$ rpki-client -vvf rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft File: 7HnRemDtVw7Ge1EWFitgi2C5zUE.mft (raw, json) Hash identifier: MopeqN6tTG+IxE10ZlksH5bgjSLcEDsb6vsLkzpZM/4= Subject key identifier: 34:4A:64:F4:B2:A2:5D:6D:FA:CC:92:99:95:05:F3:74:1A:80:55:FE Authority key identifier: EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 Certificate issuer: /CN=A91C309F/serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Certificate serial: 06F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft Manifest number: 06F2 Signing time: Tue 04 Nov 2025 22:02:26 +0000 Manifest this update: Tue 04 Nov 2025 22:02:25 +0000 Manifest next update: Tue 11 Nov 2025 22:02:25 +0000 Files and hashes: 1: 7HnRemDtVw7Ge1EWFitgi2C5zUE.crl (hash: CpBa6XrhqMB2pweSqPMZd0cZ015pBeL1UGdqY7Zi8/o=) 2: C144C89ADCF311EC80AD955EC4F9AE02.roa (hash: oHlo3Sofjys47IZ2Ei8IuoMAeL8C2VUTJUZO9aDUVcs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:02:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1785 (0x6f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C309F, serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Validity Not Before: Nov 4 22:02:25 2025 GMT Not After : Nov 11 22:02:25 2025 GMT Subject: CN=690a77f1-1b04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:0e:25:de:ea:45:99:8a:cf:f9:e5:0c:de:3f: a2:45:d5:16:96:ee:52:e9:cd:60:6c:7b:55:35:82: 32:da:10:84:ff:47:35:f1:65:af:1d:af:9d:b8:a4: 86:0d:ba:06:85:a3:f2:75:ab:1e:16:e1:11:7b:24: 08:4b:b7:ae:99:1e:7a:7b:a8:53:32:22:0b:16:14: 32:f7:e3:0c:fe:94:cc:b8:be:7c:00:c4:8c:b3:76: b6:61:9b:32:6e:e5:25:3b:06:26:f5:7a:df:5b:6a: c6:5e:8b:d6:b1:fe:e5:f6:ca:41:93:52:d7:c0:b6: 89:15:50:07:de:b1:0d:11:86:c5:85:ea:f0:b1:db: f7:87:78:06:87:80:52:cf:1e:cc:5e:7d:d0:38:ec: d7:8a:46:02:9d:e8:98:85:ee:ee:e7:64:5e:6b:2c: f4:8f:95:16:de:97:44:e5:10:fc:cc:0b:03:a9:b2: cb:86:da:a1:3e:51:f3:c7:f8:14:29:83:fc:6b:93: 16:f2:0a:15:e6:b8:ec:dc:9f:e8:b6:c1:98:ae:42: 75:48:8d:b4:6f:23:c6:62:cf:5f:64:d6:8d:ba:54: 2f:d6:fa:e8:71:e2:4c:44:1c:b6:65:84:e8:04:2a: 89:f2:ed:e5:1d:a1:a4:32:1d:fa:1a:99:e6:ef:fb: f7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:4A:64:F4:B2:A2:5D:6D:FA:CC:92:99:95:05:F3:74:1A:80:55:FE X509v3 Authority Key Identifier: keyid:EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:11:14:ec:ea:ae:09:b7:5c:ab:35:e4:c5:d4:2b:64:bc:98: 59:8e:f4:c7:57:79:8c:2a:30:ef:95:62:67:fc:e2:15:72:b1: 85:17:73:f8:ac:a3:4b:ee:be:6c:f9:05:87:10:8f:f0:af:cf: 06:5d:3a:31:40:34:88:59:83:0f:7d:c2:84:b7:89:26:2f:3a: 19:5e:a4:7e:b8:f3:4a:16:11:6d:96:da:5a:8f:53:e8:5a:c6: 56:e3:c7:2e:ac:66:b5:d9:68:52:be:62:b7:ad:49:79:9d:14: 5e:3a:18:c1:54:8d:fd:93:57:ec:4a:b1:ed:ec:08:d5:fc:18: 13:e9:19:34:47:81:21:97:44:66:a1:b1:7f:a2:ae:af:02:75: be:e5:68:1f:92:c7:4e:2f:ec:80:41:19:e1:99:a4:1c:be:90: 32:fa:c1:49:d4:0f:d0:63:35:7e:7d:7f:e7:08:12:51:b1:ac: 82:35:49:0f:6e:b8:e1:9d:3d:4b:7d:37:73:26:50:04:55:66: 77:71:aa:40:3c:9e:b0:3b:01:f0:ae:2a:c8:a8:66:07:1d:16: b4:58:e7:53:6e:e8:e3:24:10:bc:fb:90:f2:8f:d7:88:f6:64: 54:32:e4:ef:72:0c:f9:53:6f:dc:3c:18:e4:65:a6:98:f9:e1: 98:4a:fc:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMwOUYxMTAvBgNVBAUTKEVDNzlEMTdBNjBFRDU3MEVDNjdCNTExNjE2MkI2MDhC NjBCOUNENDEwHhcNMjUxMTA0MjIwMjI1WhcNMjUxMTExMjIwMjI1WjAYMRYwFAYD VQQDEw02OTBhNzdmMS0xYjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7A4l3upFmYrP+eUM3j+iRdUWlu5S6c1gbHtVNYIy2hCE/0c18WWvHa+duKSG DboGhaPydaseFuEReyQIS7eumR56e6hTMiILFhQy9+MM/pTMuL58AMSMs3a2YZsy buUlOwYm9XrfW2rGXovWsf7l9spBk1LXwLaJFVAH3rENEYbFherwsdv3h3gGh4BS zx7MXn3QOOzXikYCneiYhe7u52Reayz0j5UW3pdE5RD8zAsDqbLLhtqhPlHzx/gU KYP8a5MW8goV5rjs3J/otsGYrkJ1SI20byPGYs9fZNaNulQv1vroceJMRBy2ZYTo BCqJ8u3lHaGkMh36Gpnm7/v3UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRKZPSy ol1t+sySmZUF83QagFX+MB8GA1UdIwQYMBaAFOx50Xpg7VcOxntRFhYrYItguc1B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzA5Ri8xREI0ODNBNDY5 REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3N0dlMUVXRml0Z2kyQzV6 VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdIblJlbUR0Vnc3R2UxRVdGaXRnaTJDNXpVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzA5Ri8xREI0ODNBNDY5REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3 N0dlMUVXRml0Z2kyQzV6VUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUERTs6q4Jt1yrNeTF1CtkvJhZjvTHV3mMKjDvlWJn/OIVcrGFF3P4 rKNL7r5s+QWHEI/wr88GXToxQDSIWYMPfcKEt4kmLzoZXqR+uPNKFhFtltpaj1Po WsZW48curGa12WhSvmK3rUl5nRReOhjBVI39k1fsSrHt7AjV/BgT6Rk0R4Ehl0Rm obF/oq6vAnW+5WgfksdOL+yAQRnhmaQcvpAy+sFJ1A/QYzV+fX/nCBJRsayCNUkP brjhnT1LfTdzJlAEVWZ3capAPJ6wOwHwrirIqGYHHRa0WOdTbujjJBC8+5Dyj9eI 9mRUMuTvcgz5U2/cPBjkZaaY+eGYSvwx -----END CERTIFICATE-----Generated at Wed Nov 5 12:24:23 2025 by rpki-client