$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: 7xn2pZX6SWS4MqU9TQM0+b0EeoOXbWpHq7Tba/cRDxw= Subject key identifier: F2:CF:D4:56:A6:F4:9C:D6:AE:22:6C:62:29:55:D3:04:84:82:3A:18 Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: 0163 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: 0154 Signing time: Thu 23 Oct 2025 06:08:50 +0000 Manifest this update: Thu 23 Oct 2025 06:08:50 +0000 Manifest next update: Thu 30 Oct 2025 06:08:50 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: 8Zqj63LJuzo33ZJWhJJ4DhzYUJKoc8GeRonWGHLxD1M=) 2: 87662556555511EF88D9F680C4F9AE02.roa (hash: k8ciaOJiovKzhjLhsMW8Olbo59H12ftecdkV4UavoKg=) 3: F406C3F26AE311EF82D7860FC4F9AE02.roa (hash: BGxl2SOPQW6C/i2r2VN80go3aEYSETpmK67AkebR/E4=) 4: D7FEF354562111EFA7B3F00AC4F9AE02.roa (hash: Z74c44o/GimXrdeWvw94wRAl3MPTrcV7W0A3AuI0ILk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 355 (0x163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B, serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: Oct 23 06:08:50 2025 GMT Not After : Oct 30 06:08:50 2025 GMT Subject: CN=68f9c672-1780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0e:6c:c3:1b:1f:ca:73:4d:5c:4f:70:72:ef: ed:cc:2b:87:a1:27:7f:2f:48:82:63:1c:fe:3d:a8: 5c:fb:01:11:ab:8a:d4:ad:e0:a0:0d:f8:02:e2:89: 05:da:90:51:b9:81:bf:88:b4:af:8f:56:8c:fe:3c: e8:06:e1:7b:f4:9d:25:cf:88:21:ee:6b:24:d7:62: 60:c8:6a:b6:c6:a5:63:9f:80:72:3a:5d:8b:9f:5b: dc:97:43:d6:54:61:1d:74:d3:2f:c4:74:bc:85:ab: e0:e7:90:76:7b:50:df:3a:a1:e5:15:59:9f:2f:28: a0:9e:53:5b:23:de:f4:b5:b7:72:80:19:17:2c:44: 2c:28:51:5d:57:53:51:58:68:62:e4:06:2a:86:1b: 41:ca:c1:76:c0:e9:47:8b:12:c8:c1:26:5b:91:4e: 30:29:6d:f3:09:5d:09:4d:0f:3d:f5:19:4b:b1:dd: 2d:2c:26:77:e2:a1:b3:fa:f4:49:9e:61:31:b0:ca: 7a:93:c2:09:38:ec:af:9b:0f:2f:65:cd:5c:51:ee: 31:f3:04:57:14:02:db:6c:3f:7c:6f:36:a9:8f:9e: 39:e3:36:cd:47:b6:ff:be:e9:a5:8e:a4:5e:73:ca: 94:d1:75:bc:7d:ac:72:c8:51:6d:38:53:19:04:30: 02:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:CF:D4:56:A6:F4:9C:D6:AE:22:6C:62:29:55:D3:04:84:82:3A:18 X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:f6:79:34:a5:e6:d7:2b:00:f3:54:d0:3e:87:7a:6f:2e:f8: d7:91:3a:19:c3:90:2e:00:81:a8:2e:1a:eb:4f:7a:0d:41:53: 08:77:42:8b:e4:47:8a:0e:ca:f0:ca:9a:0e:c3:22:20:7d:28: c0:f4:77:31:a9:88:96:50:71:fe:78:e2:9c:ee:0e:95:9f:01: 14:ca:95:6d:3b:b1:ab:40:71:45:7d:75:e4:fb:b0:11:fc:e0: 87:a1:fe:d4:2c:73:9c:ce:9f:7c:f8:70:d7:92:b8:5a:a7:50: 79:84:6c:6b:bf:68:2d:74:da:d6:11:3e:f1:7f:02:b1:be:89: 9f:af:0d:59:3c:0e:36:e7:a7:8a:49:0e:55:bd:a6:76:d5:f6: 93:5b:fb:d5:cb:69:d5:09:40:d5:09:be:f9:c7:8b:6b:8f:c1: ab:32:dd:be:87:90:42:97:44:f6:26:7d:77:6a:f6:c1:8c:7f: cf:28:c5:54:d7:7a:bd:2b:72:dc:aa:e7:44:67:09:ec:f2:7d: f4:55:2b:01:71:03:9c:10:c6:51:f5:d7:5e:8e:20:93:3b:87: 28:99:19:b6:76:d8:c8:03:64:8f:be:97:88:67:83:d4:1c:4a: 4d:b1:19:f3:86:36:c8:70:fb:0c:99:97:14:e0:b4:7d:18:53: 49:d9:8d:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjUxMDIzMDYwODUwWhcNMjUxMDMwMDYwODUwWjAYMRYwFAYD VQQDEw02OGY5YzY3Mi0xNzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Q5swxsfynNNXE9wcu/tzCuHoSd/L0iCYxz+Pahc+wERq4rUreCgDfgC4okF 2pBRuYG/iLSvj1aM/jzoBuF79J0lz4gh7msk12JgyGq2xqVjn4ByOl2Ln1vcl0PW VGEddNMvxHS8havg55B2e1DfOqHlFVmfLyignlNbI970tbdygBkXLEQsKFFdV1NR WGhi5AYqhhtBysF2wOlHixLIwSZbkU4wKW3zCV0JTQ899RlLsd0tLCZ34qGz+vRJ nmExsMp6k8IJOOyvmw8vZc1cUe4x8wRXFALbbD98bzapj5454zbNR7b/vumljqRe c8qU0XW8faxyyFFtOFMZBDACZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLP1Fam 9JzWriJsYilV0wSEgjoYMB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY3Qi9BMTMxQjM5NEJCMzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldS bHJ6SHRsSm94aTZHNVUxRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs9nk0pebXKwDzVNA+h3pvLvjXkToZw5AuAIGoLhrrT3oNQVMId0KL 5EeKDsrwypoOwyIgfSjA9HcxqYiWUHH+eOKc7g6VnwEUypVtO7GrQHFFfXXk+7AR /OCHof7ULHOczp98+HDXkrhap1B5hGxrv2gtdNrWET7xfwKxvomfrw1ZPA4256eK SQ5VvaZ21faTW/vVy2nVCUDVCb75x4trj8GrMt2+h5BCl0T2Jn13avbBjH/PKMVU 13q9K3LcqudEZwns8n30VSsBcQOcEMZR9ddejiCTO4comRm2dtjIA2SPvpeIZ4PU HEpNsRnzhjbIcPsMmZcU4LR9GFNJ2Y0X -----END CERTIFICATE-----Generated at Sat Oct 25 01:14:55 2025 by rpki-client