$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft File: 78WCsqPLLBDooxZW548EvNW8UxA.mft (raw, json) Hash identifier: EqgwATPezajTrnD/oRualBa0UIy5UGQbbhup0ROYyUE= Subject key identifier: 15:67:30:C9:37:EE:5B:38:B5:EB:E9:A7:3D:17:BE:35:20:9A:5A:64 Authority key identifier: EF:C5:82:B2:A3:CB:2C:10:E8:A3:16:56:E7:8F:04:BC:D5:BC:53:10 Certificate issuer: /CN=A91D09A2/serialNumber=EFC582B2A3CB2C10E8A31656E78F04BCD5BC5310 Certificate serial: 0648 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft Manifest number: 0640 Signing time: Sun 04 May 2025 22:16:04 +0000 Manifest this update: Sun 04 May 2025 22:16:03 +0000 Manifest next update: Sun 11 May 2025 22:16:03 +0000 Files and hashes: 1: 78WCsqPLLBDooxZW548EvNW8UxA.crl (hash: wotUWjwvSMebFMrVNRhxyo4O3yrUR71vY7B5QZzML3c=) 2: 59AD29B88C6B11EBA286C569C4F9AE02.roa (hash: moTAt3VjmiOCHxAKpACaMWgI7E3LHjdxwtqNPvRROiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.crl rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 22:16:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1608 (0x648) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09A2, serialNumber=EFC582B2A3CB2C10E8A31656E78F04BCD5BC5310 Validity Not Before: May 4 22:16:03 2025 GMT Not After : May 11 22:16:03 2025 GMT Subject: CN=6817e723-1e2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ec:cc:27:d9:03:61:90:1e:f5:e3:41:5a:eb: 54:7d:a8:b5:0f:03:1e:39:92:d2:33:13:21:6b:f9: 66:94:15:2c:07:72:63:90:a7:cd:3f:be:7b:17:21: e0:42:dd:d7:7e:da:e3:1e:df:d1:76:79:26:44:66: 98:a8:e6:3d:53:73:a1:4b:9f:cd:53:c8:63:32:f9: ce:15:69:6b:e1:d7:7f:64:26:c6:04:4b:ea:2a:f6: 6a:ae:95:13:c1:70:2b:1b:40:76:f1:bb:fc:c5:26: 9f:ed:72:d3:5b:d0:bf:77:9e:e7:b8:5a:e4:c8:42: 92:ee:b5:dd:2c:ef:64:45:74:9e:e6:c9:54:07:92: 08:f9:6b:3a:f2:e6:74:e9:7e:e3:98:7a:dd:c1:31: f9:0a:93:03:98:ba:bb:fd:af:20:c1:1d:e0:cb:a1: 93:92:6a:04:37:8c:1d:06:77:17:79:e1:82:d3:01: e7:08:88:24:8c:03:a2:e9:bb:b1:a4:88:57:42:d9: ce:b9:72:21:39:c7:cb:57:6b:be:83:19:f7:17:6f: c1:13:a4:72:34:28:01:44:72:81:ae:35:d6:2e:07: 47:ec:da:cb:3b:04:75:21:26:f5:18:41:b5:77:18: ef:14:24:14:eb:d8:81:19:aa:24:9a:7a:aa:8a:7c: 02:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:67:30:C9:37:EE:5B:38:B5:EB:E9:A7:3D:17:BE:35:20:9A:5A:64 X509v3 Authority Key Identifier: keyid:EF:C5:82:B2:A3:CB:2C:10:E8:A3:16:56:E7:8F:04:BC:D5:BC:53:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:72:81:08:79:c9:c6:77:6c:1e:af:59:8f:4a:f7:78:b0:6c: 