$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft File: HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft (raw, json) Hash identifier: pdh6/9ZsVmMOsf1G2MlT3c3pzuhYHnH/B0ANiD8xEUk= Subject key identifier: 09:05:34:03:7B:24:85:5A:A2:05:3E:6D:D4:1A:75:C9:F6:14:3A:C8 Authority key identifier: 1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 Certificate issuer: /CN=A91B6066/serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft Manifest number: 7D Signing time: Mon 03 Nov 2025 06:46:03 +0000 Manifest this update: Mon 03 Nov 2025 06:46:03 +0000 Manifest next update: Mon 10 Nov 2025 06:46:03 +0000 Files and hashes: 1: HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl (hash: /xqf3aaRtJzPA3Q5Lnypt6zYjh3Yvp1JhAO8mBk4DqQ=) 2: CB16EA82FB6411EF90E1E429C4F9AE02.roa (hash: 0M63JvIdFfuu35AAppLF2AY+BsaEXFTD4uLQ+gUHRuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6066, serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Validity Not Before: Nov 3 06:46:03 2025 GMT Not After : Nov 10 06:46:03 2025 GMT Subject: CN=69084fab-c6ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ce:c3:08:b4:d7:98:0d:c5:40:57:de:0b:34: e7:6a:a5:ee:4f:35:ba:04:6c:47:7c:5e:c6:1e:58: a2:b1:89:ba:41:4e:03:5a:3b:88:40:f7:92:07:36: 3c:42:7e:5d:7c:0a:19:1c:05:55:1c:73:70:57:54: b2:a0:fc:1f:03:53:c2:9d:be:7d:d6:b1:da:7c:ae: ea:28:3b:5b:ab:5b:67:f5:49:5b:3a:a0:57:ee:43: 22:24:e8:8f:30:02:a7:35:03:76:5f:e5:4f:1d:9c: 60:ce:f7:7a:24:a9:3e:4a:dd:0d:0e:17:88:5b:1b: c7:6b:c0:89:e6:12:9c:82:aa:a5:cd:68:8f:30:e9: 60:67:c1:41:dc:58:b6:3b:66:95:a6:14:6c:e5:31: ee:e4:64:03:ad:30:9c:9b:a1:2d:f6:50:01:53:0a: 51:3d:de:a8:c4:c7:b6:eb:4e:10:3c:e2:3e:14:63: d0:fe:26:4f:9d:ef:b8:ab:0d:bc:2f:64:50:eb:7b: 76:f9:a9:00:2a:1a:4a:12:2d:b9:25:3a:17:1e:59: e0:0c:ee:c9:81:5b:1d:0b:91:eb:83:58:5e:10:b4: ac:a8:62:39:48:c8:01:b5:4a:7b:ac:1b:66:3b:b4: d2:89:43:93:e2:34:8c:15:ac:ba:be:8b:95:6c:0a: 2a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:05:34:03:7B:24:85:5A:A2:05:3E:6D:D4:1A:75:C9:F6:14:3A:C8 X509v3 Authority Key Identifier: keyid:1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:df:af:2d:0f:e2:50:82:0e:df:08:41:0f:a7:58:8f:dc:6f: 8d:09:60:be:c5:68:26:02:3b:bc:3c:63:33:dd:ad:f3:88:d0: f4:f9:06:7a:9d:bc:43:a3:26:78:e3:4c:aa:68:ce:d2:b9:f1: 89:d5:0d:70:f2:41:e6:3c:49:82:09:d9:a0:0d:f5:0f:35:78: d0:fd:c4:2c:f5:0b:a5:4e:3f:c5:ee:76:aa:46:f6:8f:7d:45: c9:3c:40:93:36:6a:47:aa:01:fa:b3:75:12:46:1f:33:19:90: 6a:91:c7:61:79:f9:50:35:22:91:35:82:a9:eb:30:dd:a9:5f: 2a:f6:a6:04:fa:f8:2c:0f:eb:ce:7d:a9:76:82:25:f6:37:df: 9b:7c:df:be:27:a0:c0:32:17:04:32:e0:3b:ff:92:e4:8a:72: e5:4f:0c:d6:72:e3:29:7d:33:8e:36:35:3a:79:58:b9:e3:e8: f5:49:c7:38:7b:62:45:05:6b:c8:dd:ce:f5:44:10:68:52:57: e6:46:b0:4c:65:c9:ac:af:c3:88:8a:90:fd:4e:52:20:56:fd: 77:77:13:af:bc:2e:19:85:79:11:f7:d5:ef:66:0c:90:11:38: 5f:63:47:60:0c:17:48:88:ea:ab:fa:3e:22:76:ca:56:ad:7f: b6:1a:44:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NjA2NjExMC8GA1UEBRMoMUQ0RUM0MjUzMzEzQjYyQzQ4NDQ5MTZCODVEQzBGRkU0 QjA3RDUwODAeFw0yNTExMDMwNjQ2MDNaFw0yNTExMTAwNjQ2MDNaMBgxFjAUBgNV BAMTDTY5MDg0ZmFiLWM2ZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbzsMItNeYDcVAV94LNOdqpe5PNboEbEd8XsYeWKKxibpBTgNaO4hA95IHNjxC fl18ChkcBVUcc3BXVLKg/B8DU8Kdvn3Wsdp8ruooO1urW2f1SVs6oFfuQyIk6I8w Aqc1A3Zf5U8dnGDO93okqT5K3Q0OF4hbG8drwInmEpyCqqXNaI8w6WBnwUHcWLY7 ZpWmFGzlMe7kZAOtMJyboS32UAFTClE93qjEx7brThA84j4UY9D+Jk+d77irDbwv ZFDre3b5qQAqGkoSLbklOhceWeAM7smBWx0LkeuDWF4QtKyoYjlIyAG1SnusG2Y7 tNKJQ5PiNIwVrLq+i5VsCiqLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCQU0A3sk hVqiBT5t1Bp1yfYUOsgwHwYDVR0jBBgwFoAUHU7EJTMTtixIRJFrhdwP/ksH1Qgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2MDY2LzY0OEE4ODMyRkI2 NDExRUZCQzlCMzUyOUM0RjlBRTAyL0hVN0VKVE1UdGl4SVJKRnJoZHdQX2tzSDFR Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFU3RUpUTVR0aXhJUkpGcmhkd1Bfa3NIMVFnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 MDY2LzY0OEE4ODMyRkI2NDExRUZCQzlCMzUyOUM0RjlBRTAyL0hVN0VKVE1UdGl4 SVJKRnJoZHdQX2tzSDFRZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJHfry0P4lCCDt8IQQ+nWI/cb40JYL7FaCYCO7w8YzPdrfOI0PT5Bnqd vEOjJnjjTKpoztK58YnVDXDyQeY8SYIJ2aAN9Q81eND9xCz1C6VOP8XudqpG9o99 Rck8QJM2akeqAfqzdRJGHzMZkGqRx2F5+VA1IpE1gqnrMN2pXyr2pgT6+CwP6859 qXaCJfY335t8374noMAyFwQy4Dv/kuSKcuVPDNZy4yl9M442NTp5WLnj6PVJxzh7 YkUFa8jdzvVEEGhSV+ZGsExlyayvw4iKkP1OUiBW/Xd3E6+8LhmFeRH31e9mDJAR OF9jR2AMF0iI6qv6PiJ2ylatf7YaRCQ= -----END CERTIFICATE-----Generated at Tue Nov 4 22:20:51 2025 by rpki-client