$ rpki-client -vvf rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.mft File: Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.mft (raw, json) Hash identifier: ZoCQx78V3XWHqeIbhvvvWhXmNdZhLYtUbQjL+wLqMmE= Subject key identifier: DF:4B:25:0F:AB:FA:98:52:6E:9C:A8:C2:19:8A:DF:7A:18:CC:8C:07 Authority key identifier: 43:B3:9C:8F:A3:34:6D:63:19:EA:49:BC:5A:06:7E:EF:E0:D3:44:6D Certificate issuer: /CN=A916E501/serialNumber=43B39C8FA3346D6319EA49BC5A067EEFE0D3446D Certificate serial: 0791 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.mft Manifest number: 0787 Signing time: Sun 02 Nov 2025 21:31:33 +0000 Manifest this update: Sun 02 Nov 2025 21:31:33 +0000 Manifest next update: Sun 09 Nov 2025 21:31:33 +0000 Files and hashes: 1: Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.crl (hash: olAcjtLj5F+OwUdrTBA6LC0HApb1lnpFGYTUK/o3mF8=) 2: 919ECCA8412C11F09E17FC56C4F9AE02.roa (hash: F9SWB+aMa8yAFDLLoHpTZLS07WYExS6i1iQ0h3SINVA=) 3: 203ADB5E412E11F097D29A20C4F9AE02.roa (hash: uJaHPmu5b/LTwhSQC3Yb+mo7Y9maBsfJr86vHvf1sw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.crl rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:31:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1937 (0x791) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E501, serialNumber=43B39C8FA3346D6319EA49BC5A067EEFE0D3446D Validity Not Before: Nov 2 21:31:33 2025 GMT Not After : Nov 9 21:31:33 2025 GMT Subject: CN=6907cdb5-bbf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c7:b4:cd:a1:d8:07:63:c3:5f:c2:92:5e:ab: 70:d2:0e:78:fc:36:74:c6:60:48:59:b3:b0:56:b7: 33:7c:74:36:4c:62:c2:a2:76:6d:12:af:e2:ae:3f: 44:1f:eb:e0:24:3f:97:85:39:fe:61:1b:00:4c:bd: f1:67:94:b0:db:db:af:2d:bb:f0:e8:fe:a5:ba:00: 4e:75:fc:11:e2:eb:4a:b0:0e:b1:64:2c:65:6f:df: d1:cf:05:95:20:d1:ac:f8:3d:72:70:c1:d0:08:83: 7a:b4:b9:79:2a:53:9b:3a:05:f1:52:d8:0c:37:b6: ed:48:d1:03:40:74:ec:76:8b:ce:58:e0:b6:95:03: fa:a6:33:2c:57:30:b5:47:e7:4c:65:1c:5b:f9:56: a7:17:ce:76:5c:ca:5f:3f:66:e9:b8:7b:f7:3d:23: bd:2d:dd:ab:2a:07:c7:62:4b:69:d2:9d:0c:c6:7b: 3e:80:e7:03:78:dd:73:0d:e3:dc:6f:30:40:d4:50: ca:b7:a1:ba:ce:de:f3:45:4c:dc:ca:19:02:50:16: 68:48:ab:21:11:49:9d:60:c1:f8:d1:0b:d0:ac:0c: 45:22:b5:cc:51:c3:2d:72:a8:95:bb:db:d8:5b:cb: 37:ec:d0:ae:16:ed:3f:f0:ca:8b:42:46:b9:34:c3: c0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:4B:25:0F:AB:FA:98:52:6E:9C:A8:C2:19:8A:DF:7A:18:CC:8C:07 X509v3 Authority Key Identifier: