$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft File: os0QpH7XI-HEi19Q1oDPT2f8sdM.mft (raw, json) Hash identifier: mLwUrnw823mNvFCLI8AbqUP5xaqx8kKHX58DnMdlPKc= Subject key identifier: E9:43:2B:3E:63:76:5D:DD:99:BA:BB:1A:55:01:06:DE:CA:E6:9E:15 Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft Manifest number: 016D Signing time: Sat 23 Aug 2025 04:01:24 +0000 Manifest this update: Sat 23 Aug 2025 04:01:23 +0000 Manifest next update: Sat 30 Aug 2025 04:01:23 +0000 Files and hashes: 1: os0QpH7XI-HEi19Q1oDPT2f8sdM.crl (hash: 8aJLjC4xm2eKw0ZPec2NX4bOX/btfDDju8RTUZgbkM0=) 2: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (hash: S579X7Eg58aEG3SPKUs0UURwjN76vzCVTAQS2DSPcNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Aug 23 04:01:23 2025 GMT Not After : Aug 30 04:01:23 2025 GMT Subject: CN=68a93d13-c686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:7d:3e:cb:f5:75:a4:a7:d5:51:54:4a:11:f8: 94:92:97:80:65:1c:53:62:29:4d:65:ba:da:b6:0a: 2b:c3:70:be:1b:49:40:d2:3a:98:3f:87:09:15:d2: 8e:b9:0d:47:76:f3:bc:b6:d8:dd:b5:c1:2f:b0:cf: 2a:eb:11:68:5c:68:7e:0a:53:61:29:07:82:10:93: ec:33:a5:82:66:1c:14:21:e9:08:d9:7b:40:5e:20: a6:d1:fb:02:16:bb:6c:0d:5d:f7:f3:c8:e7:39:43: 56:f1:03:c0:64:a5:bb:6d:70:d6:68:33:fd:81:e0: 2d:57:c8:16:36:39:59:a3:03:7a:96:46:4e:3b:f3: a1:59:24:68:76:46:c5:1a:5b:7c:09:d5:b2:0c:01: 6b:16:ba:1d:7b:31:32:94:04:d1:cc:c9:47:10:c7: 72:43:e7:da:46:1b:fb:a1:aa:9b:10:17:9b:e2:f0: 2a:d1:37:ed:58:f4:76:16:0f:ad:d7:29:e6:c6:48: 15:6f:9c:cc:7f:3d:2c:17:c1:e9:3b:3a:ba:1d:65: d7:2d:b2:c6:1e:9b:c8:96:6f:2f:e0:3f:bc:d1:66: 48:28:1d:91:ab:ec:11:ea:8c:fc:e3:da:a6:59:88: 85:66:b4:94:77:4d:25:95:4f:e9:c0:59:9c:aa:36: f7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:43:2B:3E:63:76:5D:DD:99:BA:BB:1A:55:01:06:DE:CA:E6:9E:15 X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:ea:7f:9f:3d:86:cd:32:8b:e7:1e:d8:a3:2b:0c:a2:6a:ee: 05:b5:0e:89:8f:4a:ad:03:d2:45:91:99:b7:f3:29:62:ff:d2: f3:ff:20:87:98:e9:6d:a8:5a:7b:2b:83:78:e2:76:19:c6:2d: 21:5f:d4:c6:cb:c4:0e:fb:f0:7f:60:f9:e2:2e:4f:fe:91:5b: 70:39:5a:c2:fe:7e:26:ca:c0:2a:54:50:db:d3:ad:8c:77:9c: 76:41:38:57:c9:33:f0:fa:fd:f5:e7:95:9a:d6:7d:01:c7:9c: af:2a:e8:29:46:06:b7:e8:95:87:54:f2:43:4b:5d:9b:fd:04: cb:68:b6:8f:ee:0e:88:ac:24:9d:d1:c2:d0:ad:1b:5e:9a:b5: 68:ba:16:63:53:13:f6:1a:73:f2:27:ce:e6:20:dc:8c:dd:60: 6e:1d:50:4d:73:f5:30:b1:98:6e:67:18:0a:12:0b:47:d0:c5: 3f:ab:07:76:1a:9f:76:1a:c5:89:a5:90:92:9f:17:de:9b:45: 14:1c:d9:ee:07:f1:36:b3:a4:2a:b6:85:9f:34:8e:a9:da:d2: 11:fa:8e:b1:c0:9b:72:cb:8f:04:93:d2:df:01:4c:66:24:4d: 08:10:5b:29:ff:80:26:e5:70:df:c9:84:15:8e:cb:04:79:f8: e4:ef:7a:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjUwODIzMDQwMTIzWhcNMjUwODMwMDQwMTIzWjAYMRYwFAYD VQQDEw02OGE5M2QxMy1jNjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmn0+y/V1pKfVUVRKEfiUkpeAZRxTYilNZbratgorw3C+G0lA0jqYP4cJFdKO uQ1HdvO8ttjdtcEvsM8q6xFoXGh+ClNhKQeCEJPsM6WCZhwUIekI2XtAXiCm0fsC FrtsDV3388jnOUNW8QPAZKW7bXDWaDP9geAtV8gWNjlZowN6lkZOO/OhWSRodkbF Glt8CdWyDAFrFrodezEylATRzMlHEMdyQ+faRhv7oaqbEBeb4vAq0TftWPR2Fg+t 1ynmxkgVb5zMfz0sF8HpOzq6HWXXLbLGHpvIlm8v4D+80WZIKB2Rq+wR6oz849qm WYiFZrSUd00llU/pwFmcqjb3LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlDKz5j dl3dmbq7GlUBBt7K5p4VMB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BNDcwNzg1RTU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEkt SEVpMTlRMW9EUFQyZjhzZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB26n+fPYbNMovnHtijKwyiau4FtQ6Jj0qtA9JFkZm38yli/9Lz/yCH mOltqFp7K4N44nYZxi0hX9TGy8QO+/B/YPniLk/+kVtwOVrC/n4mysAqVFDb062M d5x2QThXyTPw+v3155Wa1n0Bx5yvKugpRga36JWHVPJDS12b/QTLaLaP7g6IrCSd 0cLQrRtemrVouhZjUxP2GnPyJ87mINyM3WBuHVBNc/UwsZhuZxgKEgtH0MU/qwd2 Gp92GsWJpZCSnxfem0UUHNnuB/E2s6QqtoWfNI6p2tIR+o6xwJtyy48Ek9LfAUxm JE0IEFsp/4Am5XDfyYQVjssEefjk73pG -----END CERTIFICATE-----Generated at Sat Aug 23 12:42:02 2025 by rpki-client