$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft File: os0QpH7XI-HEi19Q1oDPT2f8sdM.mft (raw, json) Hash identifier: 67LfT7w9R16TdYsC1jzp/Zvm/Ov9Gu1Iax/dwSroQMQ= Subject key identifier: 35:40:89:B4:02:CF:B2:7B:5B:15:F0:E7:12:D4:1C:3F:99:A2:B3:29 Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft Manifest number: 0190 Signing time: Sun 19 Oct 2025 06:11:20 +0000 Manifest this update: Sun 19 Oct 2025 06:11:19 +0000 Manifest next update: Sun 26 Oct 2025 06:11:19 +0000 Files and hashes: 1: os0QpH7XI-HEi19Q1oDPT2f8sdM.crl (hash: 0Dz+1k1XASWMI9SoxOv6rU2m4p6SVVId2WbhiLoTE6E=) 2: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (hash: S579X7Eg58aEG3SPKUs0UURwjN76vzCVTAQS2DSPcNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:11:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Oct 19 06:11:19 2025 GMT Not After : Oct 26 06:11:19 2025 GMT Subject: CN=68f48107-92d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:61:9e:a8:ca:09:56:ab:87:d5:45:4f:09:82: 7e:c7:39:d5:e5:01:88:4d:58:b6:d6:5a:79:62:ca: 00:aa:da:97:fe:c8:8e:60:3d:f8:42:b4:94:65:32: f6:ce:4b:1a:a1:91:35:35:03:ff:44:7f:6f:72:ce: 0e:52:95:79:f2:6f:ef:cd:ee:d0:11:17:bc:b7:a1: fb:ca:a1:c1:05:9f:b8:d3:e4:5d:cf:b0:9e:f5:77: 2c:12:11:43:56:f9:98:97:c0:28:c5:99:7b:af:e2: 5e:77:9b:84:8d:fb:63:67:7e:e4:71:bd:16:a0:48: af:0f:75:cd:54:7d:84:62:c1:2b:23:42:8f:4c:02: 92:5b:6a:f3:11:4c:5a:6f:93:cd:34:a5:0d:23:4c: 53:33:20:ce:ad:6e:3f:9b:27:1e:3b:de:98:5c:a0: 79:4b:81:9e:6e:40:ec:dc:b1:86:cf:3d:04:9b:90: 6b:48:8c:39:29:03:10:77:9a:bc:c0:04:81:60:59: be:9e:39:d9:d4:ee:aa:1b:7f:6e:8c:53:9b:a9:ed: 9f:39:5e:95:3e:ac:ae:69:16:b2:a4:12:9f:89:19: 1a:0d:fa:60:a8:93:15:56:25:c6:2d:a1:a7:dc:b4: b6:92:9e:c3:38:47:dd:8c:9c:47:fd:cc:af:f3:bc: 55:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:40:89:B4:02:CF:B2:7B:5B:15:F0:E7:12:D4:1C:3F:99:A2:B3:29 X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:e6:1c:9e:79:23:ec:47:33:6d:42:95:69:fe:3f:61:6f:da: 13:6b:1b:e2:2f:db:90:65:7c:3b:5b:e1:c7:29:26:96:0a:b8: cb:63:42:09:3b:0a:bd:cd:75:8a:eb:f0:47:bf:ec:b3:ff:ad: ab:2f:b6:30:c2:30:20:b2:93:77:c7:bb:05:e3:b6:84:a2:f3: 01:17:b8:d0:62:0c:cb:48:ab:07:19:e5:c0:5d:d1:48:04:1c: 0d:00:9b:0b:bc:d8:4e:2f:dc:65:7b:7c:2b:d7:6e:cf:b3:dd: 4a:dc:8e:29:9e:d7:5a:64:46:35:52:56:14:fd:8a:fc:76:b3: 4c:cf:ac:d1:6d:12:ae:31:56:98:e7:d2:a4:86:9e:13:31:98: 57:66:67:8d:5f:21:26:48:ca:7f:59:23:53:11:35:60:83:22: 2f:65:42:30:42:89:61:fc:18:d9:8a:27:5c:42:72:23:fb:45: b6:2d:87:7b:10:97:3c:43:8e:59:3f:e0:43:47:dc:6b:dd:6d: 0b:86:26:37:1a:8c:45:c6:6e:04:a4:17:3c:f5:8c:1b:cc:53: fe:3f:70:53:64:b7:24:54:50:c0:f5:04:4e:ad:37:3d:dc:94: 30:65:ff:45:09:20:ba:31:e0:43:04:4c:38:bd:b8:52:ce:08: b8:0a:fa:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjUxMDE5MDYxMTE5WhcNMjUxMDI2MDYxMTE5WjAYMRYwFAYD VQQDEw02OGY0ODEwNy05MmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWGeqMoJVquH1UVPCYJ+xznV5QGITVi21lp5YsoAqtqX/siOYD34QrSUZTL2 zksaoZE1NQP/RH9vcs4OUpV58m/vze7QERe8t6H7yqHBBZ+40+Rdz7Ce9XcsEhFD VvmYl8AoxZl7r+Jed5uEjftjZ37kcb0WoEivD3XNVH2EYsErI0KPTAKSW2rzEUxa b5PNNKUNI0xTMyDOrW4/myceO96YXKB5S4GebkDs3LGGzz0Em5BrSIw5KQMQd5q8 wASBYFm+njnZ1O6qG39ujFObqe2fOV6VPqyuaRaypBKfiRkaDfpgqJMVViXGLaGn 3LS2kp7DOEfdjJxH/cyv87xVqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVAibQC z7J7WxXw5xLUHD+ZorMpMB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BNDcwNzg1RTU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEkt SEVpMTlRMW9EUFQyZjhzZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc5hyeeSPsRzNtQpVp/j9hb9oTaxviL9uQZXw7W+HHKSaWCrjLY0IJ Owq9zXWK6/BHv+yz/62rL7YwwjAgspN3x7sF47aEovMBF7jQYgzLSKsHGeXAXdFI BBwNAJsLvNhOL9xle3wr127Ps91K3I4pntdaZEY1UlYU/Yr8drNMz6zRbRKuMVaY 59Kkhp4TMZhXZmeNXyEmSMp/WSNTETVggyIvZUIwQolh/BjZiidcQnIj+0W2LYd7 EJc8Q45ZP+BDR9xr3W0LhiY3GoxFxm4EpBc89YwbzFP+P3BTZLckVFDA9QROrTc9 3JQwZf9FCSC6MeBDBEw4vbhSzgi4Cvpk -----END CERTIFICATE-----Generated at Tue Oct 21 02:26:39 2025 by rpki-client