$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft File: 788FLZiSks6xBQkSnI3iA9SfaAQ.mft (raw, json) Hash identifier: qcHZ4E5PDnKCGRYAasUW0yDDwSgYMrMAk4H0uPm1l6o= Subject key identifier: 36:BE:F2:27:EB:4E:39:DE:51:CD:CD:20:F7:CC:8D:35:00:A6:03:34 Authority key identifier: EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 Certificate issuer: /CN=A91EB9C0/serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Certificate serial: 0D48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft Manifest number: 0D41 Signing time: Mon 12 May 2025 17:53:15 +0000 Manifest this update: Mon 12 May 2025 17:53:14 +0000 Manifest next update: Mon 19 May 2025 17:53:14 +0000 Files and hashes: 1: 788FLZiSks6xBQkSnI3iA9SfaAQ.crl (hash: WJ00E4aMUhAwjDylynp+ekEVkwCi/WZvQ273KrPTFSY=) 2: 1004D41ED21D11E992825429C4F9AE02.roa (hash: VSbvOJwGGe/ohiP+L17bAesxp9bgmYgwB4Rs+JtW0oQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:53:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3400 (0xd48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB9C0, serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Validity Not Before: May 12 17:53:14 2025 GMT Not After : May 19 17:53:14 2025 GMT Subject: CN=6822358a-1236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c6:92:eb:6e:94:d4:18:48:e2:24:93:39:1f: af:a9:f3:a0:55:68:ef:82:8d:f2:d7:9c:74:5e:52: 47:aa:7d:f6:43:87:66:be:c2:be:78:9e:64:79:5b: 91:5b:77:a0:d7:9d:8e:83:f9:bf:9c:34:3f:eb:6d: 48:1c:b1:8e:ba:be:90:e6:ae:4e:d2:9a:ce:53:83: 5e:48:ef:02:f5:71:29:b4:9e:06:c6:9b:0e:80:7d: d9:49:09:1f:28:53:5c:77:69:be:22:92:b3:61:99: f4:7b:e7:03:59:13:a3:6d:f9:63:89:00:49:a2:24: b2:8e:7a:31:d8:a0:3f:30:15:e1:3e:d7:11:d8:17: 93:cf:a9:a0:96:db:3f:6e:af:83:55:ef:79:1c:16: c3:4d:2b:15:f0:2a:1c:e5:93:92:48:f2:b2:07:2a: 3d:67:e1:14:98:d3:f6:cb:11:45:41:70:9d:2f:dd: cb:6a:e0:5f:96:cb:7c:5c:ce:e7:fd:bf:0c:de:96: 40:45:ea:41:53:89:81:fe:e0:46:5c:e3:48:6e:26: 41:10:1c:ff:b7:b8:1f:b9:7c:f0:1f:37:9c:7f:e8: e2:67:c4:b6:0c:e3:ae:e6:63:cd:bc:13:30:bb:c0: b4:e5:8f:f3:cf:68:58:09:82:96:dc:6d:22:98:9d: b5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:BE:F2:27:EB:4E:39:DE:51:CD:CD:20:F7:CC:8D:35:00:A6:03:34 X509v3 Authority Key Identifier: keyid:EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:f9:2d:42:ce:33:09:08:9f:2c:ce:59:c6:13:01:26:3c:f3: d1:12:15:e0:aa:b3:42:01:79:d7:d8:06:ce:12:df:84:e9:c1: 56:f6:90:cb:65:e4:33:78:d2:4a:b0:08:15:4e:aa:69:f7:6e: b1:cd:bb:9e:e9:ac:98:3a:1a:d9:8b:cd:c3:fb:50:21:3d:27: ad:00:ce:d7:0a:a8:69:ba:5f:9a:c7:4f:57:70:ea:ef:68:2b: cb:77:68:82:b3:ed:82:5d:17:6f:c6:1e:49:ec:6e:ce:3f:01: d4:11:72:b2:68:ea:01:eb:4c:5d:0d:1a:cf:19:be:61:4d:25: b5:4c:9a:6a:42:89:2e:38:c5:2c:54:4f:83:c9:44:e2:67:90: 9d:19:95:8d:40:67:37:98:12:dd:6f:1f:c3:39:39:ce:93:43: fa:a2:65:f0:2a:d7:71:c9:e6:67:fb:9c:cc:5b:5d:d4:16:9d: a7:93:0f:43:cd:1c:04:ec:f4:3c:f2:11:75:d6:cf:fa:19:62: 49:0b:b6:f5:7f:6f:b8:a1:28:b2:0c:17:65:ca:85:77:cc:a2: 60:c2:0a:27:24:a5:62:2a:89:66:a1:53:61:c4:77:79:9f:56: 59:39:6e:74:e5:33:6a:83:bf:c9:c5:62:bf:e7:70:38:4b:21: b0:97:bf:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5QzAxMTAvBgNVBAUTKEVGQ0YwNTJEOTg5MjkyQ0VCMTA1MDkxMjlDOERFMjAz RDQ5RjY4MDQwHhcNMjUwNTEyMTc1MzE0WhcNMjUwNTE5MTc1MzE0WjAYMRYwFAYD VQQDEw02ODIyMzU4YS0xMjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA58aS626U1BhI4iSTOR+vqfOgVWjvgo3y15x0XlJHqn32Q4dmvsK+eJ5keVuR W3eg152Og/m/nDQ/621IHLGOur6Q5q5O0prOU4NeSO8C9XEptJ4GxpsOgH3ZSQkf KFNcd2m+IpKzYZn0e+cDWROjbfljiQBJoiSyjnox2KA/MBXhPtcR2BeTz6mglts/ bq+DVe95HBbDTSsV8Coc5ZOSSPKyByo9Z+EUmNP2yxFFQXCdL93LauBflst8XM7n /b8M3pZARepBU4mB/uBGXONIbiZBEBz/t7gfuXzwHzecf+jiZ8S2DOOu5mPNvBMw u8C05Y/zz2hYCYKW3G0imJ21aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDa+8ifr TjneUc3NIPfMjTUApgM0MB8GA1UdIwQYMBaAFO/PBS2YkpLOsQUJEpyN4gPUn2gE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjlDMC9EMzY0RjBDQ0Qy MUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tzNnhCUWtTbkkzaUE5U2Zh QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4OEZMWmlTa3M2eEJRa1NuSTNpQTlTZmFBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjlDMC9EMzY0RjBDQ0QyMUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tz NnhCUWtTbkkzaUE5U2ZhQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH+S1CzjMJCJ8szlnGEwEmPPPREhXgqrNCAXnX2AbOEt+E6cFW9pDL ZeQzeNJKsAgVTqpp926xzbue6ayYOhrZi83D+1AhPSetAM7XCqhpul+ax09XcOrv aCvLd2iCs+2CXRdvxh5J7G7OPwHUEXKyaOoB60xdDRrPGb5hTSW1TJpqQokuOMUs VE+DyUTiZ5CdGZWNQGc3mBLdbx/DOTnOk0P6omXwKtdxyeZn+5zMW13UFp2nkw9D zRwE7PQ88hF11s/6GWJJC7b1f2+4oSiyDBdlyoV3zKJgwgonJKViKolmoVNhxHd5 n1ZZOW505TNqg7/JxWK/53A4SyGwl7+f -----END CERTIFICATE-----Generated at Tue May 13 23:03:43 2025 by rpki-client