$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft File: os0QpH7XI-HEi19Q1oDPT2f8sdM.mft (raw, json) Hash identifier: ol+xBGHMqzr//QVxAj9/tXm2ZR7p+3IhvMgTwz/DLPA= Subject key identifier: 59:7E:82:4F:2F:55:C9:DF:48:FC:6B:65:EA:FB:B9:25:6B:B9:8F:D1 Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft Manifest number: 0176 Signing time: Fri 05 Sep 2025 04:09:22 +0000 Manifest this update: Fri 05 Sep 2025 04:09:22 +0000 Manifest next update: Fri 12 Sep 2025 04:09:22 +0000 Files and hashes: 1: os0QpH7XI-HEi19Q1oDPT2f8sdM.crl (hash: A9Cw1dgyJdYrp9WEIYAj9IRNqbV+oyTHxate+mrnObQ=) 2: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (hash: S579X7Eg58aEG3SPKUs0UURwjN76vzCVTAQS2DSPcNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Sep 5 04:09:22 2025 GMT Not After : Sep 12 04:09:22 2025 GMT Subject: CN=68ba6272-7462 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:26:a9:6b:41:e5:78:f4:3a:e1:3b:0b:58:2d: 28:3f:16:c8:fb:c8:9d:9e:f2:99:b2:d2:ab:cd:e0: 07:6d:a8:b4:1e:20:5c:83:4a:dc:bf:6b:5f:ce:83: c4:89:bb:8d:ab:87:40:e2:70:6f:80:75:2a:8d:2f: c4:78:73:43:60:d5:33:7f:e2:80:a2:57:ea:e7:00: 6c:7c:bd:51:c9:e5:79:30:ea:8e:d3:aa:03:de:32: 93:43:81:63:1f:8c:61:41:d3:0f:91:36:54:3c:83: a1:2d:ec:ef:89:8e:bf:37:64:3c:67:c9:5d:93:44: 3b:c9:f6:dd:01:cd:5b:31:0f:f9:f6:0e:c6:6d:b3: ae:2b:a2:b9:a3:e9:cf:c9:f2:12:e5:86:df:26:22: 06:af:75:6e:14:66:f5:80:2e:35:1e:a0:0f:16:f0: 1e:c4:82:a6:37:b6:a6:c2:d8:11:a3:22:17:20:17: ed:e5:34:59:60:02:5c:d6:2d:d8:8d:a9:81:12:25: c9:b3:5e:4c:76:ea:a7:b4:26:af:18:33:5f:0d:43: 3f:4a:a9:b8:70:4d:2f:5a:78:21:ad:55:1c:43:9e: d8:16:7c:7b:98:a5:a0:92:a2:0e:75:47:59:07:cb: 5f:54:bb:ae:50:d9:29:cf:20:98:de:f6:10:27:30: 66:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:7E:82:4F:2F:55:C9:DF:48:FC:6B:65:EA:FB:B9:25:6B:B9:8F:D1 X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:d3:d9:76:35:e4:8c:d9:f0:ca:18:95:08:95:bb:b2:1d:68: 49:79:21:b1:4b:2b:b0:a2:54:a7:a3:f1:43:2f:6d:d0:54:75: 0a:45:ae:24:70:f2:79:41:4c:41:27:f8:bb:77:7d:4f:4d:73: 1a:65:ee:d2:46:43:c7:81:ae:44:05:c5:a1:2c:35:1e:67:21: b4:ef:51:78:df:cb:2a:47:f9:63:d5:f9:bc:21:b7:a2:d6:85: b5:8c:8b:c3:0d:15:a0:2d:05:a0:fa:33:ea:dd:b6:66:66:3b: af:35:bd:f9:38:90:d2:f1:99:23:e7:9a:d1:7b:67:07:17:9c: f0:15:e5:0f:35:9b:77:61:64:66:96:be:1d:8a:6f:21:0c:d3: 18:65:93:ca:9f:a9:f7:a0:65:62:3a:05:40:99:45:37:c8:d3: e1:63:aa:d9:02:3e:06:e2:f5:bb:dc:72:e9:22:34:8f:99:a1: 51:a0:ac:55:84:ae:28:10:ba:c6:28:2c:f7:ab:af:dd:17:3a: 05:81:7f:91:0c:c6:ad:d2:30:7f:91:70:a1:ea:a7:85:8a:20: 04:4d:5d:f6:3b:83:72:44:b9:26:3a:99:e2:ce:a6:cd:f0:92: 48:7c:0f:02:ca:cc:fe:bd:6b:4e:9e:5c:d4:14:bc:98:4e:6f: f0:e1:ad:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjUwOTA1MDQwOTIyWhcNMjUwOTEyMDQwOTIyWjAYMRYwFAYD VQQDEw02OGJhNjI3Mi03NDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2iapa0HlePQ64TsLWC0oPxbI+8idnvKZstKrzeAHbai0HiBcg0rcv2tfzoPE ibuNq4dA4nBvgHUqjS/EeHNDYNUzf+KAolfq5wBsfL1RyeV5MOqO06oD3jKTQ4Fj H4xhQdMPkTZUPIOhLezviY6/N2Q8Z8ldk0Q7yfbdAc1bMQ/59g7GbbOuK6K5o+nP yfIS5YbfJiIGr3VuFGb1gC41HqAPFvAexIKmN7amwtgRoyIXIBft5TRZYAJc1i3Y jamBEiXJs15MduqntCavGDNfDUM/Sqm4cE0vWnghrVUcQ57YFnx7mKWgkqIOdUdZ B8tfVLuuUNkpzyCY3vYQJzBmDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFl+gk8v VcnfSPxrZer7uSVruY/RMB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BNDcwNzg1RTU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEkt SEVpMTlRMW9EUFQyZjhzZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr09l2NeSM2fDKGJUIlbuyHWhJeSGxSyuwolSno/FDL23QVHUKRa4k cPJ5QUxBJ/i7d31PTXMaZe7SRkPHga5EBcWhLDUeZyG071F438sqR/lj1fm8Ibei 1oW1jIvDDRWgLQWg+jPq3bZmZjuvNb35OJDS8Zkj55rRe2cHF5zwFeUPNZt3YWRm lr4dim8hDNMYZZPKn6n3oGViOgVAmUU3yNPhY6rZAj4G4vW73HLpIjSPmaFRoKxV hK4oELrGKCz3q6/dFzoFgX+RDMat0jB/kXCh6qeFiiAETV32O4NyRLkmOpnizqbN 8JJIfA8Cysz+vWtOnlzUFLyYTm/w4a1A -----END CERTIFICATE-----Generated at Sat Sep 6 15:34:19 2025 by rpki-client