$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft File: os0QpH7XI-HEi19Q1oDPT2f8sdM.mft (raw, json) Hash identifier: xpFkDrFcaqkQSmhoSHQ2fFJfskkaJIxLW3vZKA6IC4k= Subject key identifier: 13:16:75:95:4C:4B:AB:73:A6:C4:E0:12:DE:70:9A:C5:23:E9:83:9B Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft Manifest number: 0152 Signing time: Tue 01 Jul 2025 04:39:46 +0000 Manifest this update: Tue 01 Jul 2025 04:39:46 +0000 Manifest next update: Tue 08 Jul 2025 04:39:46 +0000 Files and hashes: 1: os0QpH7XI-HEi19Q1oDPT2f8sdM.crl (hash: h/H4KXhCR/GOOt/pDFBIE6I5H/CZNleW80PC0kInSfg=) 2: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (hash: S579X7Eg58aEG3SPKUs0UURwjN76vzCVTAQS2DSPcNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:39:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Jul 1 04:39:46 2025 GMT Not After : Jul 8 04:39:46 2025 GMT Subject: CN=68636692-74eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:08:df:34:09:64:ce:c0:3b:84:81:d0:5b:36: 4c:82:e7:5d:41:f7:f0:44:2a:3e:4f:77:9d:8c:8a: 39:3c:57:4d:31:f4:70:51:66:33:37:c4:cc:18:b5: 4f:52:50:3a:9d:2c:44:63:1e:e5:e0:87:53:d1:0d: 40:d4:29:9d:ac:4d:ef:86:0e:e3:a2:e3:14:76:e0: 09:b6:28:d5:7f:7c:eb:02:84:cc:43:35:40:d6:3c: 6f:94:b8:c9:0a:60:c2:17:84:02:eb:09:37:20:17: b5:2d:6c:c3:69:b6:18:7b:1c:40:14:28:73:5f:78: e8:e7:86:cb:60:83:c6:4d:df:87:12:e2:66:99:01: 75:69:02:b5:8f:3d:73:e4:7c:f5:e6:3c:9d:a3:22: b4:d0:b8:da:97:aa:ce:e6:81:77:58:10:af:b2:43: 12:2c:08:82:c6:72:19:61:d7:d3:bf:0c:bc:b8:68: f2:be:a3:4a:34:88:99:52:c1:e9:ac:fe:30:b0:6d: eb:97:85:0c:3a:a2:13:19:43:f6:2c:58:b5:93:2a: a6:d6:3c:4f:07:c8:cb:13:21:29:1a:a0:ee:21:65: e9:71:8a:f1:41:46:a3:3f:92:64:38:71:6d:6f:24: 56:86:67:aa:97:35:10:2a:02:9c:64:6f:b3:c5:cc: 55:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:16:75:95:4C:4B:AB:73:A6:C4:E0:12:DE:70:9A:C5:23:E9:83:9B X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:64:44:89:61:fc:63:40:b7:b4:e6:57:bd:d9:91:44:74:1b: 91:de:1b:ad:39:0c:f5:e4:ba:3c:45:17:59:e0:56:f9:a5:8f: 80:7f:43:6b:e0:79:e4:ac:a1:2b:5a:5e:fd:36:33:0f:10:12: 20:6d:c2:13:a8:bd:d9:e5:4a:bd:e2:85:69:1d:73:5a:a8:10: d6:f4:99:94:0d:89:59:40:51:7c:e7:00:c3:c4:15:35:4a:9f: 99:cd:d2:a4:96:ee:ce:d1:47:c7:ab:40:3d:69:9b:07:0d:51: 43:5a:23:f4:c9:41:6b:5d:eb:93:80:8a:53:fa:f6:7c:2f:2f: 44:11:37:4a:8d:12:7c:7b:66:2f:2f:e3:e6:7f:d1:04:1d:3b: 56:07:08:be:4a:5d:9f:64:54:d0:9c:bc:14:8d:36:4e:06:c7: ea:5c:55:91:1c:e0:90:b7:48:ab:e1:ba:11:d9:49:b3:40:d8: f0:2f:42:da:59:b6:e3:6e:87:49:ef:59:85:f9:c9:d6:12:05: 7c:b2:5e:ce:26:73:cc:50:9b:fb:97:95:7d:5d:9f:dc:da:6e: a1:d8:28:a9:4b:87:7a:31:b0:f1:3f:21:32:f7:5a:3c:fb:ef: 4c:cf:30:01:f2:c3:c1:28:e6:71:ee:61:02:30:7d:f1:76:00: 27:f2:df:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjUwNzAxMDQzOTQ2WhcNMjUwNzA4MDQzOTQ2WjAYMRYwFAYD VQQDEw02ODYzNjY5Mi03NGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgjfNAlkzsA7hIHQWzZMguddQffwRCo+T3edjIo5PFdNMfRwUWYzN8TMGLVP UlA6nSxEYx7l4IdT0Q1A1CmdrE3vhg7jouMUduAJtijVf3zrAoTMQzVA1jxvlLjJ CmDCF4QC6wk3IBe1LWzDabYYexxAFChzX3jo54bLYIPGTd+HEuJmmQF1aQK1jz1z 5Hz15jydoyK00Ljal6rO5oF3WBCvskMSLAiCxnIZYdfTvwy8uGjyvqNKNIiZUsHp rP4wsG3rl4UMOqITGUP2LFi1kyqm1jxPB8jLEyEpGqDuIWXpcYrxQUajP5JkOHFt byRWhmeqlzUQKgKcZG+zxcxVbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMWdZVM S6tzpsTgEt5wmsUj6YObMB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BNDcwNzg1RTU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEkt SEVpMTlRMW9EUFQyZjhzZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKZESJYfxjQLe05le92ZFEdBuR3hutOQz15Lo8RRdZ4Fb5pY+Af0Nr 4HnkrKErWl79NjMPEBIgbcITqL3Z5Uq94oVpHXNaqBDW9JmUDYlZQFF85wDDxBU1 Sp+ZzdKklu7O0UfHq0A9aZsHDVFDWiP0yUFrXeuTgIpT+vZ8Ly9EETdKjRJ8e2Yv L+Pmf9EEHTtWBwi+Sl2fZFTQnLwUjTZOBsfqXFWRHOCQt0ir4boR2UmzQNjwL0La WbbjbodJ71mF+cnWEgV8sl7OJnPMUJv7l5V9XZ/c2m6h2CipS4d6MbDxPyEy91o8 ++9MzzAB8sPBKOZx7mECMH3xdgAn8t97 -----END CERTIFICATE-----Generated at Thu Jul 3 05:15:59 2025 by rpki-client