$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: 7i0hi4Ibsc8MLA54CrTGJGidXKK2ObnnCHnYRXpADOY= Subject key identifier: EC:FA:E2:25:E7:DF:2A:7C:22:6C:B9:19:B0:15:10:86:0C:89:EF:B9 Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: 013E Signing time: Sun 07 Sep 2025 04:59:15 +0000 Manifest this update: Sun 07 Sep 2025 04:59:15 +0000 Manifest next update: Sun 14 Sep 2025 04:59:15 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: aixRODKhe8nZsmWVG7R6ByNsPt+vzs8ULVPC/ycnZ8w=) 2: 87662556555511EF88D9F680C4F9AE02.roa (hash: k8ciaOJiovKzhjLhsMW8Olbo59H12ftecdkV4UavoKg=) 3: F406C3F26AE311EF82D7860FC4F9AE02.roa (hash: BGxl2SOPQW6C/i2r2VN80go3aEYSETpmK67AkebR/E4=) 4: D7FEF354562111EFA7B3F00AC4F9AE02.roa (hash: Z74c44o/GimXrdeWvw94wRAl3MPTrcV7W0A3AuI0ILk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 04:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B, serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: Sep 7 04:59:15 2025 GMT Not After : Sep 14 04:59:15 2025 GMT Subject: CN=68bd1123-7662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:61:3a:db:af:83:38:55:4c:37:91:ac:eb:18: 70:dd:6b:06:b0:9e:16:e0:89:6a:ad:93:96:0e:c9: ca:5e:dc:52:46:fd:c1:43:ba:1e:8f:67:eb:97:f4: a7:a7:94:b6:74:6c:20:94:fd:02:30:0f:b3:ac:48: 3d:25:36:12:86:ce:d7:ac:e9:a5:b2:53:09:7b:46: d3:42:a7:a9:1d:6f:0a:80:81:54:3b:99:ad:bb:a0: 57:56:2a:25:cc:05:b7:e6:5e:d7:b9:2a:5e:92:02: ba:65:75:76:72:6d:d2:9a:1c:73:4b:35:5e:9f:7e: d8:73:c7:a1:86:4e:2c:03:2d:22:31:1d:5f:d4:d5: 45:d3:09:88:0a:0e:fd:b9:de:d5:c8:01:86:21:e4: 6f:8d:97:9c:52:f0:7d:f7:a4:57:c2:33:30:4b:d6: e7:fe:f3:b9:d9:46:19:30:44:e1:af:df:e5:0e:bf: 4f:26:f1:99:95:d7:00:ce:de:d3:09:c3:29:9c:5f: 24:ac:b1:52:b6:1d:11:fa:55:bd:f6:c7:f1:85:71: a7:5b:57:ee:b2:40:75:c6:9d:6d:f0:9a:97:a3:5b: 20:3d:8a:7e:52:42:3e:13:72:c2:87:2c:5d:e8:6c: 07:52:c0:8c:b9:46:31:53:a7:67:d2:8d:dc:2d:61: 4f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:FA:E2:25:E7:DF:2A:7C:22:6C:B9:19:B0:15:10:86:0C:89:EF:B9 X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:51:1c:a1:4f:fa:f0:a1:9e:ae:16:a0:88:cc:6a:1d:1a:b7: 02:31:8e:29:2b:f6:9e:56:3d:e5:54:b2:d6:b1:c3:da:61:b5: 54:2d:b5:59:08:3b:15:77:95:9d:16:d3:b9:2d:9c:8a:66:1f: 63:36:d1:2e:44:60:33:ef:60:c7:9a:4b:b3:a9:e0:47:8e:cf: 20:f4:fe:b1:17:1d:31:9c:e6:fa:b6:4e:b7:92:95:d5:b9:e3: ec:07:df:f2:ce:dd:42:ad:58:d4:69:6e:50:5c:56:1f:7e:45: 5f:45:21:ca:36:c7:20:99:48:0c:50:f9:a6:91:38:a8:7c:8b: 28:82:4d:56:2c:c9:69:87:e6:fc:24:f5:34:4d:ad:ad:31:c6: 69:a1:60:83:e9:84:d2:30:54:e4:80:87:bf:c2:ff:7b:d1:b8: 11:d2:64:25:ae:ce:7f:ff:f8:ed:fa:cc:0b:fe:e3:a5:91:94: 1f:ce:23:81:b0:35:b6:6b:2c:9b:40:49:33:2c:e2:ea:93:a2: 41:da:d9:c7:33:a5:d3:64:dd:31:d1:41:05:a5:1f:49:14:ef: be:f6:34:84:0c:8a:f1:45:21:3b:d2:74:78:dc:6d:43:51:b0: ec:1c:51:bf:19:bb:fe:89:90:d9:dc:7f:b4:26:2b:af:60:f9: 83:c9:f0:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjUwOTA3MDQ1OTE1WhcNMjUwOTE0MDQ1OTE1WjAYMRYwFAYD VQQDEw02OGJkMTEyMy03NjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2E626+DOFVMN5Gs6xhw3WsGsJ4W4IlqrZOWDsnKXtxSRv3BQ7oej2frl/Sn p5S2dGwglP0CMA+zrEg9JTYShs7XrOmlslMJe0bTQqepHW8KgIFUO5mtu6BXViol zAW35l7XuSpekgK6ZXV2cm3SmhxzSzVen37Yc8ehhk4sAy0iMR1f1NVF0wmICg79 ud7VyAGGIeRvjZecUvB996RXwjMwS9bn/vO52UYZMEThr9/lDr9PJvGZldcAzt7T CcMpnF8krLFSth0R+lW99sfxhXGnW1fuskB1xp1t8JqXo1sgPYp+UkI+E3LChyxd 6GwHUsCMuUYxU6dn0o3cLWFPAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOz64iXn 3yp8Imy5GbAVEIYMie+5MB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY3Qi9BMTMxQjM5NEJCMzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldS bHJ6SHRsSm94aTZHNVUxRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaURyhT/rwoZ6uFqCIzGodGrcCMY4pK/aeVj3lVLLWscPaYbVULbVZ CDsVd5WdFtO5LZyKZh9jNtEuRGAz72DHmkuzqeBHjs8g9P6xFx0xnOb6tk63kpXV uePsB9/yzt1CrVjUaW5QXFYffkVfRSHKNscgmUgMUPmmkTiofIsogk1WLMlph+b8 JPU0Ta2tMcZpoWCD6YTSMFTkgIe/wv970bgR0mQlrs5///jt+swL/uOlkZQfziOB sDW2ayybQEkzLOLqk6JB2tnHM6XTZN0x0UEFpR9JFO++9jSEDIrxRSE70nR43G1D UbDsHFG/Gbv+iZDZ3H+0JiuvYPmDyfBR -----END CERTIFICATE-----Generated at Mon Sep 8 08:48:02 2025 by rpki-client