$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft File: ApuM4ulfRYWEYukHCxtRU6yRP-g.mft (raw, json) Hash identifier: f8p5ld59kSVtk/9v6Q7k0WFN4W1YWsoGo4oXtWrjSnQ= Subject key identifier: AD:14:BE:66:E3:47:1C:9B:D3:26:C9:1D:AF:55:99:0D:88:23:0F:7B Authority key identifier: 02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 Certificate issuer: /CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Certificate serial: 073B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft Manifest number: 072E Signing time: Sun 20 Jul 2025 21:58:54 +0000 Manifest this update: Sun 20 Jul 2025 21:58:53 +0000 Manifest next update: Sun 27 Jul 2025 21:58:53 +0000 Files and hashes: 1: ApuM4ulfRYWEYukHCxtRU6yRP-g.crl (hash: WK/cf2AKQj5Lb9D6Jvjo5GR9TzFpLpmU5sbFbn10jm0=) 2: AA3A944A27EA11ECB1EBEA82C4F9AE02.roa (hash: 2jsCymQavrx92Kq4v6h75mDYqdyK8XpnNBvpUzJpvhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 21:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1851 (0x73b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Validity Not Before: Jul 20 21:58:53 2025 GMT Not After : Jul 27 21:58:53 2025 GMT Subject: CN=687d669e-d372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c6:85:ec:79:9d:df:5e:48:3c:07:e8:25:89: 87:3c:73:0d:4e:c9:c4:33:d8:79:b3:9f:1f:82:91: 72:01:f8:b3:b6:4f:3a:b2:46:b1:92:d0:5e:d7:89: 20:10:f6:69:d8:b7:15:16:77:f0:1d:30:dc:a4:ee: 14:57:a6:28:05:46:9b:b9:b4:6e:b8:ad:83:12:67: f2:53:8e:15:a5:86:5b:79:46:05:04:f4:f5:d3:50: 40:cc:1b:05:9c:ea:af:56:0c:f5:8b:e0:e0:fd:95: c6:54:af:c8:b2:63:ff:bf:91:a7:86:0e:48:4b:e1: 43:5f:b0:78:a1:c6:35:52:9d:ef:fb:f6:39:1c:7c: ee:e5:fd:43:6b:3d:a4:ab:c9:21:8a:59:5f:88:2a: 0f:b2:a5:1d:1c:8b:50:49:b1:f0:ab:7d:7c:b2:5d: 95:a9:62:5a:de:5f:93:4c:85:a7:24:c4:f7:f9:9a: 86:d7:48:a1:1c:18:16:c0:e3:a2:29:09:c5:35:71: 0a:70:18:47:a1:4b:08:65:ae:60:9e:a2:40:91:47: cf:b1:fe:b3:24:b4:fc:09:17:89:28:41:e2:d7:33: 3f:5b:9c:a0:eb:55:fc:ce:46:01:9f:f6:e3:8d:7d: 2a:6e:77:75:3f:17:6a:34:c1:ce:ce:3b:63:e0:bd: 1d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:14:BE:66:E3:47:1C:9B:D3:26:C9:1D:AF:55:99:0D:88:23:0F:7B X509v3 Authority Key Identifier: keyid:02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:2d:fa:44:1e:12:da:4d:4c:25:9d:41:f8:35:14:7c:69:14: 44:8d:33:f4:c2:ea:97:e3:ae:fe:aa:05:72:2f:d4:06:cc:cb: da:5d:9a:50:3d:ab:20:e1:06:66:43:e5:f6:46:9d:29:1d:29: ec:63:c7:56:75:c0:ce:4c:27:8f:27:8f:75:0a:11:1a:ea:f6: 98:8c:8d:e0:75:b8:c3:bc:e2:db:13:70:99:e9:06:91:9b:f7: 47:44:92:0f:13:b8:52:ac:6c:66:64:52:bb:3d:68:e6:f4:2e: 5c:09:62:1b:33:96:48:7a:bc:7d:f0:4c:53:13:2d:4d:b3:61: 3d:90:09:23:cd:ee:a0:f2:7f:d2:88:a8:bf:91:0e:d5:16:67: c5:05:6a:6c:8d:56:94:7f:6c:25:b1:3e:24:e6:61:be:b1:4a: d8:d8:2d:04:e0:e8:f7:59:a1:0d:a3:b0:8c:fd:ee:f0:96:3d: d5:c2:2b:5f:ff:2f:c4:2b:d4:54:3e:9e:e8:e9:5a:83:64:58: 7f:0f:06:34:58:5f:f6:d1:26:46:67:57:54:11:3e:11:f9:33: d6:62:7b:0d:32:1e:dc:ee:e6:c4:7f:41:21:3c:7e:47:6e:58: 34:34:7e:b2:70:81:83:68:7b:0e:3f:02:d0:2a:e9:05:05:75: 54:6b:66:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDAyOUI4Q0UyRTk1RjQ1ODU4NDYyRTkwNzBCMUI1MTUz QUM5MTNGRTgwHhcNMjUwNzIwMjE1ODUzWhcNMjUwNzI3MjE1ODUzWjAYMRYwFAYD VQQDEw02ODdkNjY5ZS1kMzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsaF7Hmd315IPAfoJYmHPHMNTsnEM9h5s58fgpFyAfiztk86skaxktBe14kg EPZp2LcVFnfwHTDcpO4UV6YoBUabubRuuK2DEmfyU44VpYZbeUYFBPT101BAzBsF nOqvVgz1i+Dg/ZXGVK/IsmP/v5Gnhg5IS+FDX7B4ocY1Up3v+/Y5HHzu5f1Daz2k q8khillfiCoPsqUdHItQSbHwq318sl2VqWJa3l+TTIWnJMT3+ZqG10ihHBgWwOOi KQnFNXEKcBhHoUsIZa5gnqJAkUfPsf6zJLT8CReJKEHi1zM/W5yg61X8zkYBn/bj jX0qbnd1PxdqNMHOzjtj4L0dEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK0Uvmbj Rxyb0ybJHa9VmQ2IIw97MB8GA1UdIwQYMBaAFAKbjOLpX0WFhGLpBwsbUVOskT/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82MDI4NjYzODQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZV0VZdWtIQ3h0UlU2eVJQ LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FwdU00dWxmUllXRVl1a0hDeHRSVTZ5UlAtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82MDI4NjYzODQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZ V0VZdWtIQ3h0UlU2eVJQLWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGLfpEHhLaTUwlnUH4NRR8aRREjTP0wuqX467+qgVyL9QGzMvaXZpQ Pasg4QZmQ+X2Rp0pHSnsY8dWdcDOTCePJ491ChEa6vaYjI3gdbjDvOLbE3CZ6QaR m/dHRJIPE7hSrGxmZFK7PWjm9C5cCWIbM5ZIerx98ExTEy1Ns2E9kAkjze6g8n/S iKi/kQ7VFmfFBWpsjVaUf2wlsT4k5mG+sUrY2C0E4Oj3WaENo7CM/e7wlj3Vwitf /y/EK9RUPp7o6VqDZFh/DwY0WF/20SZGZ1dUET4R+TPWYnsNMh7c7ubEf0EhPH5H blg0NH6ycIGDaHsOPwLQKukFBXVUa2bg -----END CERTIFICATE-----Generated at Mon Jul 21 07:51:12 2025 by rpki-client