$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft File: 788FLZiSks6xBQkSnI3iA9SfaAQ.mft (raw, json) Hash identifier: Hp/0QGUqGL2kaElAPynOUEUWzgdveKEm0czNJSrQU3Q= Subject key identifier: FE:60:2A:94:F5:48:A3:84:4B:1A:63:F2:A5:BA:57:DB:BC:F3:E8:A5 Authority key identifier: EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 Certificate issuer: /CN=A91EB9C0/serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Certificate serial: 0D78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft Manifest number: 0D70 Signing time: Sun 10 Aug 2025 17:57:56 +0000 Manifest this update: Sun 10 Aug 2025 17:57:56 +0000 Manifest next update: Sun 17 Aug 2025 17:57:56 +0000 Files and hashes: 1: 788FLZiSks6xBQkSnI3iA9SfaAQ.crl (hash: gm6bg6GLVvLfxT1XJyT1CtiGtMLxZRE7Gub9EMIc/6s=) 2: 1004D41ED21D11E992825429C4F9AE02.roa (hash: FAN1R0kTPo6CVZLPRUbNgZ570C6pJVmhGPN5h/j558A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 17:57:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3448 (0xd78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB9C0, serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Validity Not Before: Aug 10 17:57:56 2025 GMT Not After : Aug 17 17:57:56 2025 GMT Subject: CN=6898dda4-e237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:83:d5:f2:a6:a5:ad:8e:05:c7:b7:c7:87:aa: e6:ed:8a:39:b5:90:cc:d1:b3:f8:b7:c3:f5:65:b8: 1a:bf:2f:44:74:45:d8:31:39:71:07:49:24:78:05: 87:f7:1b:8e:b1:d2:ca:7c:88:ed:6b:09:83:08:b5: 16:20:9c:91:8a:a2:27:ef:82:6e:a7:53:4e:53:76: 33:09:d8:54:42:da:c6:29:f8:9a:2f:8b:74:b1:dd: 3b:b8:a8:19:34:4c:c1:aa:53:0c:35:a2:75:09:35: d1:46:49:eb:4b:af:10:48:8c:46:bb:4c:7a:8a:7e: 7f:8b:58:41:70:3d:b1:54:a1:85:bf:c5:18:65:2b: 4b:57:e8:58:d9:1d:3f:d5:42:b9:61:25:6b:e4:35: 33:af:e3:0a:b8:e1:b4:67:73:2a:a5:58:a8:37:c2: 2c:b2:95:78:2a:6c:c3:cc:bd:ee:b8:94:81:60:70: 18:77:1f:f2:4a:fe:48:7b:a7:30:a7:b7:1f:3a:06: eb:f7:46:92:17:b2:64:17:32:72:40:b1:30:99:64: 65:0d:a1:4b:5f:38:a7:e4:fd:0c:27:f1:1e:c3:31: 9f:ae:1b:0e:11:93:bf:55:da:17:b3:ae:5b:d1:3b: 28:34:42:70:87:95:49:7b:f1:70:64:9c:a2:01:de: e0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:60:2A:94:F5:48:A3:84:4B:1A:63:F2:A5:BA:57:DB:BC:F3:E8:A5 X509v3 Authority Key Identifier: keyid:EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:3b:72:7b:0c:f8:97:72:e6:9b:42:4d:7a:03:8c:21:bd:1b: ad:b8:26:6e:45:2f:20:f5:66:dc:b7:13:1a:cd:4b:d2:77:8f: 26:3a:8a:db:27:a4:0a:9e:c8:6f:32:38:a4:ba:2e:43:8d:3c: 5a:73:3e:ca:69:0d:55:e1:c5:08:eb:12:19:1e:83:60:1b:b2: c5:b2:77:85:b6:ed:a4:f6:c9:0c:64:56:ed:99:f7:08:3d:3f: 8a:15:40:9b:c6:1d:06:d4:ee:8a:42:04:47:aa:e1:c2:88:5e: fa:0b:ef:83:2d:9e:ae:7f:67:20:73:50:dd:7d:09:59:83:ce: 99:f6:1f:cc:fc:69:4b:77:7f:14:9d:c5:d5:18:f4:85:e8:90: 42:8f:a9:31:93:ef:5c:2b:af:58:b2:8a:73:57:bf:c6:cd:e7: a7:fc:b2:01:0d:4b:c2:e7:38:c2:ef:9d:c2:6b:58:59:2a:c5: 23:68:37:fc:05:c7:e6:ba:d0:d6:39:8d:70:28:df:f1:eb:d8: 4a:cf:28:b5:03:f0:32:dc:d1:02:f2:ca:79:61:d4:0a:63:20: 69:c6:84:b0:7b:71:50:1a:5a:6c:6e:5b:fe:37:20:3b:54:4d: ec:b3:85:c7:c3:e7:72:c8:9d:21:44:a3:d8:bd:34:5e:84:ef: 15:d0:77:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5QzAxMTAvBgNVBAUTKEVGQ0YwNTJEOTg5MjkyQ0VCMTA1MDkxMjlDOERFMjAz RDQ5RjY4MDQwHhcNMjUwODEwMTc1NzU2WhcNMjUwODE3MTc1NzU2WjAYMRYwFAYD VQQDEw02ODk4ZGRhNC1lMjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApoPV8qalrY4Fx7fHh6rm7Yo5tZDM0bP4t8P1Zbgavy9EdEXYMTlxB0kkeAWH 9xuOsdLKfIjtawmDCLUWIJyRiqIn74Jup1NOU3YzCdhUQtrGKfiaL4t0sd07uKgZ NEzBqlMMNaJ1CTXRRknrS68QSIxGu0x6in5/i1hBcD2xVKGFv8UYZStLV+hY2R0/ 1UK5YSVr5DUzr+MKuOG0Z3MqpVioN8IsspV4KmzDzL3uuJSBYHAYdx/ySv5Ie6cw p7cfOgbr90aSF7JkFzJyQLEwmWRlDaFLXzin5P0MJ/EewzGfrhsOEZO/VdoXs65b 0TsoNEJwh5VJe/FwZJyiAd7gFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5gKpT1 SKOESxpj8qW6V9u88+ilMB8GA1UdIwQYMBaAFO/PBS2YkpLOsQUJEpyN4gPUn2gE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjlDMC9EMzY0RjBDQ0Qy MUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tzNnhCUWtTbkkzaUE5U2Zh QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4OEZMWmlTa3M2eEJRa1NuSTNpQTlTZmFBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjlDMC9EMzY0RjBDQ0QyMUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tz NnhCUWtTbkkzaUE5U2ZhQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxO3J7DPiXcuabQk16A4whvRutuCZuRS8g9WbctxMazUvSd48mOorb J6QKnshvMjikui5DjTxacz7KaQ1V4cUI6xIZHoNgG7LFsneFtu2k9skMZFbtmfcI PT+KFUCbxh0G1O6KQgRHquHCiF76C++DLZ6uf2cgc1DdfQlZg86Z9h/M/GlLd38U ncXVGPSF6JBCj6kxk+9cK69YsopzV7/Gzeen/LIBDUvC5zjC753Ca1hZKsUjaDf8 BcfmutDWOY1wKN/x69hKzyi1A/Ay3NEC8sp5YdQKYyBpxoSwe3FQGlpsblv+NyA7 VE3ss4XHw+dyyJ0hRKPYvTRehO8V0HeG -----END CERTIFICATE-----Generated at Tue Aug 12 14:34:50 2025 by rpki-client