$ rpki-client -vvf rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft File: 7HnRemDtVw7Ge1EWFitgi2C5zUE.mft (raw, json) Hash identifier: 6T3OaenbsUUr7GZGED27OoEEnMmVPfOuXIVWoYIXRNc= Subject key identifier: A9:25:FF:54:76:F5:B3:82:ED:B0:11:C5:3E:80:20:BB:0F:49:DB:54 Authority key identifier: EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 Certificate issuer: /CN=A91C309F/serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Certificate serial: 06F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft Manifest number: 06F1 Signing time: Sun 02 Nov 2025 21:55:36 +0000 Manifest this update: Sun 02 Nov 2025 21:55:36 +0000 Manifest next update: Sun 09 Nov 2025 21:55:36 +0000 Files and hashes: 1: 7HnRemDtVw7Ge1EWFitgi2C5zUE.crl (hash: pCD8Ehs7YQlMxVH8XPOh798TgsaUQPhPVV+pTG+JHq8=) 2: C144C89ADCF311EC80AD955EC4F9AE02.roa (hash: oHlo3Sofjys47IZ2Ei8IuoMAeL8C2VUTJUZO9aDUVcs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:55:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1784 (0x6f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C309F, serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Validity Not Before: Nov 2 21:55:36 2025 GMT Not After : Nov 9 21:55:36 2025 GMT Subject: CN=6907d358-d891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3f:26:8f:3e:20:80:00:0c:88:b7:da:8c:1b: 32:48:a7:d2:bf:99:56:da:cd:24:5c:d6:86:0b:52: ae:49:95:33:45:70:f9:63:26:c6:53:6f:8f:6d:d6: 8e:a2:a8:0b:80:98:db:66:22:f9:8e:e7:65:b2:a8: f2:92:46:03:1c:cd:ba:0f:e9:6f:a2:0d:6b:e2:38: 12:d3:b6:ee:c6:fd:a0:1c:7e:08:95:e5:35:76:e9: 1e:29:c9:93:09:7c:7d:9f:a0:0c:0e:3f:67:0a:fb: 50:ed:c1:70:cd:8a:11:82:43:ff:23:d3:cc:60:0f: d8:11:4d:46:ad:e0:d3:e3:12:27:e7:1e:d4:5f:8e: 2c:88:cb:dc:22:f9:a5:79:85:42:09:32:fd:31:db: 5b:bc:8c:98:d7:44:09:9a:b7:6b:bc:ca:17:7f:5c: 65:89:26:7f:d0:48:f8:d6:f6:d7:b7:86:5e:18:3b: 1e:1d:7d:00:70:f8:07:09:eb:52:13:81:d6:25:1f: 19:b7:d1:7f:25:89:03:ba:98:03:c9:8f:ff:ea:4e: ca:d9:72:2d:2e:76:53:03:5e:cc:5c:4b:dd:ae:28: ae:1b:3e:50:0d:73:e0:31:e4:58:23:cf:18:1c:3d: 10:c1:8f:3f:a5:45:04:f7:71:03:3f:99:dd:06:3a: 89:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:25:FF:54:76:F5:B3:82:ED:B0:11:C5:3E:80:20:BB:0F:49:DB:54 X509v3 Authority Key Identifier: keyid:EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:fd:6d:bd:35:4a:22:43:84:c8:7f:27:6b:60:4e:e4:71:7f: 3b:93:fd:cf:d8:ca:d9:e5:4f:42:92:76:c1:d3:56:ca:b0:f4: f7:c9:0d:30:e2:28:d3:1c:70:48:14:3d:a0:12:6c:52:ff:26: 19:63:ad:ae:90:fa:9b:87:a4:1f:93:e5:24:02:a6:56:da:5f: 35:3b:9e:e1:94:73:07:34:9e:59:9a:6d:e7:3b:41:4c:ec:b0: 5b:6a:50:90:28:5e:ad:e2:97:53:04:3b:74:6f:b3:c3:da:86: a9:21:3b:79:fc:ed:14:ad:cd:1c:13:72:99:c2:38:10:4a:70: 4f:47:53:ac:db:17:74:67:9a:52:75:4c:81:a5:3c:ca:a2:9d: 15:d2:4d:3a:ae:e6:0b:38:72:15:28:88:e3:95:0f:bf:5e:b4: 80:96:53:0d:65:bd:2f:69:61:b0:b7:2b:73:91:67:92:05:61: 36:c3:61:e9:db:0e:16:25:15:72:19:84:c7:18:52:96:c3:6c: 1b:bf:76:7c:9e:6a:ad:bb:3f:b6:9d:7c:83:f5:7c:54:b9:55: c7:1a:8e:01:cd:b5:8e:f6:9d:d0:61:0b:6b:46:5f:88:df:c1: 7c:24:6b:09:6c:dc:41:76:e8:29:d3:e3:47:36:39:58:7e:25: 35:4f:b9:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMwOUYxMTAvBgNVBAUTKEVDNzlEMTdBNjBFRDU3MEVDNjdCNTExNjE2MkI2MDhC NjBCOUNENDEwHhcNMjUxMTAyMjE1NTM2WhcNMjUxMTA5MjE1NTM2WjAYMRYwFAYD VQQDEw02OTA3ZDM1OC1kODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0T8mjz4ggAAMiLfajBsySKfSv5lW2s0kXNaGC1KuSZUzRXD5YybGU2+PbdaO oqgLgJjbZiL5judlsqjykkYDHM26D+lvog1r4jgS07buxv2gHH4IleU1dukeKcmT CXx9n6AMDj9nCvtQ7cFwzYoRgkP/I9PMYA/YEU1GreDT4xIn5x7UX44siMvcIvml eYVCCTL9MdtbvIyY10QJmrdrvMoXf1xliSZ/0Ej41vbXt4ZeGDseHX0AcPgHCetS E4HWJR8Zt9F/JYkDupgDyY//6k7K2XItLnZTA17MXEvdriiuGz5QDXPgMeRYI88Y HD0QwY8/pUUE93EDP5ndBjqJzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkl/1R2 9bOC7bARxT6AILsPSdtUMB8GA1UdIwQYMBaAFOx50Xpg7VcOxntRFhYrYItguc1B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzA5Ri8xREI0ODNBNDY5 REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3N0dlMUVXRml0Z2kyQzV6 VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdIblJlbUR0Vnc3R2UxRVdGaXRnaTJDNXpVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzA5Ri8xREI0ODNBNDY5REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3 N0dlMUVXRml0Z2kyQzV6VUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH/W29NUoiQ4TIfydrYE7kcX87k/3P2MrZ5U9CknbB01bKsPT3yQ0w 4ijTHHBIFD2gEmxS/yYZY62ukPqbh6Qfk+UkAqZW2l81O57hlHMHNJ5Zmm3nO0FM 7LBbalCQKF6t4pdTBDt0b7PD2oapITt5/O0Urc0cE3KZwjgQSnBPR1Os2xd0Z5pS dUyBpTzKop0V0k06ruYLOHIVKIjjlQ+/XrSAllMNZb0vaWGwtytzkWeSBWE2w2Hp 2w4WJRVyGYTHGFKWw2wbv3Z8nmqtuz+2nXyD9XxUuVXHGo4BzbWO9p3QYQtrRl+I 38F8JGsJbNxBdugp0+NHNjlYfiU1T7kR -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:56 2025 by rpki-client