$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft File: 788FLZiSks6xBQkSnI3iA9SfaAQ.mft (raw, json) Hash identifier: qOTGm5m71DN3Ki5Ys6AlMO7MKlqNnd+n3pC8vbEmUi8= Subject key identifier: 0C:FE:12:DD:B2:26:39:CD:32:60:D1:54:05:55:B4:5F:70:B3:6D:96 Authority key identifier: EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 Certificate issuer: /CN=A91EB9C0/serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Certificate serial: 0DA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft Manifest number: 0D9B Signing time: Sun 02 Nov 2025 17:55:32 +0000 Manifest this update: Sun 02 Nov 2025 17:55:32 +0000 Manifest next update: Sun 09 Nov 2025 17:55:32 +0000 Files and hashes: 1: 788FLZiSks6xBQkSnI3iA9SfaAQ.crl (hash: /nlZIue2EoL6J48XV8Zn/NYgEHBkVZFnliiOxizZSv0=) 2: 1004D41ED21D11E992825429C4F9AE02.roa (hash: FAN1R0kTPo6CVZLPRUbNgZ570C6pJVmhGPN5h/j558A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:55:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3491 (0xda3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB9C0, serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Validity Not Before: Nov 2 17:55:32 2025 GMT Not After : Nov 9 17:55:32 2025 GMT Subject: CN=69079b14-35a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:5e:2b:23:2f:15:95:bc:d3:ec:a1:d9:5d:2a: 3e:4b:52:3d:dd:8f:67:78:c5:69:cb:73:95:a5:9d: f6:61:ac:bb:79:5b:36:ef:a2:ad:76:cf:c5:96:a8: d8:c0:9f:32:f9:82:4f:fc:b1:b8:a9:bf:9b:5f:47: 17:e6:a7:bf:52:87:b1:97:3f:de:53:21:74:43:0c: 2b:c2:0f:c1:94:89:6e:4b:5a:6e:45:33:bb:a9:48: 92:58:cf:ac:3e:26:02:37:dc:9e:08:2f:1b:ba:8d: c8:36:f4:f6:d2:a5:76:15:3e:72:f6:f1:b4:6f:64: 27:1e:df:27:66:18:18:54:94:82:be:34:7c:58:4b: 68:a5:db:4d:1a:0a:8e:47:73:6b:f5:43:68:c4:d7: 18:ae:8d:4a:bd:48:15:fa:0c:ff:4b:51:95:7d:bb: 8e:82:c4:e7:0b:7f:33:28:f6:9e:2f:e6:59:b4:9e: 72:08:b6:f0:b7:c9:94:1a:12:df:35:36:db:88:59: a3:27:60:e6:c2:8e:03:eb:0a:35:9d:fb:90:5c:f1: 8d:15:e4:7c:8f:05:77:f0:90:c8:5b:12:e1:7b:43: 00:f3:0c:df:7a:d0:c8:20:97:e6:22:64:f8:01:d3: ca:74:48:6f:cb:10:77:3f:86:97:5f:af:9d:99:bb: b6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:FE:12:DD:B2:26:39:CD:32:60:D1:54:05:55:B4:5F:70:B3:6D:96 X509v3 Authority Key Identifier: keyid:EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:42:79:f6:c8:98:f6:32:8c:f5:df:42:38:48:ec:85:3c:1b: 47:60:2e:47:53:d4:3e:78:5a:d4:46:82:a3:30:8d:f6:ef:83: a0:d0:0d:71:b0:c3:d9:3b:13:ee:5b:53:c1:79:f1:30:28:f8: a7:e6:fb:43:80:a8:04:6c:61:47:23:ba:d2:d9:19:11:55:cc: d5:95:11:e3:a9:11:32:0c:af:8d:f2:4b:5b:8b:23:01:68:a4: 85:e9:cd:6e:8c:93:cb:50:c0:9d:d0:98:64:1e:f6:2b:17:2e: ed:81:8f:8e:06:87:e4:5f:ea:6c:9d:d8:7c:68:c4:90:d1:f1: 1f:73:d4:bc:cc:b6:53:4e:63:f5:01:6c:71:a2:9b:f7:98:0c: 19:7f:5d:4f:3a:cd:18:8f:5e:82:5b:65:90:e5:17:b7:7e:46: 6f:dc:0a:0b:86:e9:1b:5d:ea:9b:b8:7d:af:0a:89:f7:c8:ee: c3:8c:41:10:88:67:d5:7d:02:77:f9:2f:13:e1:17:53:5d:42: d2:2e:6a:0e:bc:8c:c0:c3:07:79:a1:47:70:7f:fd:cb:d8:a5: b7:34:ec:54:45:70:ec:4f:cb:cf:96:5e:72:22:06:37:01:77: 8a:f7:23:11:d8:81:d8:ea:58:c0:6c:40:f1:1f:ea:98:d1:d6: f1:c3:ee:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5QzAxMTAvBgNVBAUTKEVGQ0YwNTJEOTg5MjkyQ0VCMTA1MDkxMjlDOERFMjAz RDQ5RjY4MDQwHhcNMjUxMTAyMTc1NTMyWhcNMjUxMTA5MTc1NTMyWjAYMRYwFAYD VQQDEw02OTA3OWIxNC0zNWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl14rIy8VlbzT7KHZXSo+S1I93Y9neMVpy3OVpZ32Yay7eVs276Ktds/FlqjY wJ8y+YJP/LG4qb+bX0cX5qe/Uoexlz/eUyF0Qwwrwg/BlIluS1puRTO7qUiSWM+s PiYCN9yeCC8buo3INvT20qV2FT5y9vG0b2QnHt8nZhgYVJSCvjR8WEtopdtNGgqO R3Nr9UNoxNcYro1KvUgV+gz/S1GVfbuOgsTnC38zKPaeL+ZZtJ5yCLbwt8mUGhLf NTbbiFmjJ2Dmwo4D6wo1nfuQXPGNFeR8jwV38JDIWxLhe0MA8wzfetDIIJfmImT4 AdPKdEhvyxB3P4aXX6+dmbu2TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAz+Et2y JjnNMmDRVAVVtF9ws22WMB8GA1UdIwQYMBaAFO/PBS2YkpLOsQUJEpyN4gPUn2gE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjlDMC9EMzY0RjBDQ0Qy MUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tzNnhCUWtTbkkzaUE5U2Zh QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4OEZMWmlTa3M2eEJRa1NuSTNpQTlTZmFBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjlDMC9EMzY0RjBDQ0QyMUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tz NnhCUWtTbkkzaUE5U2ZhQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4Qnn2yJj2Moz130I4SOyFPBtHYC5HU9Q+eFrURoKjMI3274Og0A1x sMPZOxPuW1PBefEwKPin5vtDgKgEbGFHI7rS2RkRVczVlRHjqREyDK+N8ktbiyMB aKSF6c1ujJPLUMCd0JhkHvYrFy7tgY+OBofkX+psndh8aMSQ0fEfc9S8zLZTTmP1 AWxxopv3mAwZf11POs0Yj16CW2WQ5Re3fkZv3AoLhukbXeqbuH2vCon3yO7DjEEQ iGfVfQJ3+S8T4RdTXULSLmoOvIzAwwd5oUdwf/3L2KW3NOxURXDsT8vPll5yIgY3 AXeK9yMR2IHY6ljAbEDxH+qY0dbxw+4r -----END CERTIFICATE-----Generated at Tue Nov 4 02:16:52 2025 by rpki-client