$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: MmPGfeEVupDhKxuDK6JYzGOhZEkvbnkskp44xAzGhPo= Subject key identifier: 38:3D:58:49:81:C1:CC:90:9C:83:B9:E5:F3:33:4E:94:D6:E1:D8:EF Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: 01B8 Signing time: Mon 27 Apr 2026 03:55:53 +0000 Manifest this update: Mon 27 Apr 2026 03:55:52 +0000 Manifest next update: Mon 04 May 2026 03:55:52 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: KsrDVnvyBZ07spBiah4A2mRpHviwF0ufSQ7xEZMsJCA=) 2: 87662556555511EF88D9F680C4F9AE02.roa (hash: gXURQ3TI01OPFheyWVk20K8W06Uu/H87clLm9KAplj4=) 3: D7FEF354562111EFA7B3F00AC4F9AE02.roa (hash: zRLwbdLjJcZ9xIvEJX9pjeEu223B0K+u9rS591OrK1I=) 4: F406C3F26AE311EF82D7860FC4F9AE02.roa (hash: e+A9R6047fz/CtRSSMnfQGJqOvNAoPOsGN6eczRG5bA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:55:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B, serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: Apr 27 03:55:52 2026 GMT Not After : May 4 03:55:52 2026 GMT Subject: CN=69eede49-6cd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6c:11:a1:e0:ee:bf:23:76:05:1f:a2:f1:21: a8:ad:5d:cb:f8:8a:b9:b1:03:02:46:9c:23:e6:c4: 19:7b:14:77:75:7d:c9:86:71:97:fd:31:ea:db:cc: 79:05:5d:d9:c1:fe:3f:bb:e1:46:e5:f7:20:29:2a: 49:44:43:30:32:5c:2b:54:4c:04:1a:2f:a1:f5:fe: 8e:4a:12:f5:a3:ad:32:d4:80:98:e7:ec:3f:0b:15: b1:3c:03:83:d0:a8:d1:27:e7:8b:4b:f3:66:d2:3a: 83:c6:73:18:17:c2:e8:8c:6e:dc:67:f0:2a:58:4f: 5c:f4:07:08:68:94:d4:22:6e:48:d1:d9:4b:7a:94: 29:e0:67:6d:5c:3c:94:7c:42:25:60:a9:82:51:13: 68:b7:bf:89:a2:b3:11:4a:b5:c9:37:c2:e2:43:97: 16:12:77:57:2c:42:66:d8:24:59:6a:3e:e8:0f:71: c5:a7:ec:d0:95:21:ad:61:c8:be:44:53:dd:80:fa: 26:77:ec:50:2e:fe:65:75:c8:6d:29:71:8d:96:ae: 21:89:cf:2f:e2:b6:62:47:fc:fb:73:f9:08:4f:cf: 1f:13:1b:59:4a:2f:5e:54:6b:d8:5b:fe:1e:63:25: c9:bd:3d:3f:1c:1e:17:87:68:77:15:94:a1:60:42: bf:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:3D:58:49:81:C1:CC:90:9C:83:B9:E5:F3:33:4E:94:D6:E1:D8:EF X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:30:36:0e:c4:21:ae:99:ab:c7:55:55:1f:57:ef:8e:0c:92: 2f:e7:a2:6a:79:3a:59:48:40:82:66:9a:47:f8:e9:99:70:b4: 03:aa:67:1c:d4:4a:b9:f6:13:87:52:a8:f1:c0:f7:57:69:7b: 2f:93:fd:e1:69:d4:21:32:0f:55:db:09:29:35:5f:e1:15:4b: 24:f1:1b:fb:e9:f7:11:7f:57:1f:23:62:88:be:d6:0d:e2:18: 95:4d:dd:c2:95:61:61:2b:f4:d4:fa:d9:93:7f:95:41:a7:57: d9:f9:2b:1b:5d:15:8b:cf:b0:6a:8f:0f:7c:ac:ab:6c:9a:ef: b2:42:04:57:da:84:04:ed:60:f4:22:31:bc:58:81:f3:bf:17: 12:2f:c9:d7:72:d4:53:f3:58:fd:3e:41:a8:fe:7d:1b:8f:79: 97:de:0d:1a:5d:28:79:58:84:7e:e6:b5:2c:86:6f:18:a5:35: b8:a3:25:4e:9f:7d:a2:b1:71:1d:e7:d9:b8:40:95:9a:0b:69: 63:08:cb:4d:2e:70:c2:26:8a:a5:e3:32:52:0f:c2:9d:d8:33: 61:f5:d5:3d:28:90:29:81:7c:ba:8a:2c:85:7d:97:c7:9f:10: b5:6c:50:f5:ac:c8:ad:0f:95:c9:71:87:98:08:f7:1a:1c:6a: a0:c3:9d:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjYwNDI3MDM1NTUyWhcNMjYwNTA0MDM1NTUyWjAYMRYwFAYD VQQDEw02OWVlZGU0OS02Y2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2wRoeDuvyN2BR+i8SGorV3L+Iq5sQMCRpwj5sQZexR3dX3JhnGX/THq28x5 BV3Zwf4/u+FG5fcgKSpJREMwMlwrVEwEGi+h9f6OShL1o60y1ICY5+w/CxWxPAOD 0KjRJ+eLS/Nm0jqDxnMYF8LojG7cZ/AqWE9c9AcIaJTUIm5I0dlLepQp4GdtXDyU fEIlYKmCURNot7+JorMRSrXJN8LiQ5cWEndXLEJm2CRZaj7oD3HFp+zQlSGtYci+ RFPdgPomd+xQLv5ldchtKXGNlq4hic8v4rZiR/z7c/kIT88fExtZSi9eVGvYW/4e YyXJvT0/HB4Xh2h3FZShYEK/qQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDg9WEmB wcyQnIO55fMzTpTW4djvMB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY3Qi9BMTMxQjM5NEJCMzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldS bHJ6SHRsSm94aTZHNVUxRzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaDA2DsQhrpmrx1VVH1fvjgySL+eiank6WUhAgmaaR/jpmXC0A6pnHNRKufYT h1Ko8cD3V2l7L5P94WnUITIPVdsJKTVf4RVLJPEb++n3EX9XHyNiiL7WDeIYlU3d wpVhYSv01PrZk3+VQadX2fkrG10Vi8+wao8PfKyrbJrvskIEV9qEBO1g9CIxvFiB 878XEi/J13LUU/NY/T5BqP59G495l94NGl0oeViEfua1LIZvGKU1uKMlTp99orFx HefZuECVmgtpYwjLTS5wwiaKpeMyUg/CndgzYfXVPSiQKYF8uooshX2Xx58QtWxQ 9azIrQ+VyXGHmAj3GhxqoMOdkw== -----END CERTIFICATE-----Generated at Mon Apr 27 14:39:52 2026 by rpki-client