$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft File: 78WCsqPLLBDooxZW548EvNW8UxA.mft (raw, json) Hash identifier: yqIrFDgdxOFHb/fKFusuBJylDVexQ40y8JULsXrMuPk= Subject key identifier: CD:C3:16:99:A3:C3:1B:6D:BD:74:22:A0:EA:4D:0B:67:DA:81:66:AB Authority key identifier: EF:C5:82:B2:A3:CB:2C:10:E8:A3:16:56:E7:8F:04:BC:D5:BC:53:10 Certificate issuer: /CN=A91D09A2/serialNumber=EFC582B2A3CB2C10E8A31656E78F04BCD5BC5310 Certificate serial: 069F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft Manifest number: 0696 Signing time: Sat 18 Oct 2025 23:51:42 +0000 Manifest this update: Sat 18 Oct 2025 23:51:41 +0000 Manifest next update: Sat 25 Oct 2025 23:51:41 +0000 Files and hashes: 1: 78WCsqPLLBDooxZW548EvNW8UxA.crl (hash: mXmcOwAmkQ5cEZSQSLAtkcTP5nriuggbrnDeMlx+0Xw=) 2: 59AD29B88C6B11EBA286C569C4F9AE02.roa (hash: 7mKCoY5AEtshNQV8l9pmhY0mvA9jDUflCVQDRZpIa2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.crl rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1695 (0x69f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09A2, serialNumber=EFC582B2A3CB2C10E8A31656E78F04BCD5BC5310 Validity Not Before: Oct 18 23:51:41 2025 GMT Not After : Oct 25 23:51:41 2025 GMT Subject: CN=68f4280e-3b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c4:91:a2:bc:60:64:ac:ad:c4:7c:57:f1:cd: 1b:9f:0c:6e:e5:70:61:b4:96:63:1c:ea:91:31:2f: c4:cd:e9:39:b5:6f:2a:78:66:a6:13:7d:b3:19:56: a8:a4:c2:e9:31:07:ff:7a:c0:39:45:6e:61:48:61: 7a:46:6a:54:79:e4:55:7d:85:20:11:3e:b7:20:19: bd:6c:09:90:2b:a7:ff:f6:e8:d6:2b:00:8e:5a:43: 84:e0:e0:36:f3:aa:43:b8:78:5d:53:c5:34:5c:b0: 95:86:29:90:2c:5e:ff:06:04:d5:99:53:90:8c:3c: 10:98:db:8a:ed:e3:af:7a:9a:12:ab:68:fe:0f:27: 41:71:1b:8f:86:b0:43:9f:39:9a:3d:84:70:37:32: 03:45:8f:a9:d2:25:79:63:d5:fb:03:cf:36:97:e4: 8e:70:fc:f3:74:33:ec:02:85:c2:2e:57:33:1f:e3: f4:cd:5e:eb:ad:ae:10:cc:8f:a1:02:30:23:4d:ec: d0:1a:33:30:98:55:fe:8a:74:03:30:5f:ed:30:1e: c1:e8:34:68:d1:a1:a2:25:4a:96:f3:65:53:f1:9e: de:fd:3b:56:57:a3:6e:55:79:2e:c4:dc:49:cc:2c: ec:14:e4:bf:f7:ef:39:f6:18:fc:39:5d:5c:31:61: 22:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C3:16:99:A3:C3:1B:6D:BD:74:22:A0:EA:4D:0B:67:DA:81:66:AB X509v3 Authority Key Identifier: keyid:EF:C5:82:B2:A3:CB:2C:10:E8:A3:16:56:E7:8F:04:BC:D5:BC:53:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:7b:b4:11:83:79:a1:8a:4f:80:65:d3:77:cf:46:ca:68:fb: