$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: iuWwQxcJ4myABw4PlPgWrSrW6XSa5ABLXWOIQ2V6CjE= Subject key identifier: 5B:28:29:50:D9:01:CD:47:93:78:40:B6:6B:06:EA:FE:1E:D7:60:9A Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: 0136 Signing time: Sat 23 Aug 2025 04:48:11 +0000 Manifest this update: Sat 23 Aug 2025 04:48:11 +0000 Manifest next update: Sat 30 Aug 2025 04:48:10 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: 9Kc0D4bk6bsSDtXOai6kGFyy60EgCEzwo5kDVgmJFXc=) 2: 87662556555511EF88D9F680C4F9AE02.roa (hash: k8ciaOJiovKzhjLhsMW8Olbo59H12ftecdkV4UavoKg=) 3: F406C3F26AE311EF82D7860FC4F9AE02.roa (hash: BGxl2SOPQW6C/i2r2VN80go3aEYSETpmK67AkebR/E4=) 4: D7FEF354562111EFA7B3F00AC4F9AE02.roa (hash: Z74c44o/GimXrdeWvw94wRAl3MPTrcV7W0A3AuI0ILk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B, serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: Aug 23 04:48:11 2025 GMT Not After : Aug 30 04:48:10 2025 GMT Subject: CN=68a9480b-cac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:11:98:62:e2:09:08:fe:4f:e7:a8:1f:b1:69: c1:f9:82:75:73:72:a2:73:9a:09:d5:7c:9f:b5:b0: cb:3e:83:d1:7f:28:2a:b4:fa:ca:5e:14:65:da:ea: 76:61:7f:8b:cd:52:64:5f:eb:72:d7:37:8e:09:b0: f8:bc:17:9c:d7:da:ad:43:21:ee:f0:0a:94:e6:52: 60:63:d3:84:b0:02:a0:95:22:88:50:9c:ef:75:16: 63:76:19:16:92:af:52:4b:66:ba:e0:61:9c:c4:07: 12:02:d9:37:b5:a5:b4:18:5b:9a:7f:39:57:73:4f: 08:f5:8f:d8:3c:2b:66:38:10:a3:16:c6:38:3f:58: 42:d3:af:dd:9e:86:8f:c5:e4:14:df:4f:3c:f4:68: 67:ee:9c:61:71:d4:4e:a8:a5:a2:91:7e:0a:ec:47: ed:ee:d8:92:bb:da:81:5f:c4:6c:eb:69:b7:44:d2: 0e:8c:dc:bb:19:a4:01:47:1a:8b:a8:36:e9:bc:1f: a2:e6:8e:7a:9e:1b:24:eb:97:50:1a:dc:ed:52:de: 54:b0:e0:30:b8:5f:4c:86:67:2e:fb:20:01:3d:3d: 5e:9a:75:70:ee:92:1c:4c:9f:5b:6f:dc:2d:7d:ef: a6:63:d6:b4:70:42:5e:16:56:c7:97:14:cd:fe:1d: 76:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:28:29:50:D9:01:CD:47:93:78:40:B6:6B:06:EA:FE:1E:D7:60:9A X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:59:fc:e0:ce:40:0d:29:25:d8:f4:37:06:d6:f4:71:74:59: f3:7b:f7:3d:f7:ae:c8:42:43:4a:7d:be:43:01:6b:13:57:bf: fd:51:20:48:3f:10:29:f7:4e:cb:97:35:95:d5:3f:f3:29:6d: f8:c3:e6:0f:ad:19:d6:e1:e0:90:82:f4:7d:47:85:52:9a:99: ae:c1:21:6b:d4:7c:dc:dd:38:d3:a6:92:1c:01:1c:19:53:3f: de:ad:1b:39:6a:d3:90:68:5c:d6:81:56:9b:1a:cf:cb:af:0c: 84:be:97:e6:2e:ec:71:60:29:b2:72:43:85:98:71:3b:ed:a9: d9:0b:d0:d1:17:83:31:33:0e:cb:2b:ae:94:68:ce:4e:aa:0a: 13:60:72:25:f5:7a:25:df:98:e0:f5:be:6e:3b:e2:8f:77:e5: 5d:0a:92:2d:55:34:ca:4d:84:a3:f2:40:6f:e2:b1:f4:68:41: 7e:f4:e6:24:e4:84:79:af:4a:2d:0b:fa:b5:44:51:3f:c7:ae: d7:c1:d0:bc:1b:ea:89:fe:2d:29:2a:c7:b7:3c:6e:5b:80:29: f5:26:3e:55:3b:e5:5f:b7:36:a6:f3:d2:19:8b:7b:ac:32:91: 79:d3:8e:f9:5f:d6:09:25:ee:67:3f:cf:19:08:f9:a0:79:32: 19:dc:43:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjUwODIzMDQ0ODExWhcNMjUwODMwMDQ0ODEwWjAYMRYwFAYD VQQDEw02OGE5NDgwYi1jYWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RGYYuIJCP5P56gfsWnB+YJ1c3Kic5oJ1XyftbDLPoPRfygqtPrKXhRl2up2 YX+LzVJkX+ty1zeOCbD4vBec19qtQyHu8AqU5lJgY9OEsAKglSKIUJzvdRZjdhkW kq9SS2a64GGcxAcSAtk3taW0GFuafzlXc08I9Y/YPCtmOBCjFsY4P1hC06/dnoaP xeQU30889Ghn7pxhcdROqKWikX4K7Eft7tiSu9qBX8Rs62m3RNIOjNy7GaQBRxqL qDbpvB+i5o56nhsk65dQGtztUt5UsOAwuF9Mhmcu+yABPT1emnVw7pIcTJ9bb9wt fe+mY9a0cEJeFlbHlxTN/h12CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsoKVDZ Ac1Hk3hAtmsG6v4e12CaMB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY3Qi9BMTMxQjM5NEJCMzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldS bHJ6SHRsSm94aTZHNVUxRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdWfzgzkANKSXY9DcG1vRxdFnze/c9967IQkNKfb5DAWsTV7/9USBI PxAp907LlzWV1T/zKW34w+YPrRnW4eCQgvR9R4VSmpmuwSFr1Hzc3TjTppIcARwZ Uz/erRs5atOQaFzWgVabGs/LrwyEvpfmLuxxYCmyckOFmHE77anZC9DRF4MxMw7L K66UaM5OqgoTYHIl9Xol35jg9b5uO+KPd+VdCpItVTTKTYSj8kBv4rH0aEF+9OYk 5IR5r0otC/q1RFE/x67XwdC8G+qJ/i0pKse3PG5bgCn1Jj5VO+Vftzam89IZi3us MpF50475X9YJJe5nP88ZCPmgeTIZ3END -----END CERTIFICATE-----Generated at Sat Aug 23 19:35:35 2025 by rpki-client