$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft File: ApuM4ulfRYWEYukHCxtRU6yRP-g.mft (raw, json) Hash identifier: Kns38rW16pdK5qTVvwWNcsl9fJh9q0JtcWyd4jHTPPw= Subject key identifier: D1:6B:B4:16:E5:5E:8E:26:04:52:BE:0C:9D:82:26:67:02:57:A5:CD Authority key identifier: 02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 Certificate issuer: /CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Certificate serial: 07B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft Manifest number: 07A6 Signing time: Mon 02 Mar 2026 21:22:33 +0000 Manifest this update: Mon 02 Mar 2026 21:22:32 +0000 Manifest next update: Mon 09 Mar 2026 21:22:32 +0000 Files and hashes: 1: ApuM4ulfRYWEYukHCxtRU6yRP-g.crl (hash: ARZ98fNRzTCdXTIh5zwqrM6f/f7tnxhSCldmqSjLMtk=) 2: AA3A944A27EA11ECB1EBEA82C4F9AE02.roa (hash: 9U65FM23v8O9dYjo5/Exe3XZ6tEjV3iATa5RpxrfVNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 21:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1973 (0x7b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Validity Not Before: Mar 2 21:22:32 2026 GMT Not After : Mar 9 21:22:32 2026 GMT Subject: CN=69a5ff99-7f87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:15:11:e9:79:ce:c8:87:fd:cd:8e:70:01:92: 4d:3f:e0:ae:70:97:cc:18:9e:2b:79:4e:9d:b1:e7: 45:63:8e:b2:3b:62:c4:6e:4d:f2:88:4b:35:5a:64: c2:18:62:ae:94:a1:e3:51:1e:75:0e:cc:51:63:00: 7a:e0:5e:fd:a8:ce:d8:73:d4:bc:b8:14:90:0d:6c: b1:13:d9:c4:ad:34:40:a5:b2:11:4c:65:ba:5d:5b: d3:5d:77:47:a6:bb:c3:44:38:7d:4b:6a:42:60:e5: c2:7d:84:44:e1:f8:9f:8f:0f:f0:87:c4:8c:5d:0f: 83:0e:64:e3:24:58:a3:19:02:31:64:56:bb:9a:37: 94:9c:08:c9:e6:af:64:ae:46:2f:0c:90:5a:97:16: ff:8b:25:95:8c:f3:b0:92:5a:55:5d:b3:dc:ee:9c: ce:16:ac:1e:57:0a:5e:b1:62:21:9e:fa:4d:b3:48: 79:69:c3:db:b8:1f:2b:0a:23:40:77:da:97:03:d8: 42:db:eb:b4:c4:dd:e4:83:ce:7c:a7:aa:d2:29:7c: 1d:f2:15:2d:1c:04:ef:cd:05:a7:79:eb:7e:16:e8: 30:21:ae:49:fd:df:11:54:e4:6f:93:2e:5b:5a:41: 38:88:8f:4a:1c:a8:77:53:47:e4:58:aa:6e:94:cb: ec:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:6B:B4:16:E5:5E:8E:26:04:52:BE:0C:9D:82:26:67:02:57:A5:CD X509v3 Authority Key Identifier: keyid:02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:55:ac:7b:61:b5:61:7f:e7:37:ef:13:70:a1:4b:d0:05:0b: 2d:fe:0c:52:db:64:46:7d:8f:c6:e4:72:56:14:cd:ae:47:cb: 19:9a:c2:a9:be:23:c0:0b:88:35:ee:5f:51:80:a2:f7:b2:23: 6a:1c:56:6e:ef:ca:61:71:cf:3c:d2:69:11:88:5d:b9:0a:75: 33:48:d0:d7:7d:8d:4c:8a:d0:ef:07:b8:18:38:4b:86:44:73: 93:2f:46:4f:f1:28:7b:65:33:f1:a3:43:fe:f5:ea:a8:22:90: 8e:71:b4:48:d8:7d:6d:43:11:2a:7f:46:89:6e:36:ec:37:c2: a2:c0:47:c3:01:10:6a:2e:6d:7e:c1:b8:3e:39:59:df:f4:ed: ee:5d:60:9e:4b:2e:21:93:2b:02:79:2b:81:b6:5a:50:9f:79: 2b:ec:45:3a:9d:16:b2:aa:8a:48:9e:68:8f:e1:d8:14:db:a8: ff:17:70:8e:ac:0d:57:16:c3:88:2a:96:4d:48:56:2b:0f:69: 95:07:8d:83:67:df:fe:06:3a:52:e3:ce:5e:06:d2:f8:eb:06: df:5f:83:3c:f2:63:d6:4b:f9:4b:61:43:b5:77:fd:7e:f7:20: 06:20:12:f1:34:11:c1:78:87:13:93:c2:4c:42:1e:9b:d6:78: 72:b0:88:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDAyOUI4Q0UyRTk1RjQ1ODU4NDYyRTkwNzBCMUI1MTUz QUM5MTNGRTgwHhcNMjYwMzAyMjEyMjMyWhcNMjYwMzA5MjEyMjMyWjAYMRYwFAYD VQQDEw02OWE1ZmY5OS03Zjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjBUR6XnOyIf9zY5wAZJNP+CucJfMGJ4reU6dsedFY46yO2LEbk3yiEs1WmTC GGKulKHjUR51DsxRYwB64F79qM7Yc9S8uBSQDWyxE9nErTRApbIRTGW6XVvTXXdH prvDRDh9S2pCYOXCfYRE4fifjw/wh8SMXQ+DDmTjJFijGQIxZFa7mjeUnAjJ5q9k rkYvDJBalxb/iyWVjPOwklpVXbPc7pzOFqweVwpesWIhnvpNs0h5acPbuB8rCiNA d9qXA9hC2+u0xN3kg858p6rSKXwd8hUtHATvzQWneet+FugwIa5J/d8RVORvky5b WkE4iI9KHKh3U0fkWKpulMvsqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNFrtBbl Xo4mBFK+DJ2CJmcCV6XNMB8GA1UdIwQYMBaAFAKbjOLpX0WFhGLpBwsbUVOskT/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82MDI4NjYzODQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZV0VZdWtIQ3h0UlU2eVJQ LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FwdU00dWxmUllXRVl1a0hDeHRSVTZ5UlAtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82MDI4NjYzODQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZ V0VZdWtIQ3h0UlU2eVJQLWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArlWse2G1YX/nN+8TcKFL0AULLf4MUttkRn2PxuRyVhTNrkfLGZrCqb4jwAuI Ne5fUYCi97IjahxWbu/KYXHPPNJpEYhduQp1M0jQ132NTIrQ7we4GDhLhkRzky9G T/Eoe2Uz8aND/vXqqCKQjnG0SNh9bUMRKn9GiW427DfCosBHwwEQai5tfsG4PjlZ 3/Tt7l1gnksuIZMrAnkrgbZaUJ95K+xFOp0WsqqKSJ5oj+HYFNuo/xdwjqwNVxbD iCqWTUhWKw9plQeNg2ff/gY6UuPOXgbS+OsG31+DPPJj1kv5S2FDtXf9fvcgBiAS 8TQRwXiHE5PCTEIem9Z4crCIfA== -----END CERTIFICATE-----Generated at Wed Mar 4 08:37:24 2026 by rpki-client