keyid:43:B3:9C:8F:A3:34:6D:63:19:EA:49:BC:5A:06:7E:EF:E0:D3:44:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:c8:2e:e7:d4:dd:46:4f:c5:20:24:d9:28:14:b6:73:bc:bf: c6:94:1d:45:fd:b9:b3:0e:59:69:75:3a:73:2b:81:4a:24:0f: 00:e2:b0:f5:36:41:32:ef:b9:1b:3b:e6:11:7a:c5:0e:2d:a0: e7:59:0c:b6:1b:b7:d6:23:c7:69:12:ab:21:67:65:c9:50:ac: ea:0c:a2:27:eb:7b:33:b9:1c:63:29:7b:8f:dc:bb:de:66:ca: 41:62:64:3e:63:08:98:28:b1:bc:c5:61:c6:59:10:1a:6b:cf: 0a:c1:c6:4e:7a:66:9c:42:2c:3c:9b:11:0a:c1:92:07:f4:fc: ec:91:98:d5:9a:67:2a:ac:a4:98:df:02:23:89:e6:90:b7:4c: 19:e7:68:cf:f8:ee:99:ce:1f:dc:41:02:f7:41:28:26:3e:85: c0:6d:1c:36:3f:e8:38:75:59:c0:d2:f7:86:dc:b1:13:35:e1: 05:0b:1c:90:b1:af:b0:65:21:70:f6:c2:da:21:d4:b1:6c:83: 1f:8a:99:fd:91:c4:6b:e0:73:3a:28:73:4c:36:06:3c:01:e8: 9a:ec:1a:14:1a:a7:4e:2f:a1:aa:8e:d2:b9:af:f7:f7:6a:98: 89:69:d8:8b:3e:ae:ed:cd:4c:1d:b4:be:03:d1:e9:24:df:d3: 59:52:1e:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1MDExMTAvBgNVBAUTKDQzQjM5QzhGQTMzNDZENjMxOUVBNDlCQzVBMDY3RUVG RTBEMzQ0NkQwHhcNMjUxMTAyMjEzMTMzWhcNMjUxMTA5MjEzMTMzWjAYMRYwFAYD VQQDEw02OTA3Y2RiNS1iYmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8e0zaHYB2PDX8KSXqtw0g54/DZ0xmBIWbOwVrczfHQ2TGLConZtEq/irj9E H+vgJD+XhTn+YRsATL3xZ5Sw29uvLbvw6P6lugBOdfwR4utKsA6xZCxlb9/RzwWV INGs+D1ycMHQCIN6tLl5KlObOgXxUtgMN7btSNEDQHTsdovOWOC2lQP6pjMsVzC1 R+dMZRxb+VanF852XMpfP2bpuHv3PSO9Ld2rKgfHYktp0p0Mxns+gOcDeN1zDePc bzBA1FDKt6G6zt7zRUzcyhkCUBZoSKshEUmdYMH40QvQrAxFIrXMUcMtcqiVu9vY W8s37NCuFu0/8MqLQka5NMPAxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9LJQ+r +phSbpyowhmK33oYzIwHMB8GA1UdIwQYMBaAFEOznI+jNG1jGepJvFoGfu/g00Rt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTUwMS8yQjJEODgwNDJG QjMxMUVCQjU4QTQ2M0RDNEY5QUUwMi9RN09jajZNMGJXTVo2a204V2daLTctRFRS RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E3T2NqNk0wYldNWjZrbThXZ1otNy1EVFJHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTUwMS8yQjJEODgwNDJGQjMxMUVCQjU4QTQ2M0RDNEY5QUUwMi9RN09jajZNMGJX TVo2a204V2daLTctRFRSRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3yC7n1N1GT8UgJNkoFLZzvL/GlB1F/bmzDllpdTpzK4FKJA8A4rD1 NkEy77kbO+YResUOLaDnWQy2G7fWI8dpEqshZ2XJUKzqDKIn63szuRxjKXuP3Lve ZspBYmQ+YwiYKLG8xWHGWRAaa88KwcZOemacQiw8mxEKwZIH9PzskZjVmmcqrKSY 3wIjieaQt0wZ52jP+O6Zzh/cQQL3QSgmPoXAbRw2P+g4dVnA0veG3LETNeEFCxyQ sa+wZSFw9sLaIdSxbIMfipn9kcRr4HM6KHNMNgY8Aeia7BoUGqdOL6GqjtK5r/f3 apiJadiLPq7tzUwdtL4D0ekk39NZUh5U -----END CERTIFICATE-----Generated at Tue Nov 4 16:13:30 2025 by rpki-client