d3:8a:c3:a3:77:8a:7b:85:e2:5e:90:94:f4:1c:17:b9:f6:5a: 4c:79:b2:32:88:6d:1a:ea:ea:eb:09:e4:b9:c1:42:ae:29:1d: d4:16:86:cb:11:cc:1e:5d:23:04:5a:05:95:79:e3:a5:a5:70: ce:21:ba:db:d0:b7:04:8e:ef:6c:b8:a9:42:3e:d4:76:78:41: dd:37:7c:4f:72:d3:0c:ca:7b:b9:56:88:b3:40:59:a7:ce:3e: a7:2f:00:ed:55:fc:73:bc:1f:22:48:eb:5a:4d:50:e5:a0:62: cc:f2:8d:4b:06:d5:8f:9c:bc:6c:8b:d9:73:2b:33:0c:87:dc: c9:55:ed:7e:39:3d:76:72:e1:32:af:2d:e6:74:e8:a7:65:f4: 6b:c9:82:2d:69:bc:70:4c:da:89:f9:84:5b:e3:b5:35:3b:3c: a8:00:94:c9:de:88:5b:48:cc:de:fc:5d:a3:9e:48:6b:8e:d9: df:c5:d9:78:c6:e6:0f:b0:69:74:ab:5e:89:da:00:93:1b:8e: b5:a3:09:4b:e1:c8:67:9d:a7:af:07:a0:81:52:e3:14:3d:2c: 50:4a:cf:5d:9f:b9:bf:6a:f2:ef:8a:af:43:0d:40:ea:d0:f6: 04:aa:3e:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QTIxMTAvBgNVBAUTKEVGQzU4MkIyQTNDQjJDMTBFOEEzMTY1NkU3OEYwNEJD RDVCQzUzMTAwHhcNMjUxMDE4MjM1MTQxWhcNMjUxMDI1MjM1MTQxWjAYMRYwFAYD VQQDEw02OGY0MjgwZS0zYjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcSRorxgZKytxHxX8c0bnwxu5XBhtJZjHOqRMS/Ezek5tW8qeGamE32zGVao pMLpMQf/esA5RW5hSGF6RmpUeeRVfYUgET63IBm9bAmQK6f/9ujWKwCOWkOE4OA2 86pDuHhdU8U0XLCVhimQLF7/BgTVmVOQjDwQmNuK7eOvepoSq2j+DydBcRuPhrBD nzmaPYRwNzIDRY+p0iV5Y9X7A882l+SOcPzzdDPsAoXCLlczH+P0zV7rra4QzI+h AjAjTezQGjMwmFX+inQDMF/tMB7B6DRo0aGiJUqW82VT8Z7e/TtWV6NuVXkuxNxJ zCzsFOS/9+859hj8OV1cMWEi/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3DFpmj wxttvXQioOpNC2fagWarMB8GA1UdIwQYMBaAFO/FgrKjyywQ6KMWVuePBLzVvFMQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlBMi8xRkVCNUEyMDhD NkExMUVCOThERURENjhDNEY5QUUwMi83OFdDc3FQTExCRG9veFpXNTQ4RXZOVzhV eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4V0NzcVBMTEJEb294Wlc1NDhFdk5XOFV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDlBMi8xRkVCNUEyMDhDNkExMUVCOThERURENjhDNEY5QUUwMi83OFdDc3FQTExC RG9veFpXNTQ4RXZOVzhVeEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6e7QRg3mhik+AZdN3z0bKaPvTisOjd4p7heJekJT0HBe59lpMebIy iG0a6urrCeS5wUKuKR3UFobLEcweXSMEWgWVeeOlpXDOIbrb0LcEju9suKlCPtR2 eEHdN3xPctMMynu5VoizQFmnzj6nLwDtVfxzvB8iSOtaTVDloGLM8o1LBtWPnLxs i9lzKzMMh9zJVe1+OT12cuEyry3mdOinZfRryYItabxwTNqJ+YRb47U1OzyoAJTJ 3ohbSMze/F2jnkhrjtnfxdl4xuYPsGl0q16J2gCTG461owlL4chnnaevB6CBUuMU PSxQSs9dn7m/avLviq9DDUDq0PYEqj71 -----END CERTIFICATE-----Generated at Mon Oct 20 17:07:30 2025 by rpki-client