$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft File: 788FLZiSks6xBQkSnI3iA9SfaAQ.mft (raw, json) Hash identifier: 5DI9t/B8VySmUMvPtmSck4Hq/7NJIKxzE8nH+P/EPYo= Subject key identifier: FB:F5:95:68:B9:51:01:53:ED:E2:65:E4:2B:D8:D8:36:0C:78:B5:88 Authority key identifier: EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 Certificate issuer: /CN=A91EB9C0/serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Certificate serial: 0D7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft Manifest number: 0D76 Signing time: Fri 22 Aug 2025 18:04:15 +0000 Manifest this update: Fri 22 Aug 2025 18:04:14 +0000 Manifest next update: Fri 29 Aug 2025 18:04:14 +0000 Files and hashes: 1: 788FLZiSks6xBQkSnI3iA9SfaAQ.crl (hash: rE2+yOXHwv0eyj2t0H5KHEZWKSxVSt4dC6e7bf9dzro=) 2: 1004D41ED21D11E992825429C4F9AE02.roa (hash: FAN1R0kTPo6CVZLPRUbNgZ570C6pJVmhGPN5h/j558A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3454 (0xd7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB9C0, serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Validity Not Before: Aug 22 18:04:14 2025 GMT Not After : Aug 29 18:04:14 2025 GMT Subject: CN=68a8b11e-c545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:19:5d:4e:c3:0a:cd:82:a5:0d:35:40:56:64: 75:09:87:24:d6:a6:9c:86:38:e0:03:b5:f4:9c:1a: 4a:97:58:61:10:7f:ea:5c:1a:07:6d:ec:d1:c3:d6: c1:d5:e6:b9:c0:a0:c2:1f:18:ab:e0:69:8d:16:ff: 7b:7e:f3:f7:d8:e2:bc:a7:51:c1:04:be:1e:51:4b: f5:03:8b:10:7f:da:e2:ba:61:31:c9:bd:d6:75:22: ed:63:11:e8:47:a5:ef:50:cf:4d:a4:84:06:68:3e: 54:20:80:51:93:85:cc:a4:69:1f:15:26:c9:9f:c8: 61:25:53:d4:ef:bc:79:da:02:98:8c:9d:48:e4:39: ae:f2:2a:82:02:53:84:b8:59:4f:44:97:54:aa:8e: ea:fe:db:a6:ee:bd:f4:7b:68:7d:ed:d5:ea:23:29: 99:b3:b6:da:e3:0f:a3:1e:49:4d:a5:a5:0a:ae:49: 08:c2:a0:e7:91:20:cf:c2:3d:f3:5f:78:60:89:70: 6b:c0:68:54:26:31:ae:a4:58:bf:11:a9:46:ca:9d: a7:82:e8:41:98:64:10:0a:ec:93:69:67:20:43:70: bb:93:42:d8:c1:f4:8e:f5:3e:fb:b7:69:bb:8e:46: fa:a5:1d:51:5e:fb:8f:27:cb:1d:88:a0:a0:b4:5b: 71:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F5:95:68:B9:51:01:53:ED:E2:65:E4:2B:D8:D8:36:0C:78:B5:88 X509v3 Authority Key Identifier: keyid:EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:6a:dd:85:0d:01:88:45:d6:f0:86:72:11:34:d8:f5:5b:a4: 89:af:68:32:b0:4b:e0:56:d9:37:49:02:05:7f:0b:b8:65:c6: 5e:fa:ca:fd:df:61:ac:92:7d:0f:85:83:9a:10:d8:c9:2b:28: 07:59:0c:64:38:fe:6c:7b:ea:03:4d:8c:2c:df:70:85:f1:9d: e7:c5:1c:cd:8a:4b:b5:12:d0:f9:7e:52:9c:1c:49:1a:e9:c9: 4a:bf:a6:0f:d4:c2:81:ad:cd:56:4f:06:bd:41:9e:f0:ba:47: 3a:b9:b8:b4:54:22:7f:b6:8e:de:24:db:b8:69:31:f6:db:9d: 96:d0:2a:6b:9c:49:db:c4:e8:f9:a1:e8:b3:d1:4e:2a:f4:8a: 35:74:9f:0e:5c:f0:83:65:1b:1e:2d:db:fc:2a:b0:41:64:90: c7:28:c0:d4:61:95:8a:e6:a5:e2:8a:45:9c:ce:80:71:9c:2d: b8:d3:06:9f:d3:72:12:27:3e:48:60:88:d8:03:4b:0a:2e:b0: 63:89:b8:3a:2a:ae:ed:38:3e:f4:22:e2:e8:ce:fb:12:3a:a2: 82:e2:13:0b:ef:68:0c:ea:28:2c:32:b9:e9:ce:53:ae:20:fb: 0d:bf:29:cb:3d:21:81:2a:f0:5b:a7:a3:b6:99:41:12:82:14: c1:f6:ea:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5QzAxMTAvBgNVBAUTKEVGQ0YwNTJEOTg5MjkyQ0VCMTA1MDkxMjlDOERFMjAz RDQ5RjY4MDQwHhcNMjUwODIyMTgwNDE0WhcNMjUwODI5MTgwNDE0WjAYMRYwFAYD VQQDEw02OGE4YjExZS1jNTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhldTsMKzYKlDTVAVmR1CYck1qachjjgA7X0nBpKl1hhEH/qXBoHbezRw9bB 1ea5wKDCHxir4GmNFv97fvP32OK8p1HBBL4eUUv1A4sQf9riumExyb3WdSLtYxHo R6XvUM9NpIQGaD5UIIBRk4XMpGkfFSbJn8hhJVPU77x52gKYjJ1I5Dmu8iqCAlOE uFlPRJdUqo7q/tum7r30e2h97dXqIymZs7ba4w+jHklNpaUKrkkIwqDnkSDPwj3z X3hgiXBrwGhUJjGupFi/EalGyp2nguhBmGQQCuyTaWcgQ3C7k0LYwfSO9T77t2m7 jkb6pR1RXvuPJ8sdiKCgtFtxSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPv1lWi5 UQFT7eJl5CvY2DYMeLWIMB8GA1UdIwQYMBaAFO/PBS2YkpLOsQUJEpyN4gPUn2gE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjlDMC9EMzY0RjBDQ0Qy MUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tzNnhCUWtTbkkzaUE5U2Zh QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4OEZMWmlTa3M2eEJRa1NuSTNpQTlTZmFBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjlDMC9EMzY0RjBDQ0QyMUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tz NnhCUWtTbkkzaUE5U2ZhQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3at2FDQGIRdbwhnIRNNj1W6SJr2gysEvgVtk3SQIFfwu4ZcZe+sr9 32Gskn0PhYOaENjJKygHWQxkOP5se+oDTYws33CF8Z3nxRzNiku1EtD5flKcHEka 6clKv6YP1MKBrc1WTwa9QZ7wukc6ubi0VCJ/to7eJNu4aTH2252W0CprnEnbxOj5 oeiz0U4q9Io1dJ8OXPCDZRseLdv8KrBBZJDHKMDUYZWK5qXiikWczoBxnC240waf 03ISJz5IYIjYA0sKLrBjibg6Kq7tOD70IuLozvsSOqKC4hML72gM6igsMrnpzlOu IPsNvynLPSGBKvBbp6O2mUESghTB9upZ -----END CERTIFICATE-----Generated at Sat Aug 23 19:12:16 2025 by rpki-client