$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft File: 78WCsqPLLBDooxZW548EvNW8UxA.mft (raw, json) Hash identifier: bONgeE6RGRZhYAlFxB4Lol9vuDkGzO3zOP1fPhNpRmU= Subject key identifier: 7F:4B:E4:E5:93:69:51:42:15:AB:A9:A4:4F:30:DE:57:12:5D:5F:4B Authority key identifier: EF:C5:82:B2:A3:CB:2C:10:E8:A3:16:56:E7:8F:04:BC:D5:BC:53:10 Certificate issuer: /CN=A91D09A2/serialNumber=EFC582B2A3CB2C10E8A31656E78F04BCD5BC5310 Certificate serial: 0682 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft Manifest number: 0679 Signing time: Fri 22 Aug 2025 22:36:15 +0000 Manifest this update: Fri 22 Aug 2025 22:36:15 +0000 Manifest next update: Fri 29 Aug 2025 22:36:15 +0000 Files and hashes: 1: 78WCsqPLLBDooxZW548EvNW8UxA.crl (hash: da85NbcR8w/7tBLghaMYHZNZsXD3oR4FV/qghEeZQpU=) 2: 59AD29B88C6B11EBA286C569C4F9AE02.roa (hash: 7mKCoY5AEtshNQV8l9pmhY0mvA9jDUflCVQDRZpIa2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.crl rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1666 (0x682) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09A2, serialNumber=EFC582B2A3CB2C10E8A31656E78F04BCD5BC5310 Validity Not Before: Aug 22 22:36:15 2025 GMT Not After : Aug 29 22:36:15 2025 GMT Subject: CN=68a8f0df-05ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8e:2e:c6:03:43:14:9d:6b:2e:67:9b:2f:5c: c3:5a:38:98:a5:dc:92:4e:e0:fe:47:6c:aa:b2:09: 8f:8d:8a:ef:b0:96:61:0e:3b:d3:11:e3:79:84:ae: aa:49:4c:ca:43:fb:0f:9a:24:61:ca:5f:08:2a:91: 41:4c:85:9a:f4:77:ee:82:b7:e3:8a:bb:f0:23:3f: ad:27:73:4f:c6:ad:c7:1c:01:ec:66:39:8e:cf:dc: 49:01:7d:7e:ee:2f:99:7a:04:1c:7c:65:5d:13:55: 2e:94:17:dd:10:ef:76:91:bc:bb:c0:06:3e:79:b9: 47:05:2c:fb:51:9a:5d:f8:25:5e:ee:bc:51:81:03: 30:4e:af:3a:54:0f:95:63:86:7e:e0:aa:6a:33:cf: 60:7b:ba:dc:2e:19:db:bb:72:95:93:b2:47:94:76: 50:9f:e1:b5:2d:46:0b:fa:9c:43:44:6b:e6:0a:4d: 8c:a0:17:7b:00:e8:e6:2d:d3:fa:99:df:f4:13:e3: e6:67:75:93:3c:1a:49:7e:a9:ca:4b:39:48:af:bc: bd:b0:c3:84:46:25:f3:ab:40:74:ee:70:80:1d:90: 28:33:71:a9:98:3e:87:dd:ae:ff:6d:62:cc:33:d8: 0a:76:0d:91:74:21:20:6c:a4:3f:a9:04:11:e1:e1: 7c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:4B:E4:E5:93:69:51:42:15:AB:A9:A4:4F:30:DE:57:12:5D:5F:4B X509v3 Authority Key Identifier: keyid:EF:C5:82:B2:A3:CB:2C:10:E8:A3:16:56:E7:8F:04:BC:D5:BC:53:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:ee:42:13:cc:02:5f:48:b5:a2:d8:c6:c6:f9:23:fa:69:80: 