$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: STg3Cw+4QutiPdKj6yh128tqKWbp1P7KZ0gPq/mR4RU= Subject key identifier: 7D:47:24:52:A2:85:E6:5A:38:37:CC:77:AE:D4:5D:DA:4B:0E:54:C0 Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: 0153 Signing time: Sun 19 Oct 2025 07:05:19 +0000 Manifest this update: Sun 19 Oct 2025 07:05:18 +0000 Manifest next update: Sun 26 Oct 2025 07:05:18 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: TKesBTBPf6oaQcGYBKMyl0nTgDBBKkbzt/Xrwl2gnMg=) 2: 87662556555511EF88D9F680C4F9AE02.roa (hash: k8ciaOJiovKzhjLhsMW8Olbo59H12ftecdkV4UavoKg=) 3: F406C3F26AE311EF82D7860FC4F9AE02.roa (hash: BGxl2SOPQW6C/i2r2VN80go3aEYSETpmK67AkebR/E4=) 4: D7FEF354562111EFA7B3F00AC4F9AE02.roa (hash: Z74c44o/GimXrdeWvw94wRAl3MPTrcV7W0A3AuI0ILk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B, serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: Oct 19 07:05:18 2025 GMT Not After : Oct 26 07:05:18 2025 GMT Subject: CN=68f48dae-ed9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:55:00:39:a9:52:20:eb:6d:e2:e6:f5:9a:71: c1:35:ca:63:36:10:ec:55:a9:88:ef:46:95:49:1a: f1:11:24:cd:88:d4:05:b7:67:7e:a9:96:0e:54:a3: d7:9f:75:22:72:30:d1:4d:b1:a2:05:72:98:aa:6a: f0:ff:e5:53:a9:3c:9e:b1:b1:4d:de:36:19:ec:ba: 95:88:a7:20:88:e4:43:47:de:16:2b:12:06:9b:51: 4c:56:bd:f6:ac:aa:85:fb:a9:eb:38:0f:75:c1:81: cd:64:eb:4d:63:16:36:f2:a8:a5:d9:44:d2:3a:33: bf:05:c4:a3:71:fd:74:af:d9:eb:fe:f4:de:8b:f5: d1:29:9e:de:a3:b0:3f:fc:2d:61:10:63:6e:71:d0: 68:03:89:69:8b:05:18:a3:a1:3c:90:01:3a:83:96: 24:81:a4:bc:cc:6a:dc:02:3c:c3:ce:b1:6f:9e:c6: 5e:ef:7f:65:c6:3a:5f:13:a5:ed:de:ec:aa:02:db: 63:1c:4a:c0:d9:ab:c2:0d:8c:58:b0:a4:41:06:83: ec:58:10:75:62:5c:65:f1:0a:db:de:f7:41:7b:8d: 59:ec:08:3a:97:26:43:e1:ea:ba:c4:72:da:2c:36: 2d:62:83:1f:a8:dd:25:dc:aa:cd:52:a8:b9:83:fc: c8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:47:24:52:A2:85:E6:5A:38:37:CC:77:AE:D4:5D:DA:4B:0E:54:C0 X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:6d:37:8e:b7:b3:d0:6f:c7:e3:2d:2d:ad:8d:a5:cb:9a:fd: 01:66:90:4b:cb:5e:47:47:f7:f3:8f:9a:64:8a:b0:dc:c8:ab: ad:2b:c2:d2:f0:d4:91:a6:b5:cd:9b:49:4b:a0:51:b8:11:f2: 72:82:e0:30:84:f5:f2:a1:f3:8a:27:9d:41:23:40:50:95:ea: 1e:45:a5:c8:b2:79:61:33:85:8c:3d:74:d7:66:a3:68:fd:bd: 0a:f4:a4:ae:76:a2:d0:d3:43:50:dd:c7:7d:4e:06:f6:ad:05: 88:f0:65:7c:9c:a0:0f:27:5c:bd:bc:31:b2:3e:eb:1c:4a:63: 94:b1:7f:9e:fc:e8:6b:88:53:a6:06:14:39:7b:de:63:b9:55: be:6f:a0:13:a2:71:45:f3:26:cc:2f:ac:77:80:78:c2:b6:9f: ea:2c:cf:5f:69:6b:46:5f:33:d1:71:58:9d:e9:c3:20:b3:e0: 94:f1:bd:45:76:37:85:a7:8a:6d:8b:7e:f7:5e:70:12:68:7c: f8:8f:99:f3:3b:dd:e5:ce:8b:16:e2:14:3a:d5:68:64:64:4d: 89:9a:4e:81:6f:28:17:80:3f:02:6c:4a:45:5c:76:70:c7:f8: 9f:42:33:5e:73:31:8e:8e:ff:b1:b2:2e:1a:6a:11:3d:e1:19: ca:e2:a8:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjUxMDE5MDcwNTE4WhcNMjUxMDI2MDcwNTE4WjAYMRYwFAYD VQQDEw02OGY0OGRhZS1lZDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVUAOalSIOtt4ub1mnHBNcpjNhDsVamI70aVSRrxESTNiNQFt2d+qZYOVKPX n3UicjDRTbGiBXKYqmrw/+VTqTyesbFN3jYZ7LqViKcgiORDR94WKxIGm1FMVr32 rKqF+6nrOA91wYHNZOtNYxY28qil2UTSOjO/BcSjcf10r9nr/vTei/XRKZ7eo7A/ /C1hEGNucdBoA4lpiwUYo6E8kAE6g5YkgaS8zGrcAjzDzrFvnsZe739lxjpfE6Xt 3uyqAttjHErA2avCDYxYsKRBBoPsWBB1Ylxl8Qrb3vdBe41Z7Ag6lyZD4eq6xHLa LDYtYoMfqN0l3KrNUqi5g/zItwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1HJFKi heZaODfMd67UXdpLDlTAMB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY3Qi9BMTMxQjM5NEJCMzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldS bHJ6SHRsSm94aTZHNVUxRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7bTeOt7PQb8fjLS2tjaXLmv0BZpBLy15HR/fzj5pkirDcyKutK8LS 8NSRprXNm0lLoFG4EfJyguAwhPXyofOKJ51BI0BQleoeRaXIsnlhM4WMPXTXZqNo /b0K9KSudqLQ00NQ3cd9Tgb2rQWI8GV8nKAPJ1y9vDGyPuscSmOUsX+e/OhriFOm BhQ5e95juVW+b6ATonFF8ybML6x3gHjCtp/qLM9faWtGXzPRcVid6cMgs+CU8b1F djeFp4pti373XnASaHz4j5nzO93lzosW4hQ61WhkZE2Jmk6BbygXgD8CbEpFXHZw x/ifQjNeczGOjv+xsi4aahE94RnK4qg3 -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:42 2025 by rpki-client