$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft File: 788FLZiSks6xBQkSnI3iA9SfaAQ.mft (raw, json) Hash identifier: R8fQtOk8bz7pSd079XWwxLsg1TM7PyOQnABH/ysKMDQ= Subject key identifier: F4:C0:7F:F1:A6:5E:7A:C1:9B:8D:F7:EE:32:46:CD:5D:E2:D6:41:B5 Authority key identifier: EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 Certificate issuer: /CN=A91EB9C0/serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Certificate serial: 0D64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft Manifest number: 0D5C Signing time: Wed 02 Jul 2025 18:11:33 +0000 Manifest this update: Wed 02 Jul 2025 18:11:33 +0000 Manifest next update: Wed 09 Jul 2025 18:11:33 +0000 Files and hashes: 1: 788FLZiSks6xBQkSnI3iA9SfaAQ.crl (hash: dJAF21k5FaJyjSDO9BUEmNfkkeDVkQHkGB53w8nokIc=) 2: 1004D41ED21D11E992825429C4F9AE02.roa (hash: FAN1R0kTPo6CVZLPRUbNgZ570C6pJVmhGPN5h/j558A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:11:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3428 (0xd64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB9C0, serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Validity Not Before: Jul 2 18:11:33 2025 GMT Not After : Jul 9 18:11:33 2025 GMT Subject: CN=68657655-2f33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:84:ad:22:90:d1:f3:0e:5b:71:15:f9:af:b1: cf:5a:67:00:d0:d9:7a:3f:db:c8:93:41:1c:69:92: ff:32:cb:ea:06:ec:f8:8e:39:32:4d:5a:e5:4a:08: 48:23:60:95:ad:e1:fa:b5:06:51:c9:73:d7:0c:7e: 78:02:ff:79:a0:be:07:3b:e3:1f:81:86:32:b5:a3: a4:cd:6f:f4:f0:91:3f:fd:c6:04:6f:cd:9e:e2:e4: e7:bc:49:c3:bf:15:3a:63:92:16:97:cd:5a:cd:91: 73:32:ef:9e:7f:f5:cb:5e:86:36:57:c2:16:ac:90: c4:51:67:f9:0a:66:43:fa:04:d3:5d:cc:85:41:da: f7:73:33:36:67:3e:7e:70:b4:02:70:f5:c4:5c:5d: 94:57:cb:08:c2:1a:af:19:4a:47:7e:a3:78:ac:95: ba:7e:f0:74:c3:b7:e3:13:05:06:1c:b2:b4:48:d4: fe:5c:88:04:1c:f8:12:6e:59:95:f3:fb:93:aa:7c: ed:c8:32:ca:88:12:fc:52:b5:2e:67:75:4a:f8:00: a2:2c:51:b7:3a:e1:98:a0:7c:05:e3:3d:cb:db:0d: c0:c2:01:9b:13:d8:58:8e:0e:9e:f2:3e:d3:bd:03: b9:41:d8:ad:3f:0a:16:e1:31:7a:51:45:ee:18:d1: 48:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C0:7F:F1:A6:5E:7A:C1:9B:8D:F7:EE:32:46:CD:5D:E2:D6:41:B5 X509v3 Authority Key Identifier: keyid:EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:89:ac:fd:78:43:69:51:6f:0d:22:e1:58:5e:8e:43:d0:27: 0d:4f:2e:cd:62:28:62:fe:f9:76:f8:50:a4:42:f7:e7:33:38: 5e:bd:6f:70:96:7c:61:0d:81:a1:0f:a2:8b:00:22:d2:35:94: 0f:99:6d:8f:c6:bb:03:e5:c5:2c:68:0d:22:e9:40:e6:5e:3d: c3:0a:b2:20:e6:58:1a:c3:0d:cb:81:c8:cc:a9:7f:36:4d:c7: 55:26:bc:5d:34:81:d3:be:78:a1:c5:20:64:29:f5:fd:33:a3: 29:4d:3c:f5:16:49:2c:a4:e6:5a:96:bf:fe:1e:15:95:ee:b6: c7:28:48:88:51:94:34:cb:8f:35:54:31:44:b1:41:c6:e5:64: 49:9d:b0:5d:d1:96:61:ce:3a:7a:2c:15:87:75:26:2c:29:7c: 79:12:16:18:dd:95:7c:91:29:56:a5:22:aa:25:45:64:03:86: 1f:06:59:b3:2d:55:42:13:d5:e5:ae:33:75:55:8d:8d:96:01: eb:b7:4a:2e:54:7f:5f:a6:2a:5f:da:3e:6a:d7:d7:2c:ec:01: 6b:6c:c1:f8:43:ce:6f:04:da:a7:90:bb:ff:2e:7e:9d:3e:af: 12:bc:0f:9e:2b:b7:b8:1c:6d:7d:d7:ba:33:df:94:43:9b:82: 9a:ad:ce:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5QzAxMTAvBgNVBAUTKEVGQ0YwNTJEOTg5MjkyQ0VCMTA1MDkxMjlDOERFMjAz RDQ5RjY4MDQwHhcNMjUwNzAyMTgxMTMzWhcNMjUwNzA5MTgxMTMzWjAYMRYwFAYD VQQDEw02ODY1NzY1NS0yZjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoStIpDR8w5bcRX5r7HPWmcA0Nl6P9vIk0EcaZL/MsvqBuz4jjkyTVrlSghI I2CVreH6tQZRyXPXDH54Av95oL4HO+MfgYYytaOkzW/08JE//cYEb82e4uTnvEnD vxU6Y5IWl81azZFzMu+ef/XLXoY2V8IWrJDEUWf5CmZD+gTTXcyFQdr3czM2Zz5+ cLQCcPXEXF2UV8sIwhqvGUpHfqN4rJW6fvB0w7fjEwUGHLK0SNT+XIgEHPgSblmV 8/uTqnztyDLKiBL8UrUuZ3VK+ACiLFG3OuGYoHwF4z3L2w3AwgGbE9hYjg6e8j7T vQO5QditPwoW4TF6UUXuGNFIEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTAf/Gm XnrBm4337jJGzV3i1kG1MB8GA1UdIwQYMBaAFO/PBS2YkpLOsQUJEpyN4gPUn2gE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjlDMC9EMzY0RjBDQ0Qy MUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tzNnhCUWtTbkkzaUE5U2Zh QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4OEZMWmlTa3M2eEJRa1NuSTNpQTlTZmFBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjlDMC9EMzY0RjBDQ0QyMUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tz NnhCUWtTbkkzaUE5U2ZhQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1iaz9eENpUW8NIuFYXo5D0CcNTy7NYihi/vl2+FCkQvfnMzhevW9w lnxhDYGhD6KLACLSNZQPmW2PxrsD5cUsaA0i6UDmXj3DCrIg5lgaww3LgcjMqX82 TcdVJrxdNIHTvnihxSBkKfX9M6MpTTz1FkkspOZalr/+HhWV7rbHKEiIUZQ0y481 VDFEsUHG5WRJnbBd0ZZhzjp6LBWHdSYsKXx5EhYY3ZV8kSlWpSKqJUVkA4YfBlmz LVVCE9XlrjN1VY2NlgHrt0ouVH9fpipf2j5q19cs7AFrbMH4Q85vBNqnkLv/Ln6d Pq8SvA+eK7e4HG1917oz35RDm4Karc6i -----END CERTIFICATE-----Generated at Fri Jul 4 10:45:40 2025 by rpki-client