59:c9: 92:d8:c9:99:6f:41:5d:4f:af:9a:22:72:65:3a:70: b7:c2:06:5d:c8:7f:88:f0:66:f8:10:9f:b4:81:4b: b8:90:36:09:1c:0c:63:8d:8a:93:3d:c5:07:2b:97: 59:ba:9b:97:01:60:9b:fa:db:08:5c:e2:02:51:b2: 08:f1:3e:cf:c9:00:ac:fa:0a:44:30:32:8a:d3:84: ca:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:DC:BA:38:F4:71:56:73:16:A8:28:08:2B:2F:EB:B1:AF:19:D4:3D X509v3 Authority Key Identifier: keyid:3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:92:7e:33:4d:59:b1:17:7c:97:db:90:cc:bf:d6:63:3f:e7: ae:6a:36:2b:63:6d:06:48:74:91:70:8f:3d:ec:79:d7:73:c7: 45:ac:72:c6:4c:ab:bd:02:9e:6e:78:c6:c8:57:c8:a4:6b:5d: 41:2f:8e:3a:3f:53:0c:c9:ae:bc:1b:4a:76:72:77:86:e6:9c: e1:55:ab:c5:ec:9b:91:15:10:c8:a7:f4:af:e3:4a:ba:30:f5: d6:43:05:68:7f:75:ce:a0:be:8f:dc:4d:9f:52:8a:01:3c:d7: 4b:75:02:55:67:bf:40:18:a9:50:ce:73:8c:a5:53:c9:81:f2: e1:64:0b:9f:b8:2b:62:ad:ac:6a:65:05:09:0a:8d:82:1e:36: 30:8a:2c:3d:40:30:04:62:3f:2b:ee:91:f7:14:28:2f:3c:8e: b2:84:84:c7:b0:23:29:9d:9c:46:b2:c4:00:2f:09:f4:9c:37: ff:df:61:2a:f1:f3:d4:2e:a6:da:c2:3d:b8:86:75:9e:c0:88: 00:f9:0d:f8:79:53:a5:b1:bc:b5:2c:9a:db:de:d6:0c:99:28: bb:30:75:bc:57:f7:f9:e2:87:74:e4:94:06:38:42:a2:06:e8: ca:d3:ed:70:4f:ac:5f:36:c2:d6:dc:5d:2b:5e:f6:b2:77:e8: 8a:fd:4d:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMTgxMTAvBgNVBAUTKDNBRjlFQ0JDNDVFNEUyOTdEMjlCQTZDNDExRjFBMDVD OEI5REE5RTMwHhcNMjUwNjAzMDI1OTQ5WhcNMjUwNjEwMDI1OTQ5WjAYMRYwFAYD VQQDEw02ODNlNjUyNS1mMTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOcUlTAOT7i5QR93zbIt/pDBo/YjWuS5F6Zp4kl2llhTzirzzTtBG7FQRj3x FXqYMUExEySMIbC2v89vm9zhwZHWipgQs6IvcE11xI/nw5pptgeodj9xdTs5rFwf /rYZ4PUVhjr/+T0Y7ZzKnyC4cX1BYGWrdtEtbs0Q2aB+PycJtTKNRRqsq57f593v C4AApXiCidWHYUPX0r1eJ0E4ifIaeaKTrzDX2He9CPlS2hmWWcmS2MmZb0FdT6+a InJlOnC3wgZdyH+I8Gb4EJ+0gUu4kDYJHAxjjYqTPcUHK5dZupuXAWCb+tsIXOIC UbII8T7PyQCs+gpEMDKK04TKLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXcujj0 cVZzFqgoCCsv67GvGdQ9MB8GA1UdIwQYMBaAFDr57LxF5OKX0pumxBHxoFyLnanj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExOC82RDA1OUJCQ0Ix QjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRwZlNtNmJFRWZHZ1hJdWRx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL092bnN2RVhrNHBmU202YkVFZkdnWEl1ZHFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0ExOC82RDA1OUJCQ0IxQjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRw ZlNtNmJFRWZHZ1hJdWRxZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIkn4zTVmxF3yX25DMv9ZjP+euajYrY20GSHSRcI897HnXc8dFrHLG TKu9Ap5ueMbIV8ika11BL446P1MMya68G0p2cneG5pzhVavF7JuRFRDIp/Sv40q6 MPXWQwVof3XOoL6P3E2fUooBPNdLdQJVZ79AGKlQznOMpVPJgfLhZAufuCtiraxq ZQUJCo2CHjYwiiw9QDAEYj8r7pH3FCgvPI6yhITHsCMpnZxGssQALwn0nDf/32Eq 8fPULqbawj24hnWewIgA+Q34eVOlsby1LJrb3tYMmSi7MHW8V/f54od05JQGOEKi BujK0+1wT6xfNsLW3F0rXvayd+iK/U1o -----END CERTIFICATE-----Generated at Wed Jun 4 00:12:02 2025 by rpki-client