$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft File: os0QpH7XI-HEi19Q1oDPT2f8sdM.mft (raw, json) Hash identifier: y3N83lcs2gCYo2u61PTVcFn5AsxqV9IikA/u0eNFAmw= Subject key identifier: 71:22:87:F4:6F:83:F9:1E:E5:17:64:AE:EC:D9:63:86:08:B6:C3:61 Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: 0147 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft Manifest number: 0143 Signing time: Sun 01 Jun 2025 04:04:46 +0000 Manifest this update: Sun 01 Jun 2025 04:04:45 +0000 Manifest next update: Sun 08 Jun 2025 04:04:45 +0000 Files and hashes: 1: os0QpH7XI-HEi19Q1oDPT2f8sdM.crl (hash: rsuaBbO0TUJ3lPrqDspqJ0cYvsY7/hfA1L2Mf250+zU=) 2: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (hash: S579X7Eg58aEG3SPKUs0UURwjN76vzCVTAQS2DSPcNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:04:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Jun 1 04:04:45 2025 GMT Not After : Jun 8 04:04:45 2025 GMT Subject: CN=683bd15e-20a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2a:19:ec:90:57:2e:60:65:45:41:34:18:46: ee:25:ac:fd:76:db:2f:a8:5d:c1:a7:c2:a4:8b:ef: d0:f9:7c:d1:35:53:b7:fb:c7:ca:ca:89:11:d7:a4: 80:67:85:56:11:0d:de:ed:a9:d8:5a:64:f4:9c:df: d7:49:66:97:08:8d:28:e4:87:92:fc:37:72:d6:8a: a9:42:e6:2b:b9:d9:83:74:ef:20:61:80:16:b0:53: 60:74:ca:54:4f:78:8d:13:e0:21:be:76:d2:68:ee: c9:80:83:f1:3d:3a:21:0f:00:58:86:d0:48:7a:7e: df:df:6c:45:5f:85:23:5a:d0:4e:1c:26:2c:60:ae: 25:e6:d9:e7:40:44:07:49:8d:49:08:e6:fc:d6:04: 86:8b:be:5f:72:46:4a:51:2a:91:ce:d9:c2:9b:21: 4d:7f:02:8b:84:56:fe:9a:b8:86:88:11:1c:4c:cd: 42:9c:34:41:af:7e:48:ac:0a:85:42:6c:cd:08:75: e3:f1:1a:23:32:e5:5c:3f:a1:02:c3:47:a5:0a:fa: d9:6c:d1:ff:15:9a:ba:41:04:7e:c3:90:1e:14:60: de:b6:06:c0:a4:93:77:f1:d3:8d:ae:64:b2:a3:32: 28:39:ba:fd:e7:ae:47:92:89:88:45:73:6f:a2:7e: c7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:22:87:F4:6F:83:F9:1E:E5:17:64:AE:EC:D9:63:86:08:B6:C3:61 X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:5e:13:0f:e4:72:39:fe:5b:ea:99:d4:72:af:bc:ce:8f:3d: d6:93:8f:81:24:2c:b1:44:71:1d:cc:04:c5:98:bf:9e:af:0f: 0a:32:70:a9:6d:1d:f5:12:cf:fa:b2:8f:60:fb:24:96:50:64: b5:8c:38:8b:d4:1a:2f:24:1b:d4:99:af:f3:54:f4:27:52:dc: 5f:d5:df:2c:3c:7d:4a:cb:25:a8:30:5d:22:89:f2:c0:03:77: 49:1d:2b:7e:e9:0e:7c:3a:f4:88:22:17:87:91:60:1f:f3:2c: a5:8e:55:03:15:49:fc:0b:62:47:84:02:84:cd:d8:ad:ea:42: 93:ab:c2:9a:70:d9:bf:9c:a3:a3:01:f8:5b:d8:77:5c:7d:62: 90:8c:43:9c:34:29:80:b3:db:ee:58:fe:d7:df:2a:78:00:cd: 7c:ad:54:40:22:a7:a6:76:f5:74:82:a5:7f:c0:f2:51:0c:7f: 9e:a1:82:f8:57:3a:72:42:28:e2:3c:76:7e:b6:f5:b1:f9:d7: 3b:f4:60:b7:c9:69:86:66:ee:47:76:2a:30:7e:62:07:69:ad: b5:3a:5c:53:e4:82:55:7b:10:3c:d4:3f:6c:e4:dc:ef:5a:ac: 1c:c3:bb:69:b4:64:d1:18:aa:89:de:99:ca:1b:4c:ed:61:b6: e1:6c:c9:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjUwNjAxMDQwNDQ1WhcNMjUwNjA4MDQwNDQ1WjAYMRYwFAYD VQQDEw02ODNiZDE1ZS0yMGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxioZ7JBXLmBlRUE0GEbuJaz9dtsvqF3Bp8Kki+/Q+XzRNVO3+8fKyokR16SA Z4VWEQ3e7anYWmT0nN/XSWaXCI0o5IeS/Ddy1oqpQuYrudmDdO8gYYAWsFNgdMpU T3iNE+AhvnbSaO7JgIPxPTohDwBYhtBIen7f32xFX4UjWtBOHCYsYK4l5tnnQEQH SY1JCOb81gSGi75fckZKUSqRztnCmyFNfwKLhFb+mriGiBEcTM1CnDRBr35IrAqF QmzNCHXj8RojMuVcP6ECw0elCvrZbNH/FZq6QQR+w5AeFGDetgbApJN38dONrmSy ozIoObr9565HkomIRXNvon7HDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHEih/Rv g/ke5RdkruzZY4YItsNhMB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BNDcwNzg1RTU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEkt SEVpMTlRMW9EUFQyZjhzZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPXhMP5HI5/lvqmdRyr7zOjz3Wk4+BJCyxRHEdzATFmL+erw8KMnCp bR31Es/6so9g+ySWUGS1jDiL1BovJBvUma/zVPQnUtxf1d8sPH1KyyWoMF0iifLA A3dJHSt+6Q58OvSIIheHkWAf8yyljlUDFUn8C2JHhAKEzdit6kKTq8KacNm/nKOj Afhb2HdcfWKQjEOcNCmAs9vuWP7X3yp4AM18rVRAIqemdvV0gqV/wPJRDH+eoYL4 VzpyQijiPHZ+tvWx+dc79GC3yWmGZu5HdiowfmIHaa21OlxT5IJVexA81D9s5Nzv Wqwcw7tptGTRGKqJ3pnKG0ztYbbhbMnM -----END CERTIFICATE-----Generated at Mon Jun 2 21:45:48 2025 by rpki-client