$ rpki-client -vvf rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft File: CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft (raw, json) Hash identifier: 320FB+dQtTbV01MiUHlLVucv1SwSMzPIt8bXbOtuhIw= Subject key identifier: 06:D0:C1:BC:12:32:5E:07:DA:E1:F2:05:9B:91:F0:C2:1D:90:CF:0A Authority key identifier: 09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD Certificate issuer: /CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Certificate serial: 06ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft Manifest number: 06EB Signing time: Sun 02 Nov 2025 21:55:43 +0000 Manifest this update: Sun 02 Nov 2025 21:55:43 +0000 Manifest next update: Sun 09 Nov 2025 21:55:43 +0000 Files and hashes: 1: CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl (hash: ZnH6V6E0D0Dl5R/sQb9qoGxgoUfhQHlnKBiKO3qG0qE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:55:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1773 (0x6ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91937EA, serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Validity Not Before: Nov 2 21:55:43 2025 GMT Not After : Nov 9 21:55:43 2025 GMT Subject: CN=6907d35f-5cec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5d:3b:ba:f6:3d:b6:09:60:0a:d3:00:a0:e9: 4d:ac:8a:db:e6:6e:cf:66:d4:04:c3:f4:e8:86:69: 9d:10:d9:09:56:91:d4:d8:c6:84:e9:00:3e:ee:c9: f0:8c:7c:2b:29:87:ce:bf:bf:82:4d:f3:58:99:30: d8:59:a9:a9:38:c7:dc:cc:7d:ab:4d:f7:18:15:80: 10:64:59:58:8d:89:83:86:16:1d:18:f3:6c:1f:d2: a1:8b:f6:54:b9:bf:b5:fe:45:d6:90:3e:85:78:59: 0b:5a:1a:a6:37:8f:f6:f7:4b:df:52:6d:60:40:bb: 38:15:d6:90:e3:a1:a4:33:34:d1:16:92:f8:d2:38: 35:dc:d0:12:34:b8:27:38:73:e9:0b:cb:58:51:8b: b0:4f:5e:01:bf:a4:cd:2a:9d:c7:c9:c9:9b:8c:25: c1:46:88:d8:eb:5c:3f:c7:8c:a7:ce:29:49:f5:f6: fb:4d:0d:7c:cb:9d:d4:13:42:d6:af:b1:43:34:e4: 24:9d:64:4a:1c:5e:43:b3:34:e1:97:96:97:9d:a2: 14:21:fb:6b:28:d3:d3:72:62:0e:0d:be:94:f6:97: ab:46:e3:d9:a0:98:f6:8e:a0:41:15:6e:79:26:0d: 4b:a2:4b:3e:4c:d3:ba:f5:34:e4:81:d2:b2:cd:26: 93:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:D0:C1:BC:12:32:5E:07:DA:E1:F2:05:9B:91:F0:C2:1D:90:CF:0A X509v3 Authority Key Identifier: keyid:09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:2e:5d:fb:40:1f:13:8f:26:a4:d7:a8:92:6d:27:09:19:b7: 22:2d:9d:d8:7c:69:c3:50:dc:6c:c3:96:01:ed:3c:4d:a8:88: ac:be:67:67:4f:81:03:78:57:c1:d3:8c:13:5e:c8:17:1b:30: 21:4f:99:22:51:d4:b0:83:b5:52:c6:0f:aa:39:89:81:0f:7a: ae:54:7b:a0:e9:5f:c9:39:96:07:63:59:fb:8d:f6:71:c1:61: a3:b8:b5:c4:bf:c1:28:51:5c:23:ff:38:86:a3:a0:7a:22:89: 80:3a:c7:fc:44:d4:3a:b2:79:ea:7a:10:00:a7:64:3b:8b:97: f8:61:1f:cb:cf:2b:41:2a:73:72:1d:d3:13:58:73:1c:50:d0: 68:75:67:e1:d6:2c:4b:d4:0a:c9:b8:cc:32:d1:cd:2d:e1:75: 02:f1:56:d5:57:07:d2:5f:66:0e:27:f3:cd:60:2e:1c:16:0e: 3f:7f:c4:5f:b7:ca:99:f3:d9:b5:da:ce:17:b5:56:18:b0:5b: 30:40:6b:51:d7:4a:43:db:b9:b1:e6:67:2a:d3:47:a5:61:0a: ab:97:f9:04:29:f1:a7:15:5a:b0:05:dd:54:1d:90:b9:41:6b: 3a:7d:c8:1f:78:cd:0d:b8:a1:c5:21:69:f6:fe:57:36:de:fb: f7:b1:c1:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM3RUExMTAvBgNVBAUTKDA5MTFFOTlBQURGNjY0RjAzOTkyOUNBQkJCNDg3NEEz QTE2MUNBQUQwHhcNMjUxMTAyMjE1NTQzWhcNMjUxMTA5MjE1NTQzWjAYMRYwFAYD VQQDEw02OTA3ZDM1Zi01Y2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw107uvY9tglgCtMAoOlNrIrb5m7PZtQEw/TohmmdENkJVpHU2MaE6QA+7snw jHwrKYfOv7+CTfNYmTDYWampOMfczH2rTfcYFYAQZFlYjYmDhhYdGPNsH9Khi/ZU ub+1/kXWkD6FeFkLWhqmN4/290vfUm1gQLs4FdaQ46GkMzTRFpL40jg13NASNLgn OHPpC8tYUYuwT14Bv6TNKp3HycmbjCXBRojY61w/x4ynzilJ9fb7TQ18y53UE0LW r7FDNOQknWRKHF5DszThl5aXnaIUIftrKNPTcmIODb6U9perRuPZoJj2jqBBFW55 Jg1Loks+TNO69TTkgdKyzSaTZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbQwbwS Ml4H2uHyBZuR8MIdkM8KMB8GA1UdIwQYMBaAFAkR6Zqt9mTwOZKcq7tIdKOhYcqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzdFQS8xRTk2NTYzMDZB NTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQQTVrcHlydTBoMG82Rmh5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NSSHBtcTMyWlBBNWtweXJ1MGgwbzZGaHlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzdFQS8xRTk2NTYzMDZBNTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQ QTVrcHlydTBoMG82Rmh5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCULl37QB8Tjyak16iSbScJGbciLZ3YfGnDUNxsw5YB7TxNqIisvmdn T4EDeFfB04wTXsgXGzAhT5kiUdSwg7VSxg+qOYmBD3quVHug6V/JOZYHY1n7jfZx wWGjuLXEv8EoUVwj/ziGo6B6IomAOsf8RNQ6snnqehAAp2Q7i5f4YR/LzytBKnNy HdMTWHMcUNBodWfh1ixL1ArJuMwy0c0t4XUC8VbVVwfSX2YOJ/PNYC4cFg4/f8Rf t8qZ89m12s4XtVYYsFswQGtR10pD27mx5mcq00elYQqrl/kEKfGnFVqwBd1UHZC5 QWs6fcgfeM0NuKHFIWn2/lc23vv3scEn -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:43 2025 by rpki-client