61:60:7a:42:f3:8c:a6:ab:20:18:c9:5d:32:66:f2:30:68:e3: 26:f8:e1:85:d3:f0:d6:99:e6:70:d8:77:20:59:9b:68:88:ed: 91:63:53:aa:0d:fc:ed:83:ce:ab:d1:cc:78:d5:f9:bc:4d:9d: d7:b4:7e:31:9d:ae:a4:65:a7:e0:0a:60:de:69:59:72:63:f0: 05:36:75:56:90:be:92:dc:a9:18:fc:16:f2:68:ea:0c:4b:55: 0a:ba:43:91:97:b2:ba:60:99:f4:1d:ce:83:56:9a:8b:53:53: ff:6b:8a:33:7d:3f:79:77:d4:1b:9b:a4:d2:68:57:59:7d:87: 51:05:b5:67:5a:12:05:16:34:d5:c7:80:b6:96:6d:3d:49:e8: 2c:bb:5b:29:70:11:b0:eb:7d:ca:b3:2e:7c:22:50:10:f6:61: 1b:fd:47:e0:4d:80:22:14:64:15:56:8e:20:10:75:65:b0:55: 7a:bd:f2:8f:69:96:94:88:a1:b4:b6:47:08:fe:b8:f7:29:66: 64:a5:fd:af:0c:19:f2:eb:37:b8:9b:1a:81:2d:48:bc:f4:ec: 55:5b:1f:3e:ac:0f:51:c9:f8:53:74:55:41:6e:d6:e3:6f:8f: c5:57:75:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QTIxMTAvBgNVBAUTKEVGQzU4MkIyQTNDQjJDMTBFOEEzMTY1NkU3OEYwNEJD RDVCQzUzMTAwHhcNMjUwODIyMjIzNjE1WhcNMjUwODI5MjIzNjE1WjAYMRYwFAYD VQQDEw02OGE4ZjBkZi0wNWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqY4uxgNDFJ1rLmebL1zDWjiYpdySTuD+R2yqsgmPjYrvsJZhDjvTEeN5hK6q SUzKQ/sPmiRhyl8IKpFBTIWa9HfugrfjirvwIz+tJ3NPxq3HHAHsZjmOz9xJAX1+ 7i+ZegQcfGVdE1UulBfdEO92kby7wAY+eblHBSz7UZpd+CVe7rxRgQMwTq86VA+V Y4Z+4KpqM89ge7rcLhnbu3KVk7JHlHZQn+G1LUYL+pxDRGvmCk2MoBd7AOjmLdP6 md/0E+PmZ3WTPBpJfqnKSzlIr7y9sMOERiXzq0B07nCAHZAoM3GpmD6H3a7/bWLM M9gKdg2RdCEgbKQ/qQQR4eF8xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH9L5OWT aVFCFauppE8w3lcSXV9LMB8GA1UdIwQYMBaAFO/FgrKjyywQ6KMWVuePBLzVvFMQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlBMi8xRkVCNUEyMDhD NkExMUVCOThERURENjhDNEY5QUUwMi83OFdDc3FQTExCRG9veFpXNTQ4RXZOVzhV eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4V0NzcVBMTEJEb294Wlc1NDhFdk5XOFV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDlBMi8xRkVCNUEyMDhDNkExMUVCOThERURENjhDNEY5QUUwMi83OFdDc3FQTExC RG9veFpXNTQ4RXZOVzhVeEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE7kITzAJfSLWi2MbG+SP6aYBhYHpC84ymqyAYyV0yZvIwaOMm+OGF 0/DWmeZw2HcgWZtoiO2RY1OqDfztg86r0cx41fm8TZ3XtH4xna6kZafgCmDeaVly Y/AFNnVWkL6S3KkY/BbyaOoMS1UKukORl7K6YJn0Hc6DVpqLU1P/a4ozfT95d9Qb m6TSaFdZfYdRBbVnWhIFFjTVx4C2lm09Segsu1spcBGw633Ksy58IlAQ9mEb/Ufg TYAiFGQVVo4gEHVlsFV6vfKPaZaUiKG0tkcI/rj3KWZkpf2vDBny6ze4mxqBLUi8 9OxVWx8+rA9RyfhTdFVBbtbjb4/FV3VH -----END CERTIFICATE-----Generated at Sat Aug 23 21:19:38 2025 by rpki-client