2b:a4:43:f7:20:c4:74:3b:c6:32:ed:e1:51:39:8a:ac:df:30: be:b9:c8:6a:ec:05:5c:9b:b1:71:fe:06:b2:cc:fb:8e:ee:e8: 49:78:99:74:ca:9c:3b:d6:e0:3b:b6:59:96:d2:ed:ed:bf:2c: 0a:b7:12:d0:8c:f5:51:84:7e:f3:94:fc:5a:f7:cd:7a:d5:15: 4e:58:55:a9:4a:e0:a8:9e:d2:52:d9:e3:d5:d0:95:96:a1:c8: ca:27:dc:36:94:b1:c9:1d:18:ad:14:9e:7c:9b:e3:24:8a:f6: b7:38:bb:ef:80:0c:be:07:d4:ec:e4:ab:30:10:bd:de:0d:f1: d2:e7:0e:2b:1c:5c:e1:0f:83:16:e3:93:4e:ac:a0:10:cf:68: 29:f4:99:82:56:d8:f1:df:e4:68:c6:f2:ed:9c:9b:e6:86:4f: 18:4e:b6:46:e3:61:e9:34:b4:7d:00:60:8a:f9:1b:c0:94:fe: 6c:8f:05:0e:cd:fe:2d:28:27:3b:c5:91:22:c3:ff:f7:1d:14: cc:3c:28:7d:97:02:f9:4c:de:79:97:57:bf:e7:b3:69:54:81: fb:4b:ec:ed:0c:3f:be:09:cf:fc:91:bd:21:46:14:24:a2:17: 6d:80:b8:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QTIxMTAvBgNVBAUTKEVGQzU4MkIyQTNDQjJDMTBFOEEzMTY1NkU3OEYwNEJD RDVCQzUzMTAwHhcNMjUwNTA0MjIxNjAzWhcNMjUwNTExMjIxNjAzWjAYMRYwFAYD VQQDEw02ODE3ZTcyMy0xZTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOzMJ9kDYZAe9eNBWutUfai1DwMeOZLSMxMha/lmlBUsB3JjkKfNP757FyHg Qt3XftrjHt/RdnkmRGaYqOY9U3OhS5/NU8hjMvnOFWlr4dd/ZCbGBEvqKvZqrpUT wXArG0B28bv8xSaf7XLTW9C/d57nuFrkyEKS7rXdLO9kRXSe5slUB5II+Ws68uZ0 6X7jmHrdwTH5CpMDmLq7/a8gwR3gy6GTkmoEN4wdBncXeeGC0wHnCIgkjAOi6bux pIhXQtnOuXIhOcfLV2u+gxn3F2/BE6RyNCgBRHKBrjXWLgdH7NrLOwR1ISb1GEG1 dxjvFCQU69iBGaokmnqqinwCwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVnMMk3 7ls4tevppz0XvjUgmlpkMB8GA1UdIwQYMBaAFO/FgrKjyywQ6KMWVuePBLzVvFMQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlBMi8xRkVCNUEyMDhD NkExMUVCOThERURENjhDNEY5QUUwMi83OFdDc3FQTExCRG9veFpXNTQ4RXZOVzhV eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4V0NzcVBMTEJEb294Wlc1NDhFdk5XOFV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDlBMi8xRkVCNUEyMDhDNkExMUVCOThERURENjhDNEY5QUUwMi83OFdDc3FQTExC RG9veFpXNTQ4RXZOVzhVeEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUcoEIecnGd2wer1mPSvd4sGwrpEP3IMR0O8Yy7eFROYqs3zC+uchq 7AVcm7Fx/gayzPuO7uhJeJl0ypw71uA7tlmW0u3tvywKtxLQjPVRhH7zlPxa9816 1RVOWFWpSuContJS2ePV0JWWocjKJ9w2lLHJHRitFJ58m+Mkiva3OLvvgAy+B9Ts 5KswEL3eDfHS5w4rHFzhD4MW45NOrKAQz2gp9JmCVtjx3+RoxvLtnJvmhk8YTrZG 42HpNLR9AGCK+RvAlP5sjwUOzf4tKCc7xZEiw//3HRTMPCh9lwL5TN55l1e/57Np VIH7S+ztDD++Cc/8kb0hRhQkohdtgLh0 -----END CERTIFICATE-----Generated at Mon May 5 02:57:32 2025 by rpki-client