$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft File: 788FLZiSks6xBQkSnI3iA9SfaAQ.mft (raw, json) Hash identifier: PEm37qtD6iH9s6xzv80+dA6zG96O41McJuS73PvH+mY= Subject key identifier: 0C:26:0A:0A:9B:31:2B:9C:F2:47:02:4F:7D:EB:8E:85:7F:CF:66:A9 Authority key identifier: EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 Certificate issuer: /CN=A91EB9C0/serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Certificate serial: 0D5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft Manifest number: 0D52 Signing time: Thu 12 Jun 2025 17:51:29 +0000 Manifest this update: Thu 12 Jun 2025 17:51:28 +0000 Manifest next update: Thu 19 Jun 2025 17:51:28 +0000 Files and hashes: 1: 788FLZiSks6xBQkSnI3iA9SfaAQ.crl (hash: ajvb3oL229N0/fzhASe+Q5+ZHrQG9cZCOVtVNhMMQnE=) 2: 1004D41ED21D11E992825429C4F9AE02.roa (hash: FAN1R0kTPo6CVZLPRUbNgZ570C6pJVmhGPN5h/j558A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 17:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3418 (0xd5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB9C0, serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Validity Not Before: Jun 12 17:51:28 2025 GMT Not After : Jun 19 17:51:28 2025 GMT Subject: CN=684b13a1-ee17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e3:83:19:72:98:0c:db:82:69:8d:bf:56:70: 79:86:49:9a:56:d7:3f:6b:1d:a0:f5:3b:28:dd:d2: 19:c6:38:19:0a:de:16:d0:5a:b9:eb:e7:2c:10:36: 2e:de:74:b1:a2:45:86:29:10:af:12:2d:d2:1d:91: 8d:17:e7:71:bb:43:b0:4c:0d:d5:5e:a1:59:6b:3d: 68:03:72:24:4c:46:ea:7c:e6:69:21:89:f1:01:4c: 5e:ab:24:5d:56:27:ff:b1:27:a7:f5:33:a7:26:9e: 9a:20:79:98:c2:65:c0:09:23:11:86:e3:2b:34:d1: 86:69:d5:20:ff:70:e2:90:d4:fb:b7:8a:08:26:44: 21:73:1b:1d:43:36:b0:c4:3a:d5:f6:1d:28:1c:55: c2:dd:27:e2:22:1b:91:b3:87:74:9f:f4:4b:bf:f6: bf:11:93:ab:b9:ad:c2:45:cd:1a:84:b8:57:6a:78: d5:4e:f2:4d:a8:74:5f:48:64:74:be:ad:80:7e:e3: 0a:41:73:4b:7c:42:bc:aa:75:a0:04:ae:92:57:83: 5f:05:27:1c:82:19:a0:c9:27:52:30:37:d7:20:52: 3e:16:0a:b2:c5:df:a2:e0:0b:14:98:96:b8:98:87: 68:a4:be:80:d9:53:27:ff:45:c8:0a:fd:77:f9:51: 89:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:26:0A:0A:9B:31:2B:9C:F2:47:02:4F:7D:EB:8E:85:7F:CF:66:A9 X509v3 Authority Key Identifier: keyid:EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:f5:77:01:bd:82:a5:d7:d0:2c:3c:5b:c9:df:d5:d1:80:7e: 40:11:97:2a:52:a6:fb:29:73:cc:a7:f4:f2:e3:c7:bd:87:9d: f0:51:62:c1:f6:81:e7:dc:72:8f:c7:e2:a6:02:5b:f2:f7:a7: b4:c3:9e:b5:d2:20:2d:81:4f:95:f3:ca:6f:47:47:80:ad:70: 7d:e6:cd:e9:c3:e4:28:f4:a9:ff:4f:ed:34:30:be:b3:95:eb: 76:85:e2:93:13:1a:81:8d:5d:2b:22:07:c9:4b:cd:b6:72:5f: ef:9e:76:80:8b:e6:cf:71:39:ee:22:67:48:98:02:66:31:4b: d0:19:e0:0b:50:34:e6:57:07:74:c3:3b:07:80:4a:fb:12:54: 71:e0:66:7b:9d:f4:c5:80:dd:95:45:aa:56:3c:f0:cd:f8:0b: 7e:a4:66:89:45:0e:c8:cf:92:b8:cf:f9:2b:39:bd:3b:a6:19: a7:27:99:c6:7b:93:2d:30:c4:df:d0:b2:34:e2:4e:5d:60:ca: 42:58:5b:c1:2c:46:56:f3:1f:d8:ce:43:08:71:09:cd:86:76: 1d:2e:2b:f9:36:5c:27:df:e2:48:ba:8b:cf:b2:b6:60:cb:1e: f1:01:a8:f0:81:b3:74:03:a3:3d:b4:66:20:8f:c7:28:bc:df: 2b:6a:c4:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5QzAxMTAvBgNVBAUTKEVGQ0YwNTJEOTg5MjkyQ0VCMTA1MDkxMjlDOERFMjAz RDQ5RjY4MDQwHhcNMjUwNjEyMTc1MTI4WhcNMjUwNjE5MTc1MTI4WjAYMRYwFAYD VQQDEw02ODRiMTNhMS1lZTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuODGXKYDNuCaY2/VnB5hkmaVtc/ax2g9Tso3dIZxjgZCt4W0Fq56+csEDYu 3nSxokWGKRCvEi3SHZGNF+dxu0OwTA3VXqFZaz1oA3IkTEbqfOZpIYnxAUxeqyRd Vif/sSen9TOnJp6aIHmYwmXACSMRhuMrNNGGadUg/3DikNT7t4oIJkQhcxsdQzaw xDrV9h0oHFXC3SfiIhuRs4d0n/RLv/a/EZOrua3CRc0ahLhXanjVTvJNqHRfSGR0 vq2AfuMKQXNLfEK8qnWgBK6SV4NfBSccghmgySdSMDfXIFI+Fgqyxd+i4AsUmJa4 mIdopL6A2VMn/0XICv13+VGJ1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwmCgqb MSuc8kcCT33rjoV/z2apMB8GA1UdIwQYMBaAFO/PBS2YkpLOsQUJEpyN4gPUn2gE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjlDMC9EMzY0RjBDQ0Qy MUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tzNnhCUWtTbkkzaUE5U2Zh QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4OEZMWmlTa3M2eEJRa1NuSTNpQTlTZmFBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjlDMC9EMzY0RjBDQ0QyMUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tz NnhCUWtTbkkzaUE5U2ZhQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu9XcBvYKl19AsPFvJ39XRgH5AEZcqUqb7KXPMp/Ty48e9h53wUWLB 9oHn3HKPx+KmAlvy96e0w5610iAtgU+V88pvR0eArXB95s3pw+Qo9Kn/T+00ML6z let2heKTExqBjV0rIgfJS822cl/vnnaAi+bPcTnuImdImAJmMUvQGeALUDTmVwd0 wzsHgEr7ElRx4GZ7nfTFgN2VRapWPPDN+At+pGaJRQ7Iz5K4z/krOb07phmnJ5nG e5MtMMTf0LI04k5dYMpCWFvBLEZW8x/YzkMIcQnNhnYdLiv5Nlwn3+JIuovPsrZg yx7xAajwgbN0A6M9tGYgj8covN8rasQ1 -----END CERTIFICATE-----Generated at Sat Jun 14 19:15:17 2025 by rpki-client