$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.mft File: 79cHaffoVdJXok1qHUkDlQqzadM.mft (raw, json) Hash identifier: MTlWbwNokuwaeGXGEvrStTJETHLLuLYlal/V54Fz1hw= Subject key identifier: 41:29:04:35:A8:0E:DB:99:EB:F5:2E:D2:04:10:4F:62:60:43:1A:51 Authority key identifier: EF:D7:07:69:F7:E8:55:D2:57:A2:4D:6A:1D:49:03:95:0A:B3:69:D3 Certificate issuer: /CN=A91DBE37/serialNumber=EFD70769F7E855D257A24D6A1D4903950AB369D3 Certificate serial: 06D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79cHaffoVdJXok1qHUkDlQqzadM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.mft Manifest number: 06CF Signing time: Tue 04 Nov 2025 22:07:51 +0000 Manifest this update: Tue 04 Nov 2025 22:07:50 +0000 Manifest next update: Tue 11 Nov 2025 22:07:50 +0000 Files and hashes: 1: 79cHaffoVdJXok1qHUkDlQqzadM.crl (hash: eviuWbOrxbgMGgWKr8fQ4sMLfJDJ+ys1zXFbeyN2bt8=) 2: 9E924168765811EB9E261F25C4F9AE02.roa (hash: gf+XHv/B7y9fMOtlEsCMLfQ4eU62pqLRv/z7H7sAxg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.crl rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79cHaffoVdJXok1qHUkDlQqzadM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1749 (0x6d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBE37, serialNumber=EFD70769F7E855D257A24D6A1D4903950AB369D3 Validity Not Before: Nov 4 22:07:50 2025 GMT Not After : Nov 11 22:07:50 2025 GMT Subject: CN=690a7937-7579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:96:88:1d:fa:24:c3:fc:2a:e3:52:4d:80:2b: 18:4c:c0:79:5d:30:fd:f9:63:bc:8a:0a:ab:44:d3: 1e:12:60:4c:e1:24:a5:8e:8c:e4:96:8c:33:25:d7: 71:ce:04:36:ca:11:e0:da:52:27:8d:f9:f9:b9:c9: c7:59:6a:8d:76:a5:32:bf:90:7e:d8:dc:53:20:81: fb:00:5a:79:4e:bb:e7:78:ba:3f:9c:a3:da:7d:30: 46:37:0c:0f:22:72:a8:9b:28:d9:7a:22:11:2d:88: 51:54:a7:1d:80:76:8e:54:92:ab:60:0f:f6:eb:43: 67:d1:6c:b1:22:43:17:b2:b9:80:86:a3:e7:fc:da: d1:72:cf:04:16:91:8e:af:b4:13:72:34:36:c0:af: bd:09:bd:ae:3c:44:cd:c7:98:c9:3e:f2:da:5f:ee: 39:60:ef:2a:a9:9f:51:c2:63:f8:14:14:f0:f3:37: d2:e8:e5:25:0a:87:46:31:50:e1:20:26:1a:b7:9a: c8:2f:bb:ba:a0:25:0e:69:52:8c:d4:55:40:34:8c: 69:46:47:e1:38:2e:66:36:1f:38:4b:95:f6:99:13: cb:23:1c:7a:98:e5:6f:9d:11:8c:56:5d:c0:60:a8: f1:5a:49:2f:c2:d4:0a:f9:28:ff:b3:14:fa:ef:ec: f7:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:29:04:35:A8:0E:DB:99:EB:F5:2E:D2:04:10:4F:62:60:43:1A:51 X509v3 Authority Key Identifier: keyid:EF:D7:07:69:F7:E8:55:D2:57:A2:4D:6A:1D:49:03:95:0A:B3:69:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79cHaffoVdJXok1qHUkDlQqzadM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:a3:3e:79:27:eb:0a:48:ed:cf:6b:80:82:75:7d:65:db:1b: 26:1f:ef:2c:d8:00:1e:ad:47:f3:10:f4:c5:df:5d:a2:e2:2f: 9e:e3:41:bf:2c:54:d5:c5:12:2b:7a:2e:cf:73:5b:69:8e:b3: e3:d3:ec:55:3c:ad:61:1d:ee:86:c5:a4:5d:3b:70:a3:a4:a0: 11:16:8f:66:38:e8:a4:b0:4d:bf:0f:ae:ec:16:91:47:29:14: 81:43:f3:44:60:3c:7e:13:c7:28:98:b8:58:98:dc:36:13:11: 62:4c:0a:06:58:0e:0f:72:9a:2c:52:90:89:0c:f9:bf:50:a5: b9:d1:b0:47:e5:a0:a0:20:40:13:3d:8a:b6:84:cc:5c:61:c4: 13:d2:c9:ec:41:c1:e6:3c:d9:c2:7a:6d:3a:31:29:52:32:8c: 18:cf:09:25:a9:2c:d0:74:2e:56:6a:b0:73:35:e1:8d:73:a9: b7:a9:c9:e0:75:7e:6a:c0:72:f9:08:b4:bd:6f:2d:a0:3b:79: 03:6b:79:fb:d6:88:fa:7c:51:c6:b2:04:ab:34:fa:99:ca:5f: 42:1b:b9:84:9e:8b:45:99:9b:b8:af:3e:1d:4a:62:65:3a:24: d7:de:81:69:27:f4:cd:a5:16:bf:eb:f4:ce:20:1c:72:49:9e: fa:db:61:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJFMzcxMTAvBgNVBAUTKEVGRDcwNzY5RjdFODU1RDI1N0EyNEQ2QTFENDkwMzk1 MEFCMzY5RDMwHhcNMjUxMTA0MjIwNzUwWhcNMjUxMTExMjIwNzUwWjAYMRYwFAYD VQQDEw02OTBhNzkzNy03NTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5aIHfokw/wq41JNgCsYTMB5XTD9+WO8igqrRNMeEmBM4SSljozklowzJddx zgQ2yhHg2lInjfn5ucnHWWqNdqUyv5B+2NxTIIH7AFp5TrvneLo/nKPafTBGNwwP InKomyjZeiIRLYhRVKcdgHaOVJKrYA/260Nn0WyxIkMXsrmAhqPn/NrRcs8EFpGO r7QTcjQ2wK+9Cb2uPETNx5jJPvLaX+45YO8qqZ9RwmP4FBTw8zfS6OUlCodGMVDh ICYat5rIL7u6oCUOaVKM1FVANIxpRkfhOC5mNh84S5X2mRPLIxx6mOVvnRGMVl3A YKjxWkkvwtQK+Sj/sxT67+z3swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEpBDWo DtuZ6/Uu0gQQT2JgQxpRMB8GA1UdIwQYMBaAFO/XB2n36FXSV6JNah1JA5UKs2nT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkUzNy82QTM1RTNEMDc2 NTcxMUVCOTk3REI0MjRDNEY5QUUwMi83OWNIYWZmb1ZkSlhvazFxSFVrRGxRcXph ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc5Y0hhZmZvVmRKWG9rMXFIVWtEbFFxemFkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkUzNy82QTM1RTNEMDc2NTcxMUVCOTk3REI0MjRDNEY5QUUwMi83OWNIYWZmb1Zk SlhvazFxSFVrRGxRcXphZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjoz55J+sKSO3Pa4CCdX1l2xsmH+8s2AAerUfzEPTF312i4i+e40G/ LFTVxRIrei7Pc1tpjrPj0+xVPK1hHe6GxaRdO3CjpKARFo9mOOiksE2/D67sFpFH KRSBQ/NEYDx+E8comLhYmNw2ExFiTAoGWA4PcposUpCJDPm/UKW50bBH5aCgIEAT PYq2hMxcYcQT0snsQcHmPNnCem06MSlSMowYzwklqSzQdC5WarBzNeGNc6m3qcng dX5qwHL5CLS9by2gO3kDa3n71oj6fFHGsgSrNPqZyl9CG7mEnotFmZu4rz4dSmJl OiTX3oFpJ/TNpRa/6/TOIBxySZ7622GD -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:06 2025 by rpki-client