$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft File: Y04osQAuVW6OsU-VPq1jttZ3WAk.mft (raw, json) Hash identifier: jxjqOmcByC5k+grP9zd51f9+G43pxIJrz0nM8ZubFjQ= Subject key identifier: C5:E4:A7:EA:0E:F8:3C:4E:4E:B2:D0:22:F0:4C:5D:73:44:AC:88:46 Authority key identifier: 63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 Certificate issuer: /CN=A9194C0D/serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft Manifest number: 0191 Signing time: Fri 05 Sep 2025 04:09:24 +0000 Manifest this update: Fri 05 Sep 2025 04:09:24 +0000 Manifest next update: Fri 12 Sep 2025 04:09:24 +0000 Files and hashes: 1: Y04osQAuVW6OsU-VPq1jttZ3WAk.crl (hash: sZnSzfWVNzQTc6fCxvfAU/4/7YX2O/eaL0ETt/xYtMY=) 2: F6FAEC5CCB0411EEAB05F93CC4F9AE02.roa (hash: 0UB6vf7tsJ4/eqdU0xPwdgNnTiXM+SW0/ez8sQsDOEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Validity Not Before: Sep 5 04:09:24 2025 GMT Not After : Sep 12 04:09:24 2025 GMT Subject: CN=68ba6274-441c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1e:9d:30:04:5d:e2:f8:c0:27:29:ad:1a:40: 94:d0:7a:4b:d7:2a:13:8f:ad:00:61:42:d1:70:c6: 31:fb:78:e5:44:c8:30:58:0f:8a:f5:63:1c:72:d0: 33:2e:0b:de:75:60:68:d0:fc:9f:b4:79:ff:3b:cb: 52:90:29:7e:22:f2:3c:3a:cb:72:b1:99:6d:11:4f: 40:01:1a:f9:7d:51:5c:a1:14:9a:50:0a:f9:aa:ad: 81:8c:18:fe:c4:5b:a4:7c:fc:a4:55:2c:3d:3b:68: f9:50:7f:64:9c:84:56:ce:90:e5:84:7f:21:71:5b: c7:75:28:16:ab:8a:6a:5c:d5:3c:ce:82:88:a2:91: b4:91:aa:3a:97:36:67:a0:17:13:0f:f4:6a:a1:5d: 88:d7:57:23:12:89:c8:c5:31:ee:3c:7a:2a:15:3b: 68:9b:c2:d0:d5:b1:75:db:69:87:de:ff:05:92:a9: d7:88:42:55:2c:5f:5f:e7:71:9f:eb:de:35:30:29: d1:7d:3e:7f:4c:c2:6a:fc:8f:1a:1a:a1:d2:5d:37: c5:31:fa:72:b8:47:87:aa:6b:4f:ec:e3:4d:fe:9f: 04:2c:b2:7e:8a:fb:50:9e:c8:9d:8b:28:95:3b:c8: 6e:da:42:1a:59:5f:91:4c:74:60:d2:5e:d8:6a:25: e7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E4:A7:EA:0E:F8:3C:4E:4E:B2:D0:22:F0:4C:5D:73:44:AC:88:46 X509v3 Authority Key Identifier: keyid:63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:ea:65:e7:d3:99:ce:9f:69:62:e2:2f:5b:42:47:f2:8d:77: f6:b7:19:3e:75:05:40:95:23:d0:23:0b:ab:41:3d:d3:b0:a5: c5:10:aa:10:10:43:73:16:9f:16:e8:f6:8e:4a:c6:07:ef:02: 68:86:10:2f:65:51:05:00:59:7b:57:df:65:f1:91:7d:8b:2d: ff:14:41:8b:8f:b5:c1:8e:79:f1:d0:d8:eb:31:de:f9:d9:c0: 78:d6:ee:3b:b0:71:db:15:98:f2:30:19:fd:78:8a:e0:07:fd: 8e:07:54:c9:3f:24:10:89:52:88:e6:c5:c0:9f:72:83:f8:43: e7:e0:b2:01:a4:76:c6:25:ee:d3:44:c6:55:c9:10:23:5f:a2: 10:8c:f2:5a:f8:19:0a:f9:c3:24:93:aa:9d:88:e3:fc:c1:57: a1:67:fd:e9:81:4b:50:a0:32:61:f7:cb:0b:72:65:1b:c9:23: f9:f8:17:29:85:5a:a2:85:f9:b2:da:b3:9a:e9:cf:42:dd:32: 5c:89:ab:ac:9d:7a:8a:5f:37:ed:83:88:cc:90:82:08:25:34: 21:e9:36:d9:72:ee:39:93:c4:31:96:4d:41:4d:59:0b:bd:2f: 8c:82:08:60:c2:0b:3f:dc:59:a8:18:39:6e:5f:fb:cf:05:33: a0:ba:75:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKDYzNEUyOEIxMDAyRTU1NkU4RUIxNEY5NTNFQUQ2M0I2 RDY3NzU4MDkwHhcNMjUwOTA1MDQwOTI0WhcNMjUwOTEyMDQwOTI0WjAYMRYwFAYD VQQDEw02OGJhNjI3NC00NDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnB6dMARd4vjAJymtGkCU0HpL1yoTj60AYULRcMYx+3jlRMgwWA+K9WMcctAz LgvedWBo0PyftHn/O8tSkCl+IvI8OstysZltEU9AARr5fVFcoRSaUAr5qq2BjBj+ xFukfPykVSw9O2j5UH9knIRWzpDlhH8hcVvHdSgWq4pqXNU8zoKIopG0kao6lzZn oBcTD/RqoV2I11cjEonIxTHuPHoqFTtom8LQ1bF122mH3v8FkqnXiEJVLF9f53Gf 6941MCnRfT5/TMJq/I8aGqHSXTfFMfpyuEeHqmtP7ONN/p8ELLJ+ivtQnsidiyiV O8hu2kIaWV+RTHRg0l7YaiXnRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXkp+oO +DxOTrLQIvBMXXNErIhGMB8GA1UdIwQYMBaAFGNOKLEALlVujrFPlT6tY7bWd1gJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BRDI1ODg5MDU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZXNk9zVS1WUHExanR0WjNX QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwNG9zUUF1Vlc2T3NVLVZQcTFqdHRaM1dBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BRDI1ODg5MDU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZX Nk9zVS1WUHExanR0WjNXQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd6mXn05nOn2li4i9bQkfyjXf2txk+dQVAlSPQIwurQT3TsKXFEKoQ EENzFp8W6PaOSsYH7wJohhAvZVEFAFl7V99l8ZF9iy3/FEGLj7XBjnnx0NjrMd75 2cB41u47sHHbFZjyMBn9eIrgB/2OB1TJPyQQiVKI5sXAn3KD+EPn4LIBpHbGJe7T RMZVyRAjX6IQjPJa+BkK+cMkk6qdiOP8wVehZ/3pgUtQoDJh98sLcmUbySP5+Bcp hVqihfmy2rOa6c9C3TJciausnXqKXzftg4jMkIIIJTQh6TbZcu45k8Qxlk1BTVkL vS+Mgghgwgs/3FmoGDluX/vPBTOgunXQ -----END CERTIFICATE-----Generated at Sat Sep 6 15:29:20 2025 by rpki-client