$ rpki-client -vvf rpki.apnic.net/member_repository/A914B0CF/7E013CDA1F1811EF97333E10C4F9AE02/78F7DRESbH-pQb1NDsp6o56TRqA.mft File: 78F7DRESbH-pQb1NDsp6o56TRqA.mft (raw, json) Hash identifier: awtiMYnVfB9ALpybDATqsziUBlQPZHwyfHK1G4i2cFU= Subject key identifier: 99:47:FB:63:6A:9C:26:90:E6:65:E7:B0:C0:38:61:DB:83:9F:F0:5F Authority key identifier: EF:C1:7B:0D:11:12:6C:7F:A9:41:BD:4D:0E:CA:7A:A3:9E:93:46:A0 Certificate issuer: /CN=A914B0CF/serialNumber=EFC17B0D11126C7FA941BD4D0ECA7AA39E9346A0 Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78F7DRESbH-pQb1NDsp6o56TRqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B0CF/7E013CDA1F1811EF97333E10C4F9AE02/78F7DRESbH-pQb1NDsp6o56TRqA.mft Manifest number: BA Signing time: Sat 31 May 2025 05:29:08 +0000 Manifest this update: Sat 31 May 2025 05:29:07 +0000 Manifest next update: Sat 07 Jun 2025 05:29:07 +0000 Files and hashes: 1: 78F7DRESbH-pQb1NDsp6o56TRqA.crl (hash: F6P2CV0r+D8MDFI/LoMevQ5pOzoo+kjaEr1tIs1fPEI=) 2: 20BCACE21F1A11EFB1CD4814C4F9AE02.roa (hash: xNbG/utcKUstvbI/+h9lWTxk2xr/yLWlvLD0rYAm3fw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B0CF/7E013CDA1F1811EF97333E10C4F9AE02/78F7DRESbH-pQb1NDsp6o56TRqA.crl rsync://rpki.apnic.net/member_repository/A914B0CF/7E013CDA1F1811EF97333E10C4F9AE02/78F7DRESbH-pQb1NDsp6o56TRqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78F7DRESbH-pQb1NDsp6o56TRqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B0CF, serialNumber=EFC17B0D11126C7FA941BD4D0ECA7AA39E9346A0 Validity Not Before: May 31 05:29:07 2025 GMT Not After : Jun 7 05:29:07 2025 GMT Subject: CN=683a93a3-be1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:74:1d:04:11:ee:c2:5f:11:d3:3f:dc:e4:a0: f3:4e:4f:97:39:a0:b7:78:28:89:e2:75:21:fc:6e: fb:89:20:63:ee:ba:e8:4f:1a:9b:57:6f:c9:43:24: 66:55:8a:77:f6:38:86:07:b8:01:40:59:2f:62:d4: e5:2a:09:5b:c1:46:e5:dc:a5:12:74:2f:68:be:65: 8d:6b:68:fd:42:98:5a:47:cc:7f:21:2f:c5:a8:3d: d8:2b:7f:7d:32:dc:50:60:64:8f:f2:a1:19:b0:2e: 91:96:4c:26:56:de:61:ab:5f:eb:24:bd:91:cc:1e: 55:99:17:9e:a8:ee:24:e9:8d:ab:fe:91:f6:c1:0c: 9f:07:3c:7f:87:39:8f:27:12:da:99:c4:92:73:81: d3:2c:8a:a2:31:94:8a:e3:39:a0:7a:ca:9d:bb:c5: b8:a7:1b:cb:ed:8b:b2:2e:79:e8:ac:5e:fd:f5:ae: 0f:39:e4:b0:27:79:3a:c4:c6:6a:c8:61:7c:af:db: 17:4b:c5:ca:40:db:f8:d6:6f:3c:84:4b:9d:2b:8f: 99:a0:89:a8:98:19:8b:ca:74:b1:89:90:6f:70:21: 1a:90:c3:4a:1b:ad:68:cd:a8:65:51:77:c1:06:12: 29:79:97:99:1f:82:e5:97:53:2b:6f:36:0f:6b:a3: 66:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:47:FB:63:6A:9C:26:90:E6:65:E7:B0:C0:38:61:DB:83:9F:F0:5F X509v3 Authority Key Identifier: keyid:EF:C1:7B:0D:11:12:6C:7F:A9:41:BD:4D:0E:CA:7A:A3:9E:93:46:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B0CF/7E013CDA1F1811EF97333E10C4F9AE02/78F7DRESbH-pQb1NDsp6o56TRqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78F7DRESbH-pQb1NDsp6o56TRqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B0CF/7E013CDA1F1811EF97333E10C4F9AE02/78F7DRESbH-pQb1NDsp6o56TRqA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:b7:0c:54:b0:3a:ab:82:69:6e:14:2e:06:ea:3a:d3:c1:7e: b1:3f:6b:04:80:91:16:38:5d:a1:87:4b:66:d6:40:35:e2:a6: 41:5d:ce:d9:4c:12:31:af:97:7d:73:02:9c:e5:5a:ac:73:08: e7:f5:0f:ca:b5:9f:0e:89:77:df:44:32:4a:14:e0:87:c9:dc: 53:0a:89:4f:97:b3:b2:58:4b:f0:ae:c1:47:4e:0d:3e:01:d5: 11:b0:d6:51:2b:a3:3a:33:27:52:27:18:62:73:f7:3b:22:0a: 57:47:1e:7a:ab:01:b0:7c:3b:93:ca:cb:9d:6a:7d:4b:f6:cb: 4e:b6:bf:09:68:64:62:72:4e:f8:33:41:98:ed:f1:ce:f1:0e: 88:97:e9:6a:d3:05:52:b0:d5:43:85:1c:ed:bc:33:04:7a:ec: e3:d3:45:a6:4b:42:a7:d1:37:b8:1d:bc:dc:61:f8:0f:df:9a: a0:ee:44:50:5a:42:7e:b8:fa:20:f3:13:7c:f7:75:8d:0c:8b: e5:8c:c4:c2:4e:9e:1b:d0:a1:4b:d4:71:a0:49:75:dc:26:84: 15:5e:41:2e:3d:a5:41:28:60:c2:4b:c3:d6:c1:89:8c:a9:7e: f3:10:5b:22:8d:39:b1:80:ff:ee:ce:88:17:d7:2d:de:31:46: bc:5f:cb:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIwQ0YxMTAvBgNVBAUTKEVGQzE3QjBEMTExMjZDN0ZBOTQxQkQ0RDBFQ0E3QUEz OUU5MzQ2QTAwHhcNMjUwNTMxMDUyOTA3WhcNMjUwNjA3MDUyOTA3WjAYMRYwFAYD VQQDEw02ODNhOTNhMy1iZTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmXQdBBHuwl8R0z/c5KDzTk+XOaC3eCiJ4nUh/G77iSBj7rroTxqbV2/JQyRm VYp39jiGB7gBQFkvYtTlKglbwUbl3KUSdC9ovmWNa2j9QphaR8x/IS/FqD3YK399 MtxQYGSP8qEZsC6RlkwmVt5hq1/rJL2RzB5VmReeqO4k6Y2r/pH2wQyfBzx/hzmP JxLamcSSc4HTLIqiMZSK4zmgesqdu8W4pxvL7YuyLnnorF799a4POeSwJ3k6xMZq yGF8r9sXS8XKQNv41m88hEudK4+ZoImomBmLynSxiZBvcCEakMNKG61ozahlUXfB BhIpeZeZH4Lll1MrbzYPa6NmWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJlH+2Nq nCaQ5mXnsMA4YduDn/BfMB8GA1UdIwQYMBaAFO/Bew0REmx/qUG9TQ7KeqOek0ag MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjBDRi83RTAxM0NEQTFG MTgxMUVGOTczMzNFMTBDNEY5QUUwMi83OEY3RFJFU2JILXBRYjFORHNwNm81NlRS cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4RjdEUkVTYkgtcFFiMU5Ec3A2bzU2VFJxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjBDRi83RTAxM0NEQTFGMTgxMUVGOTczMzNFMTBDNEY5QUUwMi83OEY3RFJFU2JI LXBRYjFORHNwNm81NlRScUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdtwxUsDqrgmluFC4G6jrTwX6xP2sEgJEWOF2hh0tm1kA14qZBXc7Z TBIxr5d9cwKc5Vqscwjn9Q/KtZ8OiXffRDJKFOCHydxTColPl7OyWEvwrsFHTg0+ AdURsNZRK6M6MydSJxhic/c7IgpXRx56qwGwfDuTysudan1L9stOtr8JaGRick74 M0GY7fHO8Q6Il+lq0wVSsNVDhRztvDMEeuzj00WmS0Kn0Te4HbzcYfgP35qg7kRQ WkJ+uPog8xN893WNDIvljMTCTp4b0KFL1HGgSXXcJoQVXkEuPaVBKGDCS8PWwYmM qX7zEFsijTmxgP/uzogX1y3eMUa8X8sI -----END CERTIFICATE-----Generated at Sat May 31 17:27:58 2025 by rpki-client