$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft File: ApuM4ulfRYWEYukHCxtRU6yRP-g.mft (raw, json) Hash identifier: dsPba1D9dWQSC5lA+Tx9OkG0EoDgwT8v1Dd5JamjDwM= Subject key identifier: 8E:98:6B:43:CA:D6:1F:0D:CE:57:1C:5B:B3:78:A3:44:96:69:46:FE Authority key identifier: 02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 Certificate issuer: /CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Certificate serial: 076A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft Manifest number: 075D Signing time: Wed 22 Oct 2025 22:36:52 +0000 Manifest this update: Wed 22 Oct 2025 22:36:52 +0000 Manifest next update: Wed 29 Oct 2025 22:36:52 +0000 Files and hashes: 1: ApuM4ulfRYWEYukHCxtRU6yRP-g.crl (hash: PJhpef6yUXDghCR56GVaKaEouR62mm2idyJD83Ak0RM=) 2: AA3A944A27EA11ECB1EBEA82C4F9AE02.roa (hash: 2jsCymQavrx92Kq4v6h75mDYqdyK8XpnNBvpUzJpvhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 22:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1898 (0x76a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Validity Not Before: Oct 22 22:36:52 2025 GMT Not After : Oct 29 22:36:52 2025 GMT Subject: CN=68f95c84-16c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:44:f9:db:8f:67:d2:f8:1c:12:4a:b6:87:40: 94:c1:d7:8e:ad:0a:08:6d:91:fa:45:d2:1c:be:aa: e5:52:b8:96:a1:24:3e:ba:cb:03:0e:70:9c:71:04: 5d:76:b7:53:45:5e:f4:4f:5c:8c:47:a0:3d:40:1f: fe:a8:6d:a0:73:10:f3:0e:cf:81:2c:4d:4f:d0:e3: a4:42:11:9b:cb:3f:e3:c3:7c:e1:9c:5d:2b:dd:ba: d2:98:c3:03:1e:a5:61:70:2f:cd:f2:e8:5f:83:67: 9e:24:ac:95:38:a9:85:72:c9:9a:6d:f0:f9:2a:3b: 97:af:20:7b:11:2a:15:7b:18:18:c4:a5:37:36:05: cf:e3:ab:0d:d7:13:b7:91:74:e5:a1:50:40:71:6d: 13:12:64:fb:dc:6e:28:d5:80:50:cd:8e:58:bc:db: 0d:0f:f8:12:a2:1a:ae:af:fa:87:a8:2e:74:2a:fc: 73:79:87:83:d4:39:5b:ea:b4:84:97:40:6b:08:3b: 47:b1:55:45:60:2d:3e:5b:57:59:95:4a:60:16:81: 6e:7f:42:12:a0:13:95:6f:ad:b6:5a:a5:9e:ef:5a: ca:af:f6:8b:22:53:08:c5:fc:94:e9:60:41:6b:33: 1e:5f:c0:fa:fe:33:ee:0d:15:a5:f2:49:17:6c:b2: c8:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:98:6B:43:CA:D6:1F:0D:CE:57:1C:5B:B3:78:A3:44:96:69:46:FE X509v3 Authority Key Identifier: keyid:02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:af:63:93:ce:4a:6a:ec:16:ab:a9:64:4c:a8:3b:a4:70:5a: 0d:b1:75:56:27:73:f1:09:b7:3d:b2:8c:2d:eb:93:c3:34:4c: 9c:b4:12:57:20:c9:7d:3b:49:0b:e3:f8:2a:98:a8:f6:1c:94: 1a:1d:1d:1f:dc:c4:14:f0:9c:63:0d:0d:4e:90:8a:ad:67:95: 65:bc:61:4d:1a:aa:01:cc:13:a5:eb:08:1d:02:9c:da:38:e4: 19:2a:d2:48:5e:b1:b6:e6:35:39:db:07:1a:d3:98:5f:80:ee: 9f:4f:3a:49:01:26:36:66:5f:5a:b9:68:70:9a:a2:1b:8f:de: 5e:13:26:f5:b1:c7:92:a9:30:44:54:fb:d4:9a:3e:4f:8c:e0: b6:01:51:07:91:23:cd:56:07:88:48:ed:f9:36:64:a3:10:4a: 37:93:80:3f:15:8c:fd:07:76:b7:f9:b6:6c:01:a4:80:62:07: dd:11:a4:52:88:12:11:b8:9b:91:5c:fa:ce:05:5c:3e:c1:10: a4:ac:02:69:9e:35:fd:bf:68:d2:ac:3c:bc:fe:4b:e6:d4:ac: 54:f2:a0:7c:2c:39:0e:1e:af:49:66:aa:01:d0:88:ac:98:8a: ce:10:67:0c:3f:a8:a6:d2:b2:49:25:5b:ce:71:55:bd:b4:bf: aa:d7:3f:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDAyOUI4Q0UyRTk1RjQ1ODU4NDYyRTkwNzBCMUI1MTUz QUM5MTNGRTgwHhcNMjUxMDIyMjIzNjUyWhcNMjUxMDI5MjIzNjUyWjAYMRYwFAYD VQQDEw02OGY5NWM4NC0xNmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3UT5249n0vgcEkq2h0CUwdeOrQoIbZH6RdIcvqrlUriWoSQ+ussDDnCccQRd drdTRV70T1yMR6A9QB/+qG2gcxDzDs+BLE1P0OOkQhGbyz/jw3zhnF0r3brSmMMD HqVhcC/N8uhfg2eeJKyVOKmFcsmabfD5KjuXryB7ESoVexgYxKU3NgXP46sN1xO3 kXTloVBAcW0TEmT73G4o1YBQzY5YvNsND/gSohqur/qHqC50KvxzeYeD1Dlb6rSE l0BrCDtHsVVFYC0+W1dZlUpgFoFuf0ISoBOVb622WqWe71rKr/aLIlMIxfyU6WBB azMeX8D6/jPuDRWl8kkXbLLICwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6Ya0PK 1h8NzlccW7N4o0SWaUb+MB8GA1UdIwQYMBaAFAKbjOLpX0WFhGLpBwsbUVOskT/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82MDI4NjYzODQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZV0VZdWtIQ3h0UlU2eVJQ LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FwdU00dWxmUllXRVl1a0hDeHRSVTZ5UlAtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82MDI4NjYzODQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZ V0VZdWtIQ3h0UlU2eVJQLWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWr2OTzkpq7BarqWRMqDukcFoNsXVWJ3PxCbc9sowt65PDNEyctBJX IMl9O0kL4/gqmKj2HJQaHR0f3MQU8JxjDQ1OkIqtZ5VlvGFNGqoBzBOl6wgdApza OOQZKtJIXrG25jU52wca05hfgO6fTzpJASY2Zl9auWhwmqIbj95eEyb1sceSqTBE VPvUmj5PjOC2AVEHkSPNVgeISO35NmSjEEo3k4A/FYz9B3a3+bZsAaSAYgfdEaRS iBIRuJuRXPrOBVw+wRCkrAJpnjX9v2jSrDy8/kvm1KxU8qB8LDkOHq9JZqoB0Iis mIrOEGcMP6im0rJJJVvOcVW9tL+q1z/h -----END CERTIFICATE-----Generated at Fri Oct 24 06:42:48 2025 by rpki-client