$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft File: Y04osQAuVW6OsU-VPq1jttZ3WAk.mft (raw, json) Hash identifier: 37s94+txaAg9wM1FFL07Cd4Deqog8hbClKA306ELulg= Subject key identifier: CA:F9:E9:8C:02:B2:51:D4:2A:8E:45:66:46:7E:2D:40:85:92:16:7A Authority key identifier: 63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 Certificate issuer: /CN=A9194C0D/serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft Manifest number: 0182 Signing time: Sat 09 Aug 2025 04:20:52 +0000 Manifest this update: Sat 09 Aug 2025 04:20:52 +0000 Manifest next update: Sat 16 Aug 2025 04:20:52 +0000 Files and hashes: 1: Y04osQAuVW6OsU-VPq1jttZ3WAk.crl (hash: JoIxCBcaXfINNZKKVfZXZIDZztvthzPgwWx6zATiRbo=) 2: F6FAEC5CCB0411EEAB05F93CC4F9AE02.roa (hash: 0UB6vf7tsJ4/eqdU0xPwdgNnTiXM+SW0/ez8sQsDOEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Validity Not Before: Aug 9 04:20:52 2025 GMT Not After : Aug 16 04:20:52 2025 GMT Subject: CN=6896cca4-ee49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:34:40:16:4a:12:fb:ee:d3:ec:f0:e6:22:11: 66:78:c9:27:23:e8:1f:bb:9d:b3:04:96:62:d1:09: cd:88:71:c6:14:64:92:3c:69:72:32:19:3c:0b:af: c1:b3:ed:ac:f0:c5:cf:3d:2a:ef:ba:8d:09:ad:79: c8:4d:ff:53:e2:4c:74:28:a9:c7:0b:b5:fd:2a:84: 73:b6:02:2e:94:69:57:ad:16:07:f0:d3:62:04:62: 03:3d:31:30:a7:12:70:de:80:55:aa:7e:2b:b5:bf: b0:76:12:0e:f6:be:7f:e4:e9:e2:ee:1c:a2:8d:16: 33:a7:16:43:59:9c:13:db:51:a1:dc:20:95:4f:49: dc:40:f7:a4:90:ba:ec:d6:64:c2:b0:2e:7b:48:45: 7b:62:fa:04:b6:33:1d:76:fd:aa:09:e6:32:87:15: 85:fd:8f:8c:2c:bc:60:d3:e2:39:73:e9:77:19:1e: f7:f4:42:b8:62:16:5c:d0:74:5e:8e:02:61:15:c3: b8:51:aa:ce:80:b0:c7:bc:c1:fd:d9:d4:4d:04:90: 79:44:8c:bf:bd:8e:06:83:d2:73:cc:6f:58:c3:e0: 1a:f0:b5:0e:0f:a5:23:6a:02:50:a2:58:e9:48:8d: 73:df:1e:2c:f1:0e:23:2a:a6:13:cf:2e:1e:b1:63: da:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:F9:E9:8C:02:B2:51:D4:2A:8E:45:66:46:7E:2D:40:85:92:16:7A X509v3 Authority Key Identifier: keyid:63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:09:69:76:f0:5b:53:f2:41:f7:b5:a0:a7:f7:57:6e:39:fb: f8:a1:85:3f:89:23:58:42:5d:dd:1d:e4:3e:de:3e:a5:82:8f: 94:5a:aa:31:7b:63:d5:58:52:66:c1:8a:a9:c3:cf:78:46:6f: 25:0e:f6:df:e4:47:d6:c8:f0:48:61:27:a6:b0:20:cb:5e:31: 3f:79:7b:c1:a1:e2:df:4f:0e:53:69:9f:e6:b6:10:6d:6d:ab: 3b:61:6d:66:1d:d4:b3:eb:63:b9:7b:77:6e:fb:b6:a7:cf:83: b5:67:b1:6f:07:bb:b4:0e:c8:de:ef:c2:45:cb:8b:dc:79:4b: a3:04:80:f5:18:3f:60:71:2c:1e:30:32:cd:b8:47:d4:27:7b: 0d:a1:18:cb:4d:e3:89:f3:03:4e:f1:7e:da:23:a8:ef:b3:8c: 3b:af:6c:f5:c4:f4:24:c2:3c:bf:a3:82:e6:86:e6:d7:22:89: 25:15:5d:5c:9d:eb:ca:a5:88:f8:a9:81:58:e8:ed:6f:39:2e: 1a:7c:50:fe:ff:14:96:4f:e9:0f:88:08:32:af:38:9d:71:73: 76:ec:ba:a8:39:16:14:14:b6:3a:2d:75:0a:b6:9c:2b:f7:5f: 43:e5:80:df:20:b6:b1:2d:08:16:81:40:08:56:3d:06:d6:03: c8:da:d3:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKDYzNEUyOEIxMDAyRTU1NkU4RUIxNEY5NTNFQUQ2M0I2 RDY3NzU4MDkwHhcNMjUwODA5MDQyMDUyWhcNMjUwODE2MDQyMDUyWjAYMRYwFAYD VQQDEw02ODk2Y2NhNC1lZTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzRAFkoS++7T7PDmIhFmeMknI+gfu52zBJZi0QnNiHHGFGSSPGlyMhk8C6/B s+2s8MXPPSrvuo0JrXnITf9T4kx0KKnHC7X9KoRztgIulGlXrRYH8NNiBGIDPTEw pxJw3oBVqn4rtb+wdhIO9r5/5Oni7hyijRYzpxZDWZwT21Gh3CCVT0ncQPekkLrs 1mTCsC57SEV7YvoEtjMddv2qCeYyhxWF/Y+MLLxg0+I5c+l3GR739EK4YhZc0HRe jgJhFcO4UarOgLDHvMH92dRNBJB5RIy/vY4Gg9JzzG9Yw+Aa8LUOD6UjagJQoljp SI1z3x4s8Q4jKqYTzy4esWPaHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMr56YwC slHUKo5FZkZ+LUCFkhZ6MB8GA1UdIwQYMBaAFGNOKLEALlVujrFPlT6tY7bWd1gJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BRDI1ODg5MDU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZXNk9zVS1WUHExanR0WjNX QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwNG9zUUF1Vlc2T3NVLVZQcTFqdHRaM1dBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BRDI1ODg5MDU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZX Nk9zVS1WUHExanR0WjNXQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKCWl28FtT8kH3taCn91duOfv4oYU/iSNYQl3dHeQ+3j6lgo+UWqox e2PVWFJmwYqpw894Rm8lDvbf5EfWyPBIYSemsCDLXjE/eXvBoeLfTw5TaZ/mthBt bas7YW1mHdSz62O5e3du+7anz4O1Z7FvB7u0Dsje78JFy4vceUujBID1GD9gcSwe MDLNuEfUJ3sNoRjLTeOJ8wNO8X7aI6jvs4w7r2z1xPQkwjy/o4LmhubXIoklFV1c nevKpYj4qYFY6O1vOS4afFD+/xSWT+kPiAgyrzidcXN27LqoORYUFLY6LXUKtpwr 919D5YDfILaxLQgWgUAIVj0G1gPI2tNI -----END CERTIFICATE-----Generated at Sat Aug 9 22:45:48 2025 by rpki-client