$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft File: 78WCsqPLLBDooxZW548EvNW8UxA.mft (raw, json) Hash identifier: 6Z8sLV5QDpdcGzEEu6JVyKpOdGB01RDOWo1hakJOHtc= Subject key identifier: 11:F2:1C:89:AE:FD:E8:82:39:9B:7A:04:98:58:D5:22:00:85:63:B2 Authority key identifier: EF:C5:82:B2:A3:CB:2C:10:E8:A3:16:56:E7:8F:04:BC:D5:BC:53:10 Certificate issuer: /CN=A91D09A2/serialNumber=EFC582B2A3CB2C10E8A31656E78F04BCD5BC5310 Certificate serial: 0668 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft Manifest number: 065F Signing time: Wed 02 Jul 2025 23:02:52 +0000 Manifest this update: Wed 02 Jul 2025 23:02:52 +0000 Manifest next update: Wed 09 Jul 2025 23:02:52 +0000 Files and hashes: 1: 78WCsqPLLBDooxZW548EvNW8UxA.crl (hash: RncQEyakFnAwvtT/hdkXKPcMyTfeG6aYJoji5ixkDBg=) 2: 59AD29B88C6B11EBA286C569C4F9AE02.roa (hash: 7mKCoY5AEtshNQV8l9pmhY0mvA9jDUflCVQDRZpIa2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.crl rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09A2, serialNumber=EFC582B2A3CB2C10E8A31656E78F04BCD5BC5310 Validity Not Before: Jul 2 23:02:52 2025 GMT Not After : Jul 9 23:02:52 2025 GMT Subject: CN=6865ba9c-ca28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:05:9c:83:cb:bd:b5:50:d6:7d:27:33:2e:37: ea:32:14:36:ce:bf:62:63:ce:81:07:7f:81:01:04: a5:9a:d9:70:82:be:da:0c:8d:34:cc:25:1b:a3:2d: 60:6d:36:62:21:1a:c5:d5:5a:12:f4:9c:d9:22:f1: 83:e1:6c:12:c1:22:cc:35:8d:0e:5a:26:1f:5b:05: 15:f6:c8:a8:72:9a:82:98:03:26:6f:dd:35:b2:a0: ed:bc:92:98:e5:d0:ce:94:65:9f:39:2d:ab:94:78: f2:64:1d:f2:a0:fc:3b:22:1c:22:92:d7:ec:d4:13: 0a:f2:a0:63:da:d4:a7:0e:72:6d:aa:15:0f:1e:e5: 66:4d:e7:07:b0:e1:42:f2:5c:eb:22:59:14:29:77: 18:86:d5:ff:0f:5a:c1:3b:82:c1:78:5e:4e:b8:7a: c1:1d:b1:7c:2d:94:19:a6:2f:f6:46:f0:3b:82:fd: 8e:c4:f6:74:00:2d:75:e7:3f:7f:eb:4e:1c:dd:05: bc:e6:ef:af:f3:83:8e:8b:62:57:44:88:e3:f3:43: a0:0e:32:d8:c7:5d:bc:88:a6:d1:6d:f6:b0:8b:f7: 39:88:91:c9:de:a4:bc:c2:1d:4a:d5:24:7e:17:48: 89:88:b3:88:c1:68:73:58:a6:c5:52:a8:8b:c0:bf: 3d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:F2:1C:89:AE:FD:E8:82:39:9B:7A:04:98:58:D5:22:00:85:63:B2 X509v3 Authority Key Identifier: keyid:EF:C5:82:B2:A3:CB:2C:10:E8:A3:16:56:E7:8F:04:BC:D5:BC:53:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:34:41:1f:8e:32:b4:e6:be:91:15:23:0a:7c:02:ec:c6:4b: