$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft File: 788FLZiSks6xBQkSnI3iA9SfaAQ.mft (raw, json) Hash identifier: 6Uy0AO96i5ImVa0z2wvQNwhdK1EkXaVxNi7MEnC21KQ= Subject key identifier: 0C:20:7E:69:92:63:81:31:AE:A1:8F:D5:D3:36:C0:73:44:6E:B5:6B Authority key identifier: EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 Certificate issuer: /CN=A91EB9C0/serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Certificate serial: 0D9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft Manifest number: 0D93 Signing time: Sat 18 Oct 2025 18:35:52 +0000 Manifest this update: Sat 18 Oct 2025 18:35:52 +0000 Manifest next update: Sat 25 Oct 2025 18:35:52 +0000 Files and hashes: 1: 788FLZiSks6xBQkSnI3iA9SfaAQ.crl (hash: G33nHwYXWTqxK5DKbAcqq0JvTjVjrFG5jXIu1bS1QHk=) 2: 1004D41ED21D11E992825429C4F9AE02.roa (hash: FAN1R0kTPo6CVZLPRUbNgZ570C6pJVmhGPN5h/j558A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:35:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3483 (0xd9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB9C0, serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Validity Not Before: Oct 18 18:35:52 2025 GMT Not After : Oct 25 18:35:52 2025 GMT Subject: CN=68f3de08-0895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:fc:70:e4:fc:d5:62:30:84:a0:f8:49:c1:6d: 4d:45:04:8b:ca:89:78:e2:f6:b1:6b:9d:53:ea:07: c6:dd:2f:5b:88:1a:a1:e3:01:5a:c0:b1:3e:1b:86: 36:de:f1:17:0d:1d:d6:76:49:25:3c:73:cf:c1:9b: cc:86:59:71:ab:7a:f6:a5:1c:33:38:dd:b5:2e:88: e6:5b:de:d4:ec:45:c5:30:65:26:b5:c3:98:60:f0: 6f:67:db:ad:aa:9e:36:99:9b:8b:9e:f5:ea:d4:e2: fa:95:46:5b:71:b3:fa:ab:38:cf:f6:d6:6c:57:04: e8:5f:b5:a1:09:eb:49:16:45:58:8f:47:82:26:4a: e9:d3:fa:2a:73:a8:8b:49:ea:fd:ec:0d:91:60:84: 39:7e:ba:98:87:a5:17:62:8a:7b:b6:9c:a0:c4:8a: 46:76:0a:b5:db:60:d2:80:92:5c:4c:d5:a9:0f:ea: d6:b5:9b:85:62:b1:cd:eb:4f:33:6a:a1:aa:31:00: bd:3f:50:97:09:ea:d5:18:f8:03:aa:50:ca:e2:0b: 2b:44:a3:1e:08:10:12:63:fe:30:7d:63:d8:f9:b0: a1:82:57:7f:54:d4:80:b1:be:fb:fb:8a:09:89:80: 8a:9c:48:31:91:68:94:19:db:c6:4a:a0:82:0f:db: f9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:20:7E:69:92:63:81:31:AE:A1:8F:D5:D3:36:C0:73:44:6E:B5:6B X509v3 Authority Key Identifier: keyid:EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:bc:58:48:80:b0:04:99:ec:9d:47:83:3e:98:8a:6d:7b:c4: 24:46:67:ed:31:fd:51:4b:69:de:b8:58:4c:87:f3:21:05:0b: a3:3e:92:ef:44:fb:a1:33:4a:53:60:9d:0a:6d:1b:e4:10:35: 53:8e:bc:76:88:db:82:7c:46:59:0c:3b:fc:64:c7:77:78:bb: 99:34:d4:92:d1:8a:d4:53:c3:f2:ee:dc:46:ae:ee:1a:af:c0: 92:5f:5c:92:06:d3:d9:45:01:39:7f:a4:9f:3d:9d:7b:0b:02: c5:f1:75:dc:a8:ed:37:21:2c:03:c7:44:30:a8:ca:e2:b7:d7: 96:94:2d:1d:37:63:df:76:33:fe:73:fc:1b:3a:35:29:de:77: 00:1c:45:89:b7:7a:dd:ce:24:3d:3a:10:d2:23:43:3d:30:df: e6:40:58:f4:b0:04:2c:8c:4c:ea:5a:6e:46:2a:14:5c:3f:39: e0:a0:05:59:26:cd:7c:73:1a:12:b2:d0:98:1b:49:d1:60:10: c6:12:65:ee:4f:77:ff:af:45:6b:d6:fe:a7:92:d9:25:0e:a6: 26:c7:ff:21:dc:59:5a:90:dc:60:d8:29:c2:a6:e2:36:3f:96: 1e:66:0f:82:9d:d1:3b:a5:a0:c6:75:7a:06:0d:fe:74:b7:49: 61:36:24:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5QzAxMTAvBgNVBAUTKEVGQ0YwNTJEOTg5MjkyQ0VCMTA1MDkxMjlDOERFMjAz RDQ5RjY4MDQwHhcNMjUxMDE4MTgzNTUyWhcNMjUxMDI1MTgzNTUyWjAYMRYwFAYD VQQDEw02OGYzZGUwOC0wODk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9fxw5PzVYjCEoPhJwW1NRQSLyol44vaxa51T6gfG3S9biBqh4wFawLE+G4Y2 3vEXDR3WdkklPHPPwZvMhllxq3r2pRwzON21LojmW97U7EXFMGUmtcOYYPBvZ9ut qp42mZuLnvXq1OL6lUZbcbP6qzjP9tZsVwToX7WhCetJFkVYj0eCJkrp0/oqc6iL Ser97A2RYIQ5frqYh6UXYop7tpygxIpGdgq122DSgJJcTNWpD+rWtZuFYrHN608z aqGqMQC9P1CXCerVGPgDqlDK4gsrRKMeCBASY/4wfWPY+bChgld/VNSAsb77+4oJ iYCKnEgxkWiUGdvGSqCCD9v5DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwgfmmS Y4ExrqGP1dM2wHNEbrVrMB8GA1UdIwQYMBaAFO/PBS2YkpLOsQUJEpyN4gPUn2gE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjlDMC9EMzY0RjBDQ0Qy MUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tzNnhCUWtTbkkzaUE5U2Zh QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4OEZMWmlTa3M2eEJRa1NuSTNpQTlTZmFBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjlDMC9EMzY0RjBDQ0QyMUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tz NnhCUWtTbkkzaUE5U2ZhQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYvFhIgLAEmeydR4M+mIpte8QkRmftMf1RS2neuFhMh/MhBQujPpLv RPuhM0pTYJ0KbRvkEDVTjrx2iNuCfEZZDDv8ZMd3eLuZNNSS0YrUU8Py7txGru4a r8CSX1ySBtPZRQE5f6SfPZ17CwLF8XXcqO03ISwDx0QwqMrit9eWlC0dN2PfdjP+ c/wbOjUp3ncAHEWJt3rdziQ9OhDSI0M9MN/mQFj0sAQsjEzqWm5GKhRcPzngoAVZ Js18cxoSstCYG0nRYBDGEmXuT3f/r0Vr1v6nktklDqYmx/8h3FlakNxg2CnCpuI2 P5YeZg+CndE7paDGdXoGDf50t0lhNiRj -----END CERTIFICATE-----Generated at Mon Oct 20 13:35:01 2025 by rpki-client