c3:a8:b0:73:a9:2c:fb:74:4b:5e:11:83:3e:39:b2:fb:4c:bf: 0b:f8:90:11:df:f8:06:a6:7d:56:8e:41:26:4c:c2:7b:e0:1a: 0d:0d:c7:3e:77:56:77:3e:2e:9e:d8:aa:7e:83:d1:bb:74:d2: 07:36:a7:26:bb:5c:f7:c2:7f:28:97:12:2f:7e:11:c7:f3:c6: 22:b8:36:46:28:62:a8:a4:11:20:ee:8f:4b:90:8b:d0:46:27: 2a:fc:d9:16:88:a6:d3:12:25:3e:e4:30:53:d9:8e:a9:25:ba: 37:a0:c9:8d:b3:dc:bc:ce:7c:b5:70:37:19:5c:9b:c6:54:33: 7f:17:f9:17:ce:bc:03:ab:a7:86:25:06:4b:5e:b6:2b:1c:e0: d3:5d:a1:60:18:02:45:68:fc:04:aa:c0:27:2e:3e:f1:7a:96: 00:f0:65:29:dd:7f:87:29:72:81:c0:f3:2c:d0:9b:2e:12:06: 69:c6:9d:3d:49:75:79:cc:38:d7:f2:95:38:8e:e5:36:f7:96: a8:64:f7:ca:a7:42:5a:d2:b5:53:82:ca:aa:4e:74:a4:7a:2f: 8d:27:66:16:a5:37:e1:08:ba:c6:f8:24:6c:1f:1c:7e:24:f3: f2:69:80:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QTIxMTAvBgNVBAUTKEVGQzU4MkIyQTNDQjJDMTBFOEEzMTY1NkU3OEYwNEJD RDVCQzUzMTAwHhcNMjUwNzAyMjMwMjUyWhcNMjUwNzA5MjMwMjUyWjAYMRYwFAYD VQQDEw02ODY1YmE5Yy1jYTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQWcg8u9tVDWfSczLjfqMhQ2zr9iY86BB3+BAQSlmtlwgr7aDI00zCUboy1g bTZiIRrF1VoS9JzZIvGD4WwSwSLMNY0OWiYfWwUV9siocpqCmAMmb901sqDtvJKY 5dDOlGWfOS2rlHjyZB3yoPw7Ihwiktfs1BMK8qBj2tSnDnJtqhUPHuVmTecHsOFC 8lzrIlkUKXcYhtX/D1rBO4LBeF5OuHrBHbF8LZQZpi/2RvA7gv2OxPZ0AC115z9/ 604c3QW85u+v84OOi2JXRIjj80OgDjLYx128iKbRbfawi/c5iJHJ3qS8wh1K1SR+ F0iJiLOIwWhzWKbFUqiLwL89gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHyHImu /eiCOZt6BJhY1SIAhWOyMB8GA1UdIwQYMBaAFO/FgrKjyywQ6KMWVuePBLzVvFMQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlBMi8xRkVCNUEyMDhD NkExMUVCOThERURENjhDNEY5QUUwMi83OFdDc3FQTExCRG9veFpXNTQ4RXZOVzhV eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4V0NzcVBMTEJEb294Wlc1NDhFdk5XOFV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDlBMi8xRkVCNUEyMDhDNkExMUVCOThERURENjhDNEY5QUUwMi83OFdDc3FQTExC RG9veFpXNTQ4RXZOVzhVeEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUNEEfjjK05r6RFSMKfALsxkvDqLBzqSz7dEteEYM+ObL7TL8L+JAR 3/gGpn1WjkEmTMJ74BoNDcc+d1Z3Pi6e2Kp+g9G7dNIHNqcmu1z3wn8olxIvfhHH 88YiuDZGKGKopBEg7o9LkIvQRicq/NkWiKbTEiU+5DBT2Y6pJbo3oMmNs9y8zny1 cDcZXJvGVDN/F/kXzrwDq6eGJQZLXrYrHODTXaFgGAJFaPwEqsAnLj7xepYA8GUp 3X+HKXKBwPMs0JsuEgZpxp09SXV5zDjX8pU4juU295aoZPfKp0Ja0rVTgsqqTnSk ei+NJ2YWpTfhCLrG+CRsHxx+JPPyaYCR -----END CERTIFICATE-----Generated at Thu Jul 3 06:52:18 2025 by